Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01
JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Sun, 18 June 2017 10:57 UTC
Return-Path: <prvs=1342757a7a=jordi.palet@consulintel.es>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 135B0129AB0 for <v6ops@ietfa.amsl.com>; Sun, 18 Jun 2017 03:57:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=consulintel.es; domainkeys=pass (1024-bit key) header.from=jordi.palet@consulintel.es header.d=consulintel.es
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 33bVN7V7HCQq for <v6ops@ietfa.amsl.com>; Sun, 18 Jun 2017 03:57:43 -0700 (PDT)
Received: from mail.consulintel.es (mail.consulintel.es [217.126.185.215]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ABA9D120724 for <v6ops@ietf.org>; Sun, 18 Jun 2017 03:57:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=consulintel.es; s=MDaemon; t=1497783459; x=1498388259; q=dns/txt; h=DomainKey-Signature: Received:User-Agent:Date:Subject:From:To:Message-ID:Thread-Topic: References:In-Reply-To:Mime-version:Content-type: Content-transfer-encoding:Reply-To; bh=0X030Ne1qJjrQiq48IXEa/itG aHD/+Z2Mc7wtGh4vXk=; b=f/Y0dLh+ohuiYswnEY6rMRS34GQGjDyX3DK1YAMUh oYIHO0VThluaHBOJ6NlcR0toVHCe+w4ziVYZYJb09NHMKQ03e3sl1ZK9mGhTndZI Y6zGUfPACEPPZoq4etVAQbhqJrVApwc/OdumweDq3EWwI8kpb1jT9vd0xi9CKQPi Cs=
DomainKey-Signature: a=rsa-sha1; s=MDaemon; d=consulintel.es; c=simple; q=dns; h=from:message-id; b=heBfzR0Cp2A5azUzPb/ScdjT+aNbEtWqQiUQGcRS+rnPxbaGmLmBpzTmYszR ldJdRJct+14qEdDyhO6PZRpSiRSNwgxX+ysuqTq3phfdmfRqq3ZQXx3TP COl2YZtHV98oAiC3/bR7MuekSXUMDjJyJ8i5SkwqTx29dj4UyAmggw=;
X-MDAV-Processed: mail.consulintel.es, Sun, 18 Jun 2017 12:57:39 +0200
X-Spam-Processed: mail.consulintel.es, Sun, 18 Jun 2017 12:57:38 +0200
Received: from [10.10.10.99] by mail.consulintel.es (MDaemon PRO v11.0.3) with ESMTP id md50005452913.msg for <v6ops@ietf.org>; Sun, 18 Jun 2017 12:57:38 +0200
X-MDOP-RefID: re=0.000,fgs=0 (_st=1 _vt=0 _iwf=0)
X-Authenticated-Sender: jordi.palet@consulintel.es
X-HashCash: 1:20:170618:md50005452913::F93HaEOqTlZsBFxZ:00001aHq
X-Return-Path: prvs=1342757a7a=jordi.palet@consulintel.es
X-Envelope-From: jordi.palet@consulintel.es
X-MDaemon-Deliver-To: v6ops@ietf.org
User-Agent: Microsoft-MacOutlook/f.21.0.170409
Date: Sun, 18 Jun 2017 12:57:35 +0200
From: JORDI PALET MARTINEZ <jordi.palet@consulintel.es>
To: IPv6 Ops WG <v6ops@ietf.org>
Message-ID: <FA0D06E7-47F9-4029-81D4-2D96BFDD5576@consulintel.es>
Thread-Topic: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01
References: <149670589074.3841.10812713591494006570@ietfa.amsl.com> <C22244D7-ABF6-430B-8155-8D4C1C1382DF@apple.com>
In-Reply-To: <C22244D7-ABF6-430B-8155-8D4C1C1382DF@apple.com>
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable
Reply-To: jordi.palet@consulintel.es
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/PeGFJNihYsDN9tyjByabLLsB4YU>
Subject: Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Jun 2017 10:57:45 -0000
Hi David, Very good job! Some comments. Implementations MUST NOT wait for both families of answers to return before attempting connection establishment. If one query fails to return, or takes significantly longer to return, waiting for the second address family can significantly delay the connection establishment of the first one. Therefore, the client MUST treat DNS resolution as asynchronous. Note that if the platform does not offer an asynchronous DNS API, this behavior can be simulated by making two separate synchronous queries on different threads, one per address family. If the AAAA query returns first, the first IPv6 connection attempt MUST be immediately started. If the A query returns first, the client SHOULD wait for a short time for the AAAA response. This delay will be referred to as the "Resolution Delay". The RECOMMENDED value for the Resolution Delay is 50 milliseconds. [Jordi] I’m not sure to fully understand this text, as somehow seems to me contradictory. “waiting for the second address family can significantly delay the connection”, but then you mention 50 milliseconds as recommended. I think it will be nice to clarify