IETF Logo Mail Archive

Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis

Ted Lemon <mellon@fugue.com> Wed, 20 March 2024 03:28 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6C515C15109D for <ipv6@ietfa.amsl.com>; Tue, 19 Mar 2024 20:28:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.905
X-Spam-Level:
X-Spam-Status: No, score=-6.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9g3YOYFe3hLm for <ipv6@ietfa.amsl.com>; Tue, 19 Mar 2024 20:28:43 -0700 (PDT)
Received: from mail-vk1-xa2f.google.com (mail-vk1-xa2f.google.com [IPv6:2607:f8b0:4864:20::a2f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CECD3C14F680 for <ipv6@ietf.org>; Tue, 19 Mar 2024 20:28:43 -0700 (PDT)
Received: by mail-vk1-xa2f.google.com with SMTP id 71dfb90a1353d-4d45bda6696so1008724e0c.1 for <ipv6@ietf.org>; Tue, 19 Mar 2024 20:28:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20230601.gappssmtp.com; s=20230601; t=1710905322; x=1711510122; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=dQrnwqlnfl6y5ULascu9TP+S5/rJwlMfRERWnbbSnNU=; b=ZTeVgYAr//uupRdOkg2i51/AAodq+K8YTJrwX28urPiWj+b7BxPeICdNe/FY6Gdrdd pikI/SN4a+7QmCq0S36XbquGobSUAUhWQEDMOc/2FeqIAwj9KEMwBRwJaIvlm63+KB7/ FJMTz+VkmGeYgcg9oBO3A1+ravqrZOd41KKUgzTnSS6KtQ42y1YclpcQlLzrT/MNKafY 92sdHdkigVLpcukOrebfUVxpy3lvOaM+DPBcT/+qPVhKrnaBdV7Y1faYwkUAajCZ9Qps 9auigP87+nKelTPb63v39dpxQiMj/ufcNREKqYuECQOfjwCeUuyC19NaDaW8URyl+qt8 dKNQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1710905322; x=1711510122; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=dQrnwqlnfl6y5ULascu9TP+S5/rJwlMfRERWnbbSnNU=; b=n9Syzmxw22pnNQlvCbvH8qBo99+WkVitkyJWpVZ2vsdCQ7mz4qbfbb1pMaO37vMQ8k P8Zu2ZYALwqIUn0PjJxcMUVHh88B8SDaGzCmqv98FxV8Sy/5ZrsG+wKQAh91lHefVWA5 eJzB/K+zM20aCKGMLl4glfYZ1BCHpQFtTnQ7RnSNCqIPPJK1KH48ii4nr5xGq8QZt7rb tv2X6bDgWLMi5m2K+UQJ1qGEUDElmR5xH0/WkxYFk25CfLgvTOHfFgbF4raUzYeYa53C stjBvUbVzA38fqjrh3b8Q1HW94Omr1xabc7AzCAPGanFK2J7MxWHO/uGOmjTI6D6abzW xdfw==
X-Forwarded-Encrypted: i=1; AJvYcCVvx69jQGYo7OiguUOSZdikMFr6WanOJxI7jQ4UD37BdBIL65JrhgeDoSSJKMDK9hIOuWD2twEbZdviY0l5
X-Gm-Message-State: AOJu0YyAnjARVHmpxWzM9jPSouyzyAxWsRL6lYZmBACssCBjTGQoOCRv NbFBpqIbIkJwH9OIKTwnfqJTA1YLyvFdt9Z8a9s0YltmPzfRSFOv3fu7c/xDmINVsmVd0I9A2RV i0a3jO4iIqxfiL0aBs+n1utxfzoQH8J35njovJA==
X-Google-Smtp-Source: AGHT+IGghVNv1N5gRn8IU2Ztfd1Cwzupsy2wXjy5CH6Pj6IODel0z6cYhgEs4wuaQ/6I5ZqyDOULqdmJ9ouoO2330hg=
X-Received: by 2002:a05:6122:448b:b0:4d3:cff6:79f0 with SMTP id cz11-20020a056122448b00b004d3cff679f0mr729842vkb.4.1710905321008; Tue, 19 Mar 2024 20:28:41 -0700 (PDT)
MIME-Version: 1.0
References: <df333346-f108-3782-0ff5-4bd85d7b49ac@gmail.com> <015F13BE-32F7-4C8B-8C86-C9153FE9C9E9@employees.org> <CAPt1N1mr+YLQjHf6wKK__-K1-Rywtg0K03DpwZZRz6USHOKfhA@mail.gmail.com> <39de45b5-eca1-d627-dac2-abe47f2e7bca@gmail.com> <CAPt1N1nwVSo=D9PXGAj9Hi5RUAK46aR_3P3kCLByDYXSN-UomA@mail.gmail.com> <645a37c1-6d3c-af54-e9ff-c743f07293b6@gmail.com> <CACMsEX-rXO6CWwmBy81AaAUBr7seZugVjVjUZSOxMia9VcnVpw@mail.gmail.com> <CAPt1N1nwoOa2PGMXYKh4GUxPCdonjV_5ymRdaDH3fxg34EmBww@mail.gmail.com> <CACMsEX9tfwvhKyxu52k2VYai8K3eN4wOMwetX60FW427d4s8Mg@mail.gmail.com> <CAPt1N1km9BY+8LS7=9V6O1bRJHkKkHWL2EV5T0PmSkAbF-4g0A@mail.gmail.com> <CO1PR15MB48111989259021237D4FA6E5A6332@CO1PR15MB4811.namprd15.prod.outlook.com> <CAPt1N1m+Z0Km1M1hOg2sVYpAoQX0bv-1UmE8Sp3EfxZ=WjNTPg@mail.gmail.com> <CO1PR15MB4811B7E1109B2EC543DB20CEA6332@CO1PR15MB4811.namprd15.prod.outlook.com> <CAPt1N1mCrCyAe7HBDQxFUyC=BNsszbRn9STTXVNC4U9xxdPwAg@mail.gmail.com> <63c47c6c-1a45-6d64-c17e-51e6aec8306d@gmail.com>
In-Reply-To: <63c47c6c-1a45-6d64-c17e-51e6aec8306d@gmail.com>
From: Ted Lemon <mellon@fugue.com>
Date: Wed, 20 Mar 2024 13:28:05 +1000
Message-ID: <CAPt1N1nUtBrh0dam7rCm-Tx4hGy4VJbH16c6r+bQTfV0EgaMBg@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Cc: IPv6 <ipv6@jima.us>, IPv6 List <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e750e406140f2f72"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/DUa9f9zZBosWgro8ivoloXniHJE>
Subject: Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Mar 2024 03:28:48 -0000

