[v6ops] Re: The V6OPS WG has placed draft-link-v6ops-claton in state "Call For Adoption By WG Issued"

Jeremy Duncan <jduncan@tachyondynamics.com> Thu, 30 May 2024 16:32 UTC

Return-Path: <jduncan@tachyondynamics.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 12D86C14F5F1; Thu, 30 May 2024 09:32:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tachyondynamics.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q6sXU7AOH89J; Thu, 30 May 2024 09:32:34 -0700 (PDT)
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (mail-mw2nam12on2121.outbound.protection.outlook.com [40.107.244.121]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9FE1C14F5EE; Thu, 30 May 2024 09:32:33 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CfwxmVBV0wbGg851vUb+hLjQmsJInJ2KfvC8X/3HUb6hqX5kk7DWK0XYBOtkVpKfm/Sny436mFKxQf56uDTGR7Aql+JbeDaIo1bnhFo/kyuF5bu7R11hzO/+hAqu3HBJleiGGlk6ziXNfyLOCL4nN1FMZ1HP7kyqG7BWE3y91Wa2ZsUtmgbrmLir3HIhvOUPEZiJLi6/RXzFOkOs8jzvW+OFxMlHrPgmJnumkwzztwrdiMcde6k4CtBobqicY4q/Dia8Hnwc3K9XUJGgtf9SFiBJTn4EHu4gejyPi8Sss+K17KKC4ehh/CduNHtQQiMUiI5DM2fBWZdu8pO+SbtPVg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=94Eib+bNGn8VM6grPCi2vY11dTudZuF3rFMjzQM76xk=; b=CJ0zBcSztLR7vTLenkZlbPu3Yly6iwjXU7VAw3eeNT/eSeESotNDi/26U5tQu1MtE85/9Ti8W9T80sLe4eIglXK29yFsqPwlAdMMGyVoCDe0gVSckNqkHppZDn+MGrLeBEL7sEPlu641uCjEpJBXalgPpeiG7jDYst8KCtmfeqKSirYck90rDuUn6YY6duSuVrdJt9+6nvNIDRCBc2fGNnBGTCLRTThpo54oWF1jl1ZA/jU5n/uqoJtErzy8d/S87qCb8iyHKYBngV+W9iHN/Op7Og95om+8gsJwLl80zbXHkojvl7VAb5EegUbi1JA7D9Qh5NoER1FmFz1B9fAu6w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=tachyondynamics.com; dmarc=pass action=none header.from=tachyondynamics.com; dkim=pass header.d=tachyondynamics.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tachyondynamics.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=94Eib+bNGn8VM6grPCi2vY11dTudZuF3rFMjzQM76xk=; b=NQlH/oDNxtVMfGdoLJJRlVYW/mK3J/veWzK+YbPTiZpqCx7GB3l2Ee8LmyA1Lrgxp9XDbaX9rfQ3FbI3atUOmyxKWaS+YBj4GASgAOkAcMirHwWmto6JRt0ejdXjUd+UmSaMm3dzbUEyLUG9khudAcn3+K2954PVv0wPKIWH3EY=
Received: from BL1PR18MB4277.namprd18.prod.outlook.com (2603:10b6:208:308::11) by BY1PR18MB5924.namprd18.prod.outlook.com (2603:10b6:a03:4b8::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7633.17; Thu, 30 May 2024 16:32:29 +0000
Received: from BL1PR18MB4277.namprd18.prod.outlook.com ([fe80::e357:79f4:f41a:c329]) by BL1PR18MB4277.namprd18.prod.outlook.com ([fe80::e357:79f4:f41a:c329%5]) with mapi id 15.20.7611.016; Thu, 30 May 2024 16:32:29 +0000
From: Jeremy Duncan <jduncan@tachyondynamics.com>
