Re: Last Call: RFC 6346 successful: moving to Proposed Standard

[Mark Andrews <marka@isc.org>]

In message <54890CD3.2050800@gmail.com>, Doug Royer writes:
>
> On 12/10/2014 07:43 PM, Ted Lemon wrote:
> > A+P is for home gateways, not for servers.   That said, most uses of
> > A+P exclude the well-known port range for assignment to home gateways, so
> > if for some strange reason you wanted to do A+P with servers, you could
> > allocate those ranges to servers.   This is not a common or expected use
> > of A+P, however, so this is kind of moot.   The essential point of A+P is
> > that it creates deterministic mappings, which makes carrier-grade NAT
> > less painful and more predictable.   It really only makes sense in the
> > context of a dual-stack transition model, where you would always prefer
> > IPv6 for flows between hosts that support it.
>
> So the expectation is that ISP's will replace your NAT/router with one
> that meets this specification? Why would they just not replace it with a
> IPv6 one? I still see no time to implement gain if this is the plan.

They will install IPv6 + A+P for IPv4.

> If the mapping is done at the ISP layer and *not* the home router, then
> they better NAT the IP they give you, or your operating system firewall
> will go nuts trying to figure out when and what port range to open up.
> They can do that now with NAT, so why would they implement?
>
> *Or* your operating systems firewall software, virus protection, and
> firewalls better be updated to this specification before it is deployed.
>
> If they NAT, then what is the gain over the current NAT? I can see this
> may have been a great alternative to NAT, but we already have NAT. So why
> would they implement?

Because most of the world has sat on its collective backsides until
it was too late to do a nice orderly dual stack deployment model
without having to share IPv4 addresses between customers.   Now
many ISP's are just trying to keep IPv4 on life support long enough
to move everybody to IPv6.

> How about port 6112 incoming, probably the most common gamer port.
> (http://www.speedguide.net/port.php?port=6112)
>
> Which DHCP home 1.2.3.4 IP address gets it? Or do all gaming servers
> that connect to port 6112 on home systems have to be re-written to find
> the correct port dynamically?

They can use IPv6 or they can use a relay.

> I know about port 6112 because I did the IANA registration for UNIX/CDE
> dtspcd on port 6112. I get many emails from people wanting to know about
> their game and how to configure it and their router (which I simply
> delete). Or maybe they are wrong and it does not need to be incoming
> and makes no difference.
>
> This would also break all dynamic-DNS servers. Many ISP's could care
> less about home based dynamic-DNS updated servers. Some care, it would
> break those that do not care.

Those using dynamic-DNS will just install AAAA records.

IPv4 is dead, stinking, rotting corpse and the sooner all the ISP's
on the planet start treating is as such the better the world will
be.

> It looks to me to be another DMARC type oops.
>
> --
>
> Doug Royer - (http://K7DMR.us / http://DougRoyer.US)
> DouglasRoyer@gmail.com
> 714-989-6135

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org