Re: NAT64 in RA, draft-ietf-6man-ra-pref64
Jen Linkova <furry13@gmail.com> Tue, 02 July 2019 13:11 UTC
Return-Path: <furry13@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC1C5120220 for <ipv6@ietfa.amsl.com>; Tue, 2 Jul 2019 06:11:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.748
X-Spam-Level:
X-Spam-Status: No, score=-1.748 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2xvgwzDqixYo for <ipv6@ietfa.amsl.com>; Tue, 2 Jul 2019 06:11:30 -0700 (PDT)
Received: from mail-qk1-x729.google.com (mail-qk1-x729.google.com [IPv6:2607:f8b0:4864:20::729]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7CBF212021D for <6man@ietf.org>; Tue, 2 Jul 2019 06:11:30 -0700 (PDT)
Received: by mail-qk1-x729.google.com with SMTP id l128so13858679qke.2 for <6man@ietf.org>; Tue, 02 Jul 2019 06:11:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=WdpwjmyInXET3WokfxLHT5oYZXzsQ48zshMUyvlh6Fc=; b=pgSouKmwBvqHCONRUzzKFUv9GHjvHFXJbpckGjf7m9qSGjXLQmO4cFcESFO6AOEnyp K18BfK/qEo+IPpaORy7UcTnsgZw01q8uxMeQrOt/hbnlmclNczejXiBN6qMbkpXd3fxS 7Qy9batGxS3Lm+MRdNI1VskyXNFRjC1K6Eg3QTaLgEXMj6ag6LdGcEcQU0WrzEbthSqB Xv/ov7cd31Xmgv+xrvJPrX/wam/z+XrLcKqHhV9GJupWRpOdpCA1WFvOeiQOOWlxFslm M5nkv/gbN1ft4K6Xn/zHTH2TQLf38F8n3TjpyriLFyrIVmJgpy2oGhZklJNZL3bM72XM 4BEA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=WdpwjmyInXET3WokfxLHT5oYZXzsQ48zshMUyvlh6Fc=; b=MQJJOwr5P7B7wJm/8UL75y0/4LFfdQdB/RKAfkTZxf5rSDSvfSKSmNyuBoNDie/EZu 5MOHI9XeAVEmAaKVlww7/kPWGZb2t0jTtsA6WJ1DGfFPnd/c6xsbK0svMkthgyGm4Ogv gFX3/YHTtuFBiSzLZpXPzq06hC08GRcNHu9Gk/uzD72BQmOX2KV36+XDbxG7SdnRams9 5MmX4QkgDTjZDk8LMYJpkTC/7GnY7NFyKPXwqiWqbSwnSyB2PaRkjIOxmrMsh1QJRAab gb6CL4EwBSWL4JEKsIN3AP349CM5YAmUaJxGXf+P/HjfYmDdp8rfFh6J5NULd7k/wYbF DxHQ==
X-Gm-Message-State: APjAAAVVRCr5GN+hIzzbtaiu25X/YIo+8hboQXXIxaA4mWDYJl1r8y/X hiM+p8FsxAzVg3R9By3NVNZ0+x1qUDSWlK9PsSY=
X-Google-Smtp-Source: APXvYqy1zNbLuLq+cuLf6n9lNtv9c1ceHjTZdwcJJtHCIQR0dUx8SZOzFkZWbM48gAv4dn1djaW7iKvu6gpYfNbvZGc=
X-Received: by 2002:a37:a0c8:: with SMTP id j191mr23942214qke.466.1562073089386; Tue, 02 Jul 2019 06:11:29 -0700 (PDT)
MIME-Version: 1.0
References: <12187.1558972629@localhost> <D3C7EB41-02E8-48D6-9335-26A041FD64C2@isc.org> <00C00FE5-C7CD-4B99-A2C9-CCBFCB1E4850@isc.org> <CAFU7BASfJ4YS6xBzK8hNJRSMnFZmdn3VE5A=sPCC3JqRa8SQEQ@mail.gmail.com> <EC63A89D-26CD-4093-8814-4461B6D3D327@isc.org> <CAFU7BASsAwitEc==Zj6qT4izy-tFosg23DHXFVVzOixidEfMFA@mail.gmail.com> <CAKD1Yr3jDTS25ERGZYDDM9yRRTxEfY4Ltcd-QgFNor6ze2G7xA@mail.gmail.com> <6053.1561748461@localhost> <CAFU7BAR9kmnk3Q9aOpsqGFVRZkiRXb0FkZjMXWG2gN0-o1MjGw@mail.gmail.com> <0167874A-F2B4-434A-B674-792FE3AD0E2D@gmail.com> <CAFU7BAT2zw2+EnLW_MZnj2L9RBwH2DyStgRUbaY6bCZLuJwG9g@mail.gmail.com> <CAKD1Yr2mzeVzXFmzh3N21MCr-sg1xJ9D67TPqvEd9YffCrzdqA@mail.gmail.com> <CAN-Dau3qMAH0KAfahjFgN2-mMttmwpM4wEt4vypAxZcvUXB=gQ@mail.gmail.com>
In-Reply-To: <CAN-Dau3qMAH0KAfahjFgN2-mMttmwpM4wEt4vypAxZcvUXB=gQ@mail.gmail.com>
From: Jen Linkova <furry13@gmail.com>
Date: Tue, 02 Jul 2019 23:11:17 +1000
Message-ID: <CAFU7BAShnFAApACS2+fBH7oqqLrO1oHCxm78jjnJrCPnvFtVFg@mail.gmail.com>
Subject: Re: NAT64 in RA, draft-ietf-6man-ra-pref64
To: David Farmer <farmer@umn.edu>
Cc: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>, 6man <6man@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/ADAfOqMidKpg_syGd4e0PiiGwDw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Jul 2019 13:11:32 -0000
