IETF Logo Mail Archive

Re: [v6ops] Vicious circle [ULA precedence [Thoughts about wider operational input]]

Kevin Myers <kevin.myers@iparchitechs.com> Thu, 28 April 2022 11:11 UTC

Return-Path: <kevin.myers@iparchitechs.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE282C157B4B; Thu, 28 Apr 2022 04:11:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.887
X-Spam-Level:
X-Spam-Status: No, score=-1.887 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iparchitechs.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s0wAEJUwhb-x; Thu, 28 Apr 2022 04:11:01 -0700 (PDT)
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (mail-sn1anam02on2123.outbound.protection.outlook.com [40.107.96.123]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AC6AFC14F741; Thu, 28 Apr 2022 04:11:01 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LawqygBz0u2PfByDYGT06bh+0Y/+0o0m9rbC/NPGGxb6W41AFBKOqUqjzkR/qfw8sU/zwJIFi0RqBm2i+yEr5iy9E2Go5jQ7zkyL3IkBZEENnH0hpAw9N3/Serh+suQsQynEfG9oe1DkFoXV5GxgApb2edP9mippst8Uu0q8T01+wJjdJjO9cObq23S6HpicwhfEIUesN+rG1AijQn4aFAns1uNjoGxoIqyfIr6jbq9CycpIHcl7CXGYWJ8DCK5wXrSaKQsYBft1J0NrlofllJtg+AXnryniaZtMjqLlSnACrPaVd3jzLT8YcfA/4N0vGDKubYog5FipppneRwNfvA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=JHsZXJ7ERLHo0/o68qtiKMTB2ZWvIbgzUVMAb4DH70k=; b=Syt53i0DLP7JUWM+jUeamhP+cTq5Gbhwx0gtuakKBb/J57v+1SPVi9cLCxDwJpXPI9P7ALo2mv+ffwlvmO+zixpq+hycGrEmldz0ZPchi8EJURbksAg+R8HT4Q6beqlw/r2gO2WeWN+gM9F5MdQtI1qXtIDu4gLwng7Nu9baSRdHtubcsginFZ14cB1ZtIRtsoOCnkrJi8lpY74E8ACbH50q8WxXxqCzpVbH6WGLMWTYs8JaoOsh7oiUefV/yIFyPbznbazsk6i5/Qr2u3PkxFre794156Kn8bkVRRYeNvB5I1X87EtnQ7bucUky1bdqh4s/3jGZRMZgZmb7VyhUPg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=iparchitechs.com; dmarc=pass action=none header.from=iparchitechs.com; dkim=pass header.d=iparchitechs.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iparchitechs.onmicrosoft.com; s=selector2-iparchitechs-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JHsZXJ7ERLHo0/o68qtiKMTB2ZWvIbgzUVMAb4DH70k=; b=Pft+mo0bJK0CGEm8HPVBMYUMK3EPVFJXjQV4DkQlgOz2CtRRmsGbgH9/PwDhuc8fH9CLhzd7h7N4V66fCqiUkojtrYqjX9UXVWV+pTEMM7RviytChFjDkN1TjDQRZO1BMkWk5i+JHiir7IF4O7xWGggUnxCfG2XLOogFCsUEhag=
Received: from BN8PR07MB7076.namprd07.prod.outlook.com (2603:10b6:408:79::19) by BYAPR07MB5688.namprd07.prod.outlook.com (2603:10b6:a03:a6::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5206.13; Thu, 28 Apr 2022 11:10:57 +0000
Received: from BN8PR07MB7076.namprd07.prod.outlook.com ([fe80::a840:dbb:c6ac:27dd]) by BN8PR07MB7076.namprd07.prod.outlook.com ([fe80::a840:dbb:c6ac:27dd%5]) with mapi id 15.20.5206.013; Thu, 28 Apr 2022 11:10:57 +0000
From: Kevin Myers <kevin.myers@iparchitechs.com>
To: Jen Linkova <furry13@gmail.com>, Simon <linux@thehobsons.co.uk>
CC: 6man list <ipv6@ietf.org>, v6ops list <v6ops@ietf.org>
Thread-Topic: [v6ops] Vicious circle [ULA precedence [Thoughts about wider operational input]]
Thread-Index: AQHYWPMEsuW60eoQIk20MPzY3u+cMq0BQBmAgAAOt4CAAAsfAIAAAkWAgAABEwCAAqNNEIAAJJ6AgAAFeoCAAAeegIAAEhYAgAA9PgCAAAwtgIAAgQSAgAAbkYCAAAENkA==
Date: Thu, 28 Apr 2022 11:10:56 +0000
Message-ID: <BN8PR07MB70767A4D39C3C8A752917A6895FD9@BN8PR07MB7076.namprd07.prod.outlook.com>
References: <CAM5+tA8WvjvWirxqE6kQ9LQAG0NcpWyCLGVooB=G7gZ9ETb2zQ@mail.gmail.com> <20220424172743.GA218999@fg-networking.de> <CAKD1Yr1v0Tkh+pWD-ts=PL3gZf7Qj6OHW6Cuvj8iGcSSMibjew@mail.gmail.com> <0afe25f5-52b7-a438-0696-cf8b0a83c2dc@gmail.com> <BN8PR07MB70760D9693580F5BDCB61DD995F89@BN8PR07MB7076.namprd07.prod.outlook.com> <CAKD1Yr3Z9wGQ+uiA2WcW00MrOiLyHs+bSoFjHVtrixCi2qp4DA@mail.gmail.com> <BN8PR07MB7076A6456CAB48EF428D6E8695F89@BN8PR07MB7076.namprd07.prod.outlook.com> <65d0d9ac-77fc-c200-09e3-0c3949ca1541@gmail.com> <CAN-Dau2FS99ewfgH8xk-jSJFCnO92CJV9ZC98DUE2UDR7V1Eww@mail.gmail.com> <CANMZLAYbpZBDA8uFnJqfWfWTQ4S9RN4a-DqWe36qzfAfDtXiQA@mail.gmail.com> <CAN-Dau0BjRR2_7xz38DpJsz0Y=Z_8bV5n-=Eh1QUVEDzqVxmaA@mail.gmail.com> <CAPt1N1=H=eAyRu0JcHnLpZEUizDZ4Kj0VwPu=0nM=Wn+y3Ho1w@mail.gmail.com> <CAM5+tA_4rtSkgEuRUFZ2LYr6i8a7vWeKODYieVARF3RbRvgRww@mail.gmail.com> <BN8PR07MB7076DE3E745CB916FB81879595FA9@BN8PR07MB7076.namprd07.prod.outlook.com> <ADAE42CE-448F-42F5-89BE-692F493E2DC8@consulintel.es> <CAM5+tA_ksJ+agY1tze1-zPHLsgYFgjEYtnuPs+ffZbnRqiHytw@mail.gmail.com> <BAD082DA-0958-4926-B3E5-4E4599A75078@consulintel.es> <BN8PR07MB7076564E50C0DAFBFAB950FD95FA9@BN8PR07MB7076.namprd07.prod.outlook.com> <CAPt1N1ncVkekecS=dBHSR3WtaEMruy55Udxy0WSMGTgbN24pKw@mail.gmail.com> <CAM5+tA8-Zqka-vZ9jRL3wn0dtfuJj0ECx_k9prwyS2ypisaPtw@mail.gmail.com> <FB031B76-7E88-4824-876F-D1A05F8D2215@thehobsons.co.uk> <CAFU7BAST-oNGpy4JvODDsf=8eS69hV8XCi8OgEHBkkoujRN3Rw@mail.gmail.com>
In-Reply-To: <CAFU7BAST-oNGpy4JvODDsf=8eS69hV8XCi8OgEHBkkoujRN3Rw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=iparchitechs.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7db7e98d-5366-4245-d506-08da2907c4d2
x-ms-traffictypediagnostic: BYAPR07MB5688:EE_
x-microsoft-antispam-prvs: <BYAPR07MB56882BF96CAF27D486BF6C5495FD9@BYAPR07MB5688.namprd07.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN8PR07MB7076.namprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(39830400003)(366004)(136003)(346002)(376002)(396003)(7696005)(83380400001)(71200400001)(44832011)(6506007)(53546011)(8936002)(186003)(966005)(52536014)(9686003)(508600001)(5660300002)(86362001)(33656002)(110136005)(54906003)(316002)(2906002)(8676002)(4326008)(64756008)(66476007)(66556008)(66446008)(76116006)(66946007)(122000001)(55016003)(38100700002)(38070700005); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 2
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-antispam-messagedata-1: ED9Lb+bA6NPoxoM9RBEyv3iIpFALD3Pmbwc=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: iparchitechs.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN8PR07MB7076.namprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7db7e98d-5366-4245-d506-08da2907c4d2
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Apr 2022 11:10:56.9851 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 394cfad8-1b06-48c6-b381-e12377a8fdde
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: TCkIL3EIAiUDPhf25m56vCvllPuznG9Gqjtd0Oxghn2fij/EZ9megUjj5LPIkS/VWBZv2+qu1TbS57jlMNV8reCNFOjamFOswd2kB+DxnDM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR07MB5688
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/sf9mQptrITIW0FN7u1wC2aEpwco>
Subject: Re: [v6ops] Vicious circle [ULA precedence [Thoughts about wider operational input]]
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Apr 2022 11:11:05 -0000

