Re: [BEHAVE] two ideas - draft-wing-behave-dns64-config-02
"Dan Wing" <dwing@cisco.com> Mon, 01 March 2010 19:57 UTC
Return-Path: <dwing@cisco.com>
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8DC2928C184 for <behave@core3.amsl.com>; Mon, 1 Mar 2010 11:57:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uSXF1HIHkRVS for <behave@core3.amsl.com>; Mon, 1 Mar 2010 11:57:55 -0800 (PST)
Received: from rtp-iport-1.cisco.com (rtp-iport-1.cisco.com [64.102.122.148]) by core3.amsl.com (Postfix) with ESMTP id 7C5393A8AF1 for <behave@ietf.org>; Mon, 1 Mar 2010 11:57:55 -0800 (PST)
Authentication-Results: rtp-iport-1.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AtsGAFKri0tAZnwN/2dsb2JhbACHToESkiJzpFOXXIJOgi0Egxc
X-IronPort-AV: E=Sophos;i="4.49,561,1262563200"; d="scan'208";a="89667580"
Received: from rtp-core-2.cisco.com ([64.102.124.13]) by rtp-iport-1.cisco.com with ESMTP; 01 Mar 2010 19:57:55 +0000
Received: from dwingwxp01 (sjc-vpn5-31.cisco.com [10.21.88.31]) by rtp-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id o21Jvsxk024088; Mon, 1 Mar 2010 19:57:55 GMT
From: Dan Wing <dwing@cisco.com>
To: 'Dacheng Zhang' <zhangdacheng@huawei.com>, behave@ietf.org
References: <019001cab785$62d06b80$070d6f0a@china.huawei.com>
Date: Mon, 01 Mar 2010 11:57:54 -0800
Message-ID: <04e701cab979$7bdc0a80$667a150a@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
Thread-Index: Acq3hWDiPhSOgCmZS+iRRNm0BifuwQB8v9fQ
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350
In-Reply-To: <019001cab785$62d06b80$070d6f0a@china.huawei.com>
Subject: Re: [BEHAVE] two ideas - draft-wing-behave-dns64-config-02
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Mar 2010 19:57:56 -0000
> -----Original Message----- > From: behave-bounces@ietf.org > [mailto:behave-bounces@ietf.org] On Behalf Of Dacheng Zhang > Sent: Saturday, February 27, 2010 12:18 AM > To: behave@ietf.org > Subject: [BEHAVE] two ideas > > Hello, everybody: > > > > After reading draft-wing-behave-dns64-config-02, I have two > ideas here, and hope to get your kindly comments: > > > > 1. In section 3.2, it is suggested to use DNSsec to disable > DNS64. But in order to deal with the circumstance where > synthesized addresses have been already encapsulated in AAAA > records, I don't understand what is meant by "have been already encapsulated"; DNS64 does the synthesis on-the-fly, so they are not "already" synthesized AAAA responses. Could you clarify? > maybe it is a good idea to specify a new flag in the > DNS answer containing an AAAA RR. The flag indicates that a > synthesized address is contained in the RR. An updated > dual-stack host can recognize it while conventional ones will > just ignore the flag. I vaguely recall there was a proposal to do that, but I can't remember the name of the I-D or the section of some other I-D. I can certainly add that to draft-wing-behave-dns64-config, and I believe it would have positives and negatives nearly identical to Section 3.2, namely: Advantages: * It is simple Disadvantages: * It requires dual-stack host to understand the new flag if if it wants to avoid using the NAT64 Are there other advantages or disadvantages? I'm not sure of the implications of the host transitioning from dual-stack to IPv6-only. Thoughts on that? > 2. In the sections 3.5 and 3.6, solutions of using DHCP to > identify dual stack host are introduced. I want to know > whether it is another feasible solution to define an option > for dual stack hosts. If such an option is attached in a > request from a host, the DHCP server will ensure that the > host has a dual-stack. It seems reasonable for the DHCP Request to indicate "I am dual-stack". Advantages: * Simple Disadvantages: * It requires dual-stack host to include this new DHCP option if it wants to avoid using the NAT64 How would a host transition from dual-stack to IPv6-only in that case? It seems that if it releases its IPv4 address, and becomes IPv6-only, it would need to re-DISCOVER, and indicate "I am not dual stack" (or perhaps not send the option?). -d > > > > What do you think of them? > > > > BR ^_^ > > > > Dacheng > >
- [BEHAVE] two ideas Dacheng Zhang
- Re: [BEHAVE] two ideas mohamed.boucadair
- Re: [BEHAVE] two ideas - draft-wing-behave-dns64-… Dan Wing