IETF Logo Mail Archive

Re: [BEHAVE] Home NAPT44 - How many ports?

"Rajiv Asati (rajiva)" <rajiva@cisco.com> Wed, 05 June 2013 19:07 UTC

Return-Path: <rajiva@cisco.com>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AE2121F9691; Wed, 5 Jun 2013 12:07:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.849
X-Spam-Level:
X-Spam-Status: No, score=-9.849 tagged_above=-999 required=5 tests=[AWL=-0.450, BAYES_00=-2.599, J_CHICKENPOX_33=0.6, J_CHICKENPOX_83=0.6, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ntWVzFDX7n0N; Wed, 5 Jun 2013 12:06:59 -0700 (PDT)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) by ietfa.amsl.com (Postfix) with ESMTP id B721121F918C; Wed, 5 Jun 2013 12:05:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2860; q=dns/txt; s=iport; t=1370459109; x=1371668709; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=2GshIMoSvnWIY4eCNh2XLvAdjstYt3mbx9PeWg9Ijk4=; b=mw7aEgHHwxtpeRgshM2GZW7Ta4GB/Yb1TbCqgU49zXpacIBfV0xPjoMm fXz4GQPgCCaQbYoD8fi4HXHaJ5AxR38YAYYCgZ6UlmgZ9R+mj5E1w0XvN 8OUm1YcsJBhRaku9KyKxii3JLZd+PgspVfPgqn5S4nk5eYE7aFvWdEWhO c=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AhwFAFaLr1GtJXG+/2dsb2JhbABagwkwvzh/FnSCIwEBAQQBAQE3NAsMBAIBCBEBAwEBAQoUCQcnCxQDBggCBAENBQgTA4dvDL1SjnoGKwcGgnRhA6h/gw+CJw
X-IronPort-AV: E=Sophos;i="4.87,809,1363132800"; d="scan'208";a="219046649"
Received: from rcdn-core2-3.cisco.com ([173.37.113.190]) by rcdn-iport-1.cisco.com with ESMTP; 05 Jun 2013 19:04:44 +0000
Received: from xhc-aln-x11.cisco.com (xhc-aln-x11.cisco.com [173.36.12.85]) by rcdn-core2-3.cisco.com (8.14.5/8.14.5) with ESMTP id r55J4iqv030246 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Wed, 5 Jun 2013 19:04:44 GMT
Received: from xmb-rcd-x06.cisco.com ([169.254.6.154]) by xhc-aln-x11.cisco.com ([173.36.12.85]) with mapi id 14.02.0318.004; Wed, 5 Jun 2013 14:04:44 -0500
From: "Rajiv Asati (rajiva)" <rajiva@cisco.com>
To: kaname nishizuka <kaname@nttv6.jp>, "Reinaldo Penno (repenno)" <repenno@cisco.com>
Thread-Topic: [BEHAVE] Home NAPT44 - How many ports?
Thread-Index: Ac5h7Gh9xwUId/SJTdSA920KKgIqlAAA9zuwAAkCoAAAB6fzgP//zuwAgABQeYCAAEZ/gA==
Date: Wed, 05 Jun 2013 19:04:43 +0000
Message-ID: <B14A62A57AB87D45BB6DD7D9D2B78F0B116D33C0@xmb-rcd-x06.cisco.com>
References: <45A697A8FFD7CF48BCF2BE7E106F0604090A0A82@xmb-rcd-x04.cisco.com> <51AF805D.4000101@nttv6.jp>
In-Reply-To: <51AF805D.4000101@nttv6.jp>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.89.2.227]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "v6ops@ietf.org" <v6ops@ietf.org>, "behave@ietf.org" <behave@ietf.org>, "Poscic, Kristian (Kristian)" <kristian.poscic@alcatel-lucent.com>, "Softwires-wg list (softwires@ietf.org)" <softwires@ietf.org>, "Erik Kline (ek@google.com)" <ek@google.com>
Subject: Re: [BEHAVE] Home NAPT44 - How many ports?
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jun 2013 19:07:05 -0000

Kaname-san,

That's a good suggestion, though the captured data suggests that UDP NAT exhaustion is not a problem, but TCP NAT is.


Cheers,
Rajiv


> -----Original Message-----
> From: kaname nishizuka [mailto:kaname@nttv6.jp]
> Sent: Wednesday, June 05, 2013 2:16 PM
> To: Reinaldo Penno (repenno)
> Cc: Michael Richardson; v6ops@ietf.org; Softwires-wg list
> (softwires@ietf.org); Poscic, Kristian (Kristian); behave@ietf.org; Erik Kline
> (ek@google.com); Rajiv Asati (rajiva)
> Subject: Re: [BEHAVE] Home NAPT44 - How many ports?
> 
> 
> With regard to the DNS packets, shortening the time-out of NAT table is
> another good solution.
> 
> In larger environment, we tested that when the time-out of DNS was
> shortened to 3sec, the impact of such DNS requests was much smaller than
> TCP sessions.
> 3 sec is sufficient  round-trip time in general situation.
> I don't think it's necessary to place a recursive DNS server inside the CGN.
> 
> Though there are differences between Home NAPT44 and CGN, it will work
> well in both case.
> That is because there are many devices in home and those seldom access
> the web site within a short time simultaneously.
> 
> regards,
> --
> kaname
> 
> (2013/06/06 1:27), Reinaldo Penno (repenno) wrote:
> >
> > On 6/5/13 1:23 PM, "Michael Richardson" <mcr+ietf@sandelman.ca>
> wrote:
> >
> >>>>>>> "repenno" == repenno  <Reinaldo> writes:
> >>     repenno> On the other hand, as Rajiv captured,the number of
> >>     repenno> UDP sessions can be much larger than the number of
> >>     repenno> TCP. Because the way
> >>     repenno> dynamic webpages are constructed today, there are
> sometimes
> >>     repenno> literally 100s
> >>     repenno> of DNS requests to download a single page.
> >>
> >> If one is doing CGN, wouldn't it be reasonable to point customers' at
> >> a recursive DNS server with an interface inside the CGN?
> > Yes. That's what I suggest. But some people use, say, Google's
> > DNS/OpenDns/etc and in some other cases the network is not setup
> correctly.
> >
> >> This seems to also suggest that having a *caching* recursive DNS(SEC,
> >> HOMENET+, mDNS+) server inside the customer router is also a big win.
> > Yes, it is.
> >
> >> --
> >> ]               Never tell me the odds!                 | ipv6 mesh
> >> networks [
> >> ]   Michael Richardson, Sandelman Software Works        | network
> >> architect  [
> >> ]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails
> >>    [
> >>
> > _______________________________________________
> > Behave mailing list
> > Behave@ietf.org
> > https://www.ietf.org/mailman/listinfo/behave
> 
> 
> --
> ----
> Kaname Nishizuka
> Innovative Architecture Center
> NTT Communications Corporation
> +81-50-3812-4704

v2.23.0 | Report a Bug | By Email