IETF Logo Mail Archive

Re: [v4v6interim] [BEHAVE] [46translation] Proposal for new BEHAVEcharter

Fred Baker <fred@cisco.com> Fri, 24 October 2008 16:18 UTC

Return-Path: <v4v6interim-bounces@ietf.org>
X-Original-To: v4v6interim-archive@ietf.org
Delivered-To: ietfarch-v4v6interim-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 24DD93A69B9; Fri, 24 Oct 2008 09:18:25 -0700 (PDT)
X-Original-To: v4v6interim@core3.amsl.com
Delivered-To: v4v6interim@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EDA603A6979; Fri, 24 Oct 2008 09:18:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.683
X-Spam-Level:
X-Spam-Status: No, score=-105.683 tagged_above=-999 required=5 tests=[AWL=-0.753, BAYES_00=-2.599, DATE_IN_PAST_06_12=1.069, J_CHICKENPOX_13=0.6, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xT57Dxd-LJqD; Fri, 24 Oct 2008 09:18:22 -0700 (PDT)
Received: from sj-iport-2.cisco.com (sj-iport-2.cisco.com [171.71.176.71]) by core3.amsl.com (Postfix) with ESMTP id B959928C217; Fri, 24 Oct 2008 09:18:22 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.33,479,1220227200"; d="scan'208";a="98578607"
Received: from sj-dkim-1.cisco.com ([171.71.179.21]) by sj-iport-2.cisco.com with ESMTP; 24 Oct 2008 16:19:43 +0000
Received: from sj-core-5.cisco.com (sj-core-5.cisco.com [171.71.177.238]) by sj-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id m9OGJhhH021457; Fri, 24 Oct 2008 09:19:43 -0700
Received: from xbh-sjc-211.amer.cisco.com (xbh-sjc-211.cisco.com [171.70.151.144]) by sj-core-5.cisco.com (8.13.8/8.13.8) with ESMTP id m9OGJgAg005105; Fri, 24 Oct 2008 16:19:43 GMT
Received: from xfe-sjc-211.amer.cisco.com ([171.70.151.174]) by xbh-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 24 Oct 2008 09:19:43 -0700
Received: from [192.168.0.194] ([10.21.92.194]) by xfe-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 24 Oct 2008 09:19:41 -0700
Message-Id: <0EFD0E10-B267-4079-B772-AEC8BE2D61FD@cisco.com>
From: Fred Baker <fred@cisco.com>
To: Alain Durand <alain_durand@cable.comcast.com>
In-Reply-To: <C526256B.1C487%alain_durand@cable.comcast.com>
Mime-Version: 1.0 (Apple Message framework v929.2)
Date: Fri, 24 Oct 2008 16:21:44 +0800
References: <C526256B.1C487%alain_durand@cable.comcast.com>
X-Mailer: Apple Mail (2.929.2)
X-OriginalArrivalTime: 24 Oct 2008 16:19:41.0957 (UTC) FILETIME=[51ED5350:01C935F4]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=4438; t=1224865183; x=1225729183; c=relaxed/simple; s=sjdkim1004; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=fred@cisco.com; z=From:=20Fred=20Baker=20<fred@cisco.com> |Subject:=20Re=3A=20[v4v6interim]=20[BEHAVE]=20[46translati on]=20Proposal=20for=20new=20BEHAVEcharter |Sender:=20; bh=JRer3aE63AbONZelAJZeZMQoIWi2JUAYFBTAnVpLju8=; b=qh/FXcKuYJhkdliMt5JAiPSJ1Wz+TFxvzqtzsRFMIKncZdg7GgDfSp9t1l dvescDP4Vgc3Nv4yK9u8wR4ZYQoaPIrm+fv/r3SDArxWP8SRIrckUlDIDDeY DPGE/UzPJGob0o8QDw38S6px8cRp6npKIg67ivTiqQU+9jvIkyhRA=;
Authentication-Results: sj-dkim-1; header.From=fred@cisco.com; dkim=pass ( sig from cisco.com/sjdkim1004 verified; );
Cc: v4v6interim@ietf.org, 46Translation <46translation@employees.org>, Behave WG <behave@ietf.org>
Subject: Re: [v4v6interim] [BEHAVE] [46translation] Proposal for new BEHAVEcharter
X-BeenThere: v4v6interim@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of coexistence topics for the 01-Oct-2008 v4-v6 coexistence interim meeting <v4v6interim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/v4v6interim>
List-Post: <mailto:v4v6interim@ietf.org>
List-Help: <mailto:v4v6interim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"; DelSp="yes"
Sender: v4v6interim-bounces@ietf.org
Errors-To: v4v6interim-bounces@ietf.org

Very much agree.

