IETF Logo Mail Archive

Re: [v4v6interim] [46translation] [BEHAVE] Proposal for new BEHAVE charter

Dave Thaler <dthaler@windows.microsoft.com> Mon, 20 October 2008 23:45 UTC

Return-Path: <v4v6interim-bounces@ietf.org>
X-Original-To: v4v6interim-archive@ietf.org
Delivered-To: ietfarch-v4v6interim-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BD9513A67E9; Mon, 20 Oct 2008 16:45:33 -0700 (PDT)
X-Original-To: v4v6interim@core3.amsl.com
Delivered-To: v4v6interim@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3D8BD3A6781; Mon, 20 Oct 2008 12:35:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -110.45
X-Spam-Level:
X-Spam-Status: No, score=-110.45 tagged_above=-999 required=5 tests=[AWL=0.149, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i-Dm6UdoonxW; Mon, 20 Oct 2008 12:35:47 -0700 (PDT)
Received: from smtp.microsoft.com (smtp.microsoft.com [131.107.115.215]) by core3.amsl.com (Postfix) with ESMTP id 3FA083A6780; Mon, 20 Oct 2008 12:35:47 -0700 (PDT)
Received: from TK5-EXHUB-C101.redmond.corp.microsoft.com (157.54.18.48) by TK5-EXGWY-E802.partners.extranet.microsoft.com (10.251.56.168) with Microsoft SMTP Server (TLS) id 8.1.291.1; Mon, 20 Oct 2008 12:36:18 -0700
Received: from tk5-exmlt-w602.wingroup.windeploy.ntdev.microsoft.com (157.54.18.33) by TK5-EXHUB-C101.redmond.corp.microsoft.com (157.54.18.48) with Microsoft SMTP Server id 8.1.291.1; Mon, 20 Oct 2008 12:36:16 -0700
Received: from NA-EXMSG-W601.wingroup.windeploy.ntdev.microsoft.com ([fe80::8de9:51a2:cd62:f122]) by tk5-exmlt-w602.wingroup.windeploy.ntdev.microsoft.com ([157.54.18.33]) with mapi; Mon, 20 Oct 2008 12:36:42 -0700
From: Dave Thaler <dthaler@windows.microsoft.com>
To: TJ <trejrco@gmail.com>, "46translation@employees.org" <46translation@employees.org>, "v4v6interim@ietf.org" <v4v6interim@ietf.org>, 'Behave WG' <behave@ietf.org>
Date: Mon, 20 Oct 2008 12:36:14 -0700
Thread-Topic: [46translation] [v4v6interim] [BEHAVE] Proposal for new BEHAVE charter
Thread-Index: AckyoutElgtDGmrbSlKgnHKIxOb1MAARu81gAAAhLFA=
Message-ID: <E9CACA3D8417CE409FE3669AAE1E5A4F0A0BB47610@NA-EXMSG-W601.wingroup.windeploy.ntdev.microsoft.com>
References: <48F8539D.90608@ericsson.com> <48FB9C5E.8070402@gmail.com> <3E041E8D-8539-4A16-9188-86A1DCEEE62B@muada.com> <200810201358.29295.remi.denis-courmont@nokia.com> <00fb01c932ea$331db210$99591630$@com>
In-Reply-To: <00fb01c932ea$331db210$99591630$@com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
MIME-Version: 1.0
X-Mailman-Approved-At: Mon, 20 Oct 2008 16:45:32 -0700
Subject: Re: [v4v6interim] [46translation] [BEHAVE] Proposal for new BEHAVE charter
X-BeenThere: v4v6interim@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of coexistence topics for the 01-Oct-2008 v4-v6 coexistence interim meeting <v4v6interim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/v4v6interim>
List-Post: <mailto:v4v6interim@ietf.org>
List-Help: <mailto:v4v6interim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v4v6interim>, <mailto:v4v6interim-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Sender: v4v6interim-bounces@ietf.org
Errors-To: v4v6interim-bounces@ietf.org

The real or perceived reasons to deploy NAT are covered in RFC 4864,
so yes there's more than were listed in below.

However the point of that RFC is to show that NAT is not the only
way to get those benefits.  It contains at least existence proofs
that benefits can be obtained with some other solution (not to
say that an example listed is necessarily the only or even the best
alternative).

