IETF Logo Mail Archive

Re: [BEHAVE] I-D Action: draft-wing-behave-dhcpv6-reconfigure-00.txt

Brian E Carpenter <brian.e.carpenter@gmail.com> Sun, 06 November 2011 20:20 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C53821F853A for <behave@ietfa.amsl.com>; Sun, 6 Nov 2011 12:20:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.489
X-Spam-Level:
X-Spam-Status: No, score=-103.489 tagged_above=-999 required=5 tests=[AWL=0.110, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ta8Ql-F33XAj for <behave@ietfa.amsl.com>; Sun, 6 Nov 2011 12:20:02 -0800 (PST)
Received: from mail-iy0-f172.google.com (mail-iy0-f172.google.com [209.85.210.172]) by ietfa.amsl.com (Postfix) with ESMTP id BCF6C21F851A for <behave@ietf.org>; Sun, 6 Nov 2011 12:20:02 -0800 (PST)
Received: by iaeo4 with SMTP id o4so6455923iae.31 for <behave@ietf.org>; Sun, 06 Nov 2011 12:20:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=YWThW+88DedbKWTp9DPXZN0a4TK/hf9sxzvqdw62WG8=; b=WR1nf+kV229n+ofDgy9rNEsbF4s31TuvsM0u8j8DoU2zJW39uExpOG2Lofr80VdEk1 AnzvgRzSRNuD8pQ52B/ckwxUEblu+RrvogN0QXzjrKhR3O03+aNdBdobc1m5ETqFbyR2 5OKoCiS5gls9RfaBdYGsHz8Ehr665e+7L46Kk=
Received: by 10.42.135.66 with SMTP id o2mr39960413ict.0.1320610801360; Sun, 06 Nov 2011 12:20:01 -0800 (PST)
Received: from [130.216.38.124] (stf-brian.sfac.auckland.ac.nz. [130.216.38.124]) by mx.google.com with ESMTPS id 3sm30022571pbx.14.2011.11.06.12.19.58 (version=SSLv3 cipher=OTHER); Sun, 06 Nov 2011 12:19:59 -0800 (PST)
Message-ID: <4EB6EBEB.2010600@gmail.com>
Date: Mon, 07 Nov 2011 09:19:55 +1300
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Dan Wing <dwing@cisco.com>
References: <CAD4C50C.120E6%praspati@cisco.com> <4EAF0384.1050002@gmail.com> <1be201cc98b3$249d7a90$6dd86fb0$@com>
In-Reply-To: <1be201cc98b3$249d7a90$6dd86fb0$@com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Cc: 'Prashanth Patil' <praspati@cisco.com>, behave@ietf.org
Subject: Re: [BEHAVE] I-D Action: draft-wing-behave-dhcpv6-reconfigure-00.txt
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Nov 2011 20:20:03 -0000

On 2011-11-02 05:27, Dan Wing wrote:
>> -----Original Message-----
>> From: behave-bounces@ietf.org [mailto:behave-bounces@ietf.org] On
>> Behalf Of Brian E Carpenter
>> Sent: Monday, October 31, 2011 1:22 PM
>> To: Prashanth Patil
>> Cc: behave@ietf.org
>> Subject: Re: [BEHAVE] I-D Action: draft-wing-behave-dhcpv6-reconfigure-
>> 00.txt
>>
>> I don't get it. If a host is dual stacked it can be configured with
>> any DNS server, as long as it is not a DNS64. If you can have a
>> DNS64 directly visible, and a v4-only DNS server directly visible,
>> you are on a dual stack network, so you can also have a dual stack
>> DNS server directly visible.
> 
> It is anticipated that a network will have a mix of IPv4-only,
> IPv6-only, and dual-stack hosts.  The hosts don't know if they
> need a 'normal' DNS server or a DNS64, nor do we have a way
> to tell them the difference.

Indeed not, it is for the DHCPv6 server to ensure that the IPv6-only
hosts are pointed to the abnormal DNS server (i.e. the DNS64 server).
I'm left very uncomfortable by this kludge. Forcing dual-stack hosts
to resolve DNS via IPv4 seems backwards.

Also, how will this help on a network that is using RFC 6106?
DHCPv6 isn't mandatory afaik.