It will come as a shock to all, no doubt, but I read the document, and
specifically those bits.

The problem is not that this document doesn't solve that problem. It's that
it is not an unsolved problem: we do not need this document to solve that
problem.

As Lorenzo pointed out, if you use ULAs for your internal servers, and also
distribute whatever GUAs you get from the ISP through your network, you
never need to renumber your infrastructure because your ISP changes your
external GUA prefix. We don't even need to update source/dest address
selection to deal with this: you just do not use addresses in the
ISP-provided GUA in your configurations. So e.g. your internal DNS /only/
publishes the ULA, never the GUA. If you give your routing infrastructure
routable addresses, the addresses you configure are from your ULA.
Basically precisely what you would do if you were using NPTv6—the only
thing you change is that you also propagate the ISP-provided prefix for
external connectivity.

This should behave much better than NPTv6, because there isn't a weird
transition point at the edges of your network where magic happens that is
not seen internally.


On Wed, Mar 20, 2024 at 1:19 PM Brian E Carpenter <
brian.e.carpenter@gmail.com> wrote:

> On 20-Mar-24 15:08, Ted Lemon wrote:
> > I would appreciate it if we could discuss the merits and not the
> marketability of this proposal. When the IETF publishes a standards-track
> or informational document, we are indeed recommending the documented
> solution.
> >
> > It’s fine for you to disagree with me, but as a general principle IETF
> consensus should be based on technical arguments, not marketing arguments.
> Of course we want whatever we recommend to be something the market would
> use, but we don’t need to solve a problem simply because the market would
> buy the solution to the problem. There should be an actual problem to solve
> that is not already solved by an existing standard. That’s not the case
> here.
>
> Huh? While I don't think the applicability text in the draft is done yet,
> the "Address Independence" and  "NPTv6 Applicability" sections already
> describe use cases that are not otherwise satisfied.
>
> RFC 8678 is worth reading at this point, and the draft should certainly
> reference it.
>
>     Brian
>
> >
> > Op wo 20 mrt 2024 om 11:04 schreef IPv6 <ipv6@jima.us <mailto:
> ipv6@jima.us>>
> >
> >     Ted,
> >
> >     I don't think standardization is necessarily the implicit (or
> explicit?) endorsement that you're suggesting it is.
> >
> >     Some vendors already offer more or less the functionality in
> question; some network operators will implement this whether or not there's
> a Standards-track RFC outlining it (assuming they're not already). Not
> having an official-ish RFC just means they might do it more poorly.
> >
> >     Or they'll just do N:1 NAT/PAT/"NAT overload."
> >
> >     Or they'll just announce provider-independent space from every site
> (this would be a different kind of bad).
> >
> >     Or they'll just continue to not adopt IPv6, because it can't do the
> things to which they're accustomed on IPv4.
> >
> >     Technical purity aside, I'd rather have the least-bad option for the
> internet at large.
> >
> >     - Jima
> >
> >     ________________________________________
> >     From: Ted Lemon <mellon@fugue.com <mailto:mellon@fugue.com>>
> >     Sent: Tuesday, March 19, 2024 7:43 PM
> >     To: IPv6 <ipv6@jima.us <mailto:ipv6@jima.us>>
> >     Cc: Nick Buraglio <buraglio@forwardingplane.net <mailto:
> buraglio@forwardingplane.net>>; IPv6 List <ipv6@ietf.org <mailto:
> ipv6@ietf.org>>
> >     Subject: Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis
> >
> >     Is that a use case that the IETF would recommend in a
> standards-track document, though? This is my point: it's not wrong to