-Dave

> -----Original Message-----
> From: 46translation-bounces@employees.org [mailto:46translation-
> bounces@employees.org] On Behalf Of TJ
> Sent: Monday, October 20, 2008 12:30 PM
> To: 46translation@employees.org; v4v6interim@ietf.org; 'Behave WG'
> Subject: Re: [46translation] [v4v6interim] [BEHAVE] Proposal for new
> BEHAVE charter
>
>
> I am not entirely excited about this conversation, but WRT
>         "3/ topology hiding"
>
> NAT66 would accomplish something.  While it doesn't "hide" the specific
> host
> _right now_, it does hide the underlying topology (no 1:1 correlation
> of
> outside and inside addresses / network architecture) as well as hide
> the
> specific host as time moves forward.
>
>
>
> ... hoping that if it does get defined it gets very little use ...
> /TJ
>
>
> >-----Original Message-----
> >From: v4v6interim-bounces@ietf.org [mailto:v4v6interim-
> bounces@ietf.org] On
> >Behalf Of Rémi Denis-Courmont
> >Sent: Monday, October 20, 2008 6:58 AM
> >To: 46translation@employees.org
> >Cc: v4v6interim@ietf.org; 'Behave WG'
> >Subject: Re: [v4v6interim] [46translation] [BEHAVE] Proposal for new
> BEHAVE
> >charter
> >
> >On Monday 20 October 2008 13:37:05 ext Iljitsch van Beijnum, you
> wrote:
> >> Interestingly, I did a small survey about whether people _expect_
> >> there to be NAT66 in the future and the majority said "yes".
> >>
> >> On the one hand we can do nothing and if all goes well there will be
> >> no IPv6 NAT so we're all happy because not doing anything made the
> >> right thing happen. (Although I've used a NAT66 implementation
> myself
> >> some years back, so there is at least one out there.)
> >>
> >> But if we do nothing, we run the risk that someone will do a quick
> >> search and replace on their NAT44 code and create a port overloading
> >> NAT66. The port overloading is 90% of the harmful stuff that NAT
> boxes
> >> do.
> >>
> >> What we could do is come up with a stateless, transport-agnostic 1-
> >> to-1 NAT66 spec so we at least avoid the port overloading and
> nothing
> >> much breaks except referrals.
> >
> >I share your analysis that, _assuming_ we have NAT66, it should be
> >transport-agnostic. IPv6 has a large enough address space, and we are
> >painfully aware of the problems of transport-dependent NAT(44).
> >
> >However, when I look at the reasons for deploying NAT:
> >1/ address space shortage
> >2/ inbound firewalling
> >3/ topology hiding
> >4/ prefix delegation "bypass"
> >
> >(1) is a non-issue for IPv6. (2) is solved with stateful firewalling
> and
> >does not require NAT. 1:1 NAT fails to solve (3) as it does hide the
> >subnetting scheme, but fails to hide individual hosts. This leaves
> only
> (4).
> >Did I miss anything?
> >
> >I still believe we will see NAT66. Not because it's immediately
> useful.
> >Rather because someone will figure out it's easy to adapt NAT44 code
> to do
> >NAT66.
> >For instance, much of the Linux Netfilter framework has become IP
> version-
> >independent lately, with NAT being the only one big remaining IPv4-
> specific
> >chunk.
> >
> >
> >
> >I guess only time would tell whether a NAT66 1:1 spec would help
> prevent
> >such the transport-dependent NAT66 being _deployed_. It cannot hurt to
> write
> >that spec, I suppose. In any case, the abomination will be
> _implemented_
> :-(
> >It is too natural/easy/tempting.
> >
> >--
> >Rémi Denis-Courmont
> >Maemo Software, Nokia Devices R&D
> >_______________________________________________
> >v4v6interim mailing list
> >v4v6interim@ietf.org
> >https://www.ietf.org/mailman/listinfo/v4v6interim
>
> _______________________________________________
> 46translation mailing list
> 46translation@employees.org
> https://www.employees.org/mailman/listinfo/46translation

_______________________________________________
v4v6interim mailing list
v4v6interim@ietf.org
https://www.ietf.org/mailman/listinfo/v4v6interim

v2.23.0 | Report a Bug | By Email