it. Also, I think the Resolution Delay should be a parameter, somehow configurable in the OS or apps. This would also facilitate “deprecating” the use of HE (by increasing the delay to an exaggerated value), without necessarily removing the code neither breaking apps that rely on it, when we decide that IPv6 is widely spread so any IPv6 failures should be noticed by end-users in order to pass the message to the ISP, etc. (note that this is not referring to the sending of AAAA or A queries, but rather the address of the DNS server itself) [Jordi] To make it clear, maybe you want to say something such as “… but rather the protocol used for the DNS transport” This delay is referred to as the "Connection Attempt Delay". One recommended value for this delay is 250 milliseconds. [Jordi] Similar comments about the “Connection Attempt Delay” as earlier: should be a parameter, somehow configurable in the OS or apps. This would also facilitate “deprecating” the use of HE (by increasing the delay to an exaggerated value), without necessarily removing the code neither breaking apps that rely on it, when we decide that IPv6 is widely spread so any IPv6 failures should be noticed by end-users in order to pass the message to the ISP, etc. 464XLAT has the advantage of not requiring changes to user space software, however it requires per-packet translation and does not encourage client application … [Jordi] I think this text will make it more accurate: “464XLAT has the advantage of not requiring changes to user space software, however it requires per-packet translation in case the application is using IPv4 literals (or similar situations as older socket APIs) and does not encourage client application … [Jordi] One question here. Should section 7.1 also consider not just literals but old socket APIs? 7.2 Host Names with Broken AAAA Records [Jordi] I think you could add in this section (or a new section), the case for broken PMTUD. We have today many situations were on purpose or as a consequence of bad implementation of load-balancing, ECMP, etc. You can try it with any web site from 1&1 (for example diskmakerx.com) … just force a reduction on your MTU I you will find that the website is not only non-accessible with IPv6, but also doesn’t work with IPv4, because actual HE implementations aren’t able to detect this problem. I think it will be possible and of course, it will mean removing or having a different text for “9.1. Path Maximum Transmission Unit Discovery”. I agree that because the nature of HE, active only at the initial stage, we need to somehow extend the HE algorithm to test that, but I think this is the perfect opportunity to make it, because HE is successfully implemented everywhere, so I guess it will be successfully updated. Making it a “different” RFC/protocol, may not have the same impact. [Jordi] Of course, I think is a major ISP/date center issue, but they aren’t resolving it (tried for two years in this specific case), but there are many others, worldwide, and if we believe HE is the right solution for “ISPs not doing correctly their job”, then we should also support this “failure”. Again, using parameters, to make sure that when IPv6 is more globally spread we can “deprecate” HE and make sure to pass the ball again to those “bad guys in the sense that they don’t do a good job, or don’t make sure that they test correctly their deployments from the perspective of all kind of users”. 8. Summary of Configurable Values [Jordi] Looking at this section, you’re saying somehow what I was expressing earlier, so maybe we can make it clearer and is the right place to include a must to have all those parameters as OS configurable ones (by apps, users, network management, etc.). Regards, Jordi -----Mensaje original----- De: v6ops <v6ops-bounces@ietf.org> en nombre de David Schinazi <dschinazi@apple.com> Responder a: <dschinazi@apple.com> Fecha: martes, 6 de junio de 2017, 2:10 Para: IPv6 Ops WG <v6ops@ietf.org> Asunto: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01 Hi v6ops, We have updated draft-ietf-v6ops-rfc6555bis to version 