IETF Logo Mail Archive

RE: SRH insertion vs SRH insertion + encapsulation

Ron Bonica <rbonica@juniper.net> Mon, 09 September 2019 20:09 UTC

Return-Path: <rbonica@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DD7E1200F5; Mon, 9 Sep 2019 13:09:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9gT8_8p7OzwU; Mon, 9 Sep 2019 13:09:54 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D4F21200C7; Mon, 9 Sep 2019 13:09:54 -0700 (PDT)
Received: from pps.filterd (m0108161.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id x89K4I6M017008; Mon, 9 Sep 2019 13:09:50 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=SUZ8jlYHv6N3F6Rh3eZvFQ0bGnPBLhN3Pe9I3VPfYJ4=; b=D774gbgi5rE64vRzXDo1XjvSgTuT5AF5aMlAfoYE+m0BKW6SpInerkKdSwnqjRN85tNE yekqBoIGN6JQQ+AXR4sFIipnNUuGHY1mUOrf3+2gangWPnRFKwEJwPQdUPEarinHsZAn QBnoFrd8MCybOaNdJS76ehUW93m/Gxx+yWpyqYV83bDsTqlnKCCIJAl30bxMxuX3fEwK 1myP7uyvTvzqzR+yorEkMTgFB2ZkIuhrz5MCeF9YoFbKzl8c96wtsgK7qAMcFh+sy3kZ Qlv2s7OcaCUXtPU5mL8mkqr9rU79SsPaMwfftA+mPrMn0eybPmqTRF0ir63c0mNo0f2e Bw==
Received: from nam01-sn1-obe.outbound.protection.outlook.com (mail-sn1nam01lp2053.outbound.protection.outlook.com [104.47.32.53]) by mx0b-00273201.pphosted.com with ESMTP id 2uvbnwuj20-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 09 Sep 2019 13:09:50 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YLXeBavXSYb+anx1010taf+JbBZQJIh5FRvLZEKsf2yRINWQAdIfLCoqt4d3CC9hcfT0rp8+naQjKUQFnG1KwyxXItsgKRcaxLVQb6v977A0VFn1xOjNvA0ocANHX3uq2qhsSMhCtZ7jHl0z7aKlKgLH2847iCmeQ0wJHM9Us860su6aK1nvKVhgxQDFNsmhW873Bh4+hjuOvXFHGHlRSnSZfyjzV1Tip7jdWUq+caYyyyF8Dnn6+8d90YLJ6edsGqwx2aDaT9D045bwW0wrx1MwuCQRE3L6wffLY2VbyilDkQAzBKJ/udsL9blpUeIvqYxVTe78NDo3h4OESJM7oA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SUZ8jlYHv6N3F6Rh3eZvFQ0bGnPBLhN3Pe9I3VPfYJ4=; b=BHKh2WqcrIW0rcYzMSDy0wNQlBXEX4+j6O48qq2ssFVrrDM4jNJT9BDRlC1GJ4PPDJ9F70QbOMqTMYeQaqzfHczHUdT4LGsyUyUfmpuritDdIswcqbnbQ3wAGsskYR2Y8n9ohr5NBfAE1Exo9+kx9Ebf4jYxPmiLjaVFUfzGWuQQI5dUPUshlnNphl2iuZjqgcXhHR0hTVpKZKOtXfAOiGIbcqP5JCh9IUdlxOJkMn3X0s51AG5+wbN2nXHIzui7U07zMrAVcDJnB4bEq52rWPaGo76fSpkfzPmaKLhXt7H86uZRvqOyo7MWNXC+H63r5I4s5X9ETbLLx/eimN6ufg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
Received: from BYAPR05MB5463.namprd05.prod.outlook.com (20.177.185.144) by BYAPR05MB5607.namprd05.prod.outlook.com (20.177.186.156) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2263.6; Mon, 9 Sep 2019 20:09:48 +0000
Received: from BYAPR05MB5463.namprd05.prod.outlook.com ([fe80::f4f2:f284:d49a:890a]) by BYAPR05MB5463.namprd05.prod.outlook.com ([fe80::f4f2:f284:d49a:890a%4]) with mapi id 15.20.2263.005; Mon, 9 Sep 2019 20:09:48 +0000
From: Ron Bonica <rbonica@juniper.net>
To: Ole Troan <otroan@employees.org>
CC: Robert Raszuk <robert@raszuk.net>, Mark Smith <markzzzsmith@gmail.com>, draft-voyer-6man-extension-header-insertion <draft-voyer-6man-extension-header-insertion@ietf.org>, "6man@ietf.org" <6man@ietf.org>
Subject: RE: SRH insertion vs SRH insertion + encapsulation
Thread-Topic: SRH insertion vs SRH insertion + encapsulation
Thread-Index: AQHVZWy1LXGmyD5/0k6niKwz9Ahon6cgHQCAgAALDQCAAKiwwIAASCAAgAJm2BCAADQJgIAAD71g
Content-Class:
Date: Mon, 09 Sep 2019 20:09:48 +0000
