IETF Logo Mail Archive

Re: [v4v6interim] "IPv4->IPv6 is hard"

marcelo bagnulo braun <marcelo@it.uc3m.es> Mon, 20 October 2008 06:52 UTC

Return-Path: <v4v6interim-bounces@ietf.org>
X-Original-To: v4v6interim-archive@ietf.org
Delivered-To: ietfarch-v4v6interim-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B05223A68F3; Sun, 19 Oct 2008 23:52:44 -0700 (PDT)
X-Original-To: v4v6interim@core3.amsl.com
Delivered-To: v4v6interim@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9C9A33A6833 for <v4v6interim@core3.amsl.com>; Sun, 19 Oct 2008 23:52:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.383
X-Spam-Level:
X-Spam-Status: No, score=-3.383 tagged_above=-999 required=5 tests=[AWL=-0.621, BAYES_00=-2.599, J_BACKHAIR_33=1, RCVD_BAD_ID=2.837, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y987RTWqAyGB for <v4v6interim@core3.amsl.com>; Sun, 19 Oct 2008 23:52:42 -0700 (PDT)
Received: from smtp02.uc3m.es (smtp02.uc3m.es [163.117.176.132]) by core3.amsl.com (Postfix) with ESMTP id 2FD3E3A68F3 for <v4v6interim@ietf.org>; Sun, 19 Oct 2008 23:52:41 -0700 (PDT)
Received: from marcelo-bagnulos-macbook-pro.local (67.pool85-53-133.dynamic.orange.es [85.53.133.67])by smtp02.uc3m.es (Postfix) with ESMTP id CA0EE5C3365; Mon, 20 Oct 2008 08:53:48 +0200 (CEST)
Message-ID: <48FC2AFC.60405@it.uc3m.es>
Date: Mon, 20 Oct 2008 08:53:48 +0200
From: marcelo bagnulo braun <marcelo@it.uc3m.es>
User-Agent: Thunderbird 2.0.0.17 (Macintosh/20080914)
MIME-Version: 1.0
To: Xing Li <xing@cernet.edu.cn>
References: <B4A9FAB9-F39D-42AA-BE3B-AF6A3C48CC93@cisco.com> <4391DDA1-6432- 4DCD-8A38-F351C68058B5@muada.com><0F551636-8059-4C93-81F6-AB5421CD4F3F@cisco.com> <48FBC96D.5020207@cernet.edu.cn>
In-Reply-To: <48FBC96D.5020207@cernet.edu.cn>
X-imss-version: 2.051
X-imss-result: Passed
X-imss-scanInfo: M:B L:N SM:2
X-imss-tmaseResult: TT:1 TS:-19.2161 TC:1F TRN:89 TV:5.5.1026(16228.004)
X-imss-scores: Clean:100.00000 C:0 M:0 S:0 R:0
X-imss-settings: Baseline:1 C:1 M:1 S:1 R:1 (0.0000 0.0000)
Cc: v4v6interim@ietf.org
Subject: Re: [v4v6interim] "IPv4->IPv6 is hard"
X-BeenThere: v4v6interim@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of coexistence topics for the 01-Oct-2008 v4-v6 coexistence interim meeting <v4v6interim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/v4v6interim>
List-Post: <mailto:v4v6interim@ietf.org>
List-Help: <mailto:v4v6interim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: base64
Content-Type: text/plain; charset="utf-8"; Format="flowed"
Sender: v4v6interim-bounces@ietf.org
Errors-To: v4v6interim-bounces@ietf.org

