Re: [v6ops] FW: New Version Notification for draft-palet-v6ops-464xlat-deployment-00.txt

Jordi,

> It is not required, but using it allows traffic from non-literals to have a single translation at the NAT64.

Yes, but then it is not 464XLAT. It is NAT64. It's a lot easier having a discussion if we agree on the terminology.

Ole

> 
> Furthermore, I believe several big mobile operator network deployments, are using DNS64.
> 
>> From RFC6877:
> 
> The 464XLAT architecture described in this document uses IPv4/IPv6
>   translation standardized in [RFC6145] and [RFC6146].  It does not
>   require DNS64 [RFC6147] since an IPv4 host may simply send IPv4
>   packets, including packets to an IPv4 DNS server, that will be
>   translated to IPv6 on the customer-side translator (CLAT) and back to
>   IPv4 on the provider-side translator (PLAT).  464XLAT networks may
>   use DNS64 [RFC6147] to enable single stateful translation [RFC6146]
>   instead of 464XLAT double translation where possible.  The 464XLAT
>   architecture encourages the IPv6 transition by making IPv4 services
>   reachable across IPv6-only networks and providing IPv6 and IPv4
>   connectivity to single-stack IPv4 or IPv6 servers and peers.
> 
> Regards,
> Jordi
> 
> 
> -----Mensaje original-----
> De: Ole Troan <otroan@employees.org>
> Responder a: <otroan@employees.org>
> Fecha: martes, 10 de octubre de 2017, 12:03
> Para: Jordi Palet Martinez <jordi.palet@consulintel.es>
> CC: IPv6 Ops WG <v6ops@ietf.org>
> Asunto: Re: [v6ops] FW: New Version Notification for draft-palet-v6ops-464xlat-deployment-00.txt
> 
>    Jordi,
> 
>    I think you are confused.
>    There is no DNS64 in 464XLAT.
>    You seem to be talking about NAT64 (RFC6146), not 464XLAT.
> 
>    Ole
> 
>> On 10 Oct 2017, at 10:53, JORDI PALET MARTINEZ <jordi.palet@consulintel.es> wrote:
>> 
>> Hi Mikael,
>> 
>> So, in your opinion, if I understand it correctly:
>> 1) DNSSEC must not be ignored
>> 2) DNS64 should be supported
>> 
>> Could you agree in a document that describes different deployment models supporting or not 1, 2, above?
>> 
>> Regards,
>> Jordi
>> 
>> 
>> -----Mensaje original-----
>> De: Mikael Abrahamsson <swmike@swm.pp.se>
>> Organización: People's Front Against WWW
>> Responder a: <swmike@swm.pp.se>
>> Fecha: lunes, 9 de octubre de 2017, 17:17
>> Para: Ca By <cb.list6@gmail.com>
>> CC: Jordi Palet Martinez <jordi.palet@consulintel.es>, IPv6 Ops WG <v6ops@ietf.org>
>> Asunto: Re: [v6ops] FW: New Version Notification for draft-palet-v6ops-464xlat-deployment-00.txt
>> 
>>   On Mon, 9 Oct 2017, Ca By wrote:
>> 
>>> For a BCP, it may be best reflected that the *common* practice of
>>> operators is to pay no mind to DNSSEC.
>> 
>>   Comcast does DNSSEC validation from what I have understood. Google DNS
>>   (8.8.8.8) does the same.
>> 
>>   80% of Internet users in Sweden sit behind a DNSSEC validating resolver.
>> 
>>   Unfortunately at this point in time https://stats.labs.apnic.net/dnssec/US
>>   is not working so I can't give you numbers. DNSSEC has a non-trivial
>>   deployment base and needs to be taken into account. I wouldn't use that
>>   argument to stop DNS64 though.
>> 
>>   --
>>   Mikael Abrahamsson    email: swmike@swm.pp.se
>> 
>> 
>> 
>> 
>> **********************************************
>> IPv4 is over
>> Are you ready for the new Internet ?
>> http://www.consulintel.es
>> The IPv6 Company
>> 
>> This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
>> 
>> 
>> 
>> _______________________________________________
>> v6ops mailing list
>> v6ops@ietf.org
>> https://www.ietf.org/mailman/listinfo/v6ops
> 
> 
> 
> 
> 
> **********************************************
> IPv4 is over
> Are you ready for the new Internet ?
> http://www.consulintel.es
> The IPv6 Company
> 
> This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
> 
> 
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

Re: [v6ops] FW: New Version Notification for draft-palet-v6ops-464xlat-deployment-00.txt

Attachment: signature.asc