IETF Logo Mail Archive

Re: [v6ops] About Req for Comments - "Transition to IPv6"

JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Thu, 12 March 2020 10:23 UTC

Return-Path: <prvs=1340af7d02=jordi.palet@consulintel.es>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F1BD93A098A for <v6ops@ietfa.amsl.com>; Thu, 12 Mar 2020 03:23:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.003
X-Spam-Level:
X-Spam-Status: No, score=0.003 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, PDS_TONAME_EQ_TOLOCAL_HDRS_LCASE=1.999, SPF_HELO_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=consulintel.es
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UUCBxRq_Ix8C for <v6ops@ietfa.amsl.com>; Thu, 12 Mar 2020 03:23:46 -0700 (PDT)
Received: from mail.consulintel.es (mail.consulintel.es [IPv6:2001:470:1f09:495::5]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D840E3A094E for <v6ops@ietf.org>; Thu, 12 Mar 2020 03:23:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=consulintel.es; s=MDaemon; t=1584008621; x=1584613421; i=jordi.palet@consulintel.es; q=dns/txt; h=User-Agent:Date: Subject:From:To:Message-ID:Thread-Topic:References:In-Reply-To: Mime-version:Content-type; bh=2NEndHR80ku8I/EZssOVI4BO5nHRJqPpKd tbSt6w0So=; b=YEz6jneFhsdJWG8NKL0tJQi6MYHOL0SJU+h5u6wJeUdQVZxmrs 0aWbd5dU5mwS6egtUXnBmlOiuykX3ogiEZEpG6WrmEUsU7zOTkg3Cpiu4SjdaIZb sPerRuVCPOoKAD0g+TEFT72AEFN4dN/xh/sQ9OB+3OgF8G8Y+r3NrarAY=
X-MDAV-Result: clean
X-MDAV-Processed: mail.consulintel.es, Thu, 12 Mar 2020 11:23:41 +0100
X-Spam-Processed: mail.consulintel.es, Thu, 12 Mar 2020 11:23:40 +0100
Received: from [10.10.10.144] by mail.consulintel.es (MDaemon PRO v16.5.2) with ESMTPA id md50000088983.msg for <v6ops@ietf.org>; Thu, 12 Mar 2020 11:23:39 +0100
X-MDRemoteIP: 2001:470:1f09:495:e0a6:81ab:ea8d:1a06
X-MDHelo: [10.10.10.144]
X-MDArrival-Date: Thu, 12 Mar 2020 11:23:39 +0100
X-Authenticated-Sender: jordi.palet@consulintel.es
X-Return-Path: prvs=1340af7d02=jordi.palet@consulintel.es
X-Envelope-From: jordi.palet@consulintel.es
X-MDaemon-Deliver-To: v6ops@ietf.org
User-Agent: Microsoft-MacOutlook/16.35.20030802
Date: Thu, 12 Mar 2020 11:23:35 +0100
From: JORDI PALET MARTINEZ <jordi.palet@consulintel.es>
To: v6ops <v6ops@ietf.org>
Message-ID: <F6A8EE9B-97D3-400A-9FD6-B95912C7EADD@consulintel.es>
Thread-Topic: [v6ops] About Req for Comments - "Transition to IPv6"
References: <e8a25961-5ac9-d35e-77dd-bf86f45cd077@gmail.com> <7eb4dc25-28a6-4927-2356-846e200681d2@gmail.com> <0791D4B0-8390-48D7-AF0A-CE004EC3224C@consulintel.es> <ccc75efb-8c00-ee97-5cc7-2e061e6e5a54@gmail.com> <52b6b9a4f46a49598eccee1b35e5efc5@irs.gov> <89127c25-9c51-c4bb-97ae-3567e80a4c52@gmail.com> <43D0E5A1-E5C5-4ACA-A44D-BC2F67129174@delong.com> <D2622B27-88F4-42A7-B944-C002F40D0DB7@consulintel.es> <2020030818294834486735@chinatelecom.cn> <F90A90C1-6FF5-4D69-9E5D-0DA5406E0054@consulintel.es> <2020031109031648115517@chinatelecom.cn>
In-Reply-To: <2020031109031648115517@chinatelecom.cn>
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_3666857015_1265593401"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/JfXkegaqnDnAGVWVFIu6gOdeWiU>
Subject: Re: [v6ops] About Req for Comments - "Transition to IPv6"
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Mar 2020 10:23:49 -0000

Hi Chongfeng,

 

I think we basically agree then.

