Re: Is NAT66 a help in migration to IPv6?
otroan@employees.org Mon, 30 November 2020 23:11 UTC
Return-Path: <otroan@employees.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D2623A0762 for <ipv6@ietfa.amsl.com>; Mon, 30 Nov 2020 15:11:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e-98l2_lZNV9 for <ipv6@ietfa.amsl.com>; Mon, 30 Nov 2020 15:11:55 -0800 (PST)
Received: from clarinet.employees.org (clarinet.employees.org [198.137.202.74]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 50D403A02DC for <ipv6@ietf.org>; Mon, 30 Nov 2020 15:11:54 -0800 (PST)
Received: from astfgl.hanazo.no (unknown [173.38.220.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by clarinet.employees.org (Postfix) with ESMTPSA id E3C3A4E11B2D; Mon, 30 Nov 2020 23:11:53 +0000 (UTC)
Received: from [IPv6:::1] (localhost [IPv6:::1]) by astfgl.hanazo.no (Postfix) with ESMTP id 6621D467D87F; Tue, 1 Dec 2020 00:11:51 +0100 (CET)
From: otroan@employees.org
Message-Id: <AC6854A4-1569-4DC1-AA74-312B993976BC@employees.org>
Content-Type: multipart/signed; boundary="Apple-Mail=_7CEFB74B-40EE-4454-A5DF-D603F9CB3465"; protocol="application/pgp-signature"; micalg="pgp-sha256"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.20.0.2.21\))
Subject: Re: Is NAT66 a help in migration to IPv6?
Date: Tue, 01 Dec 2020 00:11:50 +0100
In-Reply-To: <5bc4ca5e-03e4-fce1-4d80-b8e10e4a3b75@gmail.com>
Cc: Vasilenko Eduard <vasilenko.eduard@huawei.com>, 6man WG <ipv6@ietf.org>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
References: <8a37e3ea48b0451bb9a84ce4658bc8bb@huawei.com> <5bc4ca5e-03e4-fce1-4d80-b8e10e4a3b75@gmail.com>
X-Mailer: Apple Mail (2.3654.20.0.2.21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/EGJeF5ylEicNDnaeaIPBSDJa_KY>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Nov 2020 23:11:57 -0000
> Answering the question in the subject field: No [RFC2993] [RFC4864] [RFC6296]. > >> IMHO: no NAT66 -> no progress for IPv6 in Enterprises. Because redundant connectivity to Carriers is needed very often. > > It is, and that's why the failure of SHIM6 is very sad. But the real failure is the reluctance of enterprise operators to do what comes naturally in IPv6: if you have two providers, run two prefixes everywhere [RFC8028]. That's why there is still, sadly enough, a case for [RFC6296]. Sadly, because [RFC2993] explains why NAT or NPT is a problem, and [RFC4864] explains how to avoid them (and needs [RFC8028], which came very late, sorry). The failure of SHIM6 or ILNP or even 8+8 is indeed sad. MPMH hasn't exactly taken off. I ran it for a while but gave up. 8028 isn't enough, SADR is a big change. Enterprises don't want to depend on host behaviour for exit selection. Ref, the slaac-renum discussion I'd imagine Enterprises also wants a level of isolation from ISP/global addressing. Keeping track of 4++ addresses per-host isn't a favourite with Enterprise network operators either. And we can't exactly say that host implementations and applications have caught up with MPMH either. PI or LISP MH are available solutions. Multi-homing with NAT66 wouldn't work nearly as well (and you could argue stick with v4 then, which I guess is what they do). Ole
- Is NAT66 a help in migration to IPv6? Vasilenko Eduard
- Re: Is NAT66 a help in migration to IPv6? Lorenzo Colitti
- RE: Is NAT66 a help in migration to IPv6? Vasilenko Eduard
- Re: Is NAT66 a help in migration to IPv6? Fernando Gont
- Re: Is NAT66 a help in migration to IPv6? Fernando Gont
- Re: Is NAT66 a help in migration to IPv6? Brian E Carpenter
- Re: Is NAT66 a help in migration to IPv6? Tom Herbert
- Re: Is NAT66 a help in migration to IPv6? Simon Hobson
- Re: Is NAT66 a help in migration to IPv6? otroan
- Re: Is NAT66 a help in migration to IPv6? Fernando Gont
- RE: Is NAT66 a help in migration to IPv6? Vasilenko Eduard
- Re: Is NAT66 a help in migration to IPv6? Eric Vyncke (evyncke)
- RE: Is NAT66 a help in migration to IPv6? Ackermann, Michael
- Re: Is NAT66 a help in migration to IPv6? Eric Vyncke (evyncke)
- Re: Is NAT66 a help in migration to IPv6? Mark Smith
- Re: Is NAT66 a help in migration to IPv6? Brian E Carpenter
- Re: Is NAT66 a help in migration to IPv6? Jen Linkova
- Re: Is NAT66 a help in migration to IPv6? Philip Homburg
- Re: Is NAT66 a help in migration to IPv6? Alexandre Petrescu