IETF Logo Mail Archive

Re: [v6ops] FYI: Microsoft's latest on CLAT

"Soni \"They/Them\" L." <fakedme+ipv6@gmail.com> Mon, 11 March 2024 09:45 UTC

Return-Path: <fakedme+ipv6@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E128C14E513 for <v6ops@ietfa.amsl.com>; Mon, 11 Mar 2024 02:45:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.855
X-Spam-Level:
X-Spam-Status: No, score=-6.855 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pyFMzU8N--KU for <v6ops@ietfa.amsl.com>; Mon, 11 Mar 2024 02:45:50 -0700 (PDT)
Received: from mail-lf1-x12f.google.com (mail-lf1-x12f.google.com [IPv6:2a00:1450:4864:20::12f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 32308C14F61C for <v6ops@ietf.org>; Mon, 11 Mar 2024 02:45:50 -0700 (PDT)
Received: by mail-lf1-x12f.google.com with SMTP id 2adb3069b0e04-51321e71673so4443012e87.2 for <v6ops@ietf.org>; Mon, 11 Mar 2024 02:45:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1710150348; x=1710755148; darn=ietf.org; h=in-reply-to:from:references:to:content-language:subject:user-agent :mime-version:date:message-id:sender:from:to:cc:subject:date :message-id:reply-to; bh=TR510H8QYXBIWwvWpNsaJl+BtKdCVCxiosLQ2lRdCxg=; b=B2D29WQNnaFlrAudSLDEBfAqwjSf0/FzWSTGcjwhXID89PjsIEe1qizrmq0MBeF04c KLdaMV6WsKzC75okIN64P7GDJcj6kPK4hWFowBhr1b4GxjuTO0zlqUeAzN14w7ixAFrw 1FMy78NRJKKe7h+pJFKV5oem1/Nz3vjqPwLbOj/j42H09y9Ja5kNzYDlfdyy9/QWW2SO Pp/GtvBlsNuMdLnhGm/qu8Zl+vbkkuH3o1QQdsCZxq9iKeKGDBRn221r6lF3GiSpp8y+ yr/YK36aPshdynOHwFmpSKAgj8VO6MPMeCJ7pHUN0faq44yF0j1FU/sxtiKn/OtZSpZF psBg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1710150348; x=1710755148; h=in-reply-to:from:references:to:content-language:subject:user-agent :mime-version:date:message-id:sender:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=TR510H8QYXBIWwvWpNsaJl+BtKdCVCxiosLQ2lRdCxg=; b=PgeZqJa4kqHlZcjh8Vd+kGSMtEPFEs7EFXY+CvOXd3G/imR8c5/NK70l3qLFeSveOq +CnINp1SLmMOCpAKB4K0enoDNlyFkuTnG8jIL7BzOSJJger9Cn7yOGP4NsUgLqAphRMF es/VWh4sMo/G1Ry/VdxZdlAeP6FL1N4JWRzAkVViOHxXHhsQLAqpZIvbCQp50kpoi62v IuWOqIwQNi2flnMYstP1PSB1K3LANs3NJ4eL7mblye//uUDXA0Gsv/qGSSRi2FufUlOv CFm16KiQYY8KtbREHuwEV/ZdI6BsoJ86Ox2lF7B/G8MyktQenP/4rCUzaZAk+m9tJNrJ I+hA==
X-Gm-Message-State: AOJu0Ywg/w6wmRNAfaAxY5LqP245L46vGduYNJRt/89P74OLXrXUagcr DzEzFv2qW1dXwXlG8wvajb8gi4SiunZIwgOI9caM/+dDtQ6Qbln0INJByBnR
X-Google-Smtp-Source: AGHT+IEG2j/6lhS1IhttVFm3emRypwXTgYqqvXuyYqTbvSSFKgJ8KpHsupOwSo8kPa+04yWYutz6jQ==
X-Received: by 2002:ac2:4304:0:b0:513:2011:3d2f with SMTP id l4-20020ac24304000000b0051320113d2fmr3730157lfh.9.1710150347910; Mon, 11 Mar 2024 02:45:47 -0700 (PDT)
Received: from ?IPV6:2804:431:cfcc:ab47::536f:6e69? ([2804:431:cfcc:ab47::536f:6e69]) by smtp.googlemail.com with ESMTPSA id k22-20020ac24f16000000b00513576af080sm1027449lfr.126.2024.03.11.02.45.46 for <v6ops@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 11 Mar 2024 02:45:47 -0700 (PDT)
Sender: "Soni L." <fakedme@gmail.com>
Content-Type: multipart/alternative; boundary="------------pOBM0DXG8Ofd7Afh5qzQ0Bc8"
Message-ID: <f7cbc9b9-a889-4a4d-be83-d98b63caed22@gmail.com>
Date: Mon, 11 Mar 2024 06:45:41 -0300
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-US
To: v6ops@ietf.org
References: <SJ0PR00MB1348781EB81293E8A0521F23FA202@SJ0PR00MB1348.namprd00.prod.outlook.com> <CAKD1Yr1GgOBR+Y5x4-+BCzQFp3usPwd_CM05nfwgM6pT5wef1Q@mail.gmail.com> <884F5E11-364C-4D42-B199-B8FEF33C59C4@employees.org> <CAFU7BAQn-EgpL0mukUUnsBt916UA0P9Qw8KYtC5E5vG3ZMOW7w@mail.gmail.com> <10EF7C0B-0690-4AC0-BD7D-4DAB03C23E76@employees.org> <b03cd464974b4f2cb9319ee8eff71914@huawei.com> <CACyFTPGNGJFJL0xc=J6fX0Y7fm9h6LqcA+D-3Mx5P181hYde2Q@mail.gmail.com>
From: "Soni \"They/Them\" L." <fakedme+ipv6@gmail.com>
In-Reply-To: <CACyFTPGNGJFJL0xc=J6fX0Y7fm9h6LqcA+D-3Mx5P181hYde2Q@mail.gmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/qQbK_RW28QctZwtw93PEwb2OwOc>
Subject: Re: [v6ops] FYI: Microsoft's latest on CLAT
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Mar 2024 09:45:54 -0000