Message-ID: <BYAPR05MB5463C4A5FB802D9ED1A84A01AEB70@BYAPR05MB5463.namprd05.prod.outlook.com>
References: <BYAPR05MB5463306B3328F460C2417764AEB50@BYAPR05MB5463.namprd05.prod.outlook.com> <32ED6621-3D17-4EC8-AC11-AFE64F05E6A9@employees.org> <BYAPR05MB5463AD77FA21C76C5A68E68BAEB70@BYAPR05MB5463.namprd05.prod.outlook.com> <5A25A20C-3BE3-4CD0-8558-2FC6E1BE717A@employees.org>
In-Reply-To: <5A25A20C-3BE3-4CD0-8558-2FC6E1BE717A@employees.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2019-09-09T20:09:46.8244412Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=aaa5300f-83dc-4735-926e-4ef4fe5cd88f; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.2.0.14
dlp-reaction: no-action
x-originating-ip: [66.129.241.13]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 66bd389e-0a92-4980-3d3d-08d73561aa99
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600166)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:BYAPR05MB5607;
x-ms-traffictypediagnostic: BYAPR05MB5607:
x-microsoft-antispam-prvs: <BYAPR05MB5607E7FC567755588C7A4D13AEB70@BYAPR05MB5607.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 01559F388D
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(39860400002)(376002)(396003)(346002)(366004)(136003)(13464003)(189003)(199004)(86362001)(2906002)(476003)(5660300002)(186003)(53936002)(446003)(7696005)(7736002)(71200400001)(66946007)(66476007)(66556008)(64756008)(66446008)(76116006)(26005)(3846002)(305945005)(25786009)(478600001)(71190400001)(11346002)(54906003)(256004)(102836004)(14444005)(316002)(55016002)(9686003)(229853002)(6916009)(76176011)(14454004)(66574012)(53546011)(486006)(6116002)(66066001)(6506007)(99286004)(6436002)(52536014)(8676002)(4326008)(33656002)(6246003)(81156014)(81166006)(8936002)(74316002); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR05MB5607; H:BYAPR05MB5463.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: DM9VIl3hVE4Jf97vH/n6sl+JgeS2vlf7lYKngNrrqyVf+wgZ4lJHlCI1aLfWcWCgOg9pRVZrm0fZIqNiMuflmAgNyLgzK+/i7OivizwVvxD5GqQ54wnNLgbw/g1ojudP72vuwL9W7BXA74TCvCWrPN4VCAHbejWaqbG3Gg0z8P5ft5hZIY5z8GILA777a3+uiudYyFS5gPFd22zWu7FKLC5lcuAFaAg0QnjkT6crwnOWQ2uuwXf8Dv/zkGwgtUKhmwnNTeewTIH14OkHufglp8lpScQFL4E75kXpq+Cwqh/EIupodakI34X4PuNeY+taplXCtR3kPftsw0x3WEr/wSvilk+5xAFkk1y64dzk+GpndahhLfwRoOpcP6wov+P/j+GOMb6AaLuKyNtD8w5rglocpZvc6pU9cyooBSPrT18=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 66bd389e-0a92-4980-3d3d-08d73561aa99
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Sep 2019 20:09:48.4454 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jkRBr+tI1w4Skor0xaUPkzq56jeWF922m/0u/OudGfRij4RhErFEMtj/hd43qfqAXFEuSBVy4DRFUB6nvpb/8A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB5607
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.70,1.0.8 definitions=2019-09-09_07:2019-09-09,2019-09-09 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 lowpriorityscore=0 adultscore=0 impostorscore=0 clxscore=1015 malwarescore=0 suspectscore=0 mlxlogscore=999 phishscore=0 mlxscore=0 bulkscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-1906280000 definitions=main-1909090198
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/O9TvpCKIRw-O4grodQWckboaQno>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Sep 2019 20:09:57 -0000

