IETF Logo Mail Archive

Re: [Int-area] Revving draft-intarea-shared-addressing-issues

"George, Wes E IV [NTK]" <Wesley.E.George@sprint.com> Mon, 14 June 2010 20:37 UTC

Return-Path: <Wesley.E.George@sprint.com>
X-Original-To: int-area@core3.amsl.com
Delivered-To: int-area@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 90B0C3A6968 for <int-area@core3.amsl.com>; Mon, 14 Jun 2010 13:37:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.74
X-Spam-Level:
X-Spam-Status: No, score=-1.74 tagged_above=-999 required=5 tests=[BAYES_20=-0.74, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L7H1JLQwgkcz for <int-area@core3.amsl.com>; Mon, 14 Jun 2010 13:37:25 -0700 (PDT)
Received: from TX2EHSOBE005.bigfish.com (tx2ehsobe003.messaging.microsoft.com [65.55.88.13]) by core3.amsl.com (Postfix) with ESMTP id C11DE3A68F0 for <int-area@ietf.org>; Mon, 14 Jun 2010 13:37:21 -0700 (PDT)
Received: from mail84-tx2-R.bigfish.com (10.9.14.242) by TX2EHSOBE005.bigfish.com (10.9.40.25) with Microsoft SMTP Server id 8.1.340.0; Mon, 14 Jun 2010 20:37:25 +0000
Received: from mail84-tx2 (localhost.localdomain [127.0.0.1]) by mail84-tx2-R.bigfish.com (Postfix) with ESMTP id E76DE163049E; Mon, 14 Jun 2010 20:37:24 +0000 (UTC)
X-SpamScore: -45
X-BigFish: VS-45(zz542N1432N936eM9371Pzz1202hzz1033ILz2fh87h2a8h61h)
X-Spam-TCS-SCL: 0:0
X-FB-DOMAIN-IP-MATCH: fail
Received: from mail84-tx2 (localhost.localdomain [127.0.0.1]) by mail84-tx2 (MessageSwitch) id 1276547831608878_19530; Mon, 14 Jun 2010 20:37:11 +0000 (UTC)
Received: from TX2EHSMHS022.bigfish.com (unknown [10.9.14.236]) by mail84-tx2.bigfish.com (Postfix) with ESMTP id 83252E40092; Mon, 14 Jun 2010 20:37:10 +0000 (UTC)
Received: from pdaasdm2.corp.sprint.com (144.229.32.57) by TX2EHSMHS022.bigfish.com (10.9.99.122) with Microsoft SMTP Server (TLS) id 14.0.482.44; Mon, 14 Jun 2010 20:37:08 +0000
Received: from plswh04a.ad.sprint.com (plswh04a.corp.sprint.com [144.226.251.24]) by pdaasdm2.corp.sprint.com (Sentrion-MTA-4.0.3/Sentrion-MTA-4.0.3) with ESMTP id o5EKXeov005840 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Mon, 14 Jun 2010 15:34:01 -0500
Received: from PLSWM01C.ad.sprint.com ([144.226.242.77]) by plswh04a.ad.sprint.com ([2002:90e2:fb18::90e2:fb18]) with mapi; Mon, 14 Jun 2010 15:36:47 -0500
From: "George, Wes E IV [NTK]" <Wesley.E.George@sprint.com>
To: Dan Wing <dwing@cisco.com>, 'Bernard Aboba' <bernard_aboba@hotmail.com>, "dthaler@microsoft.com" <dthaler@microsoft.com>, "ford@isoc.org" <ford@isoc.org>
Date: Mon, 14 Jun 2010 15:36:46 -0500
Thread-Topic: [Int-area] Revving draft-intarea-shared-addressing-issues
Thread-Index: AcsL/O08YveqZHR+RpO22FpS5bGt4wAAOOSwAABjD7A=
Message-ID: <F7EB0A7C707E39409A73CD0353242551A8933DE03F@PLSWM01C.ad.sprint.com>
References: <1339FDB5-B518-4210-9D7E-6711E4E10DB0@isoc.org>, <020401cb08ec$97759280$b94c150a@cisco.com><4C11EB81.9090407@gmail.com>, <01ee01cb0a4c$1d528290$7844150a@cisco.com>, <6A8F3173-1CC1-4A0A-A96D-EE5AF1D8B58D@isoc.org>, <04b601cb0be9$308d1930$7844150a@cisco.com>, <9B57C850BB53634CACEC56EF4853FF652C05FEC1@TK5EX14MBXW604.wingroup.windeploy.ntdev.microsoft.com> <BLU137-W306A1BCDBB7C8182DAC35293DC0@phx.gbl> <05a001cb0bfe$5fc2c5f0$7844150a@cisco.com>
In-Reply-To: <05a001cb0bfe$5fc2c5f0$7844150a@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Reverse-DNS: smtpda2.sprint.com
Cc: "int-area@ietf.org" <int-area@ietf.org>, "brian.e.carpenter@gmail.com" <brian.e.carpenter@gmail.com>, "draft-ford-shared-addressing-issues@tools.ietf.org" <draft-ford-shared-addressing-issues@tools.ietf.org>, "lorenzo@google.com" <lorenzo@google.com>
Subject: Re: [Int-area] Revving draft-intarea-shared-addressing-issues
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/int-area>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Jun 2010 20:37:26 -0000

