Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P. Architecture? (Fwd: Errata #5933 for RFC8200)
Keith Moore <moore@network-heretics.com> Sat, 29 February 2020 01:12 UTC
Return-Path: <moore@network-heretics.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A4B93A086C for <ietf@ietfa.amsl.com>; Fri, 28 Feb 2020 17:12:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=messagingengine.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id omGXnAusWutY for <ietf@ietfa.amsl.com>; Fri, 28 Feb 2020 17:12:37 -0800 (PST)
Received: from wout2-smtp.messagingengine.com (wout2-smtp.messagingengine.com [64.147.123.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E7A4C3A086A for <ietf@ietf.org>; Fri, 28 Feb 2020 17:12:37 -0800 (PST)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 0A2EB54F; Fri, 28 Feb 2020 20:12:36 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute5.internal (MEProxy); Fri, 28 Feb 2020 20:12:37 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=SYnUFy hyymxSuz4pHWWQf/XLDTiREzLFA7JW0vIQ+jU=; b=kds09InEXfkQfXFS6F9iv/ cEkOONLJ35ZTRzJaBVlpsQM6Bp5xGtWMBkOBc5/TMTsgyMNW0nGH7DuwQ6vDa1nm mG1C8JK/kJ9YUJrCBCDc4V5RrfpmcMB369Aa4EvQDHSEQ2NfQCqTK61Y8pAgOwZa KTjNxf0OtfTbhtTAwSkbwNuguFAu2glXqnci1nE6nTI/fsE+K8PTdeyczBNYj2c3 ZoVruf7HNITEDJujE0pRMD+whCxFAxfyTsnwxLLHkJg00HQwxRsmv40hNIMEzU8L LuOQY8+MCMyEToLjRLbk3SjyGnDMPZJOsCBbIXVMVQvR+W369fxM2tKKx1Q2lCYQ ==
X-ME-Sender: <xms:hLpZXtQCzJJVvP0hFrKXd4UUTEeHa17ucRR4kJ4-aT6UdbPAUZjwcQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedugedrleelgddvjecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurhepuffvfhfhkffffgggjggtsegrtderre dtfeejnecuhfhrohhmpefmvghithhhucfoohhorhgvuceomhhoohhrvgesnhgvthifohhr khdqhhgvrhgvthhitghsrdgtohhmqeenucffohhmrghinhephhhtthhpihhnthgvrhhfrg gtvghsthhhrghttggrnhgsvghushgvughfohhrmhhonhhithhorhhinhhgrghnughorhgt ohhnfhhighhurhgrthhiohhnrdhithenucfkphepuddtkedrvddvuddrudektddrudehne cuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhoohhr vgesnhgvthifohhrkhdqhhgvrhgvthhitghsrdgtohhm
X-ME-Proxy: <xmx:hLpZXuIi4Ey6lcOlcTdm6QQLc-qojbz47y4DFXfY6TuFzxj0pdEDSQ> <xmx:hLpZXobq6z3T_W3tW0Ho6u57w_Uol7sY3iyGgr46-kETGW-albH-sw> <xmx:hLpZXg8b86RKlew4WfwUQxsZEXRhsoGMfbGve-aO4cS-xTDpKGwD1Q> <xmx:hLpZXrIcp7PY8LFZ74ONHaZ4NCtMehJD6b69X8FuVKKjMBs88x6K4g>
Received: from [192.168.1.97] (108-221-180-15.lightspeed.knvltn.sbcglobal.net [108.221.180.15]) by mail.messagingengine.com (Postfix) with ESMTPA id F314E3280066; Fri, 28 Feb 2020 20:12:35 -0500 (EST)
Subject: Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P. Architecture? (Fwd: Errata #5933 for RFC8200)
To: ietf@ietf.org
References: <876c9105-3da4-e614-2db0-bea025b54663@si6networks.com> <7749f91f-03f1-cc14-bae8-5fe68c88879f@si6networks.com> <CALx6S36wN7VEi_rxLC1ETcTvkGaPhs20KhQrGWAGGTrCL5OT+g@mail.gmail.com> <8d3e7b714666db00e0c05a2e06959da6@strayalpha.com> <CAMm+LwjYeSTro_TJujtRPDfVKtVMg7JbDL6A5V3Tj447c2E7nA@mail.gmail.com> <74763844-FA56-43DC-981E-E366E2C24758@strayalpha.com> <CAMm+LwjeWXUmOEzvbUhrG1H8OMqG9EhcF3TzdZBA61LnySSPqw@mail.gmail.com> <CAMm+LwjxxTQmJMPxydMGC5GByHu2qkbd_+W1and=xOMhq2RV6g@mail.gmail.com> <ce5ac3bd-c5e3-28a5-e4ec-b7c2432783f0@network-heretics.com> <CAMm+LwjpOd5AB0_HYSYA7Ma-WeBhAv_XL9KLP6jiMSGqv9a5eQ@mail.gmail.com> <5C60C807CE70E1ECC1BAB1D1@PSB> <CAMm+Lwju-ygMaoiVE3GmKp_fdEGJwcnnb84udR-H-6+NyNzO7w@mail.gmail.com>
From: Keith Moore <moore@network-heretics.com>
Message-ID: <212ec841-76c7-bd39-9b6b-0e80cf27fcfe@network-heretics.com>
Date: Fri, 28 Feb 2020 20:12:33 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
In-Reply-To: <CAMm+Lwju-ygMaoiVE3GmKp_fdEGJwcnnb84udR-H-6+NyNzO7w@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------D1A1AB94B1C29D141CD5730C"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/ybGxAkiKWCOUC5Z0zhAKK5hQBxY>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Feb 2020 01:12:40 -0000
On 2/28/20 7:29 PM, Phillip Hallam-Baker wrote: > On Fri, Feb 28, 2020 at 5:12 PM John C Klensin <john-ietf@jck.com > <mailto:john-ietf@jck.com>> wrote: > > I've been trying to stay out of this, but... > Keith's comment about practices that might have many > advantages but that also result in single points of failure may > be a particularly relevant example. > > > As you both know, we designed the DNS so that it is not a single point > of failure, there is the option for redundancy. > > Rail at the DNS as a single point of failure if you like. But it isn't > and I don't think people are going to start using IP addresses. The failures are at least as likely to be human errors as any other kind, but such failures are common. And people _are_ using IP addresses, quite frequently. Not so much for the web or email, but static allocation and configurations based on IP address are quite common on local networks, within enterprise networks, and even sometimes between enterprise networks. From a certain perspective, DNS is seen as something that's relatively unnecessary and something else to fail. And when, say, a factory production line stops because of DNS lookup failure, someone's head is going to roll if it happens twice. Also, there are organizational issues at play here. DNS is often seen as the purview of "IT" (I hate that term, but it seems to have stuck). "IT" often has a different view of its responsibilities than, say, manufacturing or engineering, and "IT" is widely seen by other technically competent people as an impediment to getting work done or shipping product. From that perspective, DNS is