IETF Logo Mail Archive

Re: [v6ops] PI [ULA draft revision #2 Regarding isolated networks]

Mark Andrews <marka@isc.org> Mon, 02 June 2014 23:40 UTC

Return-Path: <marka@isc.org>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6786E1A03E7 for <v6ops@ietfa.amsl.com>; Mon, 2 Jun 2014 16:40:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.252
X-Spam-Level:
X-Spam-Status: No, score=-0.252 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MANGLED_TIME=2.3, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nK8vWHbz5K0n for <v6ops@ietfa.amsl.com>; Mon, 2 Jun 2014 16:40:23 -0700 (PDT)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by ietfa.amsl.com (Postfix) with ESMTP id 1D9A11A03D6 for <v6ops@ietf.org>; Mon, 2 Jun 2014 16:40:23 -0700 (PDT)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) by mx.pao1.isc.org (Postfix) with ESMTP id AA656349479; Mon, 2 Jun 2014 23:40:16 +0000 (UTC) (envelope-from marka@isc.org)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id 1E848160067; Mon, 2 Jun 2014 23:45:22 +0000 (UTC)
Received: from rock.dv.isc.org (c211-30-183-50.carlnfd1.nsw.optusnet.com.au [211.30.183.50]) by zmx1.isc.org (Postfix) with ESMTPSA id B5D08160057; Mon, 2 Jun 2014 23:45:21 +0000 (UTC)
Received: from rock.dv.isc.org (localhost [IPv6:::1]) by rock.dv.isc.org (Postfix) with ESMTP id 47DF017375B9; Tue, 3 Jun 2014 09:39:43 +1000 (EST)
To: Ted Lemon <ted.lemon@nominum.com>
From: Mark Andrews <marka@isc.org>
References: <43BB867C-7BCA-45F6-8ADC-A49B34D6C0DC@nominum.com> <5384937A.90409@foobar.org> <m2iooq4oqi.wl%randy@psg.com> <5385762E.5020901@dougbarton.us> <5385AA97.1050207@fud.no> <53864DCB.5070202@gmail.com> <53865EA2.9000502@fud.no> <02dc01cf7c06$cc6a4bc0$4001a8c0@gateway.2wire.net> <97390E9C-460F-4D08-AFCE-E4A991E2B0E4@cisco.com> <46D22F62-3528-4B9D-9FCF-C9C7466A9ABA@delong.com> <20140531104145.GQ46558@Space.Net> <m1WqqZ4-0000DqC@stereo.hq.phicoh.net> <20140531214908.10FEE1719BB4@rock.dv.isc.org> <m1WqrFK-0000BHC@stereo.hq.phicoh.net> <23125E9D-85A1-49EB-ACE6-DB5EAC67EE02@nominum.com> <538B6AC3.7020402@bogus.com> <1DA781EA-D249-4B91-B8B7-3B719CE88925@nominum.com> <F07722F4-6791-4EF0-B8F2-3072DA98401E@nominum.com>
In-reply-to: Your message of "Mon, 02 Jun 2014 12:37:01 -0400." <F07722F4-6791-4EF0-B8F2-3072DA98401E@nominum.com>
Date: Tue, 03 Jun 2014 09:39:43 +1000
Message-Id: <20140602233943.47DF017375B9@rock.dv.isc.org>
Archived-At: http://mailarchive.ietf.org/arch/msg/v6ops/MNxSgcL9w9azj9PN5nw573fCORE
Cc: Philip Homburg <pch-v6ops-3a@u-1.phicoh.com>, V6 Ops List <v6ops@ietf.org>
Subject: Re: [v6ops] PI [ULA draft revision #2 Regarding isolated networks]
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jun 2014 23:40:24 -0000

Border NAT (IPv4) and depreferencing a prefix + SADR (IPv6) are
equivalent in terms of failure reachability.  Depreferencing a
prefix + SADR (IPv6) just moves the source address selection from
the NAT to the host.  This is what most homes will get to because
there is unlikely to be more than link up/down on the upstream links.

If you add BGP then external reachability can be added to the source
address selection of border NAT.  But if you are up to running BGP
then PI is the way to go.

Extending HE to do multiple source addresses (one per prefix) within
a adddress family will give pretty much the same robustness as
running BGP at the cost of some embryonic connections if the initial
attempt doesn't work.

Mark

In message <F07722F4-6791-4EF0-B8F2-3072DA98401E@nominum.com>, Ted Lemon writes
:
> On Jun 1, 2014, at 4:38 PM, Ted Lemon <Ted.Lemon@nominum.com> wrote:
> > On Jun 1, 2014, at 2:02 PM, joel jaeggli <joelja@bogus.com> wrote:
> >> Assumption of the Existence of HE  is a pretty dodgy proposition.
> > Then we can't do multihoming without NAT.
> 
> This rather badly qualified comment appears to have generated a lot of discus
> sion, so to head off further discussion I'd like to clarify a few points.
> 
> First, if you are multihomed, and both paths are working, then a host that do
> es nothing special will work.   Second, if one connection goes out, and the r
> outing updates, then an application that just retries when it doesn't get a c
> onnection will get a connection; for applications for which delays on the ord
> er of the time it takes for routing to update are harmless, redundant multiho
> ming will work with no changes.
> 
> So the statement I made was false when interpreted in this context.   I know 
> that it's false, and you don't need to keep arguing with me to convince me it
> 's false.   I'm sorry for having been sufficiently unspecific that people tho
> ught I meant my statement was true for the above cases.
> 
> The cases I care about are in fact edge cases.   They don't happen all the ti
> me, and depending on the application they may or may not be important.   I ca
> re about them because I've been affected by failures, and I'd like to be able
>  to say how to get these cases right without resorting to the use of NAT or N
> PT.   I'd like for there to be better tools for application developers to use
>  so that they can address these edge cases relatively cheaply; possibly even 
> more cheaply than they now do network programming that doesn't address these 
> edge cases.   If you don't care about these edge cases, you will have little 
> concern for this, and will not consider dealing with these edge cases importa
> nt.
> 
> I, and no doubt most participants on this mailing list, am deeply unintereste
> d in hearing "it works okay for me, so your edge cases don't matter"   I am a
> lso not interested in trying to get you to say "I care deeply about these edg
> e cases."   It's okay with me if you don't care about them, and don't conside
> r it important that they be addressed.   You don't need to respond to this me
> ssage with yet another assertion that there is no problem here--it won't conv
> ince me, and what I want to do about this probably won't affect your applicat
> ion anyway.
> 
> If you are interested in thinking about this problem, the place to discuss it
>  is probably the MIF working group--it's related to the work that's being don
> e there, although it's not the entirety of that work.   If you are not intere
> sted, please let's just let this drop.   I'm sorry for the troll--I didn't in
> tend it to be a troll, but I could have phrased it in a way that was less tro
> llish.  I will try to do better next time.
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email