IETF Logo Mail Archive

Re: [v4v6interim] [BEHAVE] [46translation] Proposal for new BEHAVEcharter

marcelo bagnulo braun <marcelo@it.uc3m.es> Mon, 20 October 2008 11:05 UTC

Return-Path: <v4v6interim-bounces@ietf.org>
X-Original-To: v4v6interim-archive@ietf.org
Delivered-To: ietfarch-v4v6interim-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E66E63A696E; Mon, 20 Oct 2008 04:05:34 -0700 (PDT)
X-Original-To: v4v6interim@core3.amsl.com
Delivered-To: v4v6interim@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 32A4A3A6955; Mon, 20 Oct 2008 04:05:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.692
X-Spam-Level:
X-Spam-Status: No, score=-3.692 tagged_above=-999 required=5 tests=[AWL=-0.230, BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_BAD_ID=2.837, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0lDlkwM+8IUL; Mon, 20 Oct 2008 04:05:32 -0700 (PDT)
Received: from smtp03.uc3m.es (smtp03.uc3m.es [163.117.176.133]) by core3.amsl.com (Postfix) with ESMTP id D67023A68FF; Mon, 20 Oct 2008 04:05:31 -0700 (PDT)
Received: from marcelo-bagnulos-macbook-pro.local (67.pool85-53-133.dynamic.orange.es [85.53.133.67])by smtp03.uc3m.es (Postfix) with ESMTP id 49A446AA51E; Mon, 20 Oct 2008 13:06:39 +0200 (CEST)
Message-ID: <48FC663E.1070902@it.uc3m.es>
Date: Mon, 20 Oct 2008 13:06:38 +0200
From: marcelo bagnulo braun <marcelo@it.uc3m.es>
User-Agent: Thunderbird 2.0.0.17 (Macintosh/20080914)
MIME-Version: 1.0
To: Rémi Denis-Courmont <remi.denis-courmont@nokia.com>
References: <48F8539D.90608@ericsson.com> <48FB9C5E.8070402@gmail.com><3E041E8D-8539-4A16-9188-86A1DCEEE62B@muada.co m> <200810201358.29295.remi.denis-courmont@nokia.com>
In-Reply-To: <200810201358.29295.remi.denis-courmont@nokia.com>
X-imss-version: 2.051
X-imss-result: Passed
X-imss-scanInfo: M:B L:E SM:2
X-imss-tmaseResult: TT:1 TS:-6.6642 TC:1F TRN:52 TV:5.5.1026(16228.006)
X-imss-scores: Clean:100.00000 C:0 M:0 S:0 R:0
X-imss-settings: Baseline:1 C:1 M:1 S:1 R:1 (0.0000 0.0000)
Cc: v4v6interim@ietf.org, 46translation@employees.org, 'Behave WG' <behave@ietf.org>
Subject: Re: [v4v6interim] [BEHAVE] [46translation] Proposal for new BEHAVEcharter
X-BeenThere: v4v6interim@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of coexistence topics for the 01-Oct-2008 v4-v6 coexistence interim meeting <v4v6interim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/v4v6interim>
List-Post: <mailto:v4v6interim@ietf.org>
List-Help: <mailto:v4v6interim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="iso-8859-1"; Format="flowed"
Sender: v4v6interim-bounces@ietf.org
Errors-To: v4v6interim-bounces@ietf.org

Rémi Denis-Courmont escribió:
> On Monday 20 October 2008 13:37:05 ext Iljitsch van Beijnum, you wrote:
>   
>> Interestingly, I did a small survey about whether people _expect_
>> there to be NAT66 in the future and the majority said "yes".
>>
>> On the one hand we can do nothing and if all goes well there will be
>> no IPv6 NAT so we're all happy because not doing anything made the
>> right thing happen. (Although I've used a NAT66 implementation myself
>> some years back, so there is at least one out there.)
>>
>> But if we do nothing, we run the risk that someone will do a quick
>> search and replace on their NAT44 code and create a port overloading
>> NAT66. The port overloading is 90% of the harmful stuff that NAT boxes
>> do.
>>
>> What we could do is come up with a stateless, transport-agnostic 1-
>> to-1 NAT66 spec so we at least avoid the port overloading and nothing
>> much breaks except referrals.
>>     
>
> I share your analysis that, _assuming_ we have NAT66, it should be 
> transport-agnostic. IPv6 has a large enough address space, and we are 
> painfully aware of the problems of transport-dependent NAT(44).
>
> However, when I look at the reasons for deploying NAT:
> 1/ address space shortage
> 2/ inbound firewalling
> 3/ topology hiding
> 4/ prefix delegation "bypass"
>
> (1) is a non-issue for IPv6. (2) is solved with stateful firewalling and does 
> not require NAT. 1:1 NAT fails to solve (3) as it does hide the subnetting 
> scheme, but fails to hide individual hosts. This leaves only (4). Did I miss 
> anything?
>   

I think one main reason would be provider independence (ie. no need to 
renumber)  for small sites that cannot afford to have thier own PI 
address block allocated

regards, marcelo

> I still believe we will see NAT66. Not because it's immediately useful. Rather 
> because someone will figure out it's easy to adapt NAT44 code to do NAT66. 
> For instance, much of the Linux Netfilter framework has become IP 
> version-independent lately, with NAT being the only one big remaining 
> IPv4-specific chunk.
>
>
>
> I guess only time would tell whether a NAT66 1:1 spec would help prevent such 
> the transport-dependent NAT66 being _deployed_. It cannot hurt to write that 
> spec, I suppose. In any case, the abomination will be _implemented_ :-( It is 
> too natural/easy/tempting.
>
>   

_______________________________________________
v4v6interim mailing list
v4v6interim@ietf.org
https://www.ietf.org/mailman/listinfo/v4v6interim

v2.23.0 | Report a Bug | By Email