IETF Logo Mail Archive

Re: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion

JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Wed, 18 April 2018 06:49 UTC

Return-Path: <prvs=1646e28c33=jordi.palet@consulintel.es>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3279512D7F0 for <v6ops@ietfa.amsl.com>; Tue, 17 Apr 2018 23:49:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=consulintel.es
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zKJN0NcPBo-u for <v6ops@ietfa.amsl.com>; Tue, 17 Apr 2018 23:49:08 -0700 (PDT)
Received: from mail.consulintel.es (mail.consulintel.es [IPv6:2001:470:1f09:495::5]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BDAD6126D3F for <v6ops@ietf.org>; Tue, 17 Apr 2018 23:49:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=consulintel.es; s=MDaemon; t=1524034146; x=1524638946; i=jordi.palet@consulintel.es; q=dns/txt; h=User-Agent:Date: Subject:From:To:Message-ID:Thread-Topic:References:In-Reply-To: Mime-version:Content-type:Content-transfer-encoding; bh=SCKhcW4m dl7hJEyH06Q/uZSNx4jymOtuHnAW47hsSAU=; b=kV2kbAX9L7xUb3zLJHQ3YV+q a0ZMTG/b55alegxZWITrLnuphj1iplD2PaTHGhPZLstOaOzJwjzRrUKASYS+b9kc MG4deQZi//axLmlJNu8UyVHX9J9aTTfWK6fnbeSLg21+kKG33rNVV3uhJEg1rkCd NBIrkY3bUfqxS2htyns=
X-MDAV-Result: clean
X-MDAV-Processed: mail.consulintel.es, Wed, 18 Apr 2018 08:49:06 +0200
X-Spam-Processed: mail.consulintel.es, Wed, 18 Apr 2018 08:49:05 +0200
Received: from [10.10.10.129] by mail.consulintel.es (MDaemon PRO v16.5.2) with ESMTPA id md50005753270.msg for <v6ops@ietf.org>; Wed, 18 Apr 2018 08:49:05 +0200
X-MDRemoteIP: 2001:470:1f09:495:cdc8:d14:e508:efae
X-MDHelo: [10.10.10.129]
X-MDArrival-Date: Wed, 18 Apr 2018 08:49:05 +0200
X-Authenticated-Sender: jordi.palet@consulintel.es
X-Return-Path: prvs=1646e28c33=jordi.palet@consulintel.es
X-Envelope-From: jordi.palet@consulintel.es
X-MDaemon-Deliver-To: v6ops@ietf.org
User-Agent: Microsoft-MacOutlook/10.c.0.180410
Date: Wed, 18 Apr 2018 08:49:01 +0200
From: JORDI PALET MARTINEZ <jordi.palet@consulintel.es>
To: V6 Ops List <v6ops@ietf.org>
Message-ID: <002986B1-DDCC-4D3A-8336-2E46480EEF45@consulintel.es>
Thread-Topic: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion
References: <3A083AA8-41D3-4BF8-BE31-5071975B6F98@gmail.com> <CAHL_VyC1xUDDqZRz1r--u8nyuLaZRnsT0ZR7hzOw4HWUkgwPXg@mail.gmail.com> <52D64464-A1BB-4FFA-AA79-28B8953E3B93@gmail.com> <CAHL_VyCUaiebv9YvZQmKrCLSQwTbD5M-yHJKVZ_c6vU5DMqsxg@mail.gmail.com> <92976D2F-3505-4AF3-A648-3BCD3998C763@gmail.com>
In-Reply-To: <92976D2F-3505-4AF3-A648-3BCD3998C763@gmail.com>
Mime-version: 1.0
Content-type: text/plain; charset="UTF-8"
Content-transfer-encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/u_WcPljN7mFz6tdjZbkjqW5DCO8>
Subject: Re: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Apr 2018 06:49:11 -0000

Hi Fred,

I'm happy to do that way in a new version.

Maybe we should do that already as WG item, unless there are major objections for that?

Regards,
Jordi
 
 
-----Mensaje original-----
De: v6ops <v6ops-bounces@ietf.org> en nombre de Fred Baker <fredbaker.ietf@gmail.com>
Fecha: miércoles, 18 de abril de 2018, 1:02
Para: Richard Patterson <richard@helix.net.nz>
CC: V6 Ops List <v6ops@ietf.org>
Asunto: Re: [v6ops] draft-palet-v6ops-transition-ipv4aas discussion

    
    
    > On Apr 17, 2018, at 1:58 PM, Richard Patterson <richard@helix.net.nz> wrote:
    > 
    > Yes that's a fair assessment.
    > 
    > I believe the current use of SHOULD for the transition technologies
    > allows flexibility to those with the aforementioned concerns that
    > would be OK with a limited sub-set, whilst still providing overall
    > guidance to those wishing for complete compliance.
    > Although does this also mean that it's possible for a CE to comply
    > with this draft, yet not implement any method under §5.3?
    > 
    > -Richard
    
    You're correct. There is more than one way people use "SHOULD"; "MUST" is a lot like its dictionary definition. I use "SHOULD" to mean "I'd like to say 'MUST', but I think there is a case in which the implementer might legitimately choose not to", which is pretty much what the RFC says. What an implementer often does, though, is decide that "SHOULD" makes something optional, and does only what MUST be done.
    
