IETF Logo Mail Archive

Re: [v6ops] Fwd: 82nd IETF DRAFT Agenda

Fred Baker <fred@cisco.com> Fri, 28 October 2011 16:42 UTC

Return-Path: <fred@cisco.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B71C21F86C3 for <v6ops@ietfa.amsl.com>; Fri, 28 Oct 2011 09:42:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.989
X-Spam-Level:
X-Spam-Status: No, score=-103.989 tagged_above=-999 required=5 tests=[AWL=-0.405, BAYES_40=-0.185, HTML_MESSAGE=0.001, J_CHICKENPOX_13=0.6, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T1o-WHuhrLRW for <v6ops@ietfa.amsl.com>; Fri, 28 Oct 2011 09:42:44 -0700 (PDT)
Received: from mtv-iport-3.cisco.com (mtv-iport-3.cisco.com [173.36.130.14]) by ietfa.amsl.com (Postfix) with ESMTP id 8E96A21F8888 for <v6ops@ietf.org>; Fri, 28 Oct 2011 09:42:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=fred@cisco.com; l=14344; q=dns/txt; s=iport; t=1319820159; x=1321029759; h=subject:mime-version:from:in-reply-to:date:cc:message-id: references:to; bh=airrjiR1WcEqO9sjB8vr6ADbWOB1leHq1dxwIj2Pryg=; b=OnrmnwhvwZlddkCPXMd1ILJUuaLMxsHhZ3okOnekt7Q4+40CDOrK/hu/ kVTRpHyO/PdYjVbp9vMm08IN95rs2nD9vVleEcNw8BpwjjoJjv1mH9q9P ADuC7x9mx4HUzJRVlYzXLsTWaj4yHmDAUA+iFz6yGboEAbhw7YVN+Fj3u o=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgEFAH/aqk6rRDoH/2dsb2JhbABDhHekboEFgXIBAQEBAgEBAQEPARAKOgcLBQsJAg4DAwECASoCAicfCQgGCgkih2AIlUcBjEqRSASHbzNhBIgGjAiFLYxS
X-IronPort-AV: E=Sophos; i="4.69,419,1315180800"; d="scan'208,217"; a="10989730"
Received: from mtv-core-2.cisco.com ([171.68.58.7]) by mtv-iport-3.cisco.com with ESMTP; 28 Oct 2011 16:42:39 +0000
Received: from stealth-10-32-244-220.cisco.com (stealth-10-32-244-220.cisco.com [10.32.244.220]) by mtv-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p9SGgcmT015040; Fri, 28 Oct 2011 16:42:38 GMT
Received: from [127.0.0.1] by stealth-10-32-244-220.cisco.com (PGP Universal service); Fri, 28 Oct 2011 09:42:38 -0700
X-PGP-Universal: processed; by stealth-10-32-244-220.cisco.com on Fri, 28 Oct 2011 09:42:38 -0700
Mime-Version: 1.0 (Apple Message framework v1084)
From: Fred Baker <fred@cisco.com>
In-Reply-To: <4EA867C7.3050705@globis.net>
Date: Fri, 28 Oct 2011 09:42:29 -0700
Message-Id: <875768A8-981C-4705-91A7-E98A218FAA55@cisco.com>
References: <4EA867C7.3050705@globis.net>
To: Ray Hunter <v6ops@globis.net>
X-Mailer: Apple Mail (2.1084)
Content-Type: multipart/alternative; boundary="Apple-Mail-177-63049614"
Cc: "v6ops@ietf.org WG" <v6ops@ietf.org>
Subject: Re: [v6ops] Fwd: 82nd IETF DRAFT Agenda
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Oct 2011 16:42:45 -0000

As I understand the proposal, this prefix would be used in ICMP but not in routing. It's a way to have ICMPv4 be able to represent an IPv6 address translated from ICMPv6. I understand that the prefix probably wants to be treated as a martian from a BGP filtering perspective, but if it's not advertised I'm not sure I see the down side in routing.

Help me out here?