 

I’ve only one question. You said the access network is layer 2, right, this is common in many places, but on top of the layer 2, there is either IPv6 only to the CE. If that’s the case, then my definition is still good (the CE may be running CLAT or whatever so IPv4 is somehow transported on top of IPv6). Right?

 

Regards,

Jordi

@jordipalet

 

 

 

El 11/3/20 2:04, "v6ops en nombre de xiechf@chinatelecom.cn" <v6ops-bounces@ietf.org en nombre de xiechf@chinatelecom.cn> escribió:

 

Hi, Jordi,

Thank you for your consideration of my comments. Please find my new notes in-line below.

 

From: JORDI PALET MARTINEZ

Date: 2020-03-09 16:32

To: v6ops

Subject: Re: [v6ops] About Req for Comments - "Transition to IPv6"

Hi Chongfeng,

 

Thanks for your inputs!

 

Below, in-line …

 

 

 

El 8/3/20 11:31, "v6ops en nombre de xiechf@chinatelecom.cn" <v6ops-bounces@ietf.org en nombre de xiechf@chinatelecom.cn> escribió:

 

Hi, Jordi, 

First , I agree with you that the definition of IPv6-only needs to consider the what part of the network we are referring to, for example, ISP network, IDC, Cloud platform and Service system should have their own specific definition of IPv6-only.  I hope this draft can go on.

Secondly. for ISP network, the definition of IPv6 should be based on whether it can allocates only IPv6 

 

[Jordi] I don’t agree on this point. An ISP may have different parts of its network with or without IPv6/IPv4, even different services, so I don’t think it can be split that way.

 

addresses to most of its customers for service provisioning, if yes, it can be consider as IPv6-only. If it

 

[Jordi] Now, the part you mention as if it is allocating only IPv6 addresses, is also not valid, in my opinion. Because in some of the IPv6-only with IPv4aaS, the ISP allocate private IPv4 addresses.

 

[Chongfeng] If ISP allocates IPv4 private address to  large quatity of its customers, it should not be considered as IPv6-only, this should be the bottom line.

 

allocates IPv4 address to most of its customers, then it is not IPv6-only. My personal opionion is that the definition should not be based on whether to eliminate IPv4 protocol in the network.  At present stage, it is unrealistic to eliminate IPv4 protocol in most networks, for the networks still need to provide access service to some customers who do not support IPv6-only due to their poor-capability CPE or terminals.

 

[Jordi] I agree is unrealistic to disable IPv4 in most of the customer LANs, but not in the access network. Until 90-99% of the home devices of an ISP customers have IPv6 in their LAN devices, an IPv6 with IPv4aaS is needed.

[Chongfeng]  In China, access network adopts  layer-two approach, it is independent to layer-three procotols. It seems to much more difficult  to make transition to IPv6 in wireline broadband network, due to the slow upgradation of home routers.

 

Moreever, some networks still need to use IPv4 for network management . If the definition it too strict, I guess none of the network can meet the standard, including those who have deplyed 464XLAT. In addition, an IPv6-only network should be open and interconnected with OTTs and other ISPs, some closed system, such as VoLTE in mobile network, should not be consider as IPv6-only, even though it only allocates IPv6 addresses to it customer.

 

[Jordi] If IPv4 is used for management in the access network and provides native IPv4 to the CE (for example), then it is not IPv6-only. We could say in that case: This access network is IPv6-only for the customer service, but still IPv4-only or dual-stack for the management.

 

[Jordi] So I still believe that the “nature” of the definition should be based in if IPv4 is used natively in a specific part of a network (then it is IPv6-only) or otherwise is IPv4-only or dual-stack. What do you think?

 [Chongfeng] In general, I agree with this point.