On Tue, Jul 2, 2019 at 10:09 PM David Farmer <farmer@umn.edu> wrote: > I mostly agree, but there is a scenario I've been thinking about; > > What if the network operator doesn't want RFC1918 and RFC 6598 IPv4 addresses synthesized at all? I suppose the NAT64 function could block these addresses. However, for a large enough population that could be a lot of useless traffic going to the NAT64 function. While on the other hand some network operators, especially enterprise operators, will probably want these addresses synthesized. Oh funny you should mention that..I've been thinking about it but have not managed to untangle the chain of RFCs yet... So, https://tools.ietf.org/html/rfc6052 explicitly states that "The Well-Known Prefix MUST NOT be used to represent non-global IPv4 addresses, such as those defined in [RFC1918] or listed in Section 3 of [RFC5735]. Address translators MUST NOT translate packets in which an address is composed of the Well-Known Prefix and a non- global IPv4 address; they MUST drop these packets." So I'd expect that if I run an internal network which has some Ipv4-only segments and would like to ensure they are not translated, all should work fine if those segments are using RFC1918 address space and WKP is used for translation. However DNS64 RFC does not explicitly mention that. https://tools.ietf.org/html/rfc6147#section-5.1.4 talks about Exclusion Set for AAAA Records but it only recommends including ::ffff/96 by default. Does it mean that if I do not explicitly configure the exclusion set for the DNS64 *somehow*, the DNS64 is going to synthesise AAAA for RFC1918 space using the WKP while the translators would drop those packets? RFC6146 does not mention RFC1918 or WKP but it refers to RFC6052 so I'd expect it to inherit the requirement of not using the WKP with RFC1918 addresses...But I could not find the explicit confirmation. -- SY, Jen Linkova aka Furry
- NAT64 in RA, draft-ietf-6man-ra-pref64 Michael Richardson
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Michael Richardson
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Lorenzo Colitti
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Michael Richardson
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Michael Richardson
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Michael Richardson
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Lorenzo Colitti
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Lorenzo Colitti
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Fred Baker
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Erik Kline
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Lorenzo Colitti
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 David Farmer
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Lorenzo Colitti
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 David Farmer
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Fred Baker
- RE: NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- RE: NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- RE: NAT64 in RA, draft-ietf-6man-ra-pref64 Manfredi (US), Albert E
- RE: NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Gert Doering
- RE: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 David Farmer
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 Jen Linkova
- RE: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- RE: NAT64 in RA, draft-ietf-6man-ra-pref64 Mudric, Dusan (Dusan)
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 JORDI PALET MARTINEZ
- Re: [v6ops] NAT64 in RA, draft-ietf-6man-ra-pref64 Mark Andrews
- Re: NAT64 in RA, draft-ietf-6man-ra-pref64 David Farmer