Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-04.txt

Jeremy Duncan <jduncan@tachyondynamics.com> Tue, 21 November 2023 18:47 UTC

Return-Path: <jduncan@tachyondynamics.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A353C151701 for <ipv6@ietfa.amsl.com>; Tue, 21 Nov 2023 10:47:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.697
X-Spam-Level:
X-Spam-Status: No, score=-1.697 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, TRACKER_ID=0.1, T_KAM_HTML_FONT_INVALID=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, URI_HEX=0.1] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tachyondynamics.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RQHJYd4ZzOop for <ipv6@ietfa.amsl.com>; Tue, 21 Nov 2023 10:47:29 -0800 (PST)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2057.outbound.protection.outlook.com [40.107.220.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1D5E9C15155B for <ipv6@ietf.org>; Tue, 21 Nov 2023 10:47:28 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BuhfD/S8kmW+QVIhjWgIRmCcLoJIBfPFHfGEvDDSwtDiFOb6srSr/+aoYB3qhIxIyj1G+WWN58bdN2wbAJH+kvwWWKv5zacd1GFBjD1ivl2j0qB1Tp8YiCZcyfsikvpiQGZy/VKNO1ajlbp1EIF+u3UW5AZR62oPr22riMigg7vxGQiCDtVhMaaRGcUTCKaJqynoWgIXuU6RcKz/9WQzqayXGmQjSc71NkTOSoj7oUYZdw6pzuqkk2mbku2JQIndM1c4QB55PiGxvBbJbCnS94sGvuz8hMq4UTun5qdTge8lGlvfc3v2dML5l68uM0QFuGSMQQMY09HfE0m5nzWxgA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uCBAePToroBT1BgeVs8T7BV4AdGY17XIujGL9fsnl+o=; b=VmFrTJQSZtrVyZl482NozwPBB719kh+htvr8DiIF2nPpkDT8UmftsYIIVVra36NdAPhYcSuMmobXp1S4b6PQuVofCcJ+TKqR/z7l70K5ZjTbN4BxkKK5lnzbYs7Rw/juz4YyPY8DoVFPc0WBgnTACgQujsjT9oYaI25SlMLt2iPwIgypa/jJZCBYzXOSbchtX/n7MgPcDbJYhU+3efD1akxuKBw3TXEFVH64uStOs+eMQx79Y4/dGOW3sMGkM5dXO/HgMZZjpAkg9uTzqRLLY/XrvCazqjgs1EeC+gl0b7U+eAHV6JIgtN5cVNNEEUsowmQCShYAeH1S/qRGIFialg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=tachyondynamics.com; dmarc=pass action=none header.from=tachyondynamics.com; dkim=pass header.d=tachyondynamics.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=TachyonDynamics.onmicrosoft.com; s=selector2-TachyonDynamics-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=uCBAePToroBT1BgeVs8T7BV4AdGY17XIujGL9fsnl+o=; b=ZEHbD/1SldmXDb4l0whe7O57qwwRm/OptLNrWOhsSdJiD9+zvb1UecxanGdgJYPRuuLM6Fokg8ow/vtQG8ZBuNg+2TYzvk+KZs6EeMUDAiXbt6sjfRc/IcWVnC091AbSd1eZKATe2tBYZ4VKIvmyKkpU01KFfoN0ULZbKat7/wQ=
Received: from BL1PR18MB4277.namprd18.prod.outlook.com (2603:10b6:208:308::11) by DM8PR18MB4517.namprd18.prod.outlook.com (2603:10b6:8:39::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7002.28; Tue, 21 Nov 2023 18:47:24 +0000
Received: from BL1PR18MB4277.namprd18.prod.outlook.com ([fe80::4469:4f7:146:d4bb]) by BL1PR18MB4277.namprd18.prod.outlook.com ([fe80::4469:4f7:146:d4bb%3]) with mapi id 15.20.7002.028; Tue, 21 Nov 2023 18:47:24 +0000
From: Jeremy Duncan <jduncan@tachyondynamics.com>
To: "ipv6@ietf.org" <ipv6@ietf.org>
Thread-Topic: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-04.txt
Thread-Index: AQHaHKnc9coJwQ4SgUyOuQr0NnRcXLCFGpdg
Date: Tue, 21 Nov 2023 18:47:24 +0000
Message-ID: <BL1PR18MB42775FF0500E4EDBF6FF5D9BACBBA@BL1PR18MB4277.namprd18.prod.outlook.com>
References: <170059183545.4282.16453796503536671445@ietfa.amsl.com>
In-Reply-To: <170059183545.4282.16453796503536671445@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=tachyondynamics.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BL1PR18MB4277:EE_|DM8PR18MB4517:EE_
x-ms-office365-filtering-correlation-id: a024ada6-0426-4636-f045-08dbeac24d85
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL1PR18MB4277.namprd18.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(39830400003)(346002)(366004)(376002)(396003)(136003)(230922051799003)(451199024)(64100799003)(1800799012)(186009)(966005)(122000001)(55016003)(83380400001)(99936003)(7696005)(6506007)(478600001)(40140700001)(9686003)(166002)(71200400001)(53546011)(66574015)(38100700002)(64756008)(66446008)(66946007)(6916009)(316002)(66476007)(66556008)(76116006)(86362001)(4001150100001)(5660300002)(2906002)(15650500001)(38070700009)(41300700001)(33656002)(52536014)(8936002)(8676002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/related; boundary="_004_BL1PR18MB42775FF0500E4EDBF6FF5D9BACBBABL1PR18MB4277namp_"; type="multipart/alternative"
MIME-Version: 1.0
X-OriginatorOrg: tachyondynamics.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL1PR18MB4277.namprd18.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a024ada6-0426-4636-f045-08dbeac24d85
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Nov 2023 18:47:24.8217 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 306ea27d-bb9d-47c1-a6ca-c70495fc7695
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fni6BYat1nwlcqol45XBJ3ouRQJFVQ7tWQE0ora2mDsyT7QCttpf2/fr7+SZ+yeQy00cjk7ggfbxECFrMzaifBuLldjQCsE27TtYZrelQSI=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM8PR18MB4517
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/j6nMq6xSZfWH4SyPw4vciB_vYgo>
Subject: Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-04.txt
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Nov 2023 18:47:33 -0000

