IETF Logo Mail Archive

[v6ops] Re: application compatibility of DNS64 + stateful NAT64 -- Re: Re: [EXTERNAL] New Version Notification for draft-jens-7050-secure-channel-00.txt

Marco Moock <mm@dorfdsl.de> Thu, 27 June 2024 13:12 UTC

Return-Path: <mm@dorfdsl.de>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1AF85C14F61D for <v6ops@ietfa.amsl.com>; Thu, 27 Jun 2024 06:12:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=dorfdsl.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2DSM8wbd1K1v for <v6ops@ietfa.amsl.com>; Thu, 27 Jun 2024 06:12:53 -0700 (PDT)
Received: from srv1.dorfdsl.de (srv1.dorfdsl.de [IPv6:2a01:170:118f:3::22]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8CA0EC14F736 for <v6ops@ietf.org>; Thu, 27 Jun 2024 06:12:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=dorfdsl.de; s=default; t=1719493968; bh=fw2VE613InjtgsE8i7gsdsAsvx3kIA0FlXU++4C5rdo=; h=Date:From:To:Subject:In-Reply-To:References:From; b=0+FkEV5b8Ed37KsHuaqKSZbGmj5F69QbEacBvOIfHVcdQKrL+588/z4G4R0HTpHDX vRzEck6TeGXpSvT56JfqMSwlkspVMK6Y++ZFBusIA2vbN0eqCawnXRUkbriO476fmZ EvQRcJQF1ny8xaIvez28IdFHxApQur4Q+39Vycy4qK9dfV5EN/LQ7fSHbU0nNbCxN6 Ld/RZL66V5JP6eKatGjKYLVSR/qJ51gZgItEuA4EZTPLyGWUEKwrfJEKGizcvyYWpC odFnH8buXWaL5FmjFrUcbqs/EcJJ08ZbsigtJnofG74ZnHeTbJpl2CB0LpvS0fuivW CcgD4RQsNIcJg==
Received: from localhost ([IPv6:2a01:170:118f:2:9d1f:61f5:9ddf:438d]) (authenticated bits=0) by srv1.dorfdsl.de (8.17.1.9/8.17.1.9/Debian-2) with ESMTPSA id 45RDCmCm065852 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT) for <v6ops@ietf.org>; Thu, 27 Jun 2024 15:12:48 +0200
Date: Thu, 27 Jun 2024 15:12:47 +0200
From: Marco Moock <mm@dorfdsl.de>
To: v6ops@ietf.org
Message-ID: <20240627151247.71873b24@dorfdsl.de>
In-Reply-To: <13bfcf21-6da6-4dd6-b62a-5f6c5a54fc22@hit.bme.hu>
References: <171938023258.233563.15620604196859383340@dt-datatracker-5864469bc9-n5hqk> <PH0PR00MB1350CE1FF1162D8C77FEE918FAD62@PH0PR00MB1350.namprd00.prod.outlook.com> <a2756f5f-52d8-4529-bb1a-166bc80f5b96@nsrc.org> <PH0PR00MB13527A4B2814F8748808D3E3FAD62@PH0PR00MB1352.namprd00.prod.outlook.com> <c261c1ef-12fd-4fc7-b1ed-1d4886eb6b8e@nsrc.org> <20240627081526.15a625cb@dorfdsl.de> <CAFU7BAQ+rnF5oNvpFKWYyufaiJT8KJJcuL4pK4MrctDb8jONgQ@mail.gmail.com> <13bfcf21-6da6-4dd6-b62a-5f6c5a54fc22@hit.bme.hu>
X-Mailer: Claws Mail 4.3.0 (GTK 3.24.42; x86_64-pc-linux-gnu)
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Message-ID-Hash: HQ7KZ4VEXWXCPE5HRIF73TBJT5G5I6UW
X-Message-ID-Hash: HQ7KZ4VEXWXCPE5HRIF73TBJT5G5I6UW
X-MailFrom: mm@dorfdsl.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: application compatibility of DNS64 + stateful NAT64 -- Re: