IETF Logo Mail Archive

Re: [BEHAVE] One comment on draft-korhonen-edns0-synthesis-flag-01

"Dan Wing" <dwing@cisco.com> Tue, 05 October 2010 18:11 UTC

Return-Path: <dwing@cisco.com>
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5C8BC3A6D69 for <behave@core3.amsl.com>; Tue, 5 Oct 2010 11:11:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.299
X-Spam-Level:
X-Spam-Status: No, score=-110.299 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1lJt12fpTzTD for <behave@core3.amsl.com>; Tue, 5 Oct 2010 11:11:34 -0700 (PDT)
Received: from sj-iport-5.cisco.com (sj-iport-5.cisco.com [171.68.10.87]) by core3.amsl.com (Postfix) with ESMTP id C8FE13A6D7B for <behave@ietf.org>; Tue, 5 Oct 2010 11:11:33 -0700 (PDT)
Authentication-Results: sj-iport-5.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av0EABUHq0yrR7H+/2dsb2JhbACVVYxpcalKnESFRwSEUYtX
X-IronPort-AV: E=Sophos;i="4.57,285,1283731200"; d="scan'208";a="264926745"
Received: from sj-core-2.cisco.com ([171.71.177.254]) by sj-iport-5.cisco.com with ESMTP; 05 Oct 2010 18:12:19 +0000
Received: from dwingWS (dhcp-128-107-105-96.cisco.com [128.107.105.96]) by sj-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id o95ICE9s025507; Tue, 5 Oct 2010 18:12:14 GMT
From: Dan Wing <dwing@cisco.com>
To: mohamed.boucadair@orange-ftgroup.com, 'Rémi Després' <remi.despres@free.fr>, teemu.savolainen@nokia.com
References: <AANLkTims-Jo83uddVzb-fjiF12oLicY2rEMMDNNMKg4X@mail.gmail.com> <068001cb63f4$36347a50$a29d6ef0$@com> <EFC90BF77CDE8E4983351B6D9FCFD4DF03ED52@TK5EX14MBXW653.wingroup.windeploy.ntdev.microsoft.com> <18034D4D7FE9AE48BF19AB1B0EF2729F5F03ED089B@NOK-EUMSG-01.mgdnok.nokia.com> <883C56A8-6D8B-4600-B264-3B64236B6EE3@free.fr> <32742_1286280426_4CAB14EA_32742_16316_1_94C682931C08B048B7A8645303FDC9F327C0F6B2A5@PUEXCB1B.nanterre.francetelecom.fr>, <099101cb64b2$e1ac1aa0$a5044fe0$@com> <17340_1286301973_4CAB6915_17340_41755_1_94C682931C08B048B7A8645303FDC9F327C0D31EE5@PUEXCB1B.nanterre.francetelecom.fr>
In-Reply-To: <17340_1286301973_4CAB6915_17340_41755_1_94C682931C08B048B7A8645303FDC9F327C0D31EE5@PUEXCB1B.nanterre.francetelecom.fr>
Date: Tue, 05 Oct 2010 11:12:14 -0700
Message-ID: <0a4201cb64b8$d6611dc0$83235940$@com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Actkcb8TpkC3VI1tS5+/vPYloJ+I8AAEp4uAAAt9xWAAAUeI2AAATnYw
Content-Language: en-us
Cc: behave@ietf.org, washam.fan@gmail.com
Subject: Re: [BEHAVE] One comment on draft-korhonen-edns0-synthesis-flag-01
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Oct 2010 18:11:36 -0000

> -----Original Message-----
> From: mohamed.boucadair@orange-ftgroup.com
> [mailto:mohamed.boucadair@orange-ftgroup.com]
> Sent: Tuesday, October 05, 2010 11:02 AM
> To: Dan Wing; 'Rémi Després'; teemu.savolainen@nokia.com
> Cc: behave@ietf.org; washam.fan@gmail.com
> Subject: RE : [BEHAVE] One comment on draft-korhonen-edns0-synthesis-
> flag-01
> 
> Dear Dan, all,
> 
> Apologies for the confusion.
> 
> I used "domain" to denote an administrative network domain (also called
> an Autonomous System).

As in, a BGP AS?