we hope y'all are looking forward to Po4 as much as we are.

On 2024-03-11 04:00, Daryll Swer wrote:
>
>     - PLAT is 30% more expensive than NAT44 (look to any vendor for
>     scalability numbers)
>
> 464xlat is stateful, isn't it? To my understanding, MAP-T is “mostly 
> stateless”, but I have only heard of MAP-T in a very limited number of 
> SPs around the world. MAP-T on end-devices will probably never happen.
>
>     DHCP absence on the most popular OS would still block IPv6
>     progress in the Enterprise.
>
> If you read the past email threads on this mailing list, there was an 
> extensive (and aggressive) debate on DHCPv6 support issues on client 
> devices, with me included in that discussion. But alas, the SLAAC 
> apologists still thinks DHCPv6 is anti-IPv6.
>
> I've largely stopped pushing enterprise folks I know of, to IPv6, 
> nobody wants to waste their resources on SLAAC hacks (which the SLAAC 
> apologists claims is superior to DHCPv6) for logging/compliances etc. 
> Life's so much simpler as an ISP, ia_na + static /56 or /48 ia_pd to 
> the Customer Edge Router, RADIUS-based AAA/Logging of the prefix, 
> problem solved. State sync is the only problem left, but, that can be 
> solved using ISC Kea as someone pointed out before, or opt for an 
> opinionated vendor stack, vendors have their own state sync mechanism 
> for DHCPv6.
>
> *--*
> Best Regards
> Daryll Swer
> Website: daryllswer.com 
> <https://mailtrack.io/l/5dcb8586407ba280cf773710505bb808535a7647?url=https%3A%2F%2Fwww.daryllswer.com&u=2153471&signature=442d04c8d2b1a9db>
>
>
> On Mon, 11 Mar 2024 at 12:19, Vasilenko Eduard 
> <vasilenko.eduard=40huawei.com@dmarc.ietf.org> wrote:
>
>     IPv6-mostly looks good because it permits to have IPv6-only and
>     IPv4-only on the same subnet. It is a smooth transition.
>
>     But "CLAT" means that somewhere should be PLAT:
>     - double NAT translation for IPv4 to IPv4 traffic -> definitely
>     more difficult to troubleshoot.
>     - PLAT is 30% more expensive than NAT44 (look to any vendor for
>     scalability numbers)
>
>     IMHO: IPv6-mostly would not be enough incentive to improve
>     Enterprise miserable IPv6 adoption.
>     DHCP absence on the most popular OS would still block IPv6
>     progress in the Enterprise.
>
>     Eduard
>     -----Original Message-----
>     From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Ole Troan
>     Sent: Friday, March 8, 2024 16:29
>     To: Jen Linkova <furry13@gmail.com>
>     Cc: v6ops@ietf.org; Tommy Jensen <Jensen.Thomas@microsoft.com>
>     Subject: Re: [v6ops] FYI: Microsoft's latest on CLAT
>
>     >> I’m also a fan of IPv6-mostly.
>     >> Isn’t it too early to state that it has lower operational cost
>     than dual-stack (or IPv4 only)?
>     >
>     > It may be for people who haven't deployed it yet.
>
>     Definitely. That was my point. It “may be”. We don’t quite know yet.
>
>     >
>     >> What I mostly(sic) like about it, is that it provides a clearer
>     path towards IPv6 only than dual stack.
>     >>
>     >> But I would imagine at least for the short term there are going
>     to be quite a few operational wrinkles to sort out.
>     >
>     > When you find a new technology which doesn't have that problem,
>     please
>     > let me know ;)
>
>     Of course not. It’s an interesting technology. My point was to not
>     oversell it. It has the _potential_ to become a good option.
>
>
>     >
>     >> It’s likely harder to troubleshoot IPv4 problems too.
