Re: [v6ops] Off topic: Teredo sunset -- Re: [EXTERNAL] Re: Improving ND security

"Templin (US), Fred L" <Fred.L.Templin@boeing.com> Mon, 03 August 2020 22:24 UTC

Return-Path: <Fred.L.Templin@boeing.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29B4B3A0CB0 for <v6ops@ietfa.amsl.com>; Mon, 3 Aug 2020 15:24:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.2
X-Spam-Level:
X-Spam-Status: No, score=-0.2 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=boeing.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W5cqMz3hY5bo for <v6ops@ietfa.amsl.com>; Mon, 3 Aug 2020 15:24:54 -0700 (PDT)
Received: from clt-mbsout-01.mbs.boeing.net (clt-mbsout-01.mbs.boeing.net [130.76.144.162]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F0A73A0CA9 for <v6ops@ietf.org>; Mon, 3 Aug 2020 15:24:54 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by clt-mbsout-01.mbs.boeing.net (8.15.2/8.15.2/DOWNSTREAM_MBSOUT) with SMTP id 073MOplO026758; Mon, 3 Aug 2020 18:24:51 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=boeing.com; s=boeing-s1912; t=1596493492; bh=UDbNwel3r2irzfSc4tbC/4q9JW1Ley+7+vO4/dB7hR0=; h=From:To:Subject:Date:References:In-Reply-To:From; b=E5qdI5RG59vAskT641oyO9ed0Bn7zjaT77dBdvWnr6cpOOBaCtEglpLK4A5UOQKIa rJM9vt7DKgvu3WVCLdPhMohhe8kc/4mlcJGYZ+iYpfSdQLVd1SN6lmMN86AJ2CikSq XoIXTei9mVoYrs8wUYa61T0NfB7EovAOLTyb27MT68u4EmhAG55mdp5UKGKnyjkUu4 aJFIpPtVwTy910knZ0EvnT7wfn6Y4RYKlOWAn/ZXX3z62JYNgekWDZm2o7Sg7/kWRM eGJSrdFV8zgHlcLX2rV82o2CyJGbBvWuwPojvEPKV/ZqbaDYPvZwkQbYieH6+bbMnr LFY2Qj0q0Mxuw==
Received: from XCH16-07-11.nos.boeing.com (xch16-07-11.nos.boeing.com [144.115.66.113]) by clt-mbsout-01.mbs.boeing.net (8.15.2/8.15.2/8.15.2/UPSTREAM_MBSOUT) with ESMTPS id 073MOhSc025955 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=OK); Mon, 3 Aug 2020 18:24:44 -0400
Received: from XCH16-07-10.nos.boeing.com (144.115.66.112) by XCH16-07-11.nos.boeing.com (144.115.66.113) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.1.1979.3; Mon, 3 Aug 2020 15:24:42 -0700
Received: from XCH16-07-10.nos.boeing.com ([fe80::1522:f068:5766:53b5]) by XCH16-07-10.nos.boeing.com ([fe80::1522:f068:5766:53b5%2]) with mapi id 15.01.1979.003; Mon, 3 Aug 2020 15:24:41 -0700
From: "Templin (US), Fred L" <Fred.L.Templin@boeing.com>
To: =?utf-8?B?TGVuY3NlIEfDoWJvcg==?= <lencse@hit.bme.hu>, "v6ops@ietf.org" <v6ops@ietf.org>
Thread-Topic: [v6ops] Off topic: Teredo sunset -- Re: [EXTERNAL] Re: Improving ND security
Thread-Index: AQHWaeTh3ilGcF+V0UaSTLZyGoUr/w==
Date: Mon, 3 Aug 2020 22:24:41 +0000
Message-ID: <02d2c251ce2f45d388725d11ebd85a6f@boeing.com>
References: <d5c245f216c3409f826f8132e532a882@boeing.com> <860E06E2-2650-4AAE-AD33-D4D12B0290DC@fugue.com> <b66ce3d9c75d4a39b5336dcdf9929411@boeing.com> <0DDEBA6C-3933-40FC-BB9C-33FA59DC9D76@cisco.com> <4907a159683346789bef5c495f03f95d@boeing.com> <b5043a5446914cb5b12ed76401359c7e@boeing.com> <3978163f-8815-1bd4-0fda-d84df9cbe684@gont.com.ar> <6b0d6c0a790b46c893b0ff3051599fb4@boeing.com> <85d89256-a495-d779-2c7c-2573bfae36c5@gont.com.ar> <ce2150de-9ff2-d66a-ab18-4f3b18ca6237@hit.bme.hu>
In-Reply-To: <ce2150de-9ff2-d66a-ab18-4f3b18ca6237@hit.bme.hu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [137.137.12.6]
x-tm-snts-smtp: 1C636B07E31736060735AC90748AFCA80F609E64F72A1A9549BA21C50409AF8C2000:8
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-TM-AS-GCONF: 00
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/-EI1_KOZXPYwlinY_yp6VhpEITU>
Subject: Re: [v6ops] Off topic: Teredo sunset -- Re: [EXTERNAL] Re: Improving ND security
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Aug 2020 22:24:56 -0000


> -----Original Message-----
> From: v6ops [mailto:v6ops-bounces@ietf.org] On Behalf Of Lencse Gábor
> Sent: Monday, August 03, 2020 1:02 PM
> To: v6ops@ietf.org
> Subject: [v6ops] Off topic: Teredo sunset -- Re: [EXTERNAL] Re: Improving ND security
> 
> This message was sent from outside of Boeing. Please do not click links or open attachments unless you recognize the sender and
> know that the content is safe.
> 
> > I'm sure others probably know better, but... I think Teredo is mostly
> > MS + Miredo. (when it comes to implementation)
> >
> > And Re: deployment, IIRC Teredo has been phased out.
> >
> 
> BTW:
> 
> Did Teredo sunset (
> https://ietf.org/proceedings/87/slides/slides-87-v6ops-5.pdf ) actually
> happen?
> 
> At least the domain name on its last slide does not seem to resolve:
> 
> lencse@dev:~$ host teredo.ipv6.microsoft.com
> Host teredo.ipv6.microsoft.com not found: 3(NXDOMAIN)
[>] 



Perhaps gone, but not forgotten - RFC4380 is still a proposed standard and
specifies a UDP/IP encapsulation format that can be adopted by other service
specifications. The other services are easily distinguished from Teredo through
the use of a service-specific IANA-assigned UDP port number.

Thanks - Fred




> I am curious.
> 
> Best regards,
> 
> Gábor
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops