IETF Logo Mail Archive

Re: [v6ops] reclassify 464XLAT as standard instead of info

Erik Kline <ek@google.com> Fri, 22 September 2017 05:58 UTC

Return-Path: <ek@google.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B7AC6134217 for <v6ops@ietfa.amsl.com>; Thu, 21 Sep 2017 22:58:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aplwvBLtl6Lb for <v6ops@ietfa.amsl.com>; Thu, 21 Sep 2017 22:58:39 -0700 (PDT)
Received: from mail-wm0-x22d.google.com (mail-wm0-x22d.google.com [IPv6:2a00:1450:400c:c09::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D0895133323 for <v6ops@ietf.org>; Thu, 21 Sep 2017 22:58:38 -0700 (PDT)
Received: by mail-wm0-x22d.google.com with SMTP id m127so775245wmm.3 for <v6ops@ietf.org>; Thu, 21 Sep 2017 22:58:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=/PTkpQr2xe6qIfTz0wT/e0U/FLDvq8XioHHld5D85vs=; b=ZRyoxblNdG942Ni5Mnw9DfJyp16PkUu8Y04E2+seK+JNZjUt1kbgGFtHHIKSYeMHLz BnNpeffKnY8OJn24zXABpg3euq+lJQn0no4meO9oe8uVVagXgfnhyt/GgJbHRSXt+ghT fMJIVQ6ozPNjNVwiNyGXhwsMEvNKbu4DILbDfJAW/zhTpzO/nrE4f6ZUrc432MSAOD0E eo61/zeDXHsKuUbBP/ZRny2RKW4S/3TS6UW1wFiOhgAcM2oMlBHn2q4UFAYunV9Xv5BJ wkIrhimrAsn8aO2zBlHCNr/VLpyUPb4IE2WYYy3IKiKFzu4YmDuZf0c4A0sni+JyOs+q NHxw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=/PTkpQr2xe6qIfTz0wT/e0U/FLDvq8XioHHld5D85vs=; b=CIvn9a4gZGv9speTBFYlMTHKOaKxV2wihmvl3xs1RhSMDiKJOusR6rtXqwjT09PJNZ RzaR72fNivt5tVppWRNo2qqMBezMpFRO+Xl2wHSevGaTW5tkZXo0OQIGvPbUkH6fGtSP wpU0Mgq5rhRO8df6Sfig1h48H0iHp+sJBUqk7cCprGjyRT1oZnVPWg92E5y0lo9HzyCe TgZ0896An2YEZ8ENlHmBX84bI5/Itav2O5pW8xBjVUtaRapOUDVHWg/FgnRFP1xXxYWq SLz5mOm3rlbgo3q3Oq/ruClQ/5BGwUOwDGMF5rLBfJUz+wqc4rTHi1u4YviWxmdkvUOw gsVQ==
X-Gm-Message-State: AHPjjUiJe/bMUbq2yy2PzZf6R1EJ6F6okwcK890B61ZQ6fFljN988UXk Ivh2xO951ZBNPeqejNL1gshgyPPgjNg2IsMdrlbXSw==
X-Google-Smtp-Source: AOwi7QDWJIW8A9vg/sVitiJggbTg31rrHBOdR2LJocj3pl9bcD3UMUXoCk4kH7Eslm0GTVZPSUoRSJWMktmcSH4hUX4=
X-Received: by 10.28.64.6 with SMTP id n6mr3014349wma.61.1506059916996; Thu, 21 Sep 2017 22:58:36 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.28.213.9 with HTTP; Thu, 21 Sep 2017 22:58:15 -0700 (PDT)
In-Reply-To: <20170921223305.B72A8878E716@rock.dv.isc.org>
References: <D5E8043B.86B21%lee@asgard.org> <E48DDA04-C058-4992-906E-8C8BC0E102AB@consulintel.es> <1BFA3605-4B16-4331-A7BA-3BDECBCA64EC@gmail.com> <85868796-18C7-48F4-BE69-8D50A1F47EF3@jisc.ac.uk> <472CC0F7-73C2-4A21-8F96-BBC966B01B77@employees.org> <de6b9aac-a3cc-0915-77c7-9fb880c3a16a@gmail.com> <20170921223305.B72A8878E716@rock.dv.isc.org>
From: Erik Kline <ek@google.com>
Date: Fri, 22 Sep 2017 14:58:15 +0900
Message-ID: <CAAedzxoU_X9rFZv3izJ67hD84chena58p2LVf0Eh1DSxpFXLxg@mail.gmail.com>
To: Mark Andrews <marka@isc.org>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, "v6ops@ietf.org" <v6ops@ietf.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="001a114b32ec645e0f0559c0e652"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/Td0u7dWyZiXT5m7EZ96_HyeoRwM>
Subject: Re: [v6ops] reclassify 464XLAT as standard instead of info
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Sep 2017 05:58:41 -0000

> I'd argue it is a "way to do it".  Good is not a adjective I'd apply
> to it as it has lots of side effects that impact others that are
> NOT using it the same way as NAT impacts every developer that uses
> IPv4.
>
> Because 464XLAT is almost always deployed with DNS64 (there are
> potentially other ways to learn the address mappings):
>
> YOU DO NOT KNOW IF THE IPV6 CONNECTION YOU ARE MAKING IS BEING
> TERMINATED ON A IPV6 NODE.  This restricts what you can do with
> that connection.  This impacts on EVERY developer.

This is a good point.  Apps that connect to an IPv4-only destination
via DNS64/NAT64 won't know that they cannot, for example, pass an IPv6
address as a useful reference/token.  If they could discover/be told
the DNS64 prefix then app could figure this out for themselves, but
that is indeed unwanted complexity.

Note that with 464xlat/clat in theory this problem could be avoided in
the case where IPv4 literals are used (without a getaddrinfo trick
that returns AAAAs for IPv4 literals, of course ;-).  Nevertheless,
this isn't all that helpful.

> DNS64/NAT64 and 464XLAT needs to die and the earth needs to be
> salted where they are buried.  They are not like NAT44 where there
> no other viable alternative.  There are plenty of alternatives.

We'll see if folks (specifically mobile operators--the bulk of
NAT64/DNS64 deployment) deploy DS-Lite or MAP-E...

v2.23.0 | Report a Bug | By Email