IETF Logo Mail Archive

Re: [v6ops] draft-ietf-v6ops-nat64-experience-02.txt comments

Mikael Abrahamsson <swmike@swm.pp.se> Wed, 10 July 2013 10:35 UTC

Return-Path: <swmike@swm.pp.se>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 679A621F9C37 for <v6ops@ietfa.amsl.com>; Wed, 10 Jul 2013 03:35:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dqVZVPa1iHrc for <v6ops@ietfa.amsl.com>; Wed, 10 Jul 2013 03:35:47 -0700 (PDT)
Received: from uplift.swm.pp.se (ipv6.swm.pp.se [IPv6:2a00:801::f]) by ietfa.amsl.com (Postfix) with ESMTP id 9E74921F9C13 for <v6ops@ietf.org>; Wed, 10 Jul 2013 03:35:46 -0700 (PDT)
Received: by uplift.swm.pp.se (Postfix, from userid 501) id A3E5C9F; Wed, 10 Jul 2013 12:35:40 +0200 (CEST)
Received: from localhost (localhost [127.0.0.1]) by uplift.swm.pp.se (Postfix) with ESMTP id DC2139C; Wed, 10 Jul 2013 12:35:40 +0200 (CEST)
Date: Wed, 10 Jul 2013 12:35:40 +0200
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: GangChen <phdgang@gmail.com>
In-Reply-To: <CAM+vMET=MdpLgeQXH2Lk_j2YqNdaKxehrzjPjFJsts2qAZmSog@mail.gmail.com>
Message-ID: <alpine.DEB.2.00.1307101232120.8891@uplift.swm.pp.se>
References: <alpine.DEB.2.00.1307101000270.8891@uplift.swm.pp.se> <CAM+vMET=MdpLgeQXH2Lk_j2YqNdaKxehrzjPjFJsts2qAZmSog@mail.gmail.com>
User-Agent: Alpine 2.00 (DEB 1167 2008-08-23)
Organization: People's Front Against WWW
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Cc: v6ops@ietf.org
Subject: Re: [v6ops] draft-ietf-v6ops-nat64-experience-02.txt comments
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Jul 2013 10:35:48 -0000

On Wed, 10 Jul 2013, GangChen wrote:

> That is an interesting use. How do you implement those IPv4 pool 
> allocations?  I heard some NAT64 implementations could allocate 
> different IPv4 pools to each inbound interface. Are you doing in the 
> similar way?

Some vendors allow certain IPv6 source addresses to go to certain outside 
IPv4 pool of addresses.

> If I understand correctly, that is a static port block allocation. A 
> port block would be reserved to a particular customer. No logging 
> information needed. will clarify at the next update.

Well, actually the block would be allocated upon first traffic seen from a 
certain source IPv6 address. Perhaps there are references to this in other 
RFCs that could be useful.

For instance (I'm sure there are a lot more):

http://www.ietf.org/proceedings/86/slides/slides-86-behave-2

http://www.cisco.com/en/US/docs/routers/asr9000/software/asr9k_r4.3/cg_nat/configuration/guide/cgnat43cgn.html#wp1015343

Bulk Port Allocation

The creation and deletion of NAT sessions need to be logged and these 
create huge amount of data. These are stored on Syslog collector which is 
supported over UDP. In order to reduce the volume of data generated by the 
NAT device, bulk port allocation can be enabled. When bulk port allocation 
is enabled and when a subscriber creates the first session, a number of 
contiguous outside ports are pre-allocated. A bulk allocation message is 
logged indicating this allocation. Subsequent session creations will use 
one of the pre-allocated port and hence does not require logging.

-- 
Mikael Abrahamsson    email: swmike@swm.pp.se

v2.23.0 | Report a Bug | By Email