To: Ed Horley <ed@hexabuild.io>
Thread-Topic: [v6ops] Re: The V6OPS WG has placed draft-link-v6ops-claton in state "Call For Adoption By WG Issued"
Thread-Index: AQHasqNcpx7qhORkJEeGEoeVklR0SrGv93zw
Date: Thu, 30 May 2024 16:32:29 +0000
Message-ID: <BL1PR18MB4277A0CB3EC15A7511432DFEACF32@BL1PR18MB4277.namprd18.prod.outlook.com>
References: <171690957965.11067.11831597982527870211@ietfa.amsl.com> <BL1PR18MB42777EB42DB48CE0CD596C5AACF12@BL1PR18MB4277.namprd18.prod.outlook.com> <CAE=N4xcn-pYn4N9PnGpD-WNkHOYa7-1Lc-0oWuqAiOmE1pNROw@mail.gmail.com>
In-Reply-To: <CAE=N4xcn-pYn4N9PnGpD-WNkHOYa7-1Lc-0oWuqAiOmE1pNROw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=tachyondynamics.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BL1PR18MB4277:EE_|BY1PR18MB5924:EE_
x-ms-office365-filtering-correlation-id: 954a3cc7-9af6-4b86-3e21-08dc80c61929
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230031|1800799015|366007|376005|38070700009;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:BL1PR18MB4277.namprd18.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230031)(1800799015)(366007)(376005)(38070700009);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BL1PR18MB4277A0CB3EC15A7511432DFEACF32BL1PR18MB4277namp_"
MIME-Version: 1.0
X-OriginatorOrg: tachyondynamics.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL1PR18MB4277.namprd18.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 954a3cc7-9af6-4b86-3e21-08dc80c61929
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 May 2024 16:32:29.3337 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 306ea27d-bb9d-47c1-a6ca-c70495fc7695
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: z5RY8VGrKXY+CDvkBs0HTfio2XBqRfYr5teyrI9wIz/ERNQj4Lfn90K433vFpdyMxFyCRAKvgzljYsaHac++bvdNFZkGSmYg1j8S4sGLyK0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR18MB5924
Message-ID-Hash: AT7SOIAC2EFTB2IUBDADIHBLE6OJHD6E
X-Message-ID-Hash: AT7SOIAC2EFTB2IUBDADIHBLE6OJHD6E
X-MailFrom: jduncan@tachyondynamics.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: IETF Secretariat <ietf-secretariat-reply@ietf.org>, "draft-link-v6ops-claton@ietf.org" <draft-link-v6ops-claton@ietf.org>, "v6ops-chairs@ietf.org" <v6ops-chairs@ietf.org>, "v6ops@ietf.org" <v6ops@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: The V6OPS WG has placed draft-link-v6ops-claton in state "Call For Adoption By WG Issued"
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/9b3OUS8i_IxyMLznBbe_xNE2l0A>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>

