IETF Logo Mail Archive

Re: [EXTERNAL] Re: Extending a /64

Mark Smith <markzzzsmith@gmail.com> Mon, 09 November 2020 02:30 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 329A03A0E63 for <ipv6@ietfa.amsl.com>; Sun, 8 Nov 2020 18:30:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.597
X-Spam-Level:
X-Spam-Status: No, score=-0.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 16LrNmFEBLwy for <ipv6@ietfa.amsl.com>; Sun, 8 Nov 2020 18:30:40 -0800 (PST)
Received: from mail-ot1-x32e.google.com (mail-ot1-x32e.google.com [IPv6:2607:f8b0:4864:20::32e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9B88D3A0E50 for <ipv6@ietf.org>; Sun, 8 Nov 2020 18:30:40 -0800 (PST)
Received: by mail-ot1-x32e.google.com with SMTP id k3so7514689otp.12 for <ipv6@ietf.org>; Sun, 08 Nov 2020 18:30:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aDr7lB17zPkLkS27HJDce4cWcP3NokHFEI53i4PSHyA=; b=CTxaqa+1a5mEhNaOQGoSyv1xtMG9etVrvCIco2WjYXkP5YDBecOXQ8FRWy4Viy8FmY E62aaJTx5x54FqAmB6OyoDB7cBUl+xveB5kW9ZD72TOiIqzhNNvyG89CPzxfFef9dLjP vY/2NufjEA8uDDwBIZnk0B+Jd4RpT9f6EGFxo9zxUtOHKFMfMILb2mBbm9GQFdkvDDey J3+EM1d+G/RbkttLim6J0U34enSB6T+vqwsdt8OqV+kbd6f2R6BPC7EsKBrqvuUFBv3O 0nnZuhOlRPm3E6gML9/UKMkhjg43iuxmpiwoGfWqi0sUD/w4qlkHyXEMHWNDqxnofoiP InSw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aDr7lB17zPkLkS27HJDce4cWcP3NokHFEI53i4PSHyA=; b=SCkIPAlxDXLxW4PC3bBviw3q+y7lC/t0qGQSWaZpfsQv17M63IoHs69NwGKpmY0abP 6BgXdYP+6RcRUcGoUA4aGt1dCMwv4AkV/NrT45FIdT3sQmIWLejqKSiSh37vIRh28eey Y0H0tmsnKCz3hYeJ2LjcapbZBTzpja0Y2melddkGMJBBmuhT2Q2JUjBazHjB5t/U8AP5 I43NpkFZsxaLSetbsehc1W3likKe1ukrY1y8aq+Ye5QHsf0EelVW7NMgcqbgDnlaQQjb K/hEFSyu75qjZLEStrZFbFh0+lR36W2b1/H7L5WlzBiH40Ahz2aR+kjVPecYCfVy/FHW 3+8g==
X-Gm-Message-State: AOAM530w4R84BbBKuO5aRl0ZhnywDJk8G1+0xWhdJOucT94BivAqNUhX PO75I2TlIhhj3+MYUhGW/xT/mUfywXZaRFMP+1cyq6m3
X-Google-Smtp-Source: ABdhPJxs6J6o59T+nGpB67I+w66gza1XG+7Be3JQ7+LHDKCQFGvdXonyURM5krStGqB6LIURUiPunM8TYXbViDBKwRs=
X-Received: by 2002:a9d:a0d:: with SMTP id 13mr8374479otg.348.1604889039978; Sun, 08 Nov 2020 18:30:39 -0800 (PST)
MIME-Version: 1.0
References: <005ECBB3-088B-4363-BB53-8D4AD25CA3D2@employees.org> <b468124f-f85b-7e20-a354-c6b7eaba3447@mccallumwhyman.com> <CAO42Z2wCN_obj-TpaUP23GRMUDwG6RyjsqhmY1ysAcSFigrLaw@mail.gmail.com> <a6d10c8f-b45e-a63b-e348-3b228007d889@mccallumwhyman.com> <b308d0105c3242488943bf233d2b900d@boeing.com> <CAO42Z2wiZct0dTaOEP586_06KM6pg0C2axq25KA3stmys1OgQA@mail.gmail.com> <8fe9b163b4f64815b603b758620515da@boeing.com> <CABNhwV2b5Xa7X0jUZRJ=TX8PFADCCEHqDkctvNSuqRxtArZgLA@mail.gmail.com>
In-Reply-To: <CABNhwV2b5Xa7X0jUZRJ=TX8PFADCCEHqDkctvNSuqRxtArZgLA@mail.gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Mon, 09 Nov 2020 13:30:29 +1100
Message-ID: <CAO42Z2w2Ez8+ZccOYanYCe9s1JxM_qA6OdYh+OjNLyZCBLaU4g@mail.gmail.com>
Subject: Re: [EXTERNAL] Re: Extending a /64
To: Gyan Mishra <hayabusagsm@gmail.com>
Cc: "Manfredi (US), Albert E" <albert.e.manfredi@boeing.com>, 6man WG <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000021c2eb05b3a35964"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/r1CgM3sVxMYQwkKV9VUOkTBepGM>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Nov 2020 02:30:42 -0000

