IETF Logo Mail Archive

Re: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion

Richard Patterson <richard@helix.net.nz> Tue, 17 April 2018 20:59 UTC

Return-Path: <richard@helix.net.nz>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A382126DC2 for <v6ops@ietfa.amsl.com>; Tue, 17 Apr 2018 13:59:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.61
X-Spam-Level:
X-Spam-Status: No, score=-2.61 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=helix-net-nz.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Leioyr2hf9Pq for <v6ops@ietfa.amsl.com>; Tue, 17 Apr 2018 13:59:03 -0700 (PDT)
Received: from mail-it0-x232.google.com (mail-it0-x232.google.com [IPv6:2607:f8b0:4001:c0b::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A4222120725 for <v6ops@ietf.org>; Tue, 17 Apr 2018 13:59:03 -0700 (PDT)
Received: by mail-it0-x232.google.com with SMTP id r19-v6so17666160itc.0 for <v6ops@ietf.org>; Tue, 17 Apr 2018 13:59:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=helix-net-nz.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=ZuW94u2Se4soWEctrrZzZg2+WRuLFwatrXvFNP/Yn2M=; b=B6bSheBgrvL+Vty0CCV5zy7+4RuU5unh7HPZoOQQkd/tXwqYAfrETbu36r13UXwHTT CL+dIYfCsDjjotjW7G1yTit93nkb8FcqbcpZz7CDR3E2iFYZvAyYrCvYfcXd0UfTRKiS fxdtUq/kmHDYT/YK1Cr26+tVcdAv0gD+r1J+yhMPWBZ+EnFB8SU2crFRd8hPd6Mxx1UW TtASRAb62CPFFoS7Ft+mukM3CZC+mucmhlZbiWaPDT1eO0xICER+2gzx7cDY65fm0PaR sCpNWHRdZHqLlErnxaXbBKUYSZMCyYnTSEbmTViQmmefGDZ1rU2T+/F+BF3dsP6QJL1B OHqw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=ZuW94u2Se4soWEctrrZzZg2+WRuLFwatrXvFNP/Yn2M=; b=HN0fF6LMd8Og1DGTcKIf9PzSoDefKIBW7xEuSX45yS6Vmy/6lp3fRT/FlSvjfKlMDi gM08YTG+zUXOU8WhsZyG9OW0ctvIv2td4RwjQXOVZiJvjzYSiObW2yWA+Im29niDK/V/ ZyX8nzhaDR8pzqz/tD5AT9H4qC2a25Ru4u25J3AlBHnrt+Cmq+oaktx1wCr4ZLXpB97A KV7RZagzfQu8pDih1u/Sj9VeIqm51/FwKUtrHm1aCQCIpEgxnd1mzLb4A2LYZOf4e9qP S8ABN/C7fGncamGwNTxOiZc3N5DfUJLO13Q5wa8N+DTQyT5lReaYrQh64f62yd4MC0eF 8lrw==
X-Gm-Message-State: ALQs6tBSgwMVNLaB16wnzIqrgdK5Fmu+dbHK2UHTQuH+8yxqtP7cQAQc A6Rxc93BvZwvpBX7aW0KdMb2CYaU
X-Google-Smtp-Source: AIpwx480K2s115kzBDc0ovzLFyaI7u8A8rCeabGMKoLr5SaxNWadVw7sHGNwUr72jHAIQStNE6+2sQ==
X-Received: by 2002:a24:6f8d:: with SMTP id x135-v6mr2948273itb.93.1523998742873; Tue, 17 Apr 2018 13:59:02 -0700 (PDT)
Received: from mail-it0-f53.google.com (mail-it0-f53.google.com. [209.85.214.53]) by smtp.gmail.com with ESMTPSA id 22-v6sm6168021itj.16.2018.04.17.13.59.02 for <v6ops@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 17 Apr 2018 13:59:02 -0700 (PDT)
Received: by mail-it0-f53.google.com with SMTP id q85-v6so18052523itc.0 for <v6ops@ietf.org>; Tue, 17 Apr 2018 13:59:02 -0700 (PDT)
X-Received: by 2002:a24:3d0d:: with SMTP id n13-v6mr2760275itn.81.1523998741822; Tue, 17 Apr 2018 13:59:01 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.107.47.137 with HTTP; Tue, 17 Apr 2018 13:58:41 -0700 (PDT)
In-Reply-To: <52D64464-A1BB-4FFA-AA79-28B8953E3B93@gmail.com>
References: <3A083AA8-41D3-4BF8-BE31-5071975B6F98@gmail.com> <CAHL_VyC1xUDDqZRz1r--u8nyuLaZRnsT0ZR7hzOw4HWUkgwPXg@mail.gmail.com> <52D64464-A1BB-4FFA-AA79-28B8953E3B93@gmail.com>
From: Richard Patterson <richard@helix.net.nz>
Date: Tue, 17 Apr 2018 21:58:41 +0100
X-Gmail-Original-Message-ID: <CAHL_VyCUaiebv9YvZQmKrCLSQwTbD5M-yHJKVZ_c6vU5DMqsxg@mail.gmail.com>
Message-ID: <CAHL_VyCUaiebv9YvZQmKrCLSQwTbD5M-yHJKVZ_c6vU5DMqsxg@mail.gmail.com>
To: Fred Baker <fredbaker.ietf@gmail.com>
Cc: V6 Ops List <v6ops@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/SFU3IF5v7C13DkgXNUbCEdSdK9c>
Subject: Re: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Apr 2018 20:59:07 -0000