So, you are suggesting we (BEHAVE) should not concern itself with a
DNS64+NAT64
operated by an entity other than the ISP providing IPv6-only network
connectivity.

-d


> Cheers,
> Med
> 
> ________________________________________
> De : Dan Wing [dwing@cisco.com]
> Date d'envoi : mardi 5 octobre 2010 19:29
> À : BOUCADAIR Mohamed NCPI/NAD/TIP; 'Rémi Després';
> teemu.savolainen@nokia.com
> Cc : behave@ietf.org; washam.fan@gmail.com
> Objet : RE: [BEHAVE] One comment on draft-korhonen-edns0-synthesis-
> flag-01
> 
> > -----Original Message-----
> > From: mohamed.boucadair@orange-ftgroup.com
> > [mailto:mohamed.boucadair@orange-ftgroup.com]
> > Sent: Tuesday, October 05, 2010 5:07 AM
> > To: Rémi Després; teemu.savolainen@nokia.com
> > Cc: behave@ietf.org; washam.fan@gmail.com; dwing@cisco.com
> > Subject: RE: [BEHAVE] One comment on draft-korhonen-edns0-synthesis-
> > flag-01
> >
> >
> > Dear Rémi, all,
> >
> > Please see inline.
> >
> > Cheers,
> > Med
> >
> > -----Message d'origine-----
> > De : behave-bounces@ietf.org [mailto:behave-bounces@ietf.org] De la
> > part de Rémi Després
> > Envoyé : mardi 5 octobre 2010 11:00
> > À : teemu.savolainen@nokia.com
> > Cc : behave@ietf.org; washam.fan@gmail.com; dwing@cisco.com
> > Objet : Re: [BEHAVE] One comment on draft-korhonen-edns0-synthesis-
> > flag-01
> >
> > Hi Teemu.
> >
> > 1.
> > Isn't the format of the proposed option a subject that needs
> > standardization? (See (*) below.)
> >
> > 2.
> > An alternative could be a DHCP option that provides the "NAT64
> prefix"
> > (the WKP or NSP prefix used by NAT64s to synthesize IPv6 addresses of
> > external IPv4 hosts). It could IMHO coexist with the DNS based
> solution
> > of draft-korhonen to facilitate deployments where DHCP servers are
> > easier to upgrade than DNS servers.
> >
> > 3.
> > In hosts that access Internet via IPv6-only-routing networks, knowing
> > the NAT64 prefix is indeed useful to synthesize IPv6 addresses of
> IPv4
> > referrals, as indicated in the draft. But it also permits hosts to
> > recognize which incoming connections were originated by IPv4-only
> > remote hosts. This permits to present them as IPv4 connections as the
> > socket API.
> >
> > Med: This approach can be useful to avoid a NAT64 only if the NAT64
> is
> > located in the same domain as the IPv6 client.
> 
> I don't understand what you're referring to when you say "this
> approach" --
> is that referring to only (3)?  Or to 1, 2, and 3?
> 
> I also don't understand what is meant by 'same domain of the IPv6
> client',
> specifically the phrase 'same domain'.  Let's consider a DNS64 and
> NAT64
> operated by some entity on the Internet as a service, such as operated
> SixXS (for example) or operated by alumni.example.edu.  I chose those
> examples because it is clear that DNS64 and NAT64 is not operated by
> the same Internet Service Provider that is providing IPv6-only access
> service to the IPv6-only host.
> 
> Are those services in the same domain as the IPv6-only client?
> 
> Does the BEHAVE working group consider those NAT64+DNS64 services
> in scope?  Or important to consider when evaluating a solution?
> 
> -d
> 
> 
> 
> > Please refer to
> > http://tools.ietf.org/html/draft-xu-behave-hybrid-type-prefix-
> > 00#section-1.1 for more details. Note that referrals will fail if the
> > synthesised IPv6 address does not belong to the same domain as the
> > IPv6-only host.
> > FWIW, a DHCPv6 option to provision an IPv6-enabled host with an IPv6
> > prefix and a format to use when synthesising an IPv4-Converted IPv6
> > address is described in http://tools.ietf.org/html/draft-boucadair-
> > dhcpv6-shared-address-option-01#section-4 (this option has been
> defined
> > for encapsulation schemes where we don't have the referral issue. New
> > format type values can be defined according to the behave address
> > format ID).
> >
> > Point 3, is IMHO a simple approach to eliminate conflicts between
> > NAT64s and IPv4-only or dual-stack applications.