Ed-

I 100% agree with this statement. How about more specific working as stated below?

"For performance and security reasons CLAT SHOULD NOT be enabled if the node has IPv4 connectivity over the given interface."

To

"For performance and security reasons CLAT MUST NOT be enabled if  the node has routable IPv4 connectivity over the given interface. If the interface has an APIPA/link-local IPv4 address, then this MUST NOT be considered routable IPv4 connectivity."

And

"From a performance perspective, native IPv4 connectivity is
   preferrable over 464XLAT, so CLAT SHOULD NOT be enabled if the node has IPv4 connectivity over the given interface."

To

"From a performance perspective, native IPv4 connectivity is preferrable over 464XLAT, so CLAT MUST NOT be enabled if the node has routable IPv4 connectivity over the given interface. If the interface has an APIPA/link-local IPv4 address, then this MUST NOT be considered routable IPv4 connectivity."


-Jeremy


From: Ed Horley <ed@hexabuild.io>
Sent: Thursday, May 30, 2024 11:09 AM
To: Jeremy Duncan <jduncan@tachyondynamics.com>
Cc: IETF Secretariat <ietf-secretariat-reply@ietf.org>; draft-link-v6ops-claton@ietf.org; v6ops-chairs@ietf.org; v6ops@ietf.org
Subject: Re: [v6ops] Re: The V6OPS WG has placed draft-link-v6ops-claton in state "Call For Adoption By WG Issued"

CAUTION: This email originated from outside the organization. Do not click links or open attachments unless you validate the sender and know the content is safe. Please forward this email to suspicious@tachyondynamics.com<mailto:suspicious@tachyondynamics.com> if you believe this email is suspicious.
Jeremy,
While I am okay with changing these to a MUST, I do wonder about the situation with APIPA addresses and if that might potentially impact a given node that might have self provisioned an IPv4 address to a given interface. Is an APIPA address considered valid IPv4 connectivity (perhaps the node is doing mDNS and has discovered a resource it needs?) There might need to be an exception to account for this?
- Ed

On Tue, May 28, 2024 at 8:39 AM Jeremy Duncan <jduncan=40tachyondynamics.com@dmarc.ietf.org<mailto:40tachyondynamics.com@dmarc.ietf.org>> wrote:
I support adoption and request making these changes:

"For performance and security reasons CLAT SHOULD NOT be enabled if
   the node has IPv4 connectivity over the given interface."

To

"For performance and security reasons CLAT MUST NOT be enabled if
   the node has IPv4 connectivity over the given interface."

And

"From a performance perspective, native IPv4 connectivity is
   preferrable over 464XLAT, so CLAT SHOULD NOT be enabled if the node
   has IPv4 connectivity over the given interface."

To

"From a performance perspective, native IPv4 connectivity is
   preferrable over 464XLAT, so CLAT MUST NOT be enabled if the node
   has IPv4 connectivity over the given interface."


The discussion points and arguments made for security and performance reasons are laid out well as I think could make the case that this be a MUST NOT instead of a SHOULD NOT.


-Jeremy


-----Original Message-----
From: IETF Secretariat <ietf-secretariat-reply@ietf.org<mailto:ietf-secretariat-reply@ietf.org>>
Sent: Tuesday, May 28, 2024 11:20 AM
To: draft-link-v6ops-claton@ietf.org<mailto:draft-link-v6ops-claton@ietf.org>; v6ops-chairs@ietf.org<mailto:v6ops-chairs@ietf.org>; v6ops@ietf.org<mailto:v6ops@ietf.org>
Subject: [v6ops] The V6OPS WG has placed draft-link-v6ops-claton in state "Call For Adoption By WG Issued"

CAUTION: This email originated from outside the organization. Do not click links or open attachments unless you validate the sender and know the content is safe. Please forward this email to suspicious@tachyondynamics.com<mailto:suspicious@tachyondynamics.com> if you believe this email is suspicious.

The V6OPS WG has placed draft-link-v6ops-claton in state Call For Adoption By WG Issued (entered by Nick Buraglio)

The document is available at
https://datatracker.ietf.org/doc/draft-link-v6ops-claton/

Comment:
This email starts an adoption call for the following document:

Title : 464 Customer-side Translator (CLAT): Node Recommendations Authors : J. Linkova, T. Jensen Pages : 14 Date : 28-May-2024

https://datatracker.ietf.org/doc/draft-link-v6ops-claton/

This draft details how CLAT shall operate on endpoints.

_______________________________________________
v6ops mailing list -- v6ops@ietf.org<mailto:v6ops@ietf.org>
To unsubscribe send an email to v6ops-leave@ietf.org<mailto:v6ops-leave@ietf.org>
_______________________________________________
v6ops mailing list -- v6ops@ietf.org<mailto:v6ops@ietf.org>
To unsubscribe send an email to v6ops-leave@ietf.org<mailto:v6ops-leave@ietf.org>


--
Ed Horley
ed@hexabuild.io<mailto:ed@hexabuild.io> | (925) 876-6604
Advancing Cloud, IoT, and Security with IPv6
https://hexabuild.io<https://hexabuild.io/>
And check out the IPv6 Buzz Podcast at https://packetpushers.net/series/ipv6-buzz/