Hi all-


Here's some quick testing results using a windows system with a modified precedence table (per the draft). BLUF: These document changes won't kill a system (or even slightly impair it) if has ULA and IPv4 (where ULA is 100% private and IPv4 can reach internet resources). HE works phenomenally in these cases. One little thing, I moved ULA (35) above IPv4 in order to not have to change the IPv4 precedence on my machine. Either way, ULA (35) is above IPv4 (30) - even though our draft has ULA at 30 and IPv4 and 20. Would result in the same.


[cid:image001.png@01DA1C80.4404D550]


Our internal ULA test web server using ULA:
test.dod.local has address 10.6.0.10
test.dod.local has IPv6 address fd50:689c:7c52:1::10

The public GUA web server:
www.npr.org<http://www.npr.org> is an alias for nprweb.edgekey.net.
nprweb.edgekey.net is an alias for e103193.dsca.akamaiedge.net.
e103193.dsca.akamaiedge.net has address 23.212.249.205
e103193.dsca.akamaiedge.net has address 23.212.249.197
e103193.dsca.akamaiedge.net has IPv6 address 2600:1405:4000::1727:e540
e103193.dsca.akamaiedge.net has IPv6 address 2600:1405:4000::1727:e511


With IPv4 and IPv6
new precedence set on windows per above**

src ULA with IPv4 private - destination DNS w/ A and AAAA (ULA)
**browser -> http://test.dod.local
**resolves A & AAAA
**tries w/ IPv6 ULA -> ULA first
**connects good

src ULA with IPv4 private - destination DNS w/ A and AAAA (GUI)
**browser -> http://www.npr.org
**resolves A & AAAA
**tries ULA -> GUA first, fails
**HE switches
**connects IPv4 -> IPv4 good -- slight delay (like super microseconds)


IPv6 Only
IPv6 Only w/ ULA SRC***
**browser -> http://www.npr.org
**resolves A & AAAA
**tries ULA -> GUA
**does not connects fails

IPv6 Only w/ ULA SRC*** with NPT (or NAT64) - dst ULA
**browser -> http://test.dod.local
**resolves A & AAAA
**tries w/ IPv6 ULA -> ULA first
**connects good

IPv6 Only w/ ULA SRC*** with NPT (or NAT64) - dst GUA
**browser -> http://www.npr.org
**resolves A & AAAA
**tries ULA -> GUA first
**connects IPv6 ULA -> IPv6 GUA good -- with NPT (or NAT64)





0101001101100101011011010111000001100101011100100100011001101001



Jeremy Duncan

IPv6 Architect, Managing Partner

Tachyon Dynamics, Inc

Phone: (703) 259-8550 x 103

Fax: (703) 259-8548

https://www.tachyondynamics.com



-----Original Message-----
From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org
Sent: Tuesday, November 21, 2023 1:37 PM
To: i-d-announce@ietf.org
Cc: ipv6@ietf.org
Subject: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-04.txt



Internet-Draft draft-ietf-6man-rfc6724-update-04.txt is now available. It is a work item of the IPv6 Maintenance (6MAN) WG of the IETF.



   Title:   Preference for IPv6 ULAs over IPv4 addresses in RFC6724

   Authors: Nick Buraglio

            Tim Chown

            Jeremy Duncan

   Name:    draft-ietf-6man-rfc6724-update-04.txt

   Pages:   11

   Dates:   2023-11-21



Abstract:



   This document updates [RFC6724] based on operational experience

   gained since its publication over ten years ago.  In particular it

   updates the precedence of Unique Local Addresses (ULAs) in the

   default address selection policy table, which as originally defined

   by [RFC6724] has lower precedence than legacy IPv4 addressing.  The

   update places both IPv6 Global Unicast Addresses (GUAs) and ULAs

   ahead of all IPv4 addresses on the policy table to better suit

   operational deployment and management of ULAs in production.  In

   updating the [RFC6724] default policy table, this document also

   demotes the preference for 6to4 addresses.  These changes to default

   behavior improve supportability of common use cases such as, but not

   limited to, automatic / unmanaged scenarios.  It is recognized that

   some less common deployment scenarios may require explicit

   configuration or custom changes to achieve desired operational

   parameters.



The IETF datatracker status page for this Internet-Draft is:

https://datatracker.ietf.org/doc/draft-ietf-6man-rfc6724-update/



There is also an HTMLized version available at:

https://datatracker.ietf.org/doc/html/draft-ietf-6man-rfc6724-update-04



A diff from the previous version is available at:

https://author-tools.ietf.org/iddiff?url2=draft-ietf-6man-rfc6724-update-04



Internet-Drafts are also available by rsync at:

rsync.ietf.org::internet-drafts





--------------------------------------------------------------------

IETF IPv6 working group mailing list

ipv6@ietf.org<mailto:ipv6@ietf.org>

Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6

--------------------------------------------------------------------