>     >
>     > It's not my experience. Actually troubleshooting is much easier.
>     > For IPv6-only devices it's just one protocol. For dual-stack
>     devices
>     > nothing has changed compared to a dual-stack setup.
>
>     Cool! I would just imagine get a few issues with PMTUD discovery,
>     traceroute not working and so on.
>
>
>     >
>     >> And I don’t think it even works on my DHCPv6 single address
>     assigned network at all (yet to be tested).
>     >
>     > Nor would IPv6-only.
>
>     Why not?
>
>
>     > When you made the decision to assign a single IPv6 address per
>     device,
>     > I assume you did evaluate pros and cons.
>     > It doesn't make the  designs which are incompatible with your
>     choice bad ones.
>
>     IPv6 mostly in itself is not incompatible with a single IPv6 address.
>     That’s an implementation choice. I haven’t had time to test
>     implementations yet.
>     Documentation isn’t exactly where Apple shines, but interesting to
>     see where Microsoft lands on this one.
>
>     Best regards,
>     Ole
>
>
>     >
>     >>
>     >>> On 8 Mar 2024, at 04:52, Lorenzo Colitti
>     <lorenzo=40google.com@dmarc.ietf.org> wrote:
>     >>>
>     >>> Great to hear! I think this means that all the major platforms
>     will support the "IPv6-mostly" operational model that v6ops has
>     been working on for the past few years. That's super important,
>     because it means that any network can use this model with
>     confidence that all their clients will work.
>     >>>
>     >>> Hopefully this will really help adoption of this model in
>     enterprise networks. Dual-stack is expensive to operate, but if
>     IPv6-only works, then any enterprise that wants to support IPv6 in
>     some form can simply skip directly from IPv4-only to IPv6-mostly
>     without having to worry about the costs of dual-stack at all.
>     >>>
>     >>> On Fri, Mar 8, 2024 at 5:05 AM Tommy Jensen
>     <Jensen.Thomas=40microsoft.com@dmarc.ietf.org> wrote:
>     >>> Good day v6ops,
>     >>>
>     >>> As a general IPv6 FYI, I'll share Windows' announcement to bring
>     >>> CLAT to general networking interfaces which went live today:
>     >>>
>     https://techcommunity.microsoft.com/t5/networking-blog/windows-11-pl
>     >>> ans-to-expand-clat-support/ba-p/4078173
>     >>>
>     >>> Looking forward to seeing everyone in Brisbane and talking
>     about CLAT recommendations, the draft Jen and I are coauthoring,
>     as Windows will be an implementor!
>     >>>
>     >>> Thanks,
>     >>> Tommy
>     >>> _______________________________________________
>     >>> v6ops mailing list
>     >>> v6ops@ietf.org
>     >>> https://www.ietf.org/mailman/listinfo/v6ops
>     >>> _______________________________________________
>     >>> v6ops mailing list
>     >>> v6ops@ietf.org
>     >>> https://www.ietf.org/mailman/listinfo/v6ops
>     >>
>     >>
>     >> _______________________________________________
>     >> v6ops mailing list
>     >> v6ops@ietf.org
>     >> https://www.ietf.org/mailman/listinfo/v6ops
>     >
>     >
>     >
>     > --
>     > Cheers, Jen Linkova
>
>
>
>     _______________________________________________
>     v6ops mailing list
>     v6ops@ietf.org
>     https://www.ietf.org/mailman/listinfo/v6ops
>     _______________________________________________
>     v6ops mailing list
>     v6ops@ietf.org
>     https://www.ietf.org/mailman/listinfo/v6ops
>
>
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email