better avoided. (I remember a recent case in which someone in /marketing /at a corporation (which I shall not name publicly), directed a low-level IT person to change the NS records associated with a subsidiary company's domain, because the company had hired a new web designer, and the /web designer/ decided that the easiest way to make the transition was to set up a new DNS server for the company at a different provider,... and in doing so broke every other application used by the subsidiary company, including every application used for order processing and customer support. This is the kind of idiocy one finds in the "real world", and unfortunately, DNS contributes to the problem.) > > And moreover, since the vast majority of applications people decided > to go for HTTP rather than TCP as our transport protocol in recent > years, and we have multiple hosts on the same IP address, it is no > longer possible to connect to most Internet resources by IP address. > And the same is true of SMTP. Your view of "the vast majority of applications" may not be accurate, because as far as I can tell "the vast majority of applications" aren't specified in readily available documents. I know of a lot of private applications running over raw tcp, for example. But even applications that use HTTP as a substrate quite often aren't hitting HTTP servers on the public Internet that need such provisioning. There are lots of small Internet appliances that have HTTP interfaces that can be used for monitoring and/or configuration. It's a really large and diverse Internet, and there are lots of use cases that are important to people, that don't look like the statistically typical case. IMO IETF needs to be aware of this and to not presume that everything that matters is running in the cloud, supported by redundant high-speed links and well-provisioned DNS. Many environments don't have DNS service for internal hosts, only for publicly visible hosts. Keith
- Is IPv6 End-to-End? R.I.P. Architecture? (Fwd: Er… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Tom Herbert
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Phillip Hallam-Baker
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Bernard Aboba
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Tom Herbert
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Tom Herbert
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Keith Moore
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Keith Moore
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joe Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Keith Moore
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Mark Andrews
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… S Moonesamy
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Phillip Hallam-Baker
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Tom Herbert
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Christian Huitema
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Bernard Aboba
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Fernando Gont
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Fernando Gont
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Fernando Gont
- Re: [Int-area] [arch-d] Is IPv6 End-to-End? R.I.P… Fernando Gont
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… S Moonesamy
- RE: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… Larry Masinter
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Tom Herbert
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Dino Farinacci
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Tom Herbert
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Bernard Aboba
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joseph Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joseph Touch
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Joseph Touch
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… Fernando Gont
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Fernando Gont
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… Fernando Gont
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Joseph Touch
- Re: Is IPv6 End-to-End? R.I.P. Architecture? (Fwd… S Moonesamy
- [arch-d] Is IPv6 End-to-End? R.I.P. Architecture?… Guntur Wiseno Putra
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- [arch-d] Is IPv6 End-to-End? R.I.P. Architecture?… Guntur Wiseno Putra
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Keith Moore
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Robert Raszuk
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Tom Herbert
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Tom Herbert
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… John C Klensin
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Phillip Hallam-Baker
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Keith Moore
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joseph Touch
- Re: [arch-d] [Int-area] Is IPv6 End-to-End? R.I.P… Joseph Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joseph Touch
- Re: [arch-d] Is IPv6 End-to-End? R.I.P. Architect… Andrew Alston
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Joseph Touch
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Andrew Alston
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- Re: [Int-area] Is IPv6 End-to-End? R.I.P. Archite… Fernando Gont
- [arch-d] Is IPv6 End-to-End? R.I.P. Architecture?… Guntur Wiseno Putra