IETF Logo Mail Archive

Re: [EXTERNAL] Extending a /64

Gyan Mishra <hayabusagsm@gmail.com> Mon, 09 November 2020 15:41 UTC

Return-Path: <hayabusagsm@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E18F3A1140 for <ipv6@ietfa.amsl.com>; Mon, 9 Nov 2020 07:41:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8fFDd07uEIWq for <ipv6@ietfa.amsl.com>; Mon, 9 Nov 2020 07:41:44 -0800 (PST)
Received: from mail-vk1-xa2d.google.com (mail-vk1-xa2d.google.com [IPv6:2607:f8b0:4864:20::a2d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E78C3A113C for <ipv6@ietf.org>; Mon, 9 Nov 2020 07:41:44 -0800 (PST)
Received: by mail-vk1-xa2d.google.com with SMTP id i3so837573vkk.11 for <ipv6@ietf.org>; Mon, 09 Nov 2020 07:41:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=jojdHQYtWLht/iQrCtzULVOAZ9XBwj+Sbiu0fecXoao=; b=l0kq/78nc6DUCHPX4ffSX8hjpuFa1fNvEj0b3hVlJud6m+1cOtMyzvkVQ9qAeeSRkq PSZ0pAw0V5WxN7zynUX6rcgghOiWw3E1E6poeX/nSkBt+5thI9DD4UCg7ZiUcrVQCH3f Z82mP4dyJ08rxNZdIlE7DnG296y0eQ/nEmKlJdSC7S3LHL6Au9Qmf0I4SYyiVuIfo79m 048cUgQvHv3R+nyT3Rkn5oj4JoYBP/6wnxxY5PBrYFWNVY4fTtnpHknjFQ7o4X73fJpc Pxu9jmBvgDFEGOjCCFxsatxvEh0PCEWSvQ5a0TjsysZzYzL5w5dJXUCxCtCEFve5Zskl kh1g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=jojdHQYtWLht/iQrCtzULVOAZ9XBwj+Sbiu0fecXoao=; b=ZLRMSJ3fHOnqvnjV9KoShWJv0p6f2hMx6B4up0N4L4PBUflu6aAZh/yxFW03XDdFuw BBTQI/LEu869g1VH6pSGWgXSQp/er/M7icjKKxrMOi2QPCoj7JdY8j3xXvUyecxOCL2j UhKk7b9q2d8AgLOlcz+fiNEX79dorUnaekGBDjQMUY1cn5jiLAWvXfvXZ6QlpheFKmPu RfTHc4Zxpp6fqbiX/zqSgoZq4zzeougK5DSbrQerrUCN2EJAM3GPBMEIADuMbvd0k7eY hN4fR/DCOe4ZKc2bfguruSVQXWZXPYvn7fRiCcMJ5dw0UI//BmcfvXIr7S0BGAZx3qew XhBw==
X-Gm-Message-State: AOAM531A3JT4yWgXuJsaQFx12B5f88yj0WH34jl+L4wXDGc9d15mN+0Q +v+MfoXevZ0cOuhVOl/uAG2FEN3tWZVXIoF7iko=
X-Google-Smtp-Source: ABdhPJwJvm1wgZcjATRP10NdrXgdLYnuefos9FvLYvf6K1aJwGiX6KI49EzLaRBn8Yyx8qC6r+HI7TUDFf6nS1KS2xU=
X-Received: by 2002:a1f:f284:: with SMTP id q126mr520721vkh.15.1604936503426; Mon, 09 Nov 2020 07:41:43 -0800 (PST)
MIME-Version: 1.0
References: <005ECBB3-088B-4363-BB53-8D4AD25CA3D2@employees.org> <b468124f-f85b-7e20-a354-c6b7eaba3447@mccallumwhyman.com> <CAO42Z2wCN_obj-TpaUP23GRMUDwG6RyjsqhmY1ysAcSFigrLaw@mail.gmail.com> <a6d10c8f-b45e-a63b-e348-3b228007d889@mccallumwhyman.com> <b308d0105c3242488943bf233d2b900d@boeing.com> <CAO42Z2wiZct0dTaOEP586_06KM6pg0C2axq25KA3stmys1OgQA@mail.gmail.com> <8fe9b163b4f64815b603b758620515da@boeing.com> <CABNhwV2b5Xa7X0jUZRJ=TX8PFADCCEHqDkctvNSuqRxtArZgLA@mail.gmail.com> <034201BD-2856-471D-A628-81FB8604575D@employees.org>
In-Reply-To: <034201BD-2856-471D-A628-81FB8604575D@employees.org>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Mon, 09 Nov 2020 10:41:32 -0500
Message-ID: <CABNhwV3Ecd3s=28sW090jSi5j5ar8PZdbrA15UDVAE2DQt4_aQ@mail.gmail.com>
Subject: Re: [EXTERNAL] Extending a /64
To: otroan@employees.org
Cc: 6man WG <ipv6@ietf.org>, "Manfredi (US), Albert E" <albert.e.manfredi@boeing.com>
Content-Type: multipart/alternative; boundary="0000000000002c7fec05b3ae66f3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/wBuPcN6WgbhsMzabXASTZs4jDaQ>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Nov 2020 15:41:47 -0000

