IETF Logo Mail Archive

Re: [v6ops] Implementation Status of PREF64

Vasilenko Eduard <vasilenko.eduard@huawei.com> Mon, 11 October 2021 08:33 UTC

Return-Path: <vasilenko.eduard@huawei.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97E783A0B4D for <v6ops@ietfa.amsl.com>; Mon, 11 Oct 2021 01:33:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z8Jjaxp9H6Yi for <v6ops@ietfa.amsl.com>; Mon, 11 Oct 2021 01:33:08 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BA15E3A0B41 for <v6ops@ietf.org>; Mon, 11 Oct 2021 01:33:07 -0700 (PDT)
Received: from fraeml740-chm.china.huawei.com (unknown [172.18.147.207]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4HSX6X0V1nz684Rh for <v6ops@ietf.org>; Mon, 11 Oct 2021 16:30:12 +0800 (CST)
Received: from mscpeml100002.china.huawei.com (7.188.26.75) by fraeml740-chm.china.huawei.com (10.206.15.221) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.8; Mon, 11 Oct 2021 10:33:03 +0200
Received: from mscpeml500001.china.huawei.com (7.188.26.142) by mscpeml100002.china.huawei.com (7.188.26.75) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.8; Mon, 11 Oct 2021 11:33:03 +0300
Received: from mscpeml500001.china.huawei.com ([7.188.26.142]) by mscpeml500001.china.huawei.com ([7.188.26.142]) with mapi id 15.01.2308.008; Mon, 11 Oct 2021 11:33:02 +0300
From: Vasilenko Eduard <vasilenko.eduard@huawei.com>
To: Owen DeLong <owen=40delong.com@dmarc.ietf.org>, David Farmer <farmer=40umn.edu@dmarc.ietf.org>
CC: v6ops list <v6ops@ietf.org>
Thread-Topic: [v6ops] Implementation Status of PREF64
Thread-Index: AQHXsWiabe9xT98knEyNpn/SXFCzFauzkUkAgABK7ICAAEb8gIAACf0AgAH4SoCAAgvogIAAROwAgAA+dACAAPFksIAAN4ew///cF4CAADh0D///620AgAE/qoCAAEymgIAAQtEAgACFcMD//87gAAADB2KAAAEo1YAAAgTGgAAMC1mAABEnE4AAAOBpgAACvIEAAAREQQAAAJLtAAACLxgAAAE9/QABFvNJgAAZYOiAAAkzk4AAA/ImAAA43DOAAAimUIAAAfCoAAAm/YuAAFrZvtA=
Date: Mon, 11 Oct 2021 08:33:02 +0000
Message-ID: <231108dc6fe54e2485c4c38e9c7cc045@huawei.com>
References: <DDA36020-90CC-471B-83AD-3D98950F1164@delong.com> <CAKD1Yr0T-7t-UHbsJBMLpTjKhPAV5uUQkux6oby89TVUue7PyA@mail.gmail.com> <CO1PR11MB4881D400EA4681F1505040D2D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <CAKD1Yr3TmqFxjKuZ57wS7VuPOf6rJvOwnvnQdFrRLQ=DkZ+CCw@mail.gmail.com> <CO1PR11MB4881F411A4D5BEA7A8479726D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <D8AEA194-293B-43E4-BCAE-33CD81FB7D8C@delong.com> <CAKD1Yr2Tug-PFV7wAh0s6-gw8W3LcLG7wC1fD7Lu_hMZQYKdtw@mail.gmail.com> <08D2885E-B824-48E8-9703-DCA98771FA37@delong.com> <CAKD1Yr2EVsY3tYUf56R0Q1+KVrowtqh-HgwXj5vxzy4wd-vkTg@mail.gmail.com> <1A6ED87B-666E-439C-852F-2E5C904C0515@delong.com> <CAKD1Yr23fY2DJDvB-9eVFRsxnBnZQ0kZuZfYUfRUHYW=_D=enA@mail.gmail.com> <CAN-Dau1z0q0R61x7iY+Wg_cFRU0jmqr+fR0y=bSXxj+K-n722w@mail.gmail.com> <CAKD1Yr1T_mXfxJGHOrBfqZfexm6GTrUqnFi57710pTroKQK6uQ@mail.gmail.com> <702CB018-1A02-4B32-B9AA-7C7B31521F12@delong.com> <CAKD1Yr0jZR8Efzr_Y6FeiBvHYS8ATmDupx2ABTXXy-rSA_QjmA@mail.gmail.com> <1adb70a8-db0a-4ea6-f721-c1035343cda3@foobar.org> <DM6PR02MB69249D4F0A8003E77EC9F153C3B19@DM6PR02MB6924.namprd02.prod.outlook.com> <CAN-Dau0q7p-9NWv=9vouX51Z1Yqe_h06WwpnkMjkyj6=A7EcQw@mail.gmail.com> <CEF113D2-1F80-422F-BBD1-1E1951367A2F@delong.com> <CAN-Dau3h2hVkL3GdrQit_WJhoygsShikbAUv7aG-WLpYxLB_oQ@mail.gmail.com> <AC26631A-5B44-4821-A686-902B5BC685AF@delong.com>
In-Reply-To: <AC26631A-5B44-4821-A686-902B5BC685AF@delong.com>
Accept-Language: zh-CN, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.47.203.200]
Content-Type: multipart/alternative; boundary="_000_231108dc6fe54e2485c4c38e9c7cc045huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/Bd_U2QyYDhZMikFrd_vSLhAk6Zk>
Subject: Re: [v6ops] Implementation Status of PREF64
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Oct 2021 08:33:11 -0000