-----Original Message-----
From: int-area-bounces@ietf.org [mailto:int-area-bounces@ietf.org] On Behalf Of Dan Wing
Sent: Monday, June 14, 2010 4:16 PM
To: 'Bernard Aboba'; dthaler@microsoft.com; ford@isoc.org
Cc: int-area@ietf.org; brian.e.carpenter@gmail.com; draft-ford-shared-addressing-issues@tools.ietf.org; lorenzo@google.com
Subject: Re: [Int-area] Revving draft-intarea-shared-addressing-issues



> -----Original Message-----
> From: Bernard Aboba [mailto:bernard_aboba@hotmail.com]
> Sent: Monday, June 14, 2010 1:05 PM
> To: dthaler@microsoft.com; dwing@cisco.com; ford@isoc.org
> Cc: int-area@ietf.org; brian.e.carpenter@gmail.com;
> draft-ford-shared-addressing-issues@tools.ietf.org; lorenzo@google.com
> Subject: RE: [Int-area] Revving draft-intarea-shared-addressing-issues
>
> The NAT box can use its public IPv4 address to enable 6to4,
> thereby providing IPv6 support for hosts "behind" it.  Why
> would this result in a disconnected IPv6 island?

Diagram of what I understand the problem to be with 6to4
behind another NAT:

  IPv6 host--+
              \
               +---[home NAT]----[Carrier's NAT]---[Internet]
              /      ^       ^                  ^
  IPv6 host--+       ^       ^                  ^
                     ^       ^             IP address sharing
                     ^       ^             with multiple
                     ^       ^             subscribers
                     ^       ^
                     ^     the in-home NAT's WAN address
                     ^     is not publicly routable
                     ^
                     ^
               this in-home
             NAT turns on 6to4

Two comments -
This should only be a concern if the carrier NAT is allocating non-RFC1918 IPs to end users in the place of 1918 space, thus confusing the home router/host into thinking that it can make 6to4 work properly. Non-broken 6to4 implementations recognize 1918 space and don't try to use it as a 6to4 source. They don't recognize 11.0/8 as unroutable because it's being "borrowed" for use inside a NAT when 10.0/8 is exhausted.

This specific issue is definitely something we should capture as an issue with shared addresses. It might be fixable by having a local 6to4 relay to translate the traffic to native IPv6 before it leaves the NAT domain, but you'd need a NAT66 to handle the fact that the 6to4 address is only locally significant. And that's ugly, but since it's probably not possible to simply say "don't use 6to4" unless you are going to track down and replace all 6to4 end devices with those that speak native IPv6, you may not have a choice.

Wes George

This e-mail may contain Sprint Nextel Company proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.

v2.23.0 | Report a Bug | By Email