Re: [BEHAVE] protocols without need for ALG ?

"ietfdbh" <ietfdbh@comcast.net> Tue, 04 August 2015 21:58 UTC

Return-Path: <ietfdbh@comcast.net>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A31601ACF07 for <behave@ietfa.amsl.com>; Tue, 4 Aug 2015 14:58:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.91
X-Spam-Level:
X-Spam-Status: No, score=-0.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, J_BACKHAIR_37=1, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vz2aeuLv6-nu for <behave@ietfa.amsl.com>; Tue, 4 Aug 2015 14:58:22 -0700 (PDT)
Received: from resqmta-po-10v.sys.comcast.net (resqmta-po-10v.sys.comcast.net [IPv6:2001:558:fe16:19:96:114:154:169]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BEB211ACEF7 for <behave@ietf.org>; Tue, 4 Aug 2015 14:58:19 -0700 (PDT)
Received: from resomta-po-02v.sys.comcast.net ([96.114.154.226]) by resqmta-po-10v.sys.comcast.net with comcast id 0lx91r0044tLnxL01lyKhG; Tue, 04 Aug 2015 21:58:19 +0000
Received: from JV6RVH1 ([67.189.237.137]) by resomta-po-02v.sys.comcast.net with comcast id 0lyJ1r00B2yZEBF01lyJLG; Tue, 04 Aug 2015 21:58:19 +0000
From: "ietfdbh" <ietfdbh@comcast.net>
To: "'Toerless Eckert'" <eckert@cisco.com>, <v6ops@ietf.org>, <behave@ietf.org>
References: <20150730205806.GI1667@cisco.com>
In-Reply-To: <20150730205806.GI1667@cisco.com>
Date: Tue, 4 Aug 2015 17:58:17 -0400
Message-ID: <006d01d0cf00$ac05b830$04112890$@comcast.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQJOIOzxA//lU3Ej5GL/YVhvfDRm9p0Bvn7A
Content-Language: en-us
Archived-At: <http://mailarchive.ietf.org/arch/msg/behave/LZUHSTzsbf2rl8QescuBoMURufo>
Subject: Re: [BEHAVE] protocols without need for ALG ?
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/behave/>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Aug 2015 21:58:23 -0000

RFC2962 includes a detailed description of the requirements and
   limitations for an implementation of an SNMP Application Level
   Gateway.  It also discusses other approaches to exchange SNMP packets
   across conflicting addressing realms.

David Harrington
ietfdbh@comcast.net
+1-603-828-1401
> -----Original Message-----
> From: Behave [mailto:behave-bounces@ietf.org] On Behalf Of Toerless
> Eckert
> Sent: Thursday, July 30, 2015 4:58 PM
> To: v6ops@ietf.org; behave@ietf.org
> Subject: [BEHAVE] protocols without need for ALG ?
> 
> For autonomic networking (ANIMA WG), we are planning to rely only on IPv6
> for initial
> autonomic connectivity, and the question of connecting this (at least
initially)
> to IPv4 only NOC equipment came up. Alas, IPv6 support in transport seems
> to be still
> weak on a range of commonly used NOC tools.
> 
> If i understand the NAT RFCs and behave output correctly, we primaerily
> want ALGs to go the way of the dodo, so i was wondering if there might be
> any crucial protocols between typical NOC equipment and network devices
> that
> would require ALGs. And better of course:knowing which protocols would be
> fine
> without ALG.
> 
> Are there any lists about this (eg: what requires ALG ?)
> 
> Wrt to what seems to be important between NOC and network devices:
> 
>    FTP     - NOK (requires ALG) - IMHO not a problem
>    traceroute - ??  (initiated from v4 NOC) ??
>    telnet  - OK
>    ping    - OK ?
>    SSH/SCP - OK
>    syslog  - OK
>    TFTP    - OK ?
>    radius  - OK ? (i ran some tests, seemed to be fine)
>    diameter/tacacs+ - OK ?
>    NTP     - OK ???
> 
>    For the following, that have extensible data-models (MIBs/OIDs, XML
> schema etc.),
>    i can see that some NOC tools relying on them might not support data-
> models
>    with IPv6, but that would be "fine" (aka: can't manage everything from
such
> tools,
>    but transport stack works):
> 
>    netconf - OK ?
>    SNMP    - OK ?
> 
> Whats the next most important NOC<->network management protocols... ?
> 
> Thanks!
>     Toerless
> 
> _______________________________________________
> Behave mailing list
> Behave@ietf.org
> https://www.ietf.org/mailman/listinfo/behave