01. https://tools.ietf.org/html/draft-ietf-v6ops-rfc6555bis-01 This version incorporates feedback we received on the previous version, and adds a new section on "Supporting IPv6-only Networks with NAT64 and DNS64" as these technologies require changes in the Happy Eyeballs stack on devices that do not support 464XLAT. Please let us know what you think! Thanks, David Schinazi A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the IPv6 Operations of the IETF. Title : Happy Eyeballs Version 2: Better Connectivity Using Concurrency Authors : David Schinazi Tommy Pauly Filename : draft-ietf-v6ops-rfc6555bis-01.txt Pages : 13 Date : 2017-06-05 Abstract: Many communication protocols operated over the modern Internet use host names. These often resolve to multiple IP addresses, each of which may have different performance and connectivity characteristics. Since specific addresses or address families (IPv4 or IPv6) may be blocked, broken, or sub-optimal on a network, clients that attempt multiple connections in parallel have a higher chance of establishing a connection sooner. This document specifies requirements for algorithms that reduce this user-visible delay and provides an example algorithm. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-v6ops-rfc6555bis/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-v6ops-rfc6555bis-01 https://datatracker.ietf.org/doc/html/draft-ietf-v6ops-rfc6555bis-01 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-v6ops-rfc6555bis-01 _______________________________________________ v6ops mailing list v6ops@ietf.org https://www.ietf.org/mailman/listinfo/v6ops ********************************************** IPv4 is over Are you ready for the new Internet ? http://www.consulintel.es The IPv6 Company This electronic message contains information which may be privileged or confidential. The information is intended to be for the use of the individual(s) named above. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, including attached files, is prohibited.
- [v6ops] I-D Action: draft-ietf-v6ops-rfc6555bis-0… internet-drafts
- [v6ops] Updated draft-ietf-v6ops-rfc6555bis to ve… David Schinazi
- Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis t… JORDI PALET MARTINEZ
- Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis t… David Schinazi
- Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis t… JORDI PALET MARTINEZ
- [v6ops] Supporting IPv6-only Networks with NAT64 … stephan.lagerholm@yahoo.com
- Re: [v6ops] Supporting IPv6-only Networks with NA… David Schinazi
- Re: [v6ops] Supporting IPv6-only Networks with NA… stephan.lagerholm@yahoo.com
- Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis t… David Schinazi
- Re: [v6ops] Supporting IPv6-only Networks with NA… David Schinazi
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mark Andrews
- Re: [v6ops] Supporting IPv6-only Networks with NA… stephan.lagerholm@yahoo.com
- Re: [v6ops] Supporting IPv6-only Networks with NA… David Schinazi
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mikael Abrahamsson
- Re: [v6ops] Supporting IPv6-only Networks with NA… stephan.lagerholm@yahoo.com
- Re: [v6ops] Supporting IPv6-only Networks with NA… stephan.lagerholm@yahoo.com
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mark Andrews
- Re: [v6ops] Supporting IPv6-only Networks with NA… stephan.lagerholm@yahoo.com
- Re: [v6ops] Supporting IPv6-only Networks with NA… Erik Kline
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mark Andrews
- Re: [v6ops] Supporting IPv6-only Networks with NA… Fred Baker
- Re: [v6ops] Supporting IPv6-only Networks with NA… mohamed.boucadair
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mark Andrews
- Re: [v6ops] Supporting IPv6-only Networks with NA… Rajiv Asati (rajiva)
- Re: [v6ops] Supporting IPv6-only Networks with NA… mohamed.boucadair
- Re: [v6ops] Supporting IPv6-only Networks with NA… Fred Baker
- Re: [v6ops] Supporting IPv6-only Networks with NA… Fred Baker
- Re: [v6ops] Supporting IPv6-only Networks with NA… Mark Andrews
- Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis t… JORDI PALET MARTINEZ