IETF Logo Mail Archive

Re: [v6ops] [SUSPECTED SPAM] Google Alert - IPv6

Dave O'Reilly <rfc@daveor.com> Sun, 29 October 2017 16:49 UTC

Return-Path: <rfc@daveor.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A89FF13B2BC for <v6ops@ietfa.amsl.com>; Sun, 29 Oct 2017 09:49:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=daveor.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OV5d7B7H3hp4 for <v6ops@ietfa.amsl.com>; Sun, 29 Oct 2017 09:49:49 -0700 (PDT)
Received: from vps.ftrsolutions.com (vps.ftrsolutions.com [5.77.39.21]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA31813AF75 for <v6ops@ietf.org>; Sun, 29 Oct 2017 09:49:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=daveor.com; s=default; h=To:References:Message-Id:Content-Transfer-Encoding:Cc:Date: In-Reply-To:From:Subject:Mime-Version:Content-Type:Sender:Reply-To:Content-ID :Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To: Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe :List-Post:List-Owner:List-Archive; bh=4NdnEQ+Lc4BjQFdY2KCOxQLOrOjMAHW8bcLAztHx+KE=; b=Uy5FR5QKeDclF2jNIMUhAy27JC 5W0VVJpyWBRRrFPisqw981EaOO4yf1ucpNSAz88/H+JeaG0nPFUULhnIz+BcZXCxAH9Nwh/lgvNQM EojLrCif3QbICGUoFZKfJwX5BpnJkwZ7pUzlOHrWKyhg6CSpLQJsUzl2JdWFXdoYhvAM=;
Received: from 86-44-56-31-dynamic.agg7.bsn.cld-dbn.eircom.net ([86.44.56.31]:55177 helo=[192.168.1.25]) by vps.ftrsolutions.com with esmtpsa (TLSv1:ECDHE-RSA-AES256-SHA:256) (Exim 4.89) (envelope-from <rfc@daveor.com>) id 1e8qmR-0002U3-0m; Sun, 29 Oct 2017 16:49:47 +0000
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Dave O'Reilly <rfc@daveor.com>
In-Reply-To: <5FA44821-D6C2-4A9C-A1A5-59BECB65B4F4@gmail.com>
Date: Sun, 29 Oct 2017 16:49:46 +0000
Cc: Ole Troan <otroan@employees.org>, Lee Howard <Lee@asgard.org>, "v6ops@ietf.org" <v6ops@ietf.org>, Tore Anderson <tore@fud.no>
Content-Transfer-Encoding: quoted-printable
Message-Id: <D4975FFD-0A2A-49C7-BF91-9EE18429E197@daveor.com>
References: <f403045ef57ac52962055bd88b84@google.com> <20395E98-DA55-447F-BEFE-CB581A88BB78@gmail.com> <alpine.DEB.2.20.1710190655260.31961@uplift.swm.pp.se> <20171019083506.6627a166@echo.ms.redpill-linpro.com> <alpine.DEB.2.20.1710190856530.31961@uplift.swm.pp.se> <787AE7BB302AE849A7480A190F8B93300A056EB5@OPEXCLILMA3.corporate.adroot.infra.ftgroup> <CAHw9_iLWAMexrfXwsdB8duGa5ueJMofqVRqNck6DeOzA=KChqA@mail.gmail.com> <C4E37677-A2FB-49F8-B362-C29B28DFD570@daveor.com> <D618D79F.8AA1A%lee@asgard.org> <22C655A9-AE02-4885-98B5-7515C49E7F2B@employees.org> <B20ECDCB-1EFD-4265-BE13-5AE1E92335AE@gmail.com> <95274753-7241-47DE-B463-0341248FAE38@employees.org> <5FA44821-D6C2-4A9C-A1A5-59BECB65B4F4@gmail.com>
To: Fred Baker <fredbaker.ietf@gmail.com>
X-Mailer: Apple Mail (2.3124)
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - vps.ftrsolutions.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - daveor.com
X-Get-Message-Sender-Via: vps.ftrsolutions.com: authenticated_id: dave@daveor.com
X-Authenticated-Sender: vps.ftrsolutions.com: dave@daveor.com
X-Source:
X-Source-Args:
X-Source-Dir:
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/Yhwn2iVgY4OqL3IFe5aukH3GFM0>
Subject: Re: [v6ops] [SUSPECTED SPAM] Google Alert - IPv6
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Oct 2017 16:49:50 -0000

….and there it is. Sorry, that’s what I get for reading through the thread in order from earliest to most recent posts!

Apologies!

daveor

> On 28 Oct 2017, at 06:19, Fred Baker <fredbaker.ietf@gmail.com> wrote:
> 
> 
> 
>> On Oct 28, 2017, at 7:15 AM, Ole Troan <otroan@employees.org> wrote:
>> 
>> Fred,
>> 
>>>> The bitter truth is that we can make IPv4 'scale' forever. ;-(
>>> 
>>> Actually, from what I have been told, we can't. We can make it work for a number of sources per translated address (Xing Li gave a talk on his experiments in that regard a few years back, although I would have to do some research to find it). As I recall, he started getting user complaints when he had 100-or-so active sessions on each external address. That's far from "forever".
>> 
>> Complaints about what?
> 
> What I'm thinking about specifically is slide 6 of https://www.ietf.org/proceedings/92/slides/slides-92-v6ops-3.pdf, and some of the other slides around it. I got the number wrong: he saw issues when he had more than 512 addressed machines sharing a single address using NAT address. I believe that the context was splitting the port number so that any given address had a certain number of ports that could be tracked to it rather than fussing with logging.
> 
>> You might be assuming the IPv4 Internet isn't changing to accommodate address sharing. And there are many ways of building NAT.
>> The mechanisms I described earlier do work. It's on my todo list to get hold a sufficiently large traffic sample to run the numbers of how what sharing ratio you could achieve. It is orders of magnitude more than 1:100 (if you intended s/sessions/users).
>> 
>> Each session to 8.8.8.8:53 would burn a port.
>> But a single port could be reused for millions of connections as long as DA+DP was different.
>> (And you could of course be nice to things like SIP and give those endpoint-independent behaviour).
>> 
>> That said the path, of extending A+P to the end host is also open to us. Similarly to what Brian C proposed at IETF 29.
>> No state in network. Each host gets a single port. I.e. we have expanded the address space to 48 bits.
>> Requires new transport protocol on top of IP+UDP of course. With it's own name space. But that's pretty much happening over in transport now anyway, right?
>> 
>> Ole
>

v2.23.0 | Report a Bug | By Email