Yes that's a fair assessment.

I believe the current use of SHOULD for the transition technologies
allows flexibility to those with the aforementioned concerns that
would be OK with a limited sub-set, whilst still providing overall
guidance to those wishing for complete compliance.
Although does this also mean that it's possible for a CE to comply
with this draft, yet not implement any method under §5.3?

-Richard


On 17 April 2018 at 21:32, Fred Baker <fredbaker.ietf@gmail.com> wrote:
> Let me ask an additional question. We have had at least one operator speak against adoption of this draft as a working group draft, because she doesn't want to add requirements to customer-edge (CE) routers, which potentially make them more complex and therefore expensive (every line of code costs something and has some probability of containing a bug or attack). It sounds like you would support adoption of the draft if it contains the right set of features and doesn't contain anything else, and if (as it is currently written) that it would be implemented in addition to RFC 7084. "The right set of features", from your perspective, includes MAP-T.
>
> Is that a correct deduction?
>
>> On Apr 17, 2018, at 12:20 PM, Richard Patterson <richard@helix.net.nz> wrote:
>>
>> Hi Fred, et al.
>>
>> Speaking as an Operator who is currently validating MAP-T as a
>> solution, I'm in favour of making sure it itself is included in future
>> versions of this draft.
>>
>> There are multiple vendors offering MAP-T Border Relays, and we've
>> been testing both OpenWRT-based CPEs as well as a custom CPE based on
>> the Broadcom BCM63138 SoC.
>> The Broadcom reference SDK comes with the CERNET kernel module and
>> userland tool, and supports hardware acceleration of MAP-T translated
>> flows with Broadcom's Runner fastpath.
>>
>> I was also quite impressed with OpenWRT's implementation; aside from
>> initially needing internet connectivity to install the map-t module
>> after a fresh install, no further configuration is required to have
>> the CPE dynamically configure itself with MAP-T, given the appropriate
>> DHCPv6 options.  Kudos to the OpenWRT/LEDE devs on their support.
>>
>> Re: the draft's §5.3.4.  It's succinct enough, whilst still directing
>> implementors to the relevant RFCs, however I'm still mulling over the
>> NAT44 and iptables/netfilter concerns that I raised in softwires a few
>> months back.[1]   The address-sharing mode's algorithm for port
>> allocations, isn't easily implementable with the current
>> iptables/netfilter behaviour.  OpenWRT's approach creates rule
>> shadowing and port ranges that never get utilised.
>>
>> -Richard
>>
>>
>> [1] https://www.ietf.org/mail-archive/web/softwires/current/msg06832.html
>>
>> On 15 April 2018 at 06:00, Fred Baker <fredbaker.ietf@gmail.com> wrote:
>>> At IETF 101, Jordi Palet Martinez presented draft-palet-v6ops-transition-ipv4aas. The draft is at https://tools.ietf.org/html/draft-palet-v6ops-transition-ipv4aas, and his presentation deck is at https://datatracker.ietf.org/meeting/101/materials/slides-101-v6ops-transition-requirements-for-ipv6-ce-routers-to-support-ipv4-as-a-service-00.
>>>
>>> I would like to invite discussion.
>>>
>>> In particular, this draft derives from draft-ietf-v6ops-rfc7084-bis, and the chairs wonder if it should be reposted as the next version of draft-ietf-v6ops-rfc7084-bis. That should happen if an only if the working group thinks it should be published as an RFC (now or at some point) adding considerations for implementors of RFC 7084 and also implementing transition services.
>>>
>>> A key comment at IETF 101 was that there remain far too many transition mechanisms listed. It would be helpful, if you hold that opinion, if you could give that advice, identify the mechanism or mechanisms you think should be listed, and indicate the reasoning behind your viewpoint. For example, if you think MAP-T should be listed, it would be helpful to know what operators are implementing MAP-T and are looking for CE Routers that support it. The same comment applies to any such mechanism or service.
>>>
>>>
>>>
>>> _______________________________________________
>>> v6ops mailing list
>>> v6ops@ietf.org
>>> https://www.ietf.org/mailman/listinfo/v6ops
>>>
>

v2.23.0 | Report a Bug | By Email