On Mon, Nov 9, 2020 at 2:26 AM <otroan@employees.org> wrote:

> Gyan,
>
> So far the only technical/relevant to protocols problem I have managed to
> extract from these discussions is the one I stated starting this thread.
>
> "The problem of an end-user that has been allocated only a /64; how can
> she extend her network with multiple links".
>
> Do you concur with that?


    Agreed.  The use case could be any use case where you are given a /64
by the service provider and have a requirement to further segment to
multiple downstream devices.

    Here is a second major issue below.

    Please see this thread with subject “ SLAAC, Static & DHCPv6 day 1
interoperability issue”.

 I just responded to Brian Carpenter on the thread.

>
>
> Best regards,
> Ole
>
> > On 9 Nov 2020, at 01:28, Gyan Mishra <hayabusagsm@gmail.com> wrote:
> >
> >
> > One of the major benefits of IPv6 is that IPv6 scarcity is non existent
> of address space  exhaustion and thus the need for NAT eliminated.
> >
> > There are still special use cases for security hide NAT to hide internal
> space or dual homing.
> >
> > As IPv4 is limited in registered space the use of RFC1918 and NAT is
> much more widespread as compare to IPV6 use of ULA with NAT as the use
> cases are far less due to v6 scarcity being non existent.
> >
> > As we know all the pains of NAT from IPv4 and NAT ALG complexities
> learnings and NAT for IPV6 should be an absolute last resort if no other
> option is available.  Also DNS NAT complexity it’s best to stay clear of
> NAT on CPE.
> >
> > I would put changing slaac to prefer longer prefixes to be preferred
> well over NAT66.
> >
> > One other point to make is that even if ISPs race  to the bottom
> hypothetically which would never happen as IPv6 space will never be
> exhausted, but hypothetically we would only this unique situation which
> would never happen do Port address translation PAT  /127 outbound interface
> overload to extend IPv6 downstream devices.
> >
> > So by thinking to do NAT now as an optimal best solution is no different
> then the race to bottom FUD we are fearful of and are doing exactly that
> scenario of NAT66 to extend IPv6 to downstream devices.
> >
> > We might as well pretend we are at the race to the bottom now and have
> the ISP not wait for actual race to bottom  and  give us only a /127 wan IP
> now so can desperately use NAT as the optimal solution to extend IPV6 to
> our downstream devices.
> >
> > Gyan
> >
> > On Sun, Nov 8, 2020 at 4:46 PM Manfredi (US), Albert E <
> albert.e.manfredi@boeing.com> wrote:
> > From: Mark Smith <markzzzsmith@gmail.com>
> >
> > > See RFC2993.
> > >
> > > See also the 3 part "The Trouble With NAT" articles, using network
> operation criteria.
> > >
> > > https://blog.apnic.net/author/mark-smith/
> >
> > With IPv6, network prefix translation only (NPT), at the platform's
> interfaces with the ISPs.
> >
> > "The fundamental constraint of NAT is that it prevents IP nodes attached
> to the same network from acting as peers of each other."
> >
> > How so? I'm saying, these NAT problems, mostly experienced with NAPTs,
> either won’t happen, or can be managed in a platform with well-managed
> internal architecture. Is it a problem if state has to be maintained in
> such NAT (NPT) devices? I'd rather have that, than rely on the fixed ISPs,
> no? Plus, I'm not even using the NAT to provide some sort of inherent
> security benefit. Just using it to solve every single problem mentioned in
> these related threads. End to end connectivity can be retained.
> >
> > Yes, the NPT boxes have to be managed reliably, but in these scenarios,
> that's preferable to expecting wither the end systems or the ISPs, to do
> everything predictably.
> >
> > Bert
> > --------------------------------------------------------------------
> > IETF IPv6 working group mailing list
> > ipv6@ietf.org
> > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> > --------------------------------------------------------------------
> > --
> >
> >
> > Gyan Mishra
> > Network Solutions Architect
> > M 301 502-1347
> > 13101 Columbia Pike
> > Silver Spring, MD
> >
> > --------------------------------------------------------------------
> > IETF IPv6 working group mailing list
> > ipv6@ietf.org
> > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> > --------------------------------------------------------------------
>
> --

<http://www.verizon.com/>

*Gyan Mishra*

*Network Solutions A**rchitect *



*M 301 502-134713101 Columbia Pike *Silver Spring, MD

v2.23.0 | Report a Bug | By Email