IETF Logo Mail Archive

[shara] draft-thaler-port-restricted-ip-issues-00 - A+P tunneling

Rémi Després <remi.despres@free.fr> Wed, 03 March 2010 17:46 UTC

Return-Path: <remi.despres@free.fr>
X-Original-To: shara@core3.amsl.com
Delivered-To: shara@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E13D928C1DC for <shara@core3.amsl.com>; Wed, 3 Mar 2010 09:46:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.68
X-Spam-Level:
X-Spam-Status: No, score=-1.68 tagged_above=-999 required=5 tests=[AWL=0.269, BAYES_00=-2.599, HELO_EQ_FR=0.35, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cMtVbSgVDXVK for <shara@core3.amsl.com>; Wed, 3 Mar 2010 09:46:38 -0800 (PST)
Received: from smtp6-g21.free.fr (smtp6-g21.free.fr [212.27.42.6]) by core3.amsl.com (Postfix) with ESMTP id D1C5828C18D for <shara@ietf.org>; Wed, 3 Mar 2010 09:46:36 -0800 (PST)
Received: from smtp6-g21.free.fr (localhost [127.0.0.1]) by smtp6-g21.free.fr (Postfix) with ESMTP id 4FFB9E08267; Wed, 3 Mar 2010 18:46:33 +0100 (CET)
Received: from [192.168.0.10] (per92-10-88-166-221-144.fbx.proxad.net [88.166.221.144]) by smtp6-g21.free.fr (Postfix) with ESMTP id 14B80E08215; Wed, 3 Mar 2010 18:46:31 +0100 (CET)
From: Rémi Després <remi.despres@free.fr>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Wed, 03 Mar 2010 18:46:27 +0100
Message-Id: <A7BE0643-692E-4C72-B811-1DFEF58F326F@free.fr>
To: Dave Thaler <dthaler@microsoft.com>
Mime-Version: 1.0 (Apple Message framework v1077)
X-Mailer: Apple Mail (2.1077)
Cc: shara@ietf.org
Subject: [shara] draft-thaler-port-restricted-ip-issues-00 - A+P tunneling
X-BeenThere: shara@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Sharing of an IPv4 Address discussion list <shara.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/shara>, <mailto:shara-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/shara>
List-Post: <mailto:shara@ietf.org>
List-Help: <mailto:shara-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/shara>, <mailto:shara-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Mar 2010 17:46:39 -0000

Dave,

1.
Thanks first for the fairness of the conclusion:
"It is possible that the same state benefits motivating the concept of port-restricted IP addresses may be possible in other approaches that do not involve assigning a port-restricted IP address to an interface, but this investigation is left to other documents."
(This is IMHO much better than the impression left in Hiroshima, after the Shara bof, that any A+P would necessarily be evil.)

2.
This sentence is important because, in several proposals, e2e A+P packets traverse domains where their exits depend on A+P via tunnels, with IP over IP encapsulations. 
Destinations of encapsulating packets are then in local address spaces (not in A+P spaces).
Thus, shared IPv4 addresses need not be assigned to any interface where ARP is applicable. 

3.
At the bottom of page 5, where you discuss the relationship between socket binds and roaming, you note that, if an application that accepts incoming connections doesn't care about its IP address but cares about its port, it may have problems in roaming scenarios.
In my understanding, this roaming application would have similar problems where service-provider-NATs have to be traversed. 
This issue being inherent to address sharing, it should be considered IMHO out of the scope of this draft.

4.
In page 6, you note that non-port-based protocols, ICMP in particular, can still be used with private addresses between two hosts behind the same NAT, and suggest that this is not possible where A+P is used. 
If A+P packets are locally encapsulated over private-address IPv4 (see point 2 above), this remains possible. 

5.
At the bottom of page 6, you suggest that complex evolutions of provisioning and management tools would be unavoidable.
If assigned port sets are algorithmically derived from addresses that are otherwise assigned (or some prefixes), this can be avoided. 
In my understanding, provisioning is in this case as simple as that of adding IPv6 to IPv4 with 6to4, ISATAP or 6rd.)  


To conclude, I look forward to a fair checking, with you if you are interested, of which problems would remain with the A+P part of the updated SAM proposal (in draft-despres-softwire-sam-00). 

Regards,
RD

v2.23.0 | Report a Bug | By Email