Ø  I don’t know of anyone whose desire for IPv6 PAT has delayed enterprise adoption beyond the point where the ability to use stateful inspection without NAT was adequately explained to them.
Then how to deal with the MHMP environment?
If the host has 2 addresses from different providers (for redundancy) then how to properly choose combination {source IP, next hop} for a particular session?
Any implementation of RFC 8028?
IPv4 was using Private IP for such site with ad-hoc NAT translation on gateways to specific Carrier.

Ed/
From: v6ops [mailto:v6ops-bounces@ietf.org] On Behalf Of Owen DeLong
Sent: Saturday, October 9, 2021 7:08 PM
To: David Farmer <farmer=40umn.edu@dmarc.ietf.org>
Cc: v6ops list <v6ops@ietf.org>; Owen DeLong <owen=40delong.com@dmarc.ietf.org>
Subject: Re: [v6ops] Implementation Status of PREF64




On Oct 8, 2021, at 14:32 , David Farmer <farmer=40umn.edu@dmarc.ietf.org<mailto:farmer=40umn.edu@dmarc.ietf.org>> wrote:



On Fri, Oct 8, 2021 at 3:36 PM Owen DeLong <owen=40delong.com@dmarc.ietf.org<mailto:40delong.com@dmarc.ietf.org>> wrote:



On Oct 8, 2021, at 9:28 AM, David Farmer <farmer=40umn.edu@dmarc.ietf.org<mailto:farmer=40umn.edu@dmarc.ietf.org>> wrote:

I will note a few things;

1. The IETF hasn't picked a value of  N, but it has, through RFC7934, said that N<1.

I doubt that. N<1 would be utterly useless… Perhaps N>1?

Yes, I meant N>1, but let's explore N<1 for a moment ;

One could argue that means NAT, and more specifically Port-Translation NAT.

Ewww



So, does that mean the IETF needs to specify and equipment vendors implement Port-Translation NAT for IPv6? I know a lot of network operators, especially enterprise networks, that at least say they want that. And, you are saying the network operators should have ultimate and unilateral control.

Please no. We didn’t specify it (until it was widely deployed) in IPv4 and I think sending the signal that it SHOULD NOT be standardized in IPv6 is perfectly fine.

In IPv4, it was a work around for an address shortage. If IPv6 experiences such an address shortage, I’ll accept that we might need to consider such a thing. Short of that, code is available, operators are free to deploy it if they really want it, but I don’t think we should sanction it.

OTOH, IA_NA is already sanctioned and android’s failure to implement it is delaying IPv6 adoption in the enterprise.

I don’t know of anyone whose desire for IPv6 PAT has delayed enterprise adoption beyond the point where the ability to use stateful inspection without NAT was adequately explained to them.


Again, network operators, public and private, have, and should have, a lot of control, but it is not ultimate and unilateral control.

Fine, but IA_NA is standardized and SHOULD be implemented on any IPv6 host with sufficient capabilities to do so.

Owen

v2.23.0 | Report a Bug | By Email