IETF Logo Mail Archive

Re: [BEHAVE] RFC6147 and RFC7208 interoperability issues

Keith Moore <moore@network-heretics.com> Mon, 07 February 2022 13:11 UTC

Return-Path: <moore@network-heretics.com>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 23D793A0E2E for <behave@ietfa.amsl.com>; Mon, 7 Feb 2022 05:11:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xYKcdXN6k211 for <behave@ietfa.amsl.com>; Mon, 7 Feb 2022 05:11:15 -0800 (PST)
Received: from wout1-smtp.messagingengine.com (wout1-smtp.messagingengine.com [64.147.123.24]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 84C883A0E2F for <Behave@ietf.org>; Mon, 7 Feb 2022 05:11:11 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.west.internal (Postfix) with ESMTP id 962F0320093A; Mon, 7 Feb 2022 08:11:08 -0500 (EST)
Received: from mailfrontend2 ([10.202.2.163]) by compute1.internal (MEProxy); Mon, 07 Feb 2022 08:11:08 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:date:date:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:sender:subject :subject:to:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm2; bh=Y+6Y6TJ/awsjTwDnrX1Tv+MCkNaQMfBerMX24hWfN Gg=; b=V3K9AYcxLeftMN+UTItv8UeTIWO7RNYxcxS1gNoilllterlNb2kvJ/JKH 9VQ3d27nzfhmfUEyJaltAVxFfXcXYKhpnj+HlKRM19MIzvMH+wL3y99eq5geW3bz hndqKxKc1LOwUMSoEiyoKu6j/Q0s0tA1YrIPdny82Z0lommYbpTrx8yE+Z036Z0p zL+V0390B0fUX0nEs5UAYbVE62CLLJ7/pC50x2/Kr/5VpjTZLWRxVmrZpEXScO2V GXvfHGC3sz864zSZEw1mWCPC2GJ3rucExJoH1M2GOBPuIKr57tCLzstlf1o++/fz Nyd2rj+fjoqXBkQHaJDs21uc6KPGA==
X-ME-Sender: <xms:axoBYnW3C16NbWp858wXxMnpxlPbySRMPaKMwIIjToK5mnytM9fZ5Q> <xme:axoBYvlWom_KWiwzZIAW2-ftcwTkteZt0m2huZzoFZmsH5E5RQhtvJod3oX0dewx1 y5Ep92HryMBbA>
X-ME-Received: <xmr:axoBYjYWL3XSVYgJ0O4C_0B_vUY4xHjsEKOqiCO82ivu4iMVd7Tnkr4YbxIuVkGF7cZ5>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvvddrheehgdegiecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmdenuc fjughrpegtgfgguffhjgffkfhfvffosehtqhhmtdhhtdejnecuhfhrohhmpefmvghithhh ucfoohhorhgvuceomhhoohhrvgesnhgvthifohhrkhdqhhgvrhgvthhitghsrdgtohhmqe enucggtffrrghtthgvrhhnpefftdevjeevhfelueekveelkeduledufeehiefgvdfhueeh ueeggffggefgueduheenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrih hlfhhrohhmpehmohhorhgvsehnvghtfihorhhkqdhhvghrvghtihgtshdrtghomh
X-ME-Proxy: <xmx:axoBYiVlrMX8S-owQH7Hh2WIqeWn9xwY1mMKlg7TOpCxJAvtZsI2Aw> <xmx:axoBYhkTpp1i4VBmM93twleeQTg2zeqL642eLb73xa_gB3UR9d5HiA> <xmx:axoBYvcz0R4pupreUCghwjevD0qYUNxcKavbXSbxUgWPJnlv0hjYDA> <xmx:bBoBYguE-EHIvC2rHm45w9Z8mPwcBuaqNIzqTfKLqs3TFN4pE63dhg>
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Mon, 7 Feb 2022 08:11:07 -0500 (EST)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (1.0)
From: Keith Moore <moore@network-heretics.com>
In-Reply-To: <5a74c013-64f4-381f-9cfc-fe9ee573abda@it.uc3m.es>
Date: Mon, 07 Feb 2022 08:11:02 -0500
Cc: Behave@ietf.org
Message-Id: <359D991D-44A2-4394-9F65-BD40597D554B@network-heretics.com>
References: <5a74c013-64f4-381f-9cfc-fe9ee573abda@it.uc3m.es>
To: marcelo bagnulo braun <marcelo@it.uc3m.es>
X-Mailer: iPhone Mail (18F72)
Archived-At: <https://mailarchive.ietf.org/arch/msg/behave/b5iFEI9DHUTW-tB4wsxhLdwXHII>
Subject: Re: [BEHAVE] RFC6147 and RFC7208 interoperability issues
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/behave/>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Feb 2022 13:11:20 -0000


Sent from my iPhone

> On Feb 7, 2022, at 1:40 AM, marcelo bagnulo braun <marcelo@it.uc3m.es> wrote:
> 
> My guess is that NAT was done wrong because the IETF decided against standardizing NATS in due time because it was a kludge that should not be done, maybe?

No I don’t think so.  I don’t think anyone ever figured out how to do NATs even close to “right”.  I tried to do so for many years, and never managed to solve some of the serious problems.  And of course by that time “wrong” NATs were so widely deployed that there was no hope of fixing them anyway.

Bottom line: NATs are inherently incompatible with the internet architecture and with any network architecture that offers near-complete interconnection between hosts.  And also inherently incompatible with DNS. 

The only reason that NATs have been able to survive is that they more-or-less worked with the web and email.  But they crippled many other applications.  Meanwhile email has since (to my great disappointment) been crippled in other ways, and the web is a security and privacy disaster, and it turns out that people need a wider variety of applications than the web and email anyway.  


> 
> NATs are reality (I hope we all agree with that). I guess it is more productive to try to provide guidance about how to make them as harmfull as possible rather that ignore them, provide no guidance and end up with all possible version of NATs, including the worst possible ones.

Saying that something is reality is no justification for keeping it.  I suppose it would be more precise to say that NATs have mindshare - lots of people think that NATs are just how the internet works.  But the problems with NATs and also with IPv4 are more widely understood than ever.  It’s time to abandon both and set an EOL date for the public IPv4 internet. 

Keith

v2.23.0 | Report a Bug | By Email