IETF Logo Mail Archive

Re: [Softwires] 4rd Address Mapping - version-01

xiaohong deng <dxhbupt@gmail.com> Tue, 04 October 2011 09:30 UTC

Return-Path: <dxhbupt@gmail.com>
X-Original-To: softwires@ietfa.amsl.com
Delivered-To: softwires@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B61EA21F8CEF for <softwires@ietfa.amsl.com>; Tue, 4 Oct 2011 02:30:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.342
X-Spam-Level:
X-Spam-Status: No, score=-3.342 tagged_above=-999 required=5 tests=[AWL=-0.043, BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xSrrNaOLctBm for <softwires@ietfa.amsl.com>; Tue, 4 Oct 2011 02:30:11 -0700 (PDT)
Received: from mail-wy0-f172.google.com (mail-wy0-f172.google.com [74.125.82.172]) by ietfa.amsl.com (Postfix) with ESMTP id 3599721F8CCC for <softwires@ietf.org>; Tue, 4 Oct 2011 02:30:11 -0700 (PDT)
Received: by wyh21 with SMTP id 21so359047wyh.31 for <softwires@ietf.org>; Tue, 04 Oct 2011 02:33:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=AsBLZ/UdBy+3xXBh0zfgl7VE8y0xOKXucal0fnJ+bgE=; b=gVrbJB3P5zPUwSqUcrGzSWxCjhormuI6ljuJzrSanETUuDq0KWit2dcy4w1WkQVH2x k6MW1WcSQzuo7iQWrPky2vly5r8jsQIh8PO1uUT4QOHESVwfk+Ftood7LJDXaw/mDkHf 7kxbANXQ+jqvqaXrvwa+ihHiDZj6FOt5daBs0=
MIME-Version: 1.0
Received: by 10.227.142.140 with SMTP id q12mr1253380wbu.18.1317720795027; Tue, 04 Oct 2011 02:33:15 -0700 (PDT)
Received: by 10.180.104.202 with HTTP; Tue, 4 Oct 2011 02:33:14 -0700 (PDT)
In-Reply-To: <9D3CDD5C-89EE-4FD0-9689-8DA862E7172F@laposte.net>
References: <CANb4Oc=QqdxCJVj+LNaOimZPT_mPPa-MQmwZaBM=92_QVrFiWA@mail.gmail.com> <9D3CDD5C-89EE-4FD0-9689-8DA862E7172F@laposte.net>
Date: Tue, 04 Oct 2011 17:33:14 +0800
Message-ID: <CANb4Oc=jomZDiPn5ew3yBDo-uKAznE=968mbE2+hgcgsP3s_Zg@mail.gmail.com>
From: xiaohong deng <dxhbupt@gmail.com>
To: Rémi Després <despres.remi@laposte.net>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: quoted-printable
Cc: softwires@ietf.org, wdec@cisco.com
Subject: Re: [Softwires] 4rd Address Mapping - version-01
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/softwires>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Oct 2011 09:30:12 -0000

Remi,

Appreciations to you too for your taking initiative.

More inline.

On Tue, Oct 4, 2011 at 10:34 AM, Rémi Després <despres.remi@laposte.net> wrote:
> Xiaohong,
>
> Thanks for you contribution for this debate.
> More below.
>
> Le 4 oct. 2011 à 15:26, xiaohong deng a écrit :
>
>> Hi Remi, Ole, Woj, and all,
>>
>> I understand the argument of IID bits is resulted from a last minute
>> agreement between 4rd and divi-pd people that having full IPv4 address
>> embedded in the address format helps source based classification,
>
> The agreement is just between those who participated.
> In no way does it commit the group to anything.
>
> Yet I believed it was useful to inform the group that something was found possible, in common by some proponents of encapsulation and double-translation solutions.

Absolutely.

>
>> but
>> before we argue that, shall we first make this agreement also be
>> accepted by community wide?
>
> No WG agreement can obviously be reached before an open exchange of views.
> Exchanging arguments is a necessary part of this process.

Exactly, and that's the reason why I threw this discussion.

>
>> As far as current time-being concerned, I
>> don't see a consensus has been reached on this agreement from
>> community wide.
>
> Very clear.
>
>> It IMHO would be helpful if anybody would clarify some details to 1)
>> first prove source based classification is either a valid or a
>> non-valid requirement for address mapping; For this regard, I would
>> begin with that why do we think the source based IPv4 classification
>> ability instead of the more general five-tuple based IPv4
>> classification ability should be reserved, when deliver IPv4 over
>> IPv6?
>
> After having checked details of our common understanding with Xing, Congxiao and Wojciech, I will very soon communicate what we found promising.
> Sorry for the time it took us.

Well. Stay tunned, and expect to hearing more..

>
>> and 2) then show us how much other efforts are required to achieve so
>> besides address format definition itself, in other words, if it's a
>> valid requirement, let's first have feasibility of this requirement
>> analyzed from both deployment and operational perspectives:
>>
>> 1. For double translation, how does a traditional router perform the
>> source based IPv4 packet classification on IPv6 (translated from IPv4)
>> packets? Or does it suggest that using IPv6 classification filters to
>> filter IPv4 packets?
>
> The latter was my understanding.
> With it, filters on IPv4-address, and IPv4-shared-addreses, can be exercised in existing devices if having appropriately configured IPv6-address filters.

Share the same understanding with you, yet seems we're still in the
guessing each other's idea stage; However once an agreement of this
requirement reached, I suppose it is fair to state it somewhere
explicitly how this (filtering IPv4 by IPv6 filters) works for the
sake of clarification, and of easing future deployment: for example,
maybe generating IPv6 filters from IPv4 address and/or ports would be
defined/implemented with devices somewhere in future. Just imagine who
could bear with calculating each IPv6 filters manually from IPv4..



