IETF Logo Mail Archive

Re: [homenet] I-D Action: draft-haddad-homenet-multihomed-00

Michael Thomas <mike@mtcc.com> Thu, 25 October 2012 13:38 UTC

Return-Path: <mike@mtcc.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C5F6D21F8977 for <homenet@ietfa.amsl.com>; Thu, 25 Oct 2012 06:38:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.567
X-Spam-Level:
X-Spam-Status: No, score=-2.567 tagged_above=-999 required=5 tests=[AWL=0.032, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id stQQnKAgyNGm for <homenet@ietfa.amsl.com>; Thu, 25 Oct 2012 06:38:38 -0700 (PDT)
Received: from mtcc.com (mtcc.com [IPv6:2001:5a8:4:9fe0:224:8cff:feaa:6d9b]) by ietfa.amsl.com (Postfix) with ESMTP id 0129A21F8974 for <homenet@ietf.org>; Thu, 25 Oct 2012 06:38:37 -0700 (PDT)
Received: from takifugu.mtcc.com (takifugu.mtcc.com [50.0.18.224]) (authenticated bits=0) by mtcc.com (8.14.3/8.14.3) with ESMTP id q9PDcTEf032398 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO); Thu, 25 Oct 2012 06:38:30 -0700
Message-ID: <508940D5.60806@mtcc.com>
Date: Thu, 25 Oct 2012 06:38:29 -0700
From: Michael Thomas <mike@mtcc.com>
User-Agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.8.1.22) Gecko/20090605 Thunderbird/2.0.0.22 Mnenhy/0.7.5.0
MIME-Version: 1.0
To: Arifumi Matsumoto <arifumi@nttv6.net>
References: <201210011801.q91I1tfW056624@gateway1.orleans.occnc.com> <7F6EA97D-5DA8-4872-A647-D879B1955824@gmail.com> <49FCFE49-9DFB-44D2-ADAD-636A3C80F906@ecs.soton.ac.uk> <EMEW3|09bc323dc12a06be7c21e18f2752cd05o9LECn03tjc|ecs.soton.ac.uk|49FCFE49-9DFB-44D2-ADAD-636A3C80F906@ecs.soton.ac.uk> <7F4B245F-9355-4134-9176-EB7DB1634469@apple.com> <77A8749D-DF81-4816-8277-CB69861E524A@fugue.com> <C3720598-400C-4B83-9CEC-878B3FA8109E@ecs.soton.ac.uk> <EMEW3|3e5d3f7836c5b4ddbd99d74df88ecc6ao9LJ8r03tjc|ecs.soton.ac.uk|C3720598-400C-4B83-9CEC-878B3FA8109E@ecs.soton.ac.uk> <5085905A.8030206@mtcc.com> <52E31542-3B7C-4EC1-9B2C-3C9D8E6B3BB1@apple.com> <50859C1B.7070707@mtcc.com> <CAKD1Yr0v3NdN+QCj=jFiZcv0ox1S-YAj29dZyMd6kAWAv723dg@mail.gmail.com> <5086B5A7.3040706@mtcc.com> <CAKD1Yr04WTU0ez_bFiAOtXR5N+qs4ApC=103tMT9vfhbrxLxEg@mail.gmail.com> <CABTuw1D+oaYcqSwJF9Z=Qr8GmGjvDCOJqeHE8ii-k1G3q84NhA@mail.gmail.com>
In-Reply-To: <CABTuw1D+oaYcqSwJF9Z=Qr8GmGjvDCOJqeHE8ii-k1G3q84NhA@mail.gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=960; t=1351172314; x=1352036314; c=relaxed/simple; s=thundersaddle.kirkwood; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=mtcc.com; i=mike@mtcc.com; z=From:=20Michael=20Thomas=20<mike@mtcc.com> |Subject:=20Re=3A=20[homenet]=20I-D=20Action=3A=20draft-had dad-homenet-multihomed-00 |Sender:=20 |To:=20Arifumi=20Matsumoto=20<arifumi@nttv6.net> |Content-Type:=20text/plain=3B=20charset=3DISO-8859-1=3B=20 format=3Dflowed |Content-Transfer-Encoding:=207bit |MIME-Version:=201.0; bh=QlcT1r+ABhVRZ2/SQgbTSaUpAiriaTTOuCDthLumT1Q=; b=C7u0tzbZt7CJXo7bFyx5HPr4rrASAtHog5+FmnW7gCY6lpcGvx9z3CE9wc oBEAAbKK+BtyzNZExGG/qlkCVA9TexPiDjwpzM7zbg+vhA3GgcuGn3cubEbr lBB4HJYdl+QOY4BlNB5ui7Z/G0FCuSUzkpFIt9irk/7WvLYqPnDx0=;
Authentication-Results: ; v=0.1; dkim=pass header.i=mike@mtcc.com ( sig from mtcc.com/thundersaddle.kirkwood verified; ); dkim-asp=pass header.From=mike@mtcc.com
Cc: homenet@ietf.org, james woodyatt <jhw@apple.com>, Lorenzo Colitti <lorenzo@google.com>
Subject: Re: [homenet] I-D Action: draft-haddad-homenet-multihomed-00
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Oct 2012 13:38:38 -0000

On 10/24/2012 11:25 PM, Arifumi Matsumoto wrote:
> Hi,
>
>> Now - if we want to make this in a routed network where the VPN tunnel is
>> not terminated on the device itself, then RFC 3484/RFC6724 are not
>> sufficient.

That was, in fact, what I was thinking about.
> Even in such a case, you can configure manually the policy table on each host
> to meet the needs of such source address selection. This mechanism is
> included in
> both RFC 3484 and RFC 6724.
>
> Moreover, the policy table auto-configuration protocol is now at WGLC state
> in 6man.
>

My only point is that until such an auto-configuration protocol is widely
deployed, there is a real risk that NPT will be deployed as the stopgap that
never goes away. History is on the side of network-based fixes when hosts
can't do the right thing. This working group can snarl all it likes about such
heresies, but it won't alter the outcome if there's a perceived need.

Mike

v2.23.0 | Report a Bug | By Email