IETF Logo Mail Archive

[v6ops] Re: Fwd: New Version Notification for draft-link-v6ops-claton-03.txt

George Michaelson <ggm@algebras.org> Fri, 24 May 2024 23:15 UTC

Return-Path: <ggm@algebras.org>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 218F6C14F749 for <v6ops@ietfa.amsl.com>; Fri, 24 May 2024 16:15:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.895
X-Spam-Level:
X-Spam-Status: No, score=-1.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=algebras-org.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hQ0cvi-vNnD2 for <v6ops@ietfa.amsl.com>; Fri, 24 May 2024 16:15:22 -0700 (PDT)
Received: from mail-ot1-x32c.google.com (mail-ot1-x32c.google.com [IPv6:2607:f8b0:4864:20::32c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 41725C14F707 for <v6ops@ietf.org>; Fri, 24 May 2024 16:15:21 -0700 (PDT)
Received: by mail-ot1-x32c.google.com with SMTP id 46e09a7af769-6f0f252db4dso4138828a34.0 for <v6ops@ietf.org>; Fri, 24 May 2024 16:15:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=algebras-org.20230601.gappssmtp.com; s=20230601; t=1716592520; x=1717197320; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=JSpHCtn9X/UvgL760/FYoVF7QiDwfaPn8O8TyFcry94=; b=xL1Ms4lfoDq4PTsMAS0wRPcCtl/23V4+Tmm7LgCq6+XYynLkcTM9mIrBdOCPlHhwdu ahyhUb4zwIbWMZ5IW6sqTnx1APOSIW+q9yg+lN/HRzGFA+rt8pF/VufmSz1gYdOVVv+C I2uQzfzzhB/aT01cUQDwQZ7Few8nim2zibpuMui7RC38V6KEiEeGngE7KtaTqwUd/3UT GGKPsXuLIFkHCgxoikP8XMBXobVwdk4g2tg6rYX2yHda0UnlAqQIqv4y+6b76+oEGNMP jOBEkfAHfCN5UOPF7eE/vyhJSv+XoVLVLDREy5zMl0fYSUOmtCCZ5m3NFf21fpW7f6+S F0cA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1716592520; x=1717197320; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=JSpHCtn9X/UvgL760/FYoVF7QiDwfaPn8O8TyFcry94=; b=PSNZHXIeP3PoERn1mSYKg4GLnHuRFTSSpVBODca9uAUiHtfU6vNOdADHTSd3PURna/ 47zxR4sodvLRLZ6mlz1J2WZ3MhTkxJ8PjLye5J2e9C5TSd66xHeM+IXtqom2WcQFvxm5 8fr5/sLHOLGfl8jQGVwFf6E3ZG82qlFRoe5quHR229deXRCMzWDqfHNS3j8IFfFjfLhy 7ZVws9dfyFsJ0dLP9rw55tl4V8IQMy0zGrv9UBaNMr2ZzTQBlGGTikfl5T0HSTZHUctp 09GjvwlKu+kvddKMYausO18CMbVfOnZ2B1LnoHQeQnHzygOLl81AiWM9THQJVEQwQZEn pOeA==
X-Gm-Message-State: AOJu0YwLSVjlyj64eWCy6xrPCP62cyZ1cOXKFFiT+DtQiyBSIRxbJK1z vCwiiQx1LaZHh/gq/Ah+1/+vLbl8h/EYcunpELa0nK6IrKmB0oDZtUzNbqKSuu2foZZ/KVicPtV FOdpI9QV2oSaoeCxMpStrj0gfN//MbdY9t5Dn7Q==
X-Google-Smtp-Source: AGHT+IHw74q3I7QL3hijSRnJYB8IrEVRpphZ0Cj8lIkOvtMz5Mh1sigTIRLK9h0ddiBIQoVIla+3rvnV1qj8I0gLW6M=
X-Received: by 2002:a05:6830:2b0a:b0:6f1:33da:3cec with SMTP id 46e09a7af769-6f8d0b23372mr4579846a34.29.1716592520582; Fri, 24 May 2024 16:15:20 -0700 (PDT)
MIME-Version: 1.0
References: <171656605305.48682.1088678194134276372@ietfa.amsl.com> <CAFU7BAQGyuEJ1iLSEyKQE__kmihV_TgEOmPyepdt08yEFTuh1Q@mail.gmail.com>
In-Reply-To: <CAFU7BAQGyuEJ1iLSEyKQE__kmihV_TgEOmPyepdt08yEFTuh1Q@mail.gmail.com>
From: George Michaelson <ggm@algebras.org>
Date: Sat, 25 May 2024 09:15:08 +1000
Message-ID: <CAKr6gn3Zcsw_mX2OrTszBHCgCpJQGFYVckBeMN-YPUG-H2T1kQ@mail.gmail.com>
To: Jen Linkova <furry13@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000006a0c1906193b5739"
Message-ID-Hash: 2CYOSG66FR2RGRIS6FABHEIJXZPPQSF6
X-Message-ID-Hash: 2CYOSG66FR2RGRIS6FABHEIJXZPPQSF6
X-MailFrom: ggm@algebras.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: V6 Ops List <v6ops@ietf.org>, Tommy Jensen <Jensen.Thomas@microsoft.com>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: Fwd: New Version Notification for draft-link-v6ops-claton-03.txt
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/ASqWXUpDhOKuxd0A4fAYaD-ZP04>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>

