IETF Logo Mail Archive

Re: [BEHAVE] Comments on draft-bagnulo-behave-nat64-00

Brian E Carpenter <brian.e.carpenter@gmail.com> Mon, 21 July 2008 23:48 UTC

Return-Path: <behave-bounces@ietf.org>
X-Original-To: behave-archive@optimus.ietf.org
Delivered-To: ietfarch-behave-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2177C3A6956; Mon, 21 Jul 2008 16:48:35 -0700 (PDT)
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7448F3A67B2 for <behave@core3.amsl.com>; Mon, 21 Jul 2008 16:48:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.422
X-Spam-Level:
X-Spam-Status: No, score=-2.422 tagged_above=-999 required=5 tests=[AWL=0.177, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wdpYVqXuZuou for <behave@core3.amsl.com>; Mon, 21 Jul 2008 16:48:32 -0700 (PDT)
Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.234]) by core3.amsl.com (Postfix) with ESMTP id 1F7BA3A68A6 for <behave@ietf.org>; Mon, 21 Jul 2008 16:48:32 -0700 (PDT)
Received: by rv-out-0506.google.com with SMTP id b25so1295582rvf.49 for <behave@ietf.org>; Mon, 21 Jul 2008 16:49:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :organization:user-agent:mime-version:to:cc:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=63hqKMmECiC2cQVvUOWo18RVinnhia0Ze/CaHkeSLZ4=; b=ulIAxpHKc1utFpAg3c87sFrcQVN5eX/O9CzZbM/HRVvtbEuHhqQkS41w4rg/BH9j1F XZCEU6ewgq9dlDtzKFq68ReP2VnQYCq62N+bZ8gky4Bmd3WnWx4E2iTaPp2ApOcMWTiZ eCveVYis0PlykZqoSIbJTNQamgGufLHvJ3XJE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; b=J0rNM0Wv5f7p+zevyGdzj/ANtEQOXBvB8LLsw8g2Sn22WOSZRYi6xbVuHv0JIe+M+K TR1DLM+3rj/TORV+6vHqP37aZqUJeUjna9RgrUkAu8VrA1OMeUZkr7E4kGS7v3Vx12kP WuknR2so7JqhZ04SdPzDo1OCXbcpIjzA5SCS4=
Received: by 10.141.163.12 with SMTP id q12mr2155531rvo.190.1216684150052; Mon, 21 Jul 2008 16:49:10 -0700 (PDT)
Received: from ?130.216.38.124? ( [130.216.38.124]) by mx.google.com with ESMTPS id l31sm8437572rvb.6.2008.07.21.16.49.07 (version=SSLv3 cipher=RC4-MD5); Mon, 21 Jul 2008 16:49:09 -0700 (PDT)
Message-ID: <48852072.6080307@gmail.com>
Date: Tue, 22 Jul 2008 11:49:06 +1200
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: marcelo bagnulo braun <marcelo@it.uc3m.es>
References: <48839533.90507@piuha.net> <85756727-1F7B-483B-9244-72E315F16F45@muada.com> <4883A129.1030101@it.uc3m.es> <4883E223.50306@gmail.com> <48842F40.6080307@it.uc3m.es>
In-Reply-To: <48842F40.6080307@it.uc3m.es>
Cc: Jari Arkko <jari.arkko@piuha.net>, behave@ietf.org, Dave Thaler <dthaler@windows.microsoft.com>
Subject: Re: [BEHAVE] Comments on draft-bagnulo-behave-nat64-00
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Sender: behave-bounces@ietf.org
Errors-To: behave-bounces@ietf.org

Hi Marcelo,

On 2008-07-21 18:40, marcelo bagnulo braun wrote:
> Brian E Carpenter escribió:
>> On 2008-07-21 08:33, marcelo bagnulo braun wrote:
>>  
>>> Iljitsch van Beijnum escribió:
>>>    
>>>> On 20 jul 2008, at 21:42, Jari Arkko wrote:
>>>>
>>>>      
>>>>> However, I'd be interested in learning more about what Iljitsch
>>>>> mentioned about current devices not allowing v4-mapped addresses on
>>>>> the wire. As Dave mentioned, RFC 2765 uses them, and a quick test on
>>>>> the Linux box that I'm writing this e-mail on shows that I can use
>>>>> these addresses on the wire. Can you be more specific about what
>>>>> problems you expect, and where, Iljitsch?
>>>>>         
>>>> IIRC, Itojun was _extremely_ vocal about not allowing these on the
>>>> wire, and I think he got some traction in this area from at least some
>>>> of the *BSD people.
>>>>
>>>> Also, stacks implement special case logic for these addresses as they
>>>> must result in IPv4 packets when the host is dual stack, I don't know
>>>> if this logic is still applied if the host is running IPv6-only, or
>>>> normal IPv6 packets are generated.
>>>>
>>>>       
>>> see http://tools.ietf.org/html/draft-itojun-v6ops-v4mapped-harmful-02
>>>     
>>
>> Exactly. This prefix has implied semantics, and worse, it has
>> *ambiguous* implied semantics: one version for NAT[-PT|64]
>> and another for the dual-stack socket API.
>>
>> For NAT64, I think we're reducing topological flexibility by using this
>> prefix, as well as ignoring the ambiguity. If an arbitrary prefix is
>> allowed, the NAT64 doesn't have to be in the same administrative domain
>> as the host.
>>   
> 
> why would it have to be in the same domain as the host if we use the
> v4-mapped prefix?

Well, it's really a rather strange sort of anycast prefix, and I can't
see ISPs being willing to carry explicit routes for it from other ISPs.
Obviously it's technically possible, but I don't see it as likely
to happen.

>> I suggest therefore having a default prefix plus the option to discover
>> or configure an alternative.
>>
>>   
> but if we use other prefix than the v4-mapped prefix, it is not in the
> default policy table and then we loose the capability mentioned by Dave
> of automatically preffering native connectivity in dual stack hosts,
> which i find very attractive

Agreed, unless there is a non-default policy in place.

> 
> OTOH, an additional fear that i have using a single globa prefix for
> respresenting the whole v4 address space is that we may end up needing
> to use more specifics, if we want to reach different parts of the v4
> internet through different routes, hence importing the v4 routing table
> to v6, but i don't know if you think there is any ground for this
> concern...?

Well, we had exactly that concern when designing 6to4, which is why
nothing more specific than 2002::/16 is supposed to be advertised.
You can always write a MUST NOT and hope people obey it ;-)

But 6to4 breaks when the IPv4 network fragments into IPv4 islands.
I'm not sure that we want NAT64 to break then.

   Brian

_______________________________________________
Behave mailing list
Behave@ietf.org
https://www.ietf.org/mailman/listinfo/behave

v2.23.0 | Report a Bug | By Email