IETF Logo Mail Archive

Re: [v6ops] draft-ietf-v6ops-icp-guidance WGLC

Mark ZZZ Smith <markzzzsmith@yahoo.com.au> Tue, 07 August 2012 20:31 UTC

Return-Path: <markzzzsmith@yahoo.com.au>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53B5A21F8672 for <v6ops@ietfa.amsl.com>; Tue, 7 Aug 2012 13:31:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.475
X-Spam-Level:
X-Spam-Status: No, score=-1.475 tagged_above=-999 required=5 tests=[AWL=0.024, BAYES_00=-2.599, FROM_LOCAL_NOVOWEL=0.5, J_CHICKENPOX_13=0.6]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QaH5dO3ZDxdg for <v6ops@ietfa.amsl.com>; Tue, 7 Aug 2012 13:31:52 -0700 (PDT)
Received: from nm4-vm0.bullet.mail.sp2.yahoo.com (nm4-vm0.bullet.mail.sp2.yahoo.com [98.139.91.190]) by ietfa.amsl.com (Postfix) with SMTP id 99C8E21F859F for <v6ops@ietf.org>; Tue, 7 Aug 2012 13:31:52 -0700 (PDT)
Received: from [98.139.91.69] by nm4.bullet.mail.sp2.yahoo.com with NNFMP; 07 Aug 2012 20:31:48 -0000
Received: from [98.139.91.19] by tm9.bullet.mail.sp2.yahoo.com with NNFMP; 07 Aug 2012 20:31:48 -0000
Received: from [127.0.0.1] by omp1019.mail.sp2.yahoo.com with NNFMP; 07 Aug 2012 20:31:48 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 419466.27161.bm@omp1019.mail.sp2.yahoo.com
Received: (qmail 59791 invoked by uid 60001); 7 Aug 2012 20:31:47 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com.au; s=s1024; t=1344371507; bh=OX2bhfAb3T6+EZKqYbr3M8TLiTVfbrjIRqRMaHIGPrM=; h=X-YMail-OSG:Received:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=c/yk6rcUzb1DscskIgBRHVrig/ppR+wDPTh16Ohi/exzNEdV+jvjZ1+Nt0IGCdRtPJIq67nJQb0UR76T1j/YQWU41x2/inidcJFT+QkXH8URZ+RAjWOZx+cGF99sgUAE5uJN+NpiWBsr9CFDcG2/S6jMcE34YMvei4ORnuviwiQ=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.au; h=X-YMail-OSG:Received:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=rJq+DRzJVj7VhfW3jKiPGN8p2gQJP4gAw0EaWMWEgXS7w8YQAl8fcyHEQ2uH1fqnnlXYHRxH87XL6jlolFb1AC1Afqid8OLdtKa+b4VtpNGwR6DNwX2wDy8TJ8kP+H/1OwRXQIqb75H2MMFKtmi8FOL2HZeJSfKSkitZpSM1H54=;
X-YMail-OSG: Wyd3kZMVM1lfukQCBrxcgawn_FXNRLhN_zWIVrJLvj4iuYL .pKvzNuvCwNvNGd4jN4tuMeAsx3.Fhvgql2MMU5skVXL2rKFqjsdEDjxItLL kTKCAMit1frZHDHhKRSpZ_Pi8QvNWMiAjmbbRSKvTnTGKQS_VZd_7PxXcg_Y UXBAxp8zOnY4EGdfA4s1glDheFPPb0X_.rkzfA1f4bPA69ZGCVJYtBTiYCwa 6l8LDrzGQE8DH6vTQGzAx77AQjYS4YaD6CJ5ewDhVATfEXgtCv9D1oYy6P6k TYkk2GSwkLp8Q0fVwJ28PrVoNXXYQvoEsH9luosethh1t1HiFvUYCSQKTKx9 QWrlKTNT4QqP70417DZgfrMpfuSy667mlJjFuj5uEVKF.25TnZFQLDlQT7YI PmpEOuCUOC7SWKjMHeKQWH9XLzPwqfogysBrpbmHIBe_2RlWwhiAIvFlwXlS 3z7DO9asLOG9w9n3nGHFjGLLymuUuT_bUguLYfTQGAy0-
Received: from [150.101.221.237] by web32502.mail.mud.yahoo.com via HTTP; Tue, 07 Aug 2012 13:31:47 PDT
X-Mailer: YahooMailWebService/0.8.120.356233
References: <5F52A5BB-36F7-4CF9-9639-960C65ADFD4E@cisco.com> <1344331498.66980.YahooMailNeo@web32508.mail.mud.yahoo.com> <20120807121116.GI38127@Space.Net>
Message-ID: <1344371507.52191.YahooMailNeo@web32502.mail.mud.yahoo.com>
Date: Tue, 07 Aug 2012 13:31:47 -0700
From: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
To: Gert Doering <gert@space.net>
In-Reply-To: <20120807121116.GI38127@Space.Net>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: "v6ops@ietf.org" <v6ops@ietf.org>, V6ops Chairs <v6ops-chairs@tools.ietf.org>, Ron Bonica <ron@bonica.org>
Subject: Re: [v6ops] draft-ietf-v6ops-icp-guidance WGLC
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Aug 2012 20:31:53 -0000