> >
> > Regards,
> > RD
> >
> >
> >
> >
> > Le 4 oct. 2010 à 22:41, <teemu.savolainen@nokia.com>
> > <teemu.savolainen@nokia.com> a écrit :
> > > ...
> > > The idea behind this draft is to describe the lightest solution
> > possible and one that does not require new elements on the network
> (to
> > access networks or to the server side). I think this could be
> > implemented e.g. in a browser that wishes to increase its chances of
> > success when encountering IPv4 literals in IPv6-only networks, or
> e.g.
> > by a DNS resolver service in an OS. Introducing STUN would require
> that
> > someone would have to operate it and it would introduce additional
> > protocol into play (e.g. support to browser/OS).
> > >
> > > The DNS approach would probably also allow some level of caching
> (in
> > a host or in a recursive DNS server) hence generating less traffic.
> >
> > > The I-D is Informational (for now) as the lightweight solution
> should
> > not require any standards work:)
> >
> > (*)
> >
> > > (If IANA would define a well-known name should it then be STD?) The
> > other, more explicit and more reliable, proposals are then the ones
> > that require something from the infrastructure (and are for STD).
> > >
> > > Best regards,
> > >
> > > Teemu
> > >
> > >> -----Original Message-----
> > >> From: behave-bounces@ietf.org [mailto:behave-bounces@ietf.org] On
> > >> Behalf Of ext Christian Huitema
> > >> Sent: 04. lokakuuta 2010 22:36
> > >> To: Dan Wing; 'Washam Fan'; behave@ietf.org
> > >> Subject: Re: [BEHAVE] One comment on draft-korhonen-edns0-
> synthesis-
> > >> flag-01
> > >>
> > >> Dan,
> > >>
> > >> I suppose your comment now applies to draft-savolainen-heuristic-
> > nat64-
> > >> discovery-00. The draft describes a heuristic for discovering the
> > local
> > >> NAT64, and the prefix used for address translation -- WKP or NSP.
> > The
> > >> draft does so by performing a "DNS query to a well-known IPv4 only
> > >> domain name."
> > >>
> > >> My main objection to this is the reliance on DNS for discovering
> > >> network connectivity information. This will fail if the NAT64 does
> > not
> > >> operate a DNS64 translator, or if the local host gets its
> addresses
> > >> from a different DNS server than the one tied to the NAT64, e.g.
> > >> something like Open DNS.
> > >>
> > >> Did the authors look at using STUN, or a variant of STUN, to
> perform
> > >> this heuristic discovery?
> > >>
> > >> -- Christian Huitema
> > >>
> > >>
> > >> _______________________________________________
> > >> Behave mailing list
> > >> Behave@ietf.org
> > >> https://www.ietf.org/mailman/listinfo/behave
> > > _______________________________________________
> > > Behave mailing list
> > > Behave@ietf.org
> > > https://www.ietf.org/mailman/listinfo/behave
> >
> >
> > _______________________________________________
> > Behave mailing list
> > Behave@ietf.org
> > https://www.ietf.org/mailman/listinfo/behave
> >
> > *********************************
> > This message and any attachments (the "message") are confidential and
> > intended solely for the addressees.
> > Any unauthorised use or dissemination is prohibited.
> > Messages are susceptible to alteration.
> > France Telecom Group shall not be liable for the message if altered,
> > changed or falsified.
> > If you are not the intended addressee of this message, please cancel
> it
> > immediately and inform the sender.
> > ********************************
> 
> 
> *********************************
> This message and any attachments (the "message") are confidential and
> intended solely for the addressees.
> Any unauthorised use or dissemination is prohibited.
> Messages are susceptible to alteration.
> France Telecom Group shall not be liable for the message if altered,
> changed or falsified.
> If you are not the intended addressee of this message, please cancel it
> immediately and inform the sender.
> ********************************

v2.23.0 | Report a Bug | By Email