Re: [fun] HOMENET working group proposal
Jari Arkko <jari.arkko@piuha.net> Thu, 30 June 2011 09:32 UTC
Return-Path: <jari.arkko@piuha.net>
X-Original-To: fun@ietfa.amsl.com
Delivered-To: fun@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D403221F87AC; Thu, 30 Jun 2011 02:32:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.999
X-Spam-Level:
X-Spam-Status: No, score=-100.999 tagged_above=-999 required=5 tests=[AWL=-1.154, BAYES_00=-2.599, FRT_BELOW2=2.154, J_CHICKENPOX_13=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PjqqXe1daLkB; Thu, 30 Jun 2011 02:32:01 -0700 (PDT)
Received: from p130.piuha.net (p130.piuha.net [IPv6:2001:14b8:400::130]) by ietfa.amsl.com (Postfix) with ESMTP id CEA2C21F87AB; Thu, 30 Jun 2011 02:32:00 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 7FAC02CEA0; Thu, 30 Jun 2011 12:31:58 +0300 (EEST)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LV2mS+CqafKu; Thu, 30 Jun 2011 12:31:57 +0300 (EEST)
Received: from [IPv6:::1] (unknown [IPv6:2001:14b8:400::130]) by p130.piuha.net (Postfix) with ESMTP id 069AB2CC39; Thu, 30 Jun 2011 12:31:56 +0300 (EEST)
Message-ID: <4E0C428D.1070508@piuha.net>
Date: Thu, 30 Jun 2011 11:31:57 +0200
From: Jari Arkko <jari.arkko@piuha.net>
User-Agent: Thunderbird 2.0.0.24 (X11/20101027)
MIME-Version: 1.0
To: Fernando Gont <fernando@gont.com.ar>
References: <4E0AE696.4020603@piuha.net> <4E0BDCF3.1090003@gont.com.ar>
In-Reply-To: <4E0BDCF3.1090003@gont.com.ar>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: "fun@ietf.org" <fun@ietf.org>, IETF Discussion <ietf@ietf.org>
Subject: Re: [fun] HOMENET working group proposal
X-BeenThere: fun@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "FUture home Networking \(FUN\)" <fun.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/fun>, <mailto:fun-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/fun>
List-Post: <mailto:fun@ietf.org>
List-Help: <mailto:fun-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/fun>, <mailto:fun-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jun 2011 09:32:02 -0000
Fernando, First off, I'm switching the reply headers to fun@ietf.org now, deleting the old homegate list from this discussion. Secondly, I would like to explain the motivation behind focusing this work on IPv6. Its not so much about IPv6 being different (though I hope it is in some respects). The reason why I want this working group to focus on IPv6 is that I don't think new IETF work would have much effect on IPv4 home network architecture. Whereas I think we have a good chance of having an effect in the IPv6 case, given that there is not much deployed base yet in home routers, consumer ISPs, etc. Finally, I don't think we need to take a black-and-white approach to discussing the end-to-end model. Obviously we know about the V6OPS simple security work. Of course there are firewalls in IPv6, restricting incoming traffic. That being said, I think the right architecture for IPv6 home networks is that incoming traffic is restricted *by policy* on a per-need basis, not by an addressing design that forever prevents us from allowing specific incoming protocols. This is what we mean by architecture specification from this working group. Practical network design that does the right thing and lets people do what they want -- not a requirement to open your network up for anything. Jari Fernando Gont kirjoitti: > Hi, Jari, > > My high level comment/question is: the proposed charter seems to stress > that IPv6 is the driver behind this potential wg effort... however, Ie > think that this deserves more discussion -- it's not clear to me why/how > typical IPv6 home networks would be much different from their IPv4 > counterparts. > > Bellow you'll find some comments/questions about the proposed charter. > They are not an argument against or in favour of the creation of the > aforementioned wg, but rather comments and/or requests for clarification... > > On 06/29/2011 05:47 AM, Jari Arkko wrote: > [....] > >> o Service providers are deploying IPv6, and support for IPv6 is >> increasingly available in home gateway devices. While IPv6 resembles >> IPv4 in many ways, it changes address allocation principles and allows >> direct IP addressability and