Hi Gert,


----- Original Message -----
> From: Gert Doering <gert@space.net>
> To: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
> Cc: Fred Baker (fred) <fred@cisco.com>; "v6ops@ietf.org" <v6ops@ietf.org>; V6ops Chairs <v6ops-chairs@tools.ietf.org>; Ron Bonica <ron@bonica.org>
> Sent: Tuesday, 7 August 2012 10:11 PM
> Subject: Re: [v6ops] draft-ietf-v6ops-icp-guidance WGLC
> 
> Hi,
> 
> On Tue, Aug 07, 2012 at 02:24:58AM -0700, Mark ZZZ Smith wrote:
>>  As for usefulness to it's target audience, I think it will be
>>  very useful, as perhaps it may have prevented the following ICP
>>  choosing to deploy an IPv6 only production network and then completely
>>  misusing NAT64 to try to provide IPv4 and IPv6 client facing services.
> 
> So how exactly would that be "misuse"?
> 
> It's quite reasonable to run single-stack inside, and if you need lots

> of addresses, make that IPv6-only.  The outside needs to be dual-stacked,
> and NAT64 (with preconfigured mappings) will do that for you, in a 
> nice and stateless way.
> 

I think when you use something outside of the scenario it was designed for, there is a risk that things won't work well.

According to RFC6145, 

   This document describes stateful NAT64 translation, which allows
   IPv6-only clients to contact IPv4 servers using unicast UDP, TCP, or
   ICMP.  One or more public IPv4 addresses assigned to a NAT64
   translator are shared among several IPv6-only clients.  When stateful
   NAT64 is used in conjunction with DNS64, no changes are usually
   required in the IPv6 client or the IPv4 server.

So NAT64 wasn't designed for a scenario where IPv4-only clients contact IPv6 servers. That's not to say it won't work, but it may not work well, and with their very general conclusion that "IPv6 is hard" (and plenty of people's experience is that it isn't anywhere near as hard as their story suggests), it didn't work well for them. That says to me that they weren't using the right tool for the job. They were misusing the tool by choosing the wrong one.

I think they developed or were given false expectations of what NAT64 would do for them, and that is where they were let down. Unfortunately some brief Internet searching on deployment choices or advice, or even an email to the mailing list they posted their story to, asking people's advice, would probably have saved them a lot of grief. This draft should hopefully prevent those sorts of false expectations, and false conclusions about how hard or not IPv6 is deploy in the future.

Regards,
Mark.

v2.23.0 | Report a Bug | By Email