Please see the e-mail I sent addressing that point - the conclusion is incorrect. PCI-DSS mentions IPv6 briefly in only two places for a document of over 300 pages (I previously said one but it's actually two). Auditing frameworks and auditors are not ready for IPv6 and conflicting sections of PCI-DSS have *not* been reconciled for IPv6 - look at my comments regarding PCI-DSS 1.4.4 prohibiting direct connections as one example. 

All of the challenges I mentioned in that e-mail remain. (using the example of a publicly traded financial org we do work for that recently passed PCI compliance).

-----Original Message-----
From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Jen Linkova
Sent: Thursday, April 28, 2022 5:53 AM
To: Simon <linux@thehobsons.co.uk>
Cc: 6man list <ipv6@ietf.org>; v6ops list <v6ops@ietf.org>
Subject: Re: [v6ops] Vicious circle [ULA precedence [Thoughts about wider operational input]]

On Thu, Apr 28, 2022 at 11:15 AM Simon <linux@thehobsons.co.uk> wrote:
> The IPv6 community needs to engage with this other regulatory community to get them to bring their standard into the 21st century.
>
> As long as the PCI standard effectively mandates IPv4 & NAPT then it’s going to be an uphill struggle.

See my email I sent yesterday. PCR DSS 4.0 (published in March 2022) does not mandate NAT for IPv6. The text has been updated.

--
SY, Jen Linkova aka Furry

_______________________________________________
v6ops mailing list
v6ops@ietf.org
https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email