IETF Logo Mail Archive

Re: [v6ops] draft-ietf-v6ops-nat64-srv

Fred Baker <fredbaker.ietf@gmail.com> Tue, 14 May 2019 20:00 UTC

Return-Path: <fredbaker.ietf@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A628A120225 for <v6ops@ietfa.amsl.com>; Tue, 14 May 2019 13:00:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3FDuyJonpNIn for <v6ops@ietfa.amsl.com>; Tue, 14 May 2019 13:00:01 -0700 (PDT)
Received: from mail-oi1-x244.google.com (mail-oi1-x244.google.com [IPv6:2607:f8b0:4864:20::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F30C1201FA for <v6ops@ietf.org>; Tue, 14 May 2019 13:00:01 -0700 (PDT)
Received: by mail-oi1-x244.google.com with SMTP id v2so57002oie.6 for <v6ops@ietf.org>; Tue, 14 May 2019 13:00:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=UA+Ulp1FAsk2zosp4JnSjVxNhv8gsnzbRNSvLzudvGY=; b=fJIu0mrk4VPm0pUjdJ7oEcPSYVa+jJY7x1WZ/0yJVBqIIeOCCc48Y0eTL9Hmc+Mhvu PP1mYaTw1ehbe/nYYK7+nVlA5I2aWMr+aNj5C+BJV/topzJwr3hLS+myzmkMMpAm5QoP tIwXgd6qYecVUFgMOwEekzRgNcr2uxw7ykzAJy8NrGHHJhHlhMfZXYSxKcEpbMnuKbFf 4g/6lvOD5E6ZQ46Cxq4lqogXiCQVDBzShvhlv/hkPBeCxpA9YqDiZDk7At5gfP2K7qYm IUgPOdTDTp+nyaHNDCwKTYXBvrEz39KYH4yYM8Z+mevJya1Xfaa6wjXgNhnqjStGXG6o lYXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=UA+Ulp1FAsk2zosp4JnSjVxNhv8gsnzbRNSvLzudvGY=; b=Yqwh8yTbg07pT7KJo8V+udy6FPIfc+ZIJRBnm0x8rdiayGeK83DGJfQJphLTivBzEf Hfgh2KBaiBl+LvdJhH/j71Aceu/zY6zCf6FBpqUXRL7Vtg6LtU0twaxEBYGW8FaH2uHw DLk1I1kn1OADAhIwVAcPgtx0gEIeSZmgMfGpRSOA3nVCE5Ptja9R8xyoTiewUzOBGjGK W9p7gh6//abUJvPMt2l2I197Q0jbYmPWWeDavff4fYHloOMGH4JKy02+zR3t6XA/jwc7 HQZT7AAeGaxawxf/sOjWlFXTZZGgBiCpaZPeSDeh76zOpC33aD+ICTQi0FwTS28tHCVG smqQ==
X-Gm-Message-State: APjAAAXw4SJzVXgna4TAqSGwtYELfAi+Ig5gJqWupBORKC4Cbuq6iMrI C2UUHCBUgFu4FS1aTSGW4n0=
X-Google-Smtp-Source: APXvYqz3uOMFBJeundSmNkqmiuVlL8Nj01Ioq3bQANpu+ugn7BZi2YFkM54XdcqXLxfXlOJzaV7+Tw==
X-Received: by 2002:a05:6808:8e:: with SMTP id s14mr3731449oic.54.1557864000730; Tue, 14 May 2019 13:00:00 -0700 (PDT)
Received: from ?IPv6:2600:8802:5903:df16::1003? ([2600:8802:5903:df16::1003]) by smtp.gmail.com with ESMTPSA id m14sm6103759oih.6.2019.05.14.12.59.59 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 14 May 2019 12:59:59 -0700 (PDT)
From: Fred Baker <fredbaker.ietf@gmail.com>
Message-Id: <2591269F-380C-416F-A736-2835241E7C14@gmail.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_C230716D-945A-4AF0-A628-0BBA95A87CB2"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Tue, 14 May 2019 12:59:58 -0700
In-Reply-To: <EA467725-AFD8-4C9E-883A-AECA410E643A@consulintel.es>
Cc: v6ops@ietf.org
To: JORDI PALET MARTINEZ <jordi.palet=40consulintel.es@dmarc.ietf.org>
References: <BYAPR05MB4245A78BEC3D7E3622A38395AE0F0@BYAPR05MB4245.namprd05.prod.outlook.com> <alpine.DEB.2.20.1905131848190.1824@uplift.swm.pp.se> <129843806.b7yKE7hP11@hunator-ntb.local> <EA467725-AFD8-4C9E-883A-AECA410E643A@consulintel.es>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/kcsYRLFhaVOD4psKDu0pLauzlI0>
Subject: Re: [v6ops] draft-ietf-v6ops-nat64-srv
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 May 2019 20:00:05 -0000


On May 14, 2019, at 2:59 AM, JORDI PALET MARTINEZ <jordi.palet=40consulintel.es@dmarc.ietf.org> wrote:
> 
> 3) Intro: This document specifies ... the way of ... / a mechanism for.  As this is not the only way (the/a). You use the same expression in several parts of the document.