On Oct 26, 2011, at 1:04 PM, Ray Hunter wrote:

> I raised concerns about draft-xli-v6ops-ivi-icmp-address-00.txt when it was originally discussed on this list last July.
> 
> The draft has not been updated since, so my concerns remain.
> 
> There now seems to be a number of people on the list who see its benefit, and are supporting the draft.
> 
> IMHO Due consideration should be made to weigh up the likely operational cost incurred because (many?) operators will have to change a lot of operational filters (to avoid the very likely abuse of this special range as a DDOS source) against the likely operational benefit for the (few?) operators who have applied this technology.
> 
> There are alternatives available for address ranges to use as a source address of translations within the AS without assigning a new global special purpose range (either RFC1918, or a privately assigned block of public IPv4 addresses from existing space, which can be shared between operators).
> 
> Admittedly the alternatives are not very attractive. But neither is the translation of ICMP messages into a packet that carries very little value or information when observed outside of its own AS, which is not traceable, and which could in fact become a danger thus triggering a need for mass packet filter updates.
> 
> I asked at the time: can anyone think of any other example of a "one-way" special purpose packet that is allowed to leave the link, never mind the AS?  RFC1918 addresses are not allowed to cross inter-enterprise links (for good reasons).
> 
> Regards,
> RayH
> 
>> Subject: Re: [v6ops] Fwd: 82nd IETF DRAFT Agenda
>> From: Warren Kumari <warren@kumari.net>
>> Date: Wed, 26 Oct 2011 07:32:35 -0400
>> To: Xing Li <xing@cernet.edu.cn>
>> CC: "v6ops@ietf.org WG" <v6ops@ietf.org>, V6ops Chairs <v6ops-chairs@tools.ietf.org>
>> Content-Transfer-Encoding: quoted-printable
>> Precedence: list
>> MIME-Version: 1.0 (Apple Message framework v1084)
>> References: <20111013211312.B6C7421F8AFF@ietfa.amsl.com> <619C3B81-1CDC-4341-8180-EC8472864CC0@cisco.com> <4EA53FB7.6090603@cernet.edu.cn>
>> In-Reply-To: <4EA53FB7.6090603@cernet.edu.cn>
>> Message-ID: <C8B7882E-F8F0-4E65-AC5C-D8CDA24DC0EC@kumari.net>
>> Content-Type: text/plain; charset=utf-8
>> Message: 1
>> On Oct 24, 2011, at 6:36 AM, Xing Li wrote:
>> 
>>   
>>> > Hi, Fred and All,
>>> > 
>>> > 于 2011/10/14 5:52, Fred Baker 写道:
>>>     
>>>> >> The initial version of the agenda has been posted. It places v6ops on Wednesday and Friday mornings, a total of 4.5 hours. I personally am satisfied with it, but if folks have issues I can pass them along.
>>>> >> 
>>>> >> I'll note that the deadline for -00 drafts is 24 October, and the deadline for updated drafts is a week later. For discussion in the working group meetings, I'm looking for a draft posted after 25 July, with supporting email discussion on the list.
>>>> >> 
>>>> >> I'm looking for (and in some cases have seen) commentary on each of:
>>>> >> 
>>>> >> -rw-rw-r--  1 fred  fred  13796 Jul 25 23:59 draft-xli-v6ops-ivi-icmp-address-00.txt
>>>>       
>>> > 
>>> > I would like to request that the V6ops WG adopt draft-xli-v6ops-ivi-icmp-address-00.txt as a WG adoption.
>>> > 
>>> > The draft describes the operational considerations of mapping ICMPv6 packets through an RFC6145 gateway where the IPv6 address is not directly translatable into an IPv4 address, and requests an IANA Special Purpose IPv4 address allocation (192.70.192.0/24) to allow this address mapping to take place using a protocol-specific designated address block in IPv4.
>>> > 
>>>     
>> 
>> Summary:
>> I support adoption.
>> 
>> More words: 
>> I must admit to being somewhat uncomfortable with the potential for using this space to hide that actual course of a DoS -- yes, this is somewhat addressed in the Security Considerations, but that doesn't actually remove the problem.
>> That said, the sad fact is that with so many networks not doing BCP38 you already have no faith in the source address of a packet IMO the benefits outweigh the risks.
>> 
>> W
>> 
>>   
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email