 

 

Best regards

Chongfeng 

 

From: JORDI PALET MARTINEZ

Date: 2020-03-06 02:12

To: v6ops@ietf.org

Subject: Re: [v6ops] About Req for Comments - "Transition to IPv6"

If you read my draft, my opinion is different:

 

  Definition of IPv6-only

 

   Consequently, considering the context described in the section above,

   if we want to be precise and avoid confusing others, we can not use

   the terminology "IPv6-only" in a generic way, and we need to define

   what part of the network we are referring to.

 

   From that perspective, we define the "IPv6-only" status in a given

   part(s) of a network, depending on if there is actual native

   forwarding of IPv4, so IPv4 is not configured neither managed.

 

So IPv4 may be not configured, or not used natively, but there is no way to prevent that "is there" by means of tunneling of translation.

 

*unless* you make sure that any encapsulation or translation is filtered, which is close to impossible.

 

Because we disagree, it seems clear that this document is needed.

 

So if anyone has inputs, I will consider them in a new version during the weekend.

 

Regards,

Jordi

@jordipalet

 

El 5/3/20 17:46, "v6ops en nombre de Owen DeLong" <v6ops-bounces@ietf.org en nombre de owen@delong.com> escribió:

 

    

    

    > On Mar 5, 2020, at 6:02 AM, Alexandre Petrescu <alexandre.petrescu@gmail.com> wrote:

    > 

    > Thank you very much for the pointer.  In it I could spot

    > the following footnote: "[4] IPv6-Only refers to network environments in

    > which use of the IPv4 protocol has been eliminated.”

    

    No.

    

    IPv6-Only refers to network environments which are not using IPv4. That could be a network where IPv4 has been eliminated (rare at this time, though Facebook is a significant example) or it could be a greenfield deployment where IPv4 was never deployed.

    

    > 

    > In my humble opinion,

    > 

    > I think, if I am not wrong, that there are no such networks in which

    > IPv4 protocol has been eliminated.  On one hand, a network is made of

    > computers, and IPv4 stacks are still present in almost all computers.

    > On another hand, there might be some ptp links (not networks, but

    > individual links) that run IPv6 only.

    

    You are wrong… There are examples at various levels of IPv6-only networks. Many mobile carriers are IPv6-only in the US, though they do provide some apparent IPv4 capability to the end user through mechanisms such as 464XLAT and/or NAT64..

    

    Another significant example is Facebook where they are essentially IPv6-only throughout their network and provide minimal IPv4 translation shim at the edge to cope with end users that lack IPv6 capability.

    

    > That is why it is hard to agree on the assumption of IPv4 being eliminated somewhere.  Worse, it makes look as if the goal of that 'IPv6-only' is to arrive at that same situation which in fact does use IPv4.

    

    As a general rule, once IPv6 is ubiquitously deployed in a network, the preservation of IPv4 in the majority of that network becomes an unnecessary cost factor and a security risk (increased attack surface, if nothing else). As such, I think you will see an increasing number of organizations follow on to the way Facebook has managed their transition and start eliminating IPv4 wherever possible and replacing it with translation shims as far out towards the border as practical.

    

    Owen

    

    

    _______________________________________________

    v6ops mailing list

    v6ops@ietf.org

    https://www.ietf.org/mailman/listinfo/v6ops

    

 

 

 

**********************************************

IPv4 is over

Are you ready for the new Internet ?

http://www.theipv6company.com

The IPv6 Company

 

This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense.. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.

 

 

 

_______________________________________________

v6ops mailing list

v6ops@ietf.org

https://www.ietf.org/mailman/listinfo/v6ops

_______________________________________________ v6ops mailing list v6ops@ietf.org https://www.ietf.org/mailman/listinfo/v6ops 


**********************************************
IPv4 is over
Are you ready for the new Internet ?
http://www.theipv6company.com
The IPv6 Company

This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.

_______________________________________________ v6ops mailing list v6ops@ietf.org https://www.ietf.org/mailman/listinfo/v6ops 



**********************************************
IPv4 is over
Are you ready for the new Internet ?
http://www.theipv6company.com
The IPv6 Company

This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.

v2.23.0 | Report a Bug | By Email