> If this can be achieved with negligible capex and opex costs, and without obligation to do it, why not?


Well said.

Since it has been widely aware that migration to IPv6 costs, no matter
at opex or capex cost, and operators can choose approaches at
acceptable costs on both, increased opex should not be an argument
against any approach, yet stating the potential somewhere makes
operators' lives easier.


>
>
>> If so, should we also note that this suggests
>> IPv4 operation and managed are tightly coupled with IPv6 operation and
>> management? which in turn implies complexity in operational, or put in
>> other words,
>
>> OPEX increasing, the last thing among others that
>> operators would like to see.
>
> Indeed, keeping in mind also that a single well chosen standard tends to reduce overall costs.

Agreed, as long as it's feasible.

>
>> 2. For encapsulation, even if embedding source IPv4 addresses in the
>> lower bits of the address formats, where does the router find the
>> source port without de-capsulation? Are you suggesting also encode 16
>> bits port in the lower part of address? In either case, it leads to
>> the concerns of increased OPEX to operators stated above.
>>
>> Thoughts?
>
> An expectation is that copying an available information into a fixed part of an IID shouldn't be expensive at all, and that having IPv4 addresses and port-set IDs in clear form in IPv6 addresses should facilitate maintenance, even if no filter is configured.

Fully agreed with this point, but only question that if the source
address filtering is only what we want to perseve? What about
five-tuple (source address, source port, destination address,
destination port, protocol) filtering?

Cheers,
Xiaohong

>
> Cheers,
> RD
>
>
>> Cheers,
>> Xiaohong
>>
>>> Hi Qiong,
>>>
>>> Some fields of a unified address format for double translation and
>>> encapsulation might be unnecessary for hub and spoke, but using the
>>> same format should be advantageous for maintenance and training if for
>>> nothing else (assuming that any added complexity is negligible
>>> enough).
>>>
>>> Believing that a completely unified format is possible, I mentioned it to Alain.
>>> Also, I volunteered to be editor-coordinator for this to happen, but
>>> decision of who does what is his.
>>>
>>> Regards,
>>> RD
>>>
>>>
>>> Le 4 oct. 2011 à 00:13, Qiong a écrit :
>>>
>>>> Hi Remi and Wojciech,
>>>>
>>>> Thanks for your clarification. I fully agree with you that embedding the full IPv4 address in the last 64 bits would be quite helpful for some kind of source address classification and I also suggest that this can be taken in the same way for encapsulation-based approach. It would be easier for systems in-the-middle to identify the IPv4 address without packet decapsulation.
>>>>
>>>> I guess the thing that Ole has mentioned to "look at 24 bits in the middle of IPv6 address" is for CE to determine whether a downstream IPv6 packet should be taken for translation or native forwarding. Here, for a dual-stack host, there would be no difference in the first /64 bits for a native IPv6 packet and a translated packet. What's why the CE should further looking into the last 64 bits to determine the translation process or native forwarding. Maybe Ole can clarify for this part again.
>>>>
>>>> However, the situation would still be different in "Hub & Spoke" and "Mesh" mode. For Hub & Spoke case, since BR will have a default prefix/address, it would be easily to identify the translated traffic from native IPv6 traffic by just doing source address routing lookup for a downstream packet. So, the corresponding mechanics would be different.
>>>>
>>>> Thanks
>>>>
>>>> Best wishes
>>>>
>>>> Qiong
>>>>
>>>> 2011/10/3 Wojciech Dec <wdec at cisco.com>
>>>>
>>>>
>>>>
>>>>
>>>>    On 02/10/2011 02:58, "Qiong" <bingxuere at gmail.com> wrote:
>>>>
>>>>        Hi Ole and Remi,
>>>>
>>>>> This is my answer to your first (double) question.
>>>>> If it is not enough, as suggested below, please explain what you don't understand.
>>>>
>>>>            I specifically do not want a solution that changes forwarding behaviour for _all_ IPv6 packets.
>>>>            e.g. looking at 24 bits in the middle of an IPv6 address is such a change.
>>>>
>>>>            Woj> What are you referring to? Routing “just works” as normal and is non disaggregated because of the CE-index in the prefix. Classification can/is done on a subset of the v6 address, and that is perfectly legit.
>>>>
>>>>
>>>>            I don't understand what requirements you are basing this 'solution' on.
>>>>            if the 4rd / dIVI CE takes (a well known or provisioned) /64 prefix out of the delegated prefix. then why do you need any of that?
>>>>
>>>>
>>>>        Qiong : I agree that routing lookup for a provisioned /64 prefix would be better that extracting certain bits for each IPv6 address in CE. This would bring less change to existing routing model.
>>>>
>>>>        Woj> There is no change to the existing destination based routing model. Each CE is uniquely addressed by the CE bits in the top /64 – ie the CE index is as proposed by all the 4rd and divi-pd drafts. The full v4 source address of each CE is however also embedded in the interface-id, as per RFC6052. There appears to be no cost for this operation, and has the upside of the full v4 info visible in the header and allowing source based classification (should one want to do that).
>>>>
>>>>        Regards,
>>>>        Woj.
>>>>
>>>>        Best wishes
>>>>
>>>>        Qiong
>>>>
>>>>            _______________________________________________
>>>>            Softwires mailing list
>>>>            Softwires at ietf.org
>>>>            https://www.ietf.org/mailman/listinfo/softwires
>>>>
>>>>
>>>>
>>>
>>
>

v2.23.0 | Report a Bug | By Email