Ole,

I am a little worried about the Italian postal worker in your example. She opened the outer box, which should have had the following return address:

- ACME Shipping, Boston, USA

She knows and trusts the ACME Staff in Boston, so she eats the Jelly Belly's. But the people in Boston didn't put the Jelly Belly's in the box. Some guy in London did.

So now, any trust that she had bestowed upon the ACME staff in Boston has been usurped by a stranger in London.

                                                                    Ron


Juniper Business Use Only

-----Original Message-----
From: Ole Troan <otroan@employees.org> 
Sent: Monday, September 9, 2019 2:49 PM
To: Ron Bonica <rbonica@juniper.net>
Cc: Robert Raszuk <robert@raszuk.net>; Mark Smith <markzzzsmith@gmail.com>; draft-voyer-6man-extension-header-insertion <draft-voyer-6man-extension-header-insertion@ietf.org>; 6man@ietf.org
Subject: Re: SRH insertion vs SRH insertion + encapsulation

Dear Ron,

I think we both have used up our posting quota for long into next year, but I'll one more on this topic.

> There is a big difference between translating a packet’s source/destination address and adding something to a packet. The best way to explain this difference is with an analogy.
>  
> Assume the following:
>  
> 	• I, Ronald, am conversing with an Italian speaker through a translator
> 	• I say to the Italian speaker, through the translator, “your shoe is untied”
>  
> It is OK for the translator to tell the Italian speaker, “Aldo says that your shoe is untied”. He has translated my name into Italian, but not changed the message.
>  
> It is not OK for the translator to tell the Italian speaker, “Aldo says that your shoe is untied, and that you are ugly “.  If he were to do that, he would be originating a message and attributing it to me.

Translating the source address and/or destination address on the Internet is of course much worse than if a header inserted packet leaked.
Translation breaks fundamental parts of the Internet architecture, which has shaped the unidirectional centralized network we have been forced into today.

I do think you are attacking a strawman though. I don't think many, apart from Fernando is talking about changing 8200. I.e the ground rules for end to end IPv6.
The only realistic option for "header insertion" is within a limited domain.

A more fitting analogy would be something like:

- Ronald wants to ship a Birthday parcel to his aunt in Rome. He delivers the packet to the ACME shipping company in Boston
- The shipping company puts the parcel into a bigger sturdier box and gets it loaded onto the first ship bound for Europe.
- When arriving in London the European arm of ACME opens the outer box and slips a big bag of jelly babies in there and close the box up again.
- ACME's box then travel to Rome by train, and arrives to the Italian postal service.
- The Italian postal employee opens the box, eats the jellybabies and take Ron's birthday parcel to his aunt.

Of course if Ron had just shipped the parcel himself directly with the Best Effort Real Internet Inc company, it would have in half the time at half the cost, but the Italian postman would not have gotten any jelly babies...

Cheers,
Ole

PS: For unknown reasons Bassett Jellybabies are really hard to get hold of outside of the UK. Apparently because everyone else thinks the frosting looks like mold.

v2.23.0 | Report a Bug | By Email