    That said, this kind of RFC is commenting on market requirements. In the final analysis, each company or implementer has to determine what market they are trying to address, and what its requirements are; they are going to read this document, but it's one of many inputs they will consider. If they are designing a product for the MAP-T market, they're going to do what 5.3 says. If they are designing for ONLY the MAP-E market (which basically differs from MAP-T in a subroutine call), they could probably convince themselves to leave MAP-T out entirely. I tend to think the document should be very explicit about claims of compliance to it - something like "if an implementation claims compliance with this document, it must implement every MUST, and either implement every SHOULD or say which ones it does not implement, and why." "That feature is in the next release, assuming of course someone offers to pay for its development" is a common dodge from vendors, and needs to be explicitly not OK.
    
    Of course, you've never heard a vendor say that. Neither have I. But I have heard rumors...
    
    > On 17 April 2018 at 21:32, Fred Baker <fredbaker.ietf@gmail.com> wrote:
    >> Let me ask an additional question. We have had at least one operator speak against adoption of this draft as a working group draft, because she doesn't want to add requirements to customer-edge (CE) routers, which potentially make them more complex and therefore expensive (every line of code costs something and has some probability of containing a bug or attack). It sounds like you would support adoption of the draft if it contains the right set of features and doesn't contain anything else, and if (as it is currently written) that it would be implemented in addition to RFC 7084. "The right set of features", from your perspective, includes MAP-T.
    >> 
    >> Is that a correct deduction?
    >> 
    >>> On Apr 17, 2018, at 12:20 PM, Richard Patterson <richard@helix.net.nz> wrote:
    >>> 
    >>> Hi Fred, et al.
    >>> 
    >>> Speaking as an Operator who is currently validating MAP-T as a
    >>> solution, I'm in favour of making sure it itself is included in future
    >>> versions of this draft.
    >>> 
    >>> There are multiple vendors offering MAP-T Border Relays, and we've
    >>> been testing both OpenWRT-based CPEs as well as a custom CPE based on
    >>> the Broadcom BCM63138 SoC.
    >>> The Broadcom reference SDK comes with the CERNET kernel module and
    >>> userland tool, and supports hardware acceleration of MAP-T translated
    >>> flows with Broadcom's Runner fastpath.
    >>> 
    >>> I was also quite impressed with OpenWRT's implementation; aside from
    >>> initially needing internet connectivity to install the map-t module
    >>> after a fresh install, no further configuration is required to have
    >>> the CPE dynamically configure itself with MAP-T, given the appropriate
    >>> DHCPv6 options.  Kudos to the OpenWRT/LEDE devs on their support.
    >>> 
    >>> Re: the draft's §5.3.4.  It's succinct enough, whilst still directing
    >>> implementors to the relevant RFCs, however I'm still mulling over the
    >>> NAT44 and iptables/netfilter concerns that I raised in softwires a few
    >>> months back.[1]   The address-sharing mode's algorithm for port
    >>> allocations, isn't easily implementable with the current
    >>> iptables/netfilter behaviour.  OpenWRT's approach creates rule
    >>> shadowing and port ranges that never get utilised.
    >>> 
    >>> -Richard
    >>> 
    >>> 
    >>> [1] https://www.ietf.org/mail-archive/web/softwires/current/msg06832.html
    >>> 
    >>> On 15 April 2018 at 06:00, Fred Baker <fredbaker.ietf@gmail.com> wrote:
    >>>> At IETF 101, Jordi Palet Martinez presented draft-palet-v6ops-transition-ipv4aas. The draft is at https://tools.ietf.org/html/draft-palet-v6ops-transition-ipv4aas, and his presentation deck is at https://datatracker.ietf.org/meeting/101/materials/slides-101-v6ops-transition-requirements-for-ipv6-ce-routers-to-support-ipv4-as-a-service-00.
    >>>> 
    >>>> I would like to invite discussion.
    >>>> 
    >>>> In particular, this draft derives from draft-ietf-v6ops-rfc7084-bis, and the chairs wonder if it should be reposted as the next version of draft-ietf-v6ops-rfc7084-bis. That should happen if an only if the working group thinks it should be published as an RFC (now or at some point) adding considerations for implementors of RFC 7084 and also implementing transition services.
    >>>> 
    >>>> A key comment at IETF 101 was that there remain far too many transition mechanisms listed. It would be helpful, if you hold that opinion, if you could give that advice, identify the mechanism or mechanisms you think should be listed, and indicate the reasoning behind your viewpoint. For example, if you think MAP-T should be listed, it would be helpful to know what operators are implementing MAP-T and are looking for CE Routers that support it. The same comment applies to any such mechanism or service.
    >>>> 
    >>>> 
    >>>> 
    >>>> _______________________________________________
    >>>> v6ops mailing list
    >>>> v6ops@ietf.org
    >>>> https://www.ietf.org/mailman/listinfo/v6ops
    >>>> 
    >> 
    
    _______________________________________________
    v6ops mailing list
    v6ops@ietf.org
    https://www.ietf.org/mailman/listinfo/v6ops
    



**********************************************
IPv4 is over
Are you ready for the new Internet ?
http://www.consulintel.es
The IPv6 Company

This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.

v2.23.0 | Report a Bug | By Email