Xing Li escribió:
> Fred Baker 写道:
>>
>> On Oct 17, 2008, at 3:40 AM, Iljitsch van Beijnum wrote:
>>> So you _don't_ want to solve the situation where an IPv4-only host 
>>> gets to talk to any given IPv6 host.
>>>
>>> I think it would be fair to call _that_ scenario "hard".
>>>
>>> However, I think there are others who are interested in solving this 
>>> case.
>>
>> Correct on both points. NAT-PT tries to connect any IPv4 to any IPv6, 
>> and winds up with some "interesting" operational complexity as a 
>> result. I think that if you want to go after that problem for real, 
>> the solution you come up with is going to have comparable complexity 
>> and weaknesses. Willing to be proven wrong, but that's what it looks 
>> like to me.
>>
>> However, using an IPv4 address mapped into an IPv6 address as SIIT 
>> does, we can provide access to a subset of IPv6 nodes - the ones that 
>> have such an address in addition to their standard IPv6 address. We 
>> can describe a relatively simple mechanism that will address most 
>> requirements for quite a while. I would far rather go for the low 
>> hanging fruit and let those who want to solve the bigger problem do 
>> so without slowing the relatively easy part down.
>>
>> In my mind, it is in large part a question of requirements. Would it 
>> be nice to enable any IPv4 node to access any IPv6 node? of course. 
>> But is that really needed? I don't think so.
>>
>> As I said in email during the interim, you really have two 
>> application cases - client/server (the web and POP/IMAP being 
>> examples, and SMTP when it is configured to upload mail from an 
>> application like OutLook to a corporate/ISP mail server), and 
>> peer-to-peer. SMTP is peer-to-peer between MTAs (TCP sessions are 
>> created in both directions), and applications like BitTorrent are 
>> obviously peer-to-peer.
>>
>> Obviously you need any client to be able to access any server. Given 
>> that there are often several orders of magnitude more clients than 
>> servers in such applications, I have a relatively small translation 
>> requirement - I don't need any computer to any computer, I only need 
>> for IPv6 clients to be able to access IPv4 servers (mapped address in 
>> the client or stateful NATs comparable to present NAT44 will work), 
>> and IPv4 clients to access IPv6 servers (simply done with a mapped 
>> address).
>>
>> For peer to peer applications like SMTP, using mapped addresses makes 
>> it relatively simple to support them. Since one expects them to be 
>> the bulk of application traffic, stateless translation has some real 
>> benefits there as well. Why does one expect that? Well, if one MTA 
>> serves 10,000 MUAs that each upload less than 100 messages a day, 
>> that MTA is at any given time talking with only a few of them, 
>> perhaps 10-100. But it will be constantly chatting with the next MTA 
>> upstream as it sends its clients' 10,000*100 messages along.
>>
>> For peer to peer applications like BitTorrent, while what would 
>> otherwise be called "clients" in fact open TCP-like connections 
>> willy-nilly, they have rules about how they open them. They tend to 
>> open a few connections that they leave open for a long time and use 
>> bidirectionally, so opening a connection in the IPv6->IPv4 direction 
>> works also to move content from the IPv4 domain to the IPv6 domain. 
>> Within each domain, connections generally work, and content can be 
>> moved where it needs to be. Using NAT44-like technology, IPv6 systems 
>> can access IPv4 systems readily. IPv4 systems won't be able to access 
>> IPv6-native peers, but they won't need to as the content will already 
>> be in their domain.
>>
>> So I don't think we need any<->any access anywhere near as much as we 
>> need the much simpler ability to have IPv4 systems access IPv6 
>> *servers*, systems that have stable addresses that are generally 
>> assigned to them anyway.
>
> Thanks!
>
> Some additional notes based on CERNET two years experience of running a
> pure IPv6 backbone.
>
> We believe the selection of the scenarios could be based on the
> incentive of the owner of the IPv6 hosts.
> (1) If the IPv6 host needs to be an IPv4-accessible server, they will
> use the IVI address. Otherwise, it will use non-IVI address. This is to
> say that there is no need to provide a general scheme for any IPv4 host
> initiates communication with ANY IPv6 host, since the owner of the IPv6
> host can select the suitable category of the IPv6 addresses.
here is where i disagree
I think we should support communications to some v6 addresses creating 
some manual or automatic 1:1 mapping because it is the best that we can 
do without having to use very nasty hacks like the ones defined in the 
original natpt, not because there is no need for such scheme
Many many hosts today run p2p applications. they certainly can use a 
reachable address wihtout neededing to rely on nat traversal techniques. 
and this is just one example. you can think about other cases, like your 
home camrea that you want to access from the internet and so on.

So, i think it makes a lot of sense if any v6 address could be reached 
from the v4 internet and i think this would result in faster adoption of 
v6, but i don't think we can achieve this in a sufficiently clean way 
(not yet at least, maybe in some near future, the natpt would be 
sufficiently clean :-)



> (2) As the ISP, we price IVI addresses (1:1 mapping of IPv4 address,
> scarce resource) and non-IVI addresses (non-scarce resource)
> differently. So it is also economically reasonable.
Right, this is exactly what i would like to prevent, that ISPs have 
control on whether their clients are able or not to publish content from 
their sites

Regards, marcelo



>
> Just our two cents.
>
> xing
>>
>> _______________________________________________
>> v4v6interim mailing list
>> v4v6interim@ietf.org
>> https://www.ietf.org/mailman/listinfo/v4v6interim
>>
>>
>
>
>
>
> _______________________________________________
> v4v6interim mailing list
> v4v6interim@ietf.org
> https://www.ietf.org/mailman/listinfo/v4v6interim

_______________________________________________
v4v6interim mailing list
v4v6interim@ietf.org
https://www.ietf.org/mailman/listinfo/v4v6interim

v2.23.0 | Report a Bug | By Email