[DNSOP] Re: [v6ops] Re: [EXTERNAL] New Version Notification for draft-jens-7050-secure-channel-00.txt

Ole Trøan <otroan@employees.org> Wed, 26 June 2024 20:26 UTC

Return-Path: <otroan@employees.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC245C151552; Wed, 26 Jun 2024 13:26:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=employees.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z5F6TlPo6IzT; Wed, 26 Jun 2024 13:26:34 -0700 (PDT)
Received: from proxmox01.kjsl.com (proxmox01.kjsl.com [IPv6:2607:7c80:54:6::6]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0351FC15154A; Wed, 26 Jun 2024 13:26:33 -0700 (PDT)
Received: from proxmox01.kjsl.com (localhost.localdomain [127.0.0.1]) by proxmox01.kjsl.com (Proxmox) with ESMTP id 8A3DEE5D45; Wed, 26 Jun 2024 20:26:33 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=employees.org; h=cc:cc:content-transfer-encoding:content-type:content-type :date:from:from:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to; s=prox2023; bh=CjMCN4oB/6NCtCst yu9nzjpN9F+rnGUcJuK8FphnKVs=; b=pSIiD8H9CCPTnFSctQ7c9ujbgRmgJ2u5 8bGLUG9VNwQj2+MkGnlNJhSLJV8ZU37zzN6hXPuL9w8+86afb+6wW+E3K1XJCw9z 59KTqJo7c4JmaiZS5A40ehNthWUcwTomeBiNRs01ZJkkuyOryAud657HEjKf1Frl B2bIP/f2bMevhmas2VRWJjGxkXumJ7IejDH1+yB6HUlDl8eWtiWR3xAA4bcToAZ+ hmJpG0eAJCD1GpPvC7gxPMpcbpLJ+NT1PtzPSlcAZrLq+Cs5MycD8hYXOiznE29V yc5q0ARlsXTM8gtKxG7GE4d5seW/FDw+LCVcM1uN8mqQe6ig5mW1xA==
Received: from clarinet.employees.org (clarinet.employees.org [IPv6:2607:7c80:54:3::74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by proxmox01.kjsl.com (Proxmox) with ESMTPS id 678DDE4D5D; Wed, 26 Jun 2024 20:26:33 +0000 (UTC)
Received: from smtpclient.apple (unknown [IPv6:2a02:20c8:5921:200:4c15:2d43:73c3:1c4a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by clarinet.employees.org (Postfix) with ESMTPSA id 3016B4E11B8E; Wed, 26 Jun 2024 20:26:33 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Ole Trøan <otroan@employees.org>
Mime-Version: 1.0 (1.0)
Date: Wed, 26 Jun 2024 22:26:20 +0200
Message-Id: <995E83EB-8151-4500-A880-441C5E1DF202@employees.org>
References: <c261c1ef-12fd-4fc7-b1ed-1d4886eb6b8e@nsrc.org>
In-Reply-To: <c261c1ef-12fd-4fc7-b1ed-1d4886eb6b8e@nsrc.org>
To: Brian Candler <brian@nsrc.org>
X-Mailer: iPhone Mail (21F90)
Message-ID-Hash: OBDTYG2IRQ7UCRHYI3QP2Z3R7MVPTIM4
X-Message-ID-Hash: OBDTYG2IRQ7UCRHYI3QP2Z3R7MVPTIM4
X-MailFrom: otroan@employees.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Tommy Jensen <Jensen.Thomas@microsoft.com>, dnsop@ietf.org, V6 Ops List <v6ops@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: [v6ops] Re: [EXTERNAL] New Version Notification for draft-jens-7050-secure-channel-00.txt
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/3EbHMq9D3VoVsTzpUtG_Y9-owcQ>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>


> I was trying not to cloud the issue in my previous remark, but I might as well add additional fuel to the fire now: should DNS64 itself be deprecated? Once you have 464XLAT then you don't need it at all, and you don't need to pretend to applications that IPv4-only servers have IPv6 addresses.
> 

I would still like the option of having an IPv6 only host. (Which 464XLAT doesn’t give).
The DNS64 function could be local to the host. Then we could get rid of DNS64 in the network. 

Cheers 
Ole