On Mon, 9 Nov 2020, 11:29 Gyan Mishra, <hayabusagsm@gmail.com> wrote:

>
> One of the major benefits of IPv6 is that IPv6 scarcity is non existent of
> address space  exhaustion and thus the need for NAT eliminated.
>
> There are still special use cases for security hide NAT to hide internal
> space or dual homing.
>

RFC4864.




> As IPv4 is limited in registered space the use of RFC1918 and NAT is much
> more widespread as compare to IPV6 use of ULA with NAT as the use cases are
> far less due to v6 scarcity being non existent.
>
> As we know all the pains of NAT from IPv4 and NAT ALG complexities
> learnings and NAT for IPV6 should be an absolute last resort if no other
> option is available.  Also DNS NAT complexity it’s best to stay clear of
> NAT on CPE.
>
> I would put changing slaac to prefer longer prefixes to be preferred well
> over NAT66.
>
> One other point to make is that even if ISPs race  to the bottom
> hypothetically which would never happen as IPv6 space will never be
> exhausted, but hypothetically we would only this unique situation which
> would never happen do Port address translation PAT  /127 outbound interface
> overload to extend IPv6 downstream devices.
>
> So by thinking to do NAT now as an optimal best solution is no different
> then the race to bottom FUD we are fearful of and are doing exactly that
> scenario of NAT66 to extend IPv6 to downstream devices.
>
> We might as well pretend we are at the race to the bottom now and have the
> ISP not wait for actual race to bottom  and  give us only a /127 wan IP now
> so can desperately use NAT as the optimal solution to extend IPV6 to our
> downstream devices.
>
> Gyan
>
> On Sun, Nov 8, 2020 at 4:46 PM Manfredi (US), Albert E <
> albert.e.manfredi@boeing.com> wrote:
>
>> From: Mark Smith <markzzzsmith@gmail.com>
>>
>> > See RFC2993.
>> >
>> > See also the 3 part "The Trouble With NAT" articles, using network
>> operation criteria.
>> >
>> > https://blog.apnic.net/author/mark-smith/
>>
>> With IPv6, network prefix translation only (NPT), at the platform's
>> interfaces with the ISPs.
>>
>> "The fundamental constraint of NAT is that it prevents IP nodes attached
>> to the same network from acting as peers of each other."
>>
>> How so? I'm saying, these NAT problems, mostly experienced with NAPTs,
>> either won’t happen, or can be managed in a platform with well-managed
>> internal architecture. Is it a problem if state has to be maintained in
>> such NAT (NPT) devices? I'd rather have that, than rely on the fixed ISPs,
>> no? Plus, I'm not even using the NAT to provide some sort of inherent
>> security benefit. Just using it to solve every single problem mentioned in
>> these related threads. End to end connectivity can be retained.
>>
>> Yes, the NPT boxes have to be managed reliably, but in these scenarios,
>> that's preferable to expecting wither the end systems or the ISPs, to do
>> everything predictably.
>>
>> Bert
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>>
> --
>
> <http://www.verizon.com/>
>
> *Gyan Mishra*
>
> *Network Solutions A**rchitect *
>
>
>
> *M 301 502-134713101 Columbia Pike *Silver Spring, MD
>
>

v2.23.0 | Report a Bug | By Email