RE: IPv6 only host NAT64 requirements?

<mohamed.boucadair@orange.com> Fri, 17 November 2017 06:52 UTC

From: mohamed.boucadair@orange.com
To: Michael Richardson <mcr@sandelman.ca>, 6man WG <ipv6@ietf.org>
Subject: RE: IPv6 only host NAT64 requirements?
Thread-Topic: IPv6 only host NAT64 requirements?
Thread-Index: AQHTXxxYyuElU1W99UW2Cmkb+owWL6MYIL0Q
Date: Fri, 17 Nov 2017 06:52:51 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B93300A07C3DA@OPEXCLILMA3.corporate.adroot.infra.ftgroup>
References: <m1eEGbJ-0000EhC@stereo.hq.phicoh.net> <D43E103C-27B8-48CF-B801-ACCF9B42533E@employees.org> <m1eEHPS-0000FyC@stereo.hq.phicoh.net> <59B0BEC0-D791-4D75-906C-84C5E423291B@employees.org> <m1eEIGX-0000FjC@stereo.hq.phicoh.net> <73231F8D-498E-4C77-8DA8-044365368FC9@isc.org> <CAKD1Yr1aFwF_qZVp5HbRbKzcOGqn==MRe_ewaA8Qc8t3+CVu_Q@mail.gmail.com> <44A862B7-7182-4B3A-B46E-73065FC4D852@isc.org> <D42D8D7A-6D19-4862-9BB3-4913058A83B6@employees.org> <CAFU7BARCLq9eznccEtkdnKPAtKNT7Mf1bW0uZByPvxtiSrv6EQ@mail.gmail.com> <183A8772-6FEF-43BD-97F9-DD4A2E21DB90@google.com> <5D9D33A8-88F0-4758-84FA-BCB364E8013F@employees.org> <16B61573-E233-40ED-8A22-CD145EBB8F98@google.com> <20377.1510865334@obiwan.sandelman.ca>
In-Reply-To: <20377.1510865334@obiwan.sandelman.ca>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/B7HZ7MYcl5hret10R4nJa8OWHGQ>
Precedence: list

Hi Michael, 

For the particular case of NAT64, this requirement from RFC6888 applies: 

   REQ-9:  A CGN MUST implement a protocol giving subscribers explicit
      control over NAT mappings.  That protocol SHOULD be the Port
      Control Protocol [RFC6887].

I'm not aware of any requirement for the LAN. The only recommendation I'm aware of is on the WAN interface of an IPv6 CPE:

   W-6:  The WAN interface of the CE router SHOULD support a Port
         Control Protocol (PCP) client as specified in [RFC6887] for use
         by applications on the CE router.  The PCP client SHOULD follow
         the procedure specified in Section 8.1 of [RFC6887] to discover
         its PCP server.  This document takes no position on whether
         such functionality is enabled by default or mechanisms by which
         users would configure the functionality.  Handling PCP requests
         from PCP clients in the LAN side of the CE router is out of
         scope.

Cheers,
Med

> -----Message d'origine-----
> De : ipv6 [mailto:ipv6-bounces@ietf.org] De la part de Michael Richardson
> Envoyé : jeudi 16 novembre 2017 21:49
> À : 6man WG
> Objet : Re: IPv6 only host NAT64 requirements?
> 
> 
> I thought we need PCP in order to enable any kind of incoming connections
> in
> the home.
> 
> The default security of rfc7084 section 4.5, which recommends using
> RFC6092:
> 
>               Recommended Simple Security Capabilities in
>                  Customer Premises Equipment (CPE) for
>               Providing Residential IPv6 Internet Service
> 
> denied incoming TCP SYN packets, although I can't find the exact sentence
> right now.
> 
> --
> ]               Never tell me the odds!                 | ipv6 mesh
> networks [
> ]   Michael Richardson, Sandelman Software Works        | network
> architect  [
> ]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails
> [

IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Tim Chown
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Rajiv Asati (rajiva)
Re: IPv6 only host NAT64 requirements? Tim Chown
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Lorenzo Colitti
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
IPv4 only apps [was: IPv6 only host NAT64 require… Brian E Carpenter
Re: IPv4 only apps [was: IPv6 only host NAT64 req… Ole Troan
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv4 only apps [was: IPv6 only host NAT64 req… Brian E Carpenter
Re: IPv4 only apps [was: IPv6 only host NAT64 req… Ole Troan
Re: IPv6 only host NAT64 requirements? Michael Richardson
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Philip Homburg
Re: IPv6 only host NAT64 requirements? Michael Richardson
Re: IPv6 only host NAT64 requirements? Lorenzo Colitti
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: IPv6 only host NAT64 requirements? Erik Kline
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? james woodyatt
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? james woodyatt
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? james woodyatt
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? james woodyatt
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
PCP, and 6434bis (was Re: IPv6 only host NAT64 re… Tim Chown
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Ca By
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Tim Chown
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Ca By
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… james woodyatt
Re: IPv6 only host NAT64 requirements? Michael Richardson
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Michael Richardson
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… james woodyatt
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Mark Andrews
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: IPv6 only host NAT64 requirements? Fred Baker
Re: IPv6 only host NAT64 requirements? Fred Baker
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Tim Chown
Re: IPv6 only host NAT64 requirements? james woodyatt
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: PCP, and 6434bis (was Re: IPv6 only host NAT6… Fernando Gont
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Mikael Abrahamsson
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Simon Hobson
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Mikael Abrahamsson
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Mikael Abrahamsson
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Ole Troan
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Mark Andrews
Re: IPv6 only host NAT64 requirements? Ole Troan
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Michael Richardson
Re: IPv6 only host NAT64 requirements? Alexandre Petrescu
Re: IPv6 only host NAT64 requirements? Ole Troan
RE: IPv6 only host NAT64 requirements? mohamed.boucadair
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
RE: IPv6 only host NAT64 requirements? Manfredi, Albert E
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: IPv6 only host NAT64 requirements? Jen Linkova
RE: IPv6 only host NAT64 requirements? Manfredi, Albert E
Re: IPv6 only host NAT64 requirements? Lee Howard
Re: IPv6 only host NAT64 requirements? Lee Howard
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Ole Troan
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Mark Andrews
RE: IPv6 only host NAT64 requirements? Masanobu Kawashima
Re: IPv6 only host NAT64 requirements? Mikael Abrahamsson
Re: IPv6 only host NAT64 requirements? Mikael Abrahamsson
Re: IPv6 only host NAT64 requirements? Jen Linkova
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Ola Thoresen
Re: IPv6 only host NAT64 requirements? JORDI PALET MARTINEZ
Re: IPv6 only host NAT64 requirements? Brian E Carpenter
Re: IPv6 only host NAT64 requirements? Alexandre Petrescu
Re: IPv6 only host NAT64 requirements? Ca By
Re: IPv6 only host NAT64 requirements? Brian E Carpenter