[Din] Dealing with NAT and other thoughts on what IPREF can do for DINRG
waldemar <waldemar@wdmsys.com> Tue, 21 November 2023 21:41 UTC
Return-Path: <waldemar@wdmsys.com>
X-Original-To: din@ietfa.amsl.com
Delivered-To: din@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CF8C8C14CF0D for <din@ietfa.amsl.com>; Tue, 21 Nov 2023 13:41:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=wdmsys.com header.b="l3gWXutK"; dkim=pass (2048-bit key) header.d=outbound.mailhop.org header.b="HRWuMQwJ"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gYSY8_8vbnzU for <din@ietfa.amsl.com>; Tue, 21 Nov 2023 13:41:09 -0800 (PST)
Received: from bee.elm.relay.mailchannels.net (bee.elm.relay.mailchannels.net [23.83.212.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE0B0C1519A4 for <din@irtf.org>; Tue, 21 Nov 2023 13:41:08 -0800 (PST)
X-Sender-Id: _forwarded-from|47.180.147.191
Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 037936C2D35 for <din@irtf.org>; Tue, 21 Nov 2023 21:41:08 +0000 (UTC)
Received: from outbound4v.ore.mailhop.org (unknown [127.0.0.6]) (Authenticated sender: duocircle) by relay.mailchannels.net (Postfix) with ESMTPA id AA2656C2E57 for <din@irtf.org>; Tue, 21 Nov 2023 21:41:07 +0000 (UTC)
ARC-Seal: i=2; s=arc-2022; d=mailchannels.net; t=1700602867; a=rsa-sha256; cv=pass; b=gAwBhJjZUF2a4TjZUtUYyAlrBZG+JqxhE6gXIw3gLL5jr8La4M9W+o8c3Yh8OR8ht/7EFZ 40J3GpeC8XTmHC6qv9T7r+zs5Zs/rsF8l6NdMtxJZEBnPKdfveQh10bCe2KWwJh1k2SF4V gXd0m2WGIzBkmodg9zvjFZdrixVZqpDzhT6WvTFO4whll/YjWOqmmC9xYgIxW+9Y068/KY ylOymG3dx7p6nMmEP0T/l2ukIwpxCTTCsUl5TluzlWiD+/DV1uokUiswWRsS8SEYnenBn7 Ombyd1BM/wZxZ/L64d+4XUnTyGN2wUMPlD2xqsh38k/gUtKpUIX+Vh/O2L/uwQ==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=mailchannels.net; s=arc-2022; t=1700602867; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding:dkim-signature; bh=ewSn2q63ga99ech/ttXP5gutEImx3xQIWjyfvuJzVdg=; b=xH1I1tMm95IeWwQXggpr2sZMAsOxOJD92T1J37uDXe5evSvJwMpQrg4jE82/qx+/o8xBGl GVIoMmSwmV2LHCkFUEs/ndY5j1pRN05w00XZAjtEbO8q2iUEwB/s+1/YnkS7A8Sbw7x8Sq M3G6Io35f6LQGOWDIen+V9d56mkW347rJOHljCYGASmKbqCbjaa9XRYFc2p4Kfdo7Db+qF temkQ4yfP7ruXXlfVc4NtRVE/GYhlQi1IQpePRpwhMyCgWxJ+1uJCDBbQA5boAdfLc9hNx FpT2378rQ9ORbyIwN7LqeI6O+iEGjDEx3Imfn5nGrfGKNJke16pogS2NuSeKMA==
ARC-Authentication-Results: i=2; rspamd-645fb96b5-4tqw4; arc=pass ("outbound.mailhop.org:s=arc-outbound20181012:i=1"); auth=pass smtp.auth=duocircle smtp.mailfrom=waldemar@wdmsys.com
X-Sender-Id: _forwarded-from|47.180.147.191
X-MC-Relay: Forwarding
X-MailChannels-SenderId: _forwarded-from|47.180.147.191
X-MailChannels-Auth-Id: duocircle
X-Occur-Slimy: 79474f254b287f89_1700602867791_2633764502
X-MC-Loop-Signature: 1700602867791:3983894940
X-MC-Ingress-Time: 1700602867791
Received: from outbound4v.ore.mailhop.org (outbound4v.ore.mailhop.org [44.233.143.45]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384) by 100.105.117.136 (trex/6.9.2); Tue, 21 Nov 2023 21:41:07 +0000