On Oct 24, 2008, at 12:58 AM, Alain Durand wrote:

> I'm going to jump into this and probably not make friends...
>
> IPv6 is just like IPv4 with longer addresses. This is where deployment
> reality trumps architectural purity.
>
> What I've seen in the last 3 years is that it is much, much easier  
> to deploy
> IPv6 if you keep the exact same operational model as in IPv4. This  
> is one
> (among many) reason why we pushed for DHCPv6.
>
> Many folks are considering NAT44 as a simple solution where they  
> just have
> to put a box in front of their network to make whatever problem they  
> think
> they have go away. I can easily see that the same people would like  
> to do
> the same thing with IPv6. Which exact problem they were solving is
> irrelevant to this discussion, the point is about preserving the same
> operational model.
>
> That, and Cullen Jennings point #2 argue for defining NAT66 exactly  
> the same
> way as NAT44, ie with (optional) port translation. We have the  
> opportunity
> to explain why some choices are less worse than others in doing so  
> and put
> all the caveats in place. That is, make sure all the behave work  
> done for
> NAT44 is immediately integrated in NAT66, or in  other words, lets  
> define
> NAT66 in behave. Now, we may argue about the urgency of doing  
> this... Ie
> should this be done in parallel as NAT64 & NAT46 or after.
>
>   - Alain.
>
>
> On 10/23/08 12:06 PM, "Cullen Jennings" <fluffy@cisco.com> wrote:
>
>>
>>
>> On Oct 23, 2008, at 9:47 AM, Mark Townsley wrote:
>>
>>>
>>>
>>> Cullen Jennings wrote:
>>>>
>>>> I'm not worked up one way or the other about if we should specify
>>>> NAT66 or not - however, if we do specify it, I am very concerned
>>>> about how we do that. I see one good reason not to specify NAT66
>>>> and two good reasons to.
>>>
>>> Since saying nothing and hoping folks will abstain doesn't work very
>>> well in practice, I'd rather we go in and describe safe NAT66 the
>>> best we can. I agree that we have to be careful to do a good job, as
>>> teaching bad NAT66 could be worse than not teaching it at all.
>>>
>>>>
>>>> Reasons not to do NAT 66:
>>>> 1) All the reasons explained in RFC 4864
>>>>
>>>> Reason to do it:
>>>> 1) Limitations of RFC 4864 as explained in 4864
>>>> 2) Large vendors are building nat66 today and they are doing it in
>>>> a way that breaks applications and leaves the application designers
>>>> with no idea about what they can count on working and what they
>>>> can't count on.
>>>>
>>>> If #2 does not remind you of how we got into so much trouble nat44,
>>>> well it should. Because of the impact on NAT66 on applications, if
>>>> IETF does decide to do NAT66 specifications, I think it is very
>>>> important that the specification is developed not only in the
>>>> context of v6ops people but is also developed with input of folks
>>>> from applications that need to use it. Today that would roughly
>>>> mean behave.
>>> I think that something that operates only at the IP layer could stay
>>> in the int-area.
>>
>> If the mapping was purely and 1:1 mapping between internal and
>> external IPs I would agree with you but unfortunately, I worry that
>> meeting the requirement that drive section 4.4 of 4864 (privacy and
>> topology hiding) really complicate trying to do it with 1:1 mapping  
>> at
>> IP level.
>>
>> If you want to be able hide that two uncorrelated sessions are
>> actually coming from the same internal host, well, I'm not sure I see
>> how to do this with 1:1 mappings. One might argue that one should
>> ignore these requirements but this is one of key areas where some
>> people feel that 4864 has limitations that drive the deployment of
>> NAT66. Two solutions I have seen for this are a) different external  
>> IP
>> for every internal flow b) doing port address translation similar to
>> NAPT in NAT44. Either of these choices has some pretty substantial
>> impacts on how to make applications like VoIP work.
>>
>>
>>
>>
>>
>> _______________________________________________
>> v4v6interim mailing list
>> v4v6interim@ietf.org
>> https://www.ietf.org/mailman/listinfo/v4v6interim
>
> _______________________________________________
> v4v6interim mailing list
> v4v6interim@ietf.org
> https://www.ietf.org/mailman/listinfo/v4v6interim

_______________________________________________
v4v6interim mailing list
v4v6interim@ietf.org
https://www.ietf.org/mailman/listinfo/v4v6interim

v2.23.0 | Report a Bug | By Email