routing to devices in the home from the >> Internet. This is a promising area in IPv6 that has proved challenging >> in IPv4 with the proliferation of NAT. >> > > NAT devices involve two related but different issues: > * address translation > * an implicit "allow only return traffic" firewall-like functionality > > One would hope/expect that the former will be gone with IPv6. However, I > don't think the latter will. As a result, even when you could "address" > nodes that belong to the "home network", you probably won't be able to > get your packets to them, unless those nodes initiated the communication > instance. > > For instance (and of the top of my head), this functionality is even > proposed in the "simple security" requirements that had been produced by > v6ops. > > > >> o End-to-end communication is both an opportunity and a concern as it >> enables new applications but also exposes nodes in the internal >> networks to receipt of unwanted traffic from the Internet. Firewalls >> that restrict incoming connections may be used to prevent exposure, >> however, this reduces the efficacy of end-to-end connectivity that >> IPv6 has the potential to restore. >> > > I personally consider this property of "end-to-end connectivity" as > "gone". -- among other reasons, because it would require a change of > mindset. I'm more of the idea that people will replicate the > architecture of their IPv4 networks with IPv6, in which end-systems are > not reachable from the public Internet. > > Thanks! >
- Re: [fun] HOMENET working group proposal Jari Arkko
- Re: [fun] [homegate] HOMENET working group propos… Jari Arkko
- Re: [fun] [homegate] HOMENET working group propos… Fernando Gont
- Re: [fun] [homegate] HOMENET working group propos… Mark Townsley
- Re: [fun] [homegate] HOMENET working group propos… Jari Arkko
- Re: [fun] [homegate] HOMENET working group propos… Fernando Gont
- Re: [fun] [homegate] HOMENET working group propos… Pascal Thubert (pthubert)
- Re: [fun] [homegate] HOMENET working group propos… Fernando Gont
- Re: [fun] [homegate] HOMENET working group propos… Stephen [kiwin] PALM
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Stephen [kiwin] PALM
- Re: [fun] [homegate] HOMENET working group propos… Weil, Jason
- Re: [fun] [homegate] HOMENET working group propos… Stephen [kiwin] PALM
- Re: [fun] [homegate] HOMENET working group propos… Mark Townsley
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Fernando Gont
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Ralph Droms (rdroms)
- Re: [fun] [homegate] HOMENET working group propos… Stephen [kiwin] PALM
- Re: [fun] [homegate] HOMENET working group propos… Ralph Droms (rdroms)
- Re: [fun] [homegate] HOMENET working group propos… Mark Townsley
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… james woodyatt
- Re: [fun] [homegate] HOMENET working group propos… Edward Arthurs
- Re: [fun] [homegate] HOMENET working group propos… Robert Raszuk
- Re: [fun] [homegate] HOMENET working group propos… Mark Andrews
- Re: [fun] [homegate] HOMENET working group propos… james woodyatt
- Re: [fun] [homegate] HOMENET working group propos… Mikael Abrahamsson
- Re: [fun] [homegate] HOMENET working group propos… Mark Townsley
- Re: [fun] [homegate] HOMENET working group propos… Mark Townsley
- Re: [fun] [homegate] HOMENET working group propos… Martin Focazio
- Re: [fun] [homegate] HOMENET working group propos… JP Vasseur (jvasseur)
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… james woodyatt
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Kenneth Voort
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Doug Barton
- Re: [fun] [homegate] HOMENET working group propos… Noel Chiappa
- Re: [fun] [homegate] HOMENET working group propos… Robert Raszuk
- Re: [fun] [homegate] HOMENET working group propos… james woodyatt
- Re: [fun] [homegate] HOMENET working group propos… Robert Raszuk
- Re: [fun] [homegate] HOMENET working group propos… Doug Barton
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore
- Re: [fun] [homegate] HOMENET working group propos… Kenneth Voort
- Re: [fun] [homegate] HOMENET working group propos… Erik Kline
- Re: [fun] [homegate] HOMENET working group propos… Keith Moore