    Brian

> 
> This I-D attempts to provide a solution to that problem of a 
> network with a mix of hosts that need to be configured with a 
> 'normal' DNS server and DNS64 server.  We believe the underlying 
> idea (to "poke" a host to tell it something changed on the 
> network) appears to have other applicability beyond the DNS/DNS64
> use-case, as well.
> 
> -d
> 
> 
>> Regards
>>    Brian Carpenter
>>
>> On 2011-11-01 05:05, Prashanth Patil wrote:
>>> Hi Brian,
>>> The idea behind the proposal is to provision a means by which traffic
>> is
>>> sent using IPv4 and not through the IPv6/IPv4 translator. The
>> advantage
>>> being that if NAT44 and NAT64 are deployed on the same network, it is
>>> preferable to use NAT44 over NAT64 because of scale, performance and
>>> application incompatibility issues (e.g., FTP) [RFC6384].
>>> A "normal" DNS server does not have DNS64 capability. The IPv4-mapped
>>> address for this "normal" server ensures that it can be reached only
>> by
>>> IPv4š. So if a host is IPv4-only, it will send a DNS query to the
>> "normal"
>>> server just to get the A records. If the host is dual-stack it will
>> also
>>> send a DNS query to the "normal" server to get both A and AAAA
>> records. If
>>> the destination address is an IPv4 address,  dual-stack host just
>> gets A
>>> records but not synthesized AAAA records. So this technique will
>> ensure that
>>> IPv4 is preferred over the IPv6/IPv4 translator prefix and also gives
>> native
>>> IPv6 higher precedence than IPv4.
>>> If the host happens to be IPv6 only, then it cannot reach the
>> "normal"
>>> server because it has IPv4-mapped prefix as explained previously. So
>> IPv6
>>> only host can only reach DNS64 server. So this host will send the DNS
>> query
>>> to DNS64 to get AAAA records. Based on the destination address the
>> host will
>>> get IPv4-embedded IPv6 address or just the global IPv6 address.
>>>
>>> šNote: From RFC 6052
>>> ³When presented with the IPv4-mapped prefix, current versions of
>> Windows and
>>> Mac OS generate IPv4 packets, but will not send IPv6 packets.²
>>>
>>> -Prashanth
>>>
>>> On 22/10/11 6:20 AM, Brian E Carpenter wrote:
>>>> I have a basic question. Why does this draft define a 'normal'
>>>> DNS server as one having an IPv4-mapped IPv6 address?
>>>>
>>>> That seems like a completely *abnormal* DNS server for a dual
>>>> stack host. A dual stack host should normally have a DNS server
>>>> with a regular IPv6 address that will return both A and AAAA
>>>> records if they exist. Normally the server will be dual stacked
>>>> anyway, and will return exactly the same response whether the
>>>> query arrives via v4 or v6.
>>>>
>>>> A DNS server which only has an IPv4 address will also return
>>>> A and AAAA records if they exist, so there is absolutely no
>>>> difference as far as the dual stack host is concerned anyway.
>>>> So what is the point in using the IPv4-mapped address?
>>>>
>>>> Regards
>>>>     Brian
>>>>
>>>> On 2011-10-18 11:17, internet-drafts@ietf.org wrote:
>>>>> A New Internet-Draft is available from the on-line Internet-Drafts
>>>>> directories.
>>>>>
>>>>>     Title           : DHCPv6 Dynamic Re-Configuration
>>>>>     Author(s)       : Dan Wing
>>>>>                            Tirumaleswar Reddy
>>>>>                            Prashanth Patil
>>>>>     Filename        : draft-wing-behave-dhcpv6-reconfigure-00.txt
>>>>>     Pages           : 10
>>>>>     Date            : 2011-10-17
>>>>>
>>>>>     Some networks are expected to support IPv4-only, dual-stack,
>> and
>>>>>     IPV6-only hosts at the same time.  This makes prioritizing the
>> DNS
>>>>>     servers for hosts tricky due to a heterogeneous mix of protocol
>>>>>     stacks causing optimal behavior to occur only when the host
>> stack re-
>>>>>     initializes.  The networks infrastructure is usually well
>> equipped to
>>>>>     be aware of single/dual-stack nature of hosts.  This
>> specification
>>>>>     extends DHCPv6 so that the DHCPv6 Relay Agent can dynamically
>>>>>     influence the priority of DNS servers provided to the host, so
>> that
>>>>>     the host can use the optimal DNS server for resolution.
>>>>>
>>>>>
>>>>> A URL for this Internet-Draft is:
>>>>> http://www.ietf.org/internet-drafts/draft-wing-behave-dhcpv6-
>> reconfigure-00.t
>>>>> xt
>>>>>
>>>>> Internet-Drafts are also available by anonymous FTP at:
>>>>> ftp://ftp.ietf.org/internet-drafts/
>>>>>
>>>>> This Internet-Draft can be retrieved at:
>>>>> ftp://ftp.ietf.org/internet-drafts/draft-wing-behave-dhcpv6-
>> reconfigure-00.tx
>>>>> t
>>>>> _______________________________________________
>>>>> I-D-Announce mailing list
>>>>> I-D-Announce@ietf.org
>>>>> https://www.ietf.org/mailman/listinfo/i-d-announce
>>>>> Internet-Draft directories: http://www.ietf.org/shadow.html
>>>>> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
>>>>>
>>>> _______________________________________________
>>>> Behave mailing list
>>>> Behave@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/behave
>>>
>>>
>> _______________________________________________
>> Behave mailing list
>> Behave@ietf.org
>> https://www.ietf.org/mailman/listinfo/behave
> 
>

v2.23.0 | Report a Bug | By Email