Re: [v6ops] draft-ietf-v6ops-nat64-srv

[Martin Huněk <martin.hunek@tul.cz>]

Hi thank you for a review.

Dne pondělí 13. května 2019 19:04:07 CEST, Mikael Abrahamsson napsal(a):
> On Mon, 13 May 2019, Ron Bonica wrote:
> > This week, please review and comment on draft-ietf-v6ops-nat64-sr .
> 
> I'm generally sympathetic to the problem space this draft tries to solve.
> 
> I'm struggling a bit with the different states that the device can end up
> in over time, and also if these lookups should only be done at connect
> time, or do they continue frequently in case the operator changes the
> information? Is there a lifetime to them? If not, why?

Sure, the SRV record does have the TTL value after which would had to be 
renewed. This way it would keep in line with updated settings. It is not 
explicitly written there, I guess it should be.

Question is if the "local domain" should be renewed as well. I think not due 
to security precaution (domain could be received for example from unsecured RA 
so it might be good to wait for expiration), but I would probably let this 
open as the draft doesn't specify domain detection mechanisms.

> Think of a device that is connected for months, how are changes performed?
> What triggers a refresh? The word "time" or "life" (as in lifecycle)
> doesn't exist in the draft.

As above, I would mention it in new version, something like: SRV record in use 
must be valid and kept updated according to its TTL value.
> 
> Perhaps the built in TTL in DNS can be used and lookups are done per
> normal DNS procedures and if the information changes then the settings are
> updated accordingly?

Yes, that is the idea.

Thanks again for review, I would appreciate any other thoughts.

Regards,
Martin