So you are asking him to change "the" to "a"?

> 5) local area network or station. Not sure what it means "station" here.

I presume you're referring to the definition of an "end node".

Things that are attached to local area networks are referred to by various names. People from a telephony background often call them "terminals", for example, and people thinking of mobile telephones or things that look/act like them might call them "handsets". People with an ISO background might call them "end stations", and people from an Internet background might call them "hosts". "Station", which is half of "end station", is one of a number of words used in the same vein.

I do find the definition odd; when it is a "resolver" serving a "station", I would presume that it is the resolver software in a host, the bit of software that gethostbyname() asks for an IP address. That said, the *resolver* software is not the "end node"; the chunk of software that terminates sessions, which includes at least IP and the means by which it communicates with its client (often TCP or UDP, or maybe another instance of IP) and its services (a tunnel SNDCF, or a driver in most cases), and might possibly include such a resolver, is the end node.

> 6) The one for NAT64 prefix which validation end node MUST implement / end-nodes? Actually I think you should use end-nodes across all the document, but others may disagree here.

I'm not entirely sure what text change you're requesting.


I ran the thing through my spell-checker; it came up with the following diff. I wasn't sure what construction was intended by "9632". On "graylist", I have seen it as "greylist", "grey-list" and "grey list".

On the mention of an "IPv6 prefix mask" with attached decadic "IPv4 prefix mask", you're correct that we don't use prefix masks in IPv6; I would go a step further and say we would find the construct distinctly unusual. It is probably derived from the "alternative form" mentioned in the third bullet of section 2.2 from RFC 4291, but has no counterpart in section 2.3, which describes address prefixes. Since IPv4 and IPv6 both use CIDR notation, I would suggest simply using CIDR notation: if I have a prefix 2001:dba::/96 mashed up with 192.0.5.0/26, I might describe it using the IPv6 prefix 2001:dba::c000:500/122.

*** draft-ietf-v6ops-nat64-srv-00.txt	2019-03-11 01:56:27.000000000 -0700
--- draft-ietf-v6ops-nat64-srv-00-1.txt	2019-05-14 12:40:30.000000000 -0700
***************
*** 11,17 ****
     This document specifies the way of discovering the NAT64 pools in
     use as well as DNS servers providing DNS64 service to the local
     clients. The discovery is done via SRV records, which also allows
!    asignment of priorities to the NAT64 pools as well as DNS64 servers.
     It also allows clients to have diferent DNS providers than NAT64
     provider, while providing a secure way via DNSSEC validation of
     provided SRV records. This way, it provides DNS64 service even in
--- 11,17 ----
     This document specifies the way of discovering the NAT64 pools in
     use as well as DNS servers providing DNS64 service to the local
     clients. The discovery is done via SRV records, which also allows
!    assignment of priorities to the NAT64 pools as well as DNS64 servers.
     It also allows clients to have diferent DNS providers than NAT64
     provider, while providing a secure way via DNSSEC validation of
     provided SRV records. This way, it provides DNS64 service even in
***************
*** 120,133 ****
     Port: IPv6 as L3 protocol doesn't use port numbers. Because of that
     this field SHOULD be either set to zero, or SHOULD be used to
     indicate length of network prefix mask in both IPv6 and IPv4
!    protocol, used NAT64. In such case the port 16b integer MUST be
     constructed by directly appending IPv4 pool prefix mask after the

  Martin Hunek          Expires September 11, 2019               [Page 3]


  INTERNET-DRAFT    NAT64/DNS64 detection via SRV Records     March, 2019

!    IPv6 prefix mask decadicaly. Usually this would mean 9632 stating
     that IPv6 prefix with mask /96 is translated into single IPv4
     address (/32).

--- 120,133 ----
     Port: IPv6 as L3 protocol doesn't use port numbers. Because of that
     this field SHOULD be either set to zero, or SHOULD be used to
     indicate length of network prefix mask in both IPv6 and IPv4
!    protocol, used NAT64. In such case the port 16 bit integer MUST be
     constructed by directly appending IPv4 pool prefix mask after the

  Martin Hunek          Expires September 11, 2019               [Page 3]


  INTERNET-DRAFT    NAT64/DNS64 detection via SRV Records     March, 2019

!    IPv6 prefix mask decadically. Usually this would mean ?9632? stating
     that IPv6 prefix with mask /96 is translated into single IPv4
     address (/32).

v2.23.0 | Report a Bug | By Email