IETF Logo Mail Archive

Re: [v6ops] draft-ietf-v6ops-nat64-srv

Dan Wing <danwing@gmail.com> Wed, 15 May 2019 23:29 UTC

Return-Path: <danwing@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3652C1200C4 for <v6ops@ietfa.amsl.com>; Wed, 15 May 2019 16:29:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7xcZdQ-cKjrw for <v6ops@ietfa.amsl.com>; Wed, 15 May 2019 16:29:13 -0700 (PDT)
Received: from mail-pg1-x534.google.com (mail-pg1-x534.google.com [IPv6:2607:f8b0:4864:20::534]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AE3B12009C for <v6ops@ietf.org>; Wed, 15 May 2019 16:29:13 -0700 (PDT)
Received: by mail-pg1-x534.google.com with SMTP id h1so567989pgs.2 for <v6ops@ietf.org>; Wed, 15 May 2019 16:29:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=W6m0GgJQVVikkXoF7xYrJjYu2Un66kiZ9AFHxFNMJgg=; b=Lp45DgzcGGnZGsrKMxrvpCnAlV5KejMuxs7vlT2jc3cevp1aUhsTtsYvTfgCynG40s wFtgWOLiB2VRSmZJQfej30SdtHmQ7nnEi2cDuQBm5YqFB9upmEuVesEy1D9DX9wWKHgF 3YBrtB+SdjRQ2nJxOecNZRV+CTRYLekY5+VBWH7v3xktJFe109ngnTCA9P29IcTGp1kO AOhxTQctYLxuZLTZ5Ipckp3ZOjM2+Dw9GfggvA5Xotr5J1chieURAz4zY/cJ7IXwhXua Fi1Rux67/Gi42HQaxtb97g47U0MPed40BqS1E4kyEa3SO3IbGmhhdjg80Tt/gENV+KQQ 23VQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=W6m0GgJQVVikkXoF7xYrJjYu2Un66kiZ9AFHxFNMJgg=; b=FubQOPqGfSVR8PQo4nCsHXs444SggTKOeA5HjyKiw9j9otBALwmNC/XR1FB7YCL3Wb yNhMZXMR9aLqmZIIpejfdFL5U086LnCspTiHXBdmPyqFiuW0SelCcw4TiDOuvuv9rSk0 tblpDA88aq6LZU3R+PZnCvXfRqCQsPFfENTjNhZ9EngG1LiE15Y1EluoQrOICG0koQGl 6fbdM0kOZTeNo9zsNMBGjb31U+oP0lDqiPYUIFKPtuYKGuWSe5RcUyPrFx+rRe5xdbhk 0XlWr+6VmYvcxOJUqR2jBHTW60zdgA1zPyAhtv2Ul+wLYIe1jVWzOK+plwOScJX+I3MZ z7mA==
X-Gm-Message-State: APjAAAUiRutR4q2tghbKxxqXdjzCZr2Qa8RPm1AwXmSdvrlA12zGkmPP Dr1p15QuRnOX0ELB/rRJ1sbpW/lSXZQ=
X-Google-Smtp-Source: APXvYqy58lE4Bx7OLM7iH2sfOcWFxcFQz6JWNsV+wsZYaROVD43dP65sbAeKtKbKCYr1vB+1nMN/mg==
X-Received: by 2002:a62:386:: with SMTP id 128mr24215345pfd.10.1557962952234; Wed, 15 May 2019 16:29:12 -0700 (PDT)
Received: from sjcldanwi.lan ([75.111.84.113]) by smtp.gmail.com with ESMTPSA id y10sm4829804pfm.27.2019.05.15.16.29.10 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 15 May 2019 16:29:11 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.8\))
From: Dan Wing <danwing@gmail.com>
In-Reply-To: <CAAedzxrdKSricUvJxEBLP7Jb2UmoNbSmEpDwx9bGAzOYQNhNcQ@mail.gmail.com>
Date: Wed, 15 May 2019 16:29:09 -0700
Cc: Mikael Abrahamsson <swmike@swm.pp.se>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>, "v6ops@ietf.org" <v6ops@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <9520F111-F282-4B9A-8D50-BDF37793F8B9@gmail.com>
References: <BYAPR05MB4245A78BEC3D7E3622A38395AE0F0@BYAPR05MB4245.namprd05.prod.outlook.com> <alpine.DEB.2.20.1905131848190.1824@uplift.swm.pp.se> <CAAedzxrdKSricUvJxEBLP7Jb2UmoNbSmEpDwx9bGAzOYQNhNcQ@mail.gmail.com>
To: ek@loon.com
X-Mailer: Apple Mail (2.3445.104.8)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/6Cb7khEdaGu2PCcL4gwnzMtST4c>
Subject: Re: [v6ops] draft-ietf-v6ops-nat64-srv
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 May 2019 23:29:15 -0000

On May 14, 2019, at 6:08 PM, Erik Kline <ek@loon.com> wrote:
> From: Mikael Abrahamsson <swmike@swm.pp.se>
> Date: Mon, 13 May 2019 at 10:04
> To: Ron Bonica
> Cc: v6ops@ietf.org
> 
> On Mon, 13 May 2019, Ron Bonica wrote:
> 
> > This week, please review and comment on draft-ietf-v6ops-nat64-sr .
> 
> I'm generally sympathetic to the problem space this draft tries to solve.
> 
> Really?  I don't see it yet..  I don't foresee any client implementing this level of complexity -- it doesn't actually buy them anything.

The part of the I-D that seems useful is the ability to use a centralized DNS server (e.g., 1.1.1.1, 8.8.8.8, some might say "DoH") which is not participating in the DNS64/NAT64 infrastructure (and thus doesn't do the normal DNS64 synthesis) and having the client synthesize AAAA.  But RFC7050 already anticipated that need for client synthesis of AAAA with its existing support for client-side DNSSEC.  Perhaps a a document that described how to elicit an RFC7050 response (that is, elicit a synthesized address) and have the client use that information when communicating to a centralized DNS server could be helpful.  A careful read of RFC7050 should be sufficient to implement that, at least that was our intent when we wrote RFC7050 that it would be clear enough how the client can do its own synthesis.

I agree with Erik that the NAT64 balancing seems a lot of effort for the client with little gain for the client. NAT64 as a technology will diminish as native IPv6 overcomes the IPv4 inertia so engineering fancy NAT64 solutions is not "where the hockey puck is going", as they say.

-d

v2.23.0 | Report a Bug | By Email