Re: [BEHAVE] proprietary implementation v.s standardisedprotocols//re: draft-xu-behave-nat-state-sync-00

Simon Perreault <simon.perreault@viagenie.ca> Tue, 01 December 2009 19:15 UTC

Return-Path: <simon.perreault@viagenie.ca>
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 901933A6829 for <behave@core3.amsl.com>; Tue, 1 Dec 2009 11:15:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.486
X-Spam-Level:
X-Spam-Status: No, score=-2.486 tagged_above=-999 required=5 tests=[AWL=0.114, BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1XCpBcayVhQP for <behave@core3.amsl.com>; Tue, 1 Dec 2009 11:15:52 -0800 (PST)
Received: from jazz.viagenie.ca (jazz.viagenie.ca [IPv6:2620:0:230:8000::2]) by core3.amsl.com (Postfix) with ESMTP id A62263A696C for <behave@ietf.org>; Tue, 1 Dec 2009 11:15:49 -0800 (PST)
Received: from ringo.viagenie.ca (ringo.viagenie.ca [IPv6:2620:0:230:c000::67]) by jazz.viagenie.ca (Postfix) with ESMTPA id D620321521; Tue, 1 Dec 2009 14:15:40 -0500 (EST)
Message-ID: <4B156B5C.7060800@viagenie.ca>
Date: Tue, 01 Dec 2009 14:15:40 -0500
From: Simon Perreault <simon.perreault@viagenie.ca>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.4pre) Gecko/20090922 Fedora/3.0-3.9.b4.fc12 Thunderbird/3.0b4
MIME-Version: 1.0
To: Dan Wing <dwing@cisco.com>
References: <bcff0fba0911302332ub498269qabbdca8341b018d5@mail.gmail.com> <002f01ca7265$b6ededb0$d40c6f0a@china.huawei.com><097401ca72aa$0828aa50$c3f0200a@cisco.com> <4B1559E6.4060003@viagenie.ca> <0a0701ca72b5$afb51e10$c3f0200a@cisco.com>
In-Reply-To: <0a0701ca72b5$afb51e10$c3f0200a@cisco.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: behave@ietf.org
Subject: Re: [BEHAVE] proprietary implementation v.s standardisedprotocols//re: draft-xu-behave-nat-state-sync-00
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Dec 2009 19:15:57 -0000

Dan Wing wrote, on 2009-12-01 13:39:
> My point is that it shouldn't make things worse.  If the functioning
> NAT64's prefix changes and the old prefix no longer works, that makes
> things worse -- it effectively causes IPv6 addresses to change.  That
> breaks not just applications that are sensitive to IP address changes, 
> but also existing TCP sessions.  SCTP handles IP address changes
> better, but there is scant deployment of SCTP yet (due to many 
> reasons).

I don't understand where you're going.

There are two kinds of breakage:

1. One NAT64 box in a cluster* dies. No impact beyond the fact that you now have
a dead box that needs replacing.

2. A whole cluster dies. This is not pain-free, and it's not designed to be.
Suddenly, you need to redirect all clients to the new Pref64::/n. There are
known issues with that, but this event will happen rarely enough that it's worth
the risk.

If you're really afraid of breakage #2, you have to use bigger clusters. But
that has disadvantages too. It ends up being an operational issue. Tradeoffs, etc.

Another idea: have another cluster "take over" the prefix of the dead one. Use
routing to redirect clients to the new cluster. Tradeoffs, etc., again.

My point is that #2 doesn't need standardization. The solutions are diverse and
everyone will be dealing with it differently. On the other hand, #1 is a well
understood problem, with a well understood solution, with various proprietary
incarnations in use right now (hint! hint!).


* Cluster = A set of synchronized NAT64 boxes sharing a single Pref64::/n.

Cheers,
Simon
-- 
DNS64 open-source   --> http://ecdysis.viagenie.ca
STUN/TURN server    --> http://numb.viagenie.ca
vCard 4.0           --> http://www.vcarddav.org