IETF Logo Mail Archive

Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis

Nick Buraglio <buraglio@forwardingplane.net> Wed, 27 March 2024 15:49 UTC

Return-Path: <buraglio@forwardingplane.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E6918C14F6E2 for <ipv6@ietfa.amsl.com>; Wed, 27 Mar 2024 08:49:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=forwardingplane.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id reG3lnm1le7X for <ipv6@ietfa.amsl.com>; Wed, 27 Mar 2024 08:49:51 -0700 (PDT)
Received: from mail-oi1-x229.google.com (mail-oi1-x229.google.com [IPv6:2607:f8b0:4864:20::229]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5AA06C180B55 for <ipv6@ietf.org>; Wed, 27 Mar 2024 08:49:46 -0700 (PDT)
Received: by mail-oi1-x229.google.com with SMTP id 5614622812f47-3c3d2d0e86dso1377226b6e.2 for <ipv6@ietf.org>; Wed, 27 Mar 2024 08:49:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=forwardingplane.net; s=google; t=1711554585; x=1712159385; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=ORbBUIIDGq32kjvedAXEamuq4vaJsFhu6Lwdd4TyVUA=; b=tJDb8dpV1d0W9OeysMbfHa7jAQGcztiKfiF7vGxoP9uRlfcZWcqb0dHNfmKXouPxUr y/X5HgtY9HKSshevz54XjvlmxTsCoJfc2TDzGRCA1LaZ4MGrC5smybMbQUUIKtzWoYQQ dRgejYahu26qZmWfszwCcf2eM2l9rYZL7LBHE=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1711554585; x=1712159385; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=ORbBUIIDGq32kjvedAXEamuq4vaJsFhu6Lwdd4TyVUA=; b=AMYYqKsFvtozgIqBa6Oo57HgxRoFrWmDjqR28qFhQcaO+IZiiZ7eHfRh7s/3MVg+RC dC+VAS+KJUa0yglMMMCFRpKBcULYa7jTQP92+6IEYOyEyFxWEqdEyIZUko1vt0MsqJLd BpuoVQNsbFlohV/mj0SnfqEe5lEv4oPYGqezLgRixxS9HCcporbZuMMDlShhTZQOSlo8 J4H/YBLCa2gApUwL3RG/BWUd2j3qp+3GX/D49wKw/mxFEX49vwSw/FKnl+vtnOy1OIrN 2kMS+l7GG+TGYm853qg2zRxG61DrIrWTMNqrTswrPvCKIrIscwfXtyUoD8WlieQ8+bzU PYrg==
X-Forwarded-Encrypted: i=1; AJvYcCWOHQI+t4+SddoOnJLFk4GKBlqZFJwZYvDNnGlsrMGPVdIxqVqJIHXo49DBPOi11UUFOMnHM8K02TPtTNi9
X-Gm-Message-State: AOJu0YxLplbK/aMmiHUjAuW0xyR7+GSEu51YjqPYSH9thzzu+FOQt81M uSEOo0P2cEZw0PNzJVo7yCNolTR4UQRWy2IuGEfSZbrpbaVAScZhjSgoTTbaT0Aig0sbli8N7nk SA7UUn3mr63bdNndEGxaSJPaDVUGxfAM2Gs7YNQEl3RrjoU8Jvw==
X-Google-Smtp-Source: AGHT+IHwmrv9JavuXfDJopON+fjKAtt2S8WZLsPFHDnPJCUFtgHFM90W828S5OSOaq8IBigLponwnfwKlEc51EDhnEY=
X-Received: by 2002:aca:1c11:0:b0:3c2:fef:2b5f with SMTP id c17-20020aca1c11000000b003c20fef2b5fmr327678oic.32.1711554585232; Wed, 27 Mar 2024 08:49:45 -0700 (PDT)
MIME-Version: 1.0
References: <CADmxuPF1AReQCSY13HjqXE+8Jofy_uoo1wmnzs8+whG7Tdc+UQ@mail.gmail.com> <836E3A12-FAAF-4C19-91A1-322203645AAA@employees.org> <CADmxuPEBXYeTPrJqfPEGaxmUM75iKQx6kfCcpHHjxyekZy0xuQ@mail.gmail.com> <2DB6E450-9EE4-438A-9D3B-78DDFF0CA78F@employees.org> <CAKD1Yr0+ArFfn7uZddMAGpxYroSxw-u=cpti4mwp_7-yRBSRSA@mail.gmail.com>
In-Reply-To: <CAKD1Yr0+ArFfn7uZddMAGpxYroSxw-u=cpti4mwp_7-yRBSRSA@mail.gmail.com>
From: Nick Buraglio <buraglio@forwardingplane.net>
Date: Wed, 27 Mar 2024 10:49:34 -0500
Message-ID: <CACMsEX_Can2Uc4dEvC+9B_zG3OuP0YwQnGr=4uQyrFcjjgLHjA@mail.gmail.com>
To: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>
Cc: Ole Troan <otroan@employees.org>, 6man WG <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000001129390614a65bca"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/sfOzt5CjyidrEkDsIBgRiT36TRc>
Subject: Re: [IPv6] Adoption call for draft-bctb-6man-rfc6296-bis
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Mar 2024 15:49:55 -0000

On Tue, Mar 26, 2024 at 8:31 PM Lorenzo Colitti <lorenzo=
40google.com@dmarc.ietf.org> wrote:

> On Tue, Mar 26, 2024 at 6:33 PM Ole Troan <otroan@employees.org> wrote:
>
>> The benefit of NAT class mechanisms, is that cost and benefit are
>> aligned. Only one side needs to deploy it.
>>
>
> Actually, the benefit of NAT class mechanisms is that *one party deploys
> them and another party incurs the costs*. NAT is great for the network
> operator, because it moves a number of problems out of the network
> operator's domain. But it doesn't do that by solving the problem, it does
> so by making the application's job more difficult.
>

I don't think that is typically true. I will definitely say from experience
that there is a significant operational cost to deploying any translation
tool, and more so when there is active state tracking and overload
involved. There are often (but not always) logging requirements to do these
things at scale, and there are definitely operational costs in dealing with
state table tracking and scaling. These don't exist at the same level for
mechanisms that do not track state and that do not masquerade using port
address translation. They may still incur application cost, or they may
not, that is always going to be based on the application stack and is more
likely in real time applications that don't use a third party intermediary,
as you have stated.
There are similarities in the translation toolkits, yes, they all perform
translation at some level. However, what is generally referred to as "NAT"
in the general term is typically PAT or NAPT or Masquerading, depending on
the nomenclature. That said, *because* it is significantly easier to deploy
NAPT, I do not believe that it is an apples to apples comparison. They're
all tools in the "translation" category, but they're definitely not all
created equally. NPTv6 does a 1:1 translation, the NAT that folks seem to
be referencing in the IPv4 world does not, and I do not believe it is a
reasonable comparison.  It's a far better comparison to say that NPTv6 is
like a traditional one-to-one NAT (which does still have notable, albeit
significantly fewer considerations, which I believe are noted in the
draft).


nb

--------------------------------------------------------------------

> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email