> document this. What I'm suggesting is that we shouldn't standardize it. We
> should not, e.g., have 7084-bis recommending it. Or anything else.
> >
> >     On Wed, Mar 20, 2024 at 10:34 AM IPv6 <mailto:ipv6@jima.us <mailto:
> ipv6@jima.us>> wrote:
> >     Lack of imagination (or maybe cursed knowledge) doesn't mean it only
> solves a single problem. ;-)
> >
> >     It also solves something of an edge case where a leaf site is
> numbered off of a core site's static address space, but needs selective
> local internet break-out for bandwidth-intensive workloads (which aren't
> desired to be backhauled through the core site).
> >
> >     (Sorry if it sounds niche; I didn't invent this construct. -_- )
> >
> >     - Jima
> >     ________________________________________
> >     From: ipv6 <mailto:ipv6-bounces@ietf.org <mailto:
> ipv6-bounces@ietf.org>> on behalf of Ted Lemon <mailto:mellon@fugue.com
> <mailto:mellon@fugue.com>>
> >     Sent: Tuesday, March 19, 2024 19:19
> >     To: Nick Buraglio <mailto:buraglio@forwardingplane.net <mailto:
> buraglio@forwardingplane.net>>
> >     Cc: IPv6 List <mailto:ipv6@ietf.org <mailto:ipv6@ietf.org>>
> >     Subject: Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis
> >
> >     On Tue, Mar 19, 2024 at 11:32 PM Nick Buraglio <mailto:mailto
> <mailto:mailto>:buraglio@forwardingplane.net <mailto:
> buraglio@forwardingplane.net>> wrote:
> >     Agreed, happiness should not determine success. From what I have
> seen (which is admittedly limited) moving from experimental to a "higher
> level" RFC is typically accompanied by something like a deployment status
> document, e.g. the SRv6 deployment status doc here
> https://datatracker.ietf.org/doc/html/draft-matsushima-spring-srv6-deployment-status
> <
> https://datatracker.ietf.org/doc/html/draft-matsushima-spring-srv6-deployment-status
> >
> >
> >     I think it's really important  to distinguish between "this draft
> solves a problem" and "this draft solves a problem that can't be solved
> already" and "this experiment has succeed and we can promote the document
> to informational or standards-track."
> >
> >     I think we can all agree that this draft solves a problem. I think
> it solves exactly one problem: allowing sites to keep stable internal
> addressing in the face of renumbering by ISPs and/or changing ISPs.
> >
> >     However, this problem can be addressed the way 7084 currently solves
> it: by numbering the internal network with a stable ULA and hosting
> services on addresses within that ULA rather than on a temporary GUA
> provided by the ISP.
> >
> >     Problems NPTV6 does not solve:
> >
> >     * MHMP (although it solves some aspects)
> >     * Internal address privacy
> >
> >     So I don't actually think this document does anything useful for the
> Internet community. I don't mind that there is a document that describes
> NPTv6, but I don't think it should be standards track or informational, and
> I don't think IETF documents should normatively reference it.
> >
> >     Regarding experiments, at least from a scientific perspective, an
> experiment needs to have a control group. If we wanted to know whether
> NPTv6 solved the problem in an easier way than dual ULA/GUA, we would want
> to set up an experiment where some sites continued to use IPv4, some used
> NPTv6, and some used ULA/GUA. As far as I know, no such experiment has been
> done, and no such comparison has been documented.
> >
> >     I think the presentation Paulo has just done is the most
> interesting, but what we are not seeing is an answer to the question "how's
> it going, what problems do you have, etc."
> >
> >
> > --------------------------------------------------------------------
> > IETF IPv6 working group mailing list
> > ipv6@ietf.org
> > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> > --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email