In practice what does "disabling CLAT" look like. Is it different to a
classic DHCP renegotiate with address change? Or a v6 privacy address
change?

What happens to active bound associations through the CLAT basically.
"Stop" can be sudden or graceful but graceful incurs timer and tail cost.

"While disabling CLAT is impactful for all applications and traffic flows
already utilizing CLAT, it is recommended not only from performance
perspective, but also from security point of view."

I think a little more is needed. Active TCP connections will fail in
flight. Quic and other address agile session models will be robust but
other applications and protocols may not be. Cached rtt and other
structural state will no longer apply and path selection through the
upstream which shards on the 5 tuple will change.

G


On Sat, 25 May 2024, 2:13 am Jen Linkova, <furry13@gmail.com> wrote:

> Hello,
>
> Here is the updated version of the CLAT recommendations draft.
> The key changes:
> - some sections are reordered to improve readability
> - the draft now recommends disabling CLAT as soon as IPv4 connectivity
> becomes available (not doing so would have not just performance
> implications but security ones as well)
> - a (simplified) diagram is added to illustrate the logic of enabling
> and disabling CLAT.
>
> Comments are appreciated.
>
>
>
> ---------- Forwarded message ---------
> From: <internet-drafts@ietf.org>
> Date: Sat, May 25, 2024 at 1:54 AM
> Subject: New Version Notification for draft-link-v6ops-claton-03.txt
> To: Jen Linkova <furry13@gmail.com>, Tommy Jensen <tojens@microsoft.com>
>
>
> A new version of Internet-Draft draft-link-v6ops-claton-03.txt has been
> successfully submitted by Jen Linkova and posted to the
> IETF repository.
>
> Name:     draft-link-v6ops-claton
> Revision: 03
> Title:    464 Customer-side Translator (CLAT): Node Recommendations
> Date:     2024-05-24
> Group:    Individual Submission
> Pages:    14
> URL:      https://www.ietf.org/archive/id/draft-link-v6ops-claton-03.txt
> Status:   https://datatracker.ietf.org/doc/draft-link-v6ops-claton/
> HTML:     https://www.ietf.org/archive/id/draft-link-v6ops-claton-03.html
> HTMLized: https://datatracker.ietf.org/doc/html/draft-link-v6ops-claton
> Diff:
> https://author-tools.ietf.org/iddiff?url2=draft-link-v6ops-claton-03
>
> Abstract:
>
>    464XLAT ([RFC6877]) defines an architecture for providing IPv4
>    connectivity across an IPv6-only network.  The solution contains two
>    key elements: provider-side translator (PLAT) and customer-side
>    translator (CLAT).  This document provides recommendations on when a
>    node shall enable or disable CLAT.
>
>
>
> The IETF Secretariat
>
>
>
>
> --
> Cheers, Jen Linkova
>
> _______________________________________________
> v6ops mailing list -- v6ops@ietf.org
> To unsubscribe send an email to v6ops-leave@ietf.org
>

v2.39.1 | Report a Bug | By Email | System Status