ARC-Seal: i=1; a=rsa-sha256; t=1700602867; cv=none; d=outbound.mailhop.org; s=arc-outbound20181012; b=cpWrSM0WAfJpCcL4omFo6oUQvbdcDaEiRkGFLAYGZY8OmkfFYKuil5dx15nRlXV8x7zBgokdbNUEf 9fXqOBY7iEBFRFB/YczFaTcmHUNidCf2BissyB8PJJySDmLiCbuxL8I0IaoxGU1Itiq2e8jnny8Wgi BoE01dgvmP80vweQczgcjldCY64VUFB4k2SPfwptSWo9f5kqcNogsbD9G8LnLOBue9QViNGFXAUeFm rVr7LR2F4vod3cztCR6ZxwpIv4HRRjlMDEjUxMx7SWUmUNUkERfwr98/Vph2qgY6jio/FGiMhu+pPP XD1ea+rniQRnUogE/x8Pa17stO5Suyw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=outbound.mailhop.org; s=arc-outbound20181012; h=content-transfer-encoding:content-type:subject:from:to:mime-version:date: message-id:dkim-signature:dkim-signature:from; bh=ewSn2q63ga99ech/ttXP5gutEImx3xQIWjyfvuJzVdg=; b=Epo8HBP7e0T0Rrdb828oM+JN3F1JUV6yOH/x7OODmTR6lS/csPSvrykM2EAfsCjLMyBqncekPcVFw 4g16ShfxKWlLVglaGh5PJ+30br7r8B1hlrIu8BOb3+Tn4v73361TW5H9J/EY+Kw/wVuGCtCdPpTWHH 6qBNrUfY+ZMC+jF3U/tuPmSokew6bTAA23DZkOsnaR4m79rHAwEjX0UGkKWv6jC9qTMMZ0YAddASfW 991YLgmM1QwXe8pTMhO3iYXz1xcnTRTwLdnXiA4Uc5gPj1FtjibSsbaHRzxWy/elpjCjNcb8+hIagT BwQW1oD0tj0mhJ8s+FtjeIMWrQJq1Xg==
ARC-Authentication-Results: i=1; outbound4.ore.mailhop.org; spf=softfail smtp.mailfrom=wdmsys.com smtp.remote-ip=168.235.72.19; dmarc=none header.from=wdmsys.com; arc=none header.oldest-pass=0;
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wdmsys.com; s=duo-1675405977089-29a98ead; h=content-transfer-encoding:content-type:subject:from:to:mime-version:date: message-id:from; bh=ewSn2q63ga99ech/ttXP5gutEImx3xQIWjyfvuJzVdg=; b=l3gWXutKW1GhNljVYxDcEfbR4xej1TtU4iojYNMgJ6te/rIhL7b8cphQokWH8wWk9/8Yylp34waCH vuXPVddi57kAhHqkT0A+fRPR1kpRO50G15W0oUy2hBMcgwWKgenN8tOBw2LNgGk5MqXZy8slkIhn/Q Ykn+INLIyiCQY4oY=
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outbound.mailhop.org; s=dkim-high; h=content-transfer-encoding:content-type:subject:from:to:mime-version:date: message-id:from; bh=ewSn2q63ga99ech/ttXP5gutEImx3xQIWjyfvuJzVdg=; b=HRWuMQwJpMD3jIpST5L7XXfm44AOMJCn4KO0QB35i7NY55W4RmxXti2CGdlms+cIKEUfGHx8l84OX 07Dke91F8b6fKPRk31Io5OGTDkWOGA5E2RxQlNGWh+EJUuwzodMKcc1Bbxa8f4gbrVTS7uTq9lYB5h +qM0ncm1wLqy2LTk/zuxadKiQdbr6XRRvpcfBIdbcLxFnjgCDkepMJAfWCMHASQ/juJHK5DTZB/X4n pcZn07RXWpBEQMyCRigdj3t6K2qzkMzA3vuKxrBNgARlVLWjJa7RCDMskb6i0K2lC5AKVoKk+at5MW 8HVa+CVis0pk91CitkfCbVGRajQlwyQ==
X-Originating-IP: 168.235.72.19
X-MHO-RoutePath: d2FsZGVtYXI=
X-MHO-User: ac8aeb11-88b6-11ee-b7d7-2b2b5a144ce7
X-Report-Abuse-To: https://support.duocircle.com/support/solutions/articles/5000540958-duocircle-standard-smtp-abuse-information
X-Mail-Handler: DuoCircle Outbound SMTP
Received: from cmail.wdmsys.com (168-235-72-19.cloud.ramnode.com [168.235.72.19]) by outbound4.ore.mailhop.org (Halon) with ESMTPSA id ac8aeb11-88b6-11ee-b7d7-2b2b5a144ce7; Tue, 21 Nov 2023 21:41:06 +0000 (UTC)
Received: from static-47-180-147-191.lsan.ca.frontiernet.net ([47.180.147.191] helo=[192.168.84.111]) by cmail.wdmsys.com with esmtpsa (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.95) (envelope-from <waldemar@wdmsys.com>) id 1r5YUT-000lIP-Di for din@irtf.org; Tue, 21 Nov 2023 21:41:05 +0000
Message-ID: <a77060a0-9a87-4705-93dc-f04a2848ed55@wdmsys.com>
Date: Tue, 21 Nov 2023 13:41:05 -0800
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: din@irtf.org
From: waldemar <waldemar@wdmsys.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/din/sg3ibJ5pJlA3PK60Rakqh43mGj4>
Subject: [Din] Dealing with NAT and other thoughts on what IPREF can do for DINRG
X-BeenThere: din@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of distributed Internet Infrastructure approaches, aspects such as Service Federation, and underlying technologies" <din.irtf.org>
List-Unsubscribe: <https://mailman.irtf.org/mailman/options/din>, <mailto:din-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/din/>
List-Post: <mailto:din@irtf.org>
List-Help: <mailto:din-request@irtf.org?subject=help>
List-Subscribe: <https://mailman.irtf.org/mailman/listinfo/din>, <mailto:din-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Nov 2023 21:41:12 -0000
I wanted to follow up on my comments regarding NAT. During Michał Król's presentation I mentioned that there is a technology that makes NAT a non-issue. The technology is called IPREF (IP addressing with REFerences) and it is described in the following draft: https://datatracker.ietf.org/doc/draft-augustyn-intarea-ipref/ IPREF is a method of traversing different address spaces, including NAT/NAT6/filters as well as cross protocol IPv4/IPv6. With IPREF, servers behind NAT can be reached without problems. It is done 100% through the network layer (no port manipulation). IPREF can reach thousands of servers behind NAT with all ports available. There is no mapping to global addresses, either. That's especially important to IPv4 sites, where one can have billions of servers behind NAT without having to map any of them to any global addresses. This means, there could be 200,000 websites behind NAT, if one desires, and they all will be reachable at the usual port 443 without conflicts. IPREF can also traverse IPv4/IPv6, so one can have a mix of IPv4/IPv6 servers and they all will be reachable. There is no other technology that can do it. IPREF supports peer-to-peer applications just as easily. This is relevant to ideas like Local-First Software, presented by Martin Kleppmann. Although not mentioned explicitly, the ideas in this presentation seemed to rely on peer-to-peer networking to avoid centralization. IPREF provides necessary means of direct communication between participants in Local-First applications. IPREF itself is decentralized. There is no shared configuration, no control protocols. All configuration, behavior, allocation of references is vested with local admins. IPREF can be used with many projects aiming at decentralization of the Internet. I am thinking, maybe I should make a presentation of IPREF to the group where I would point to some important design features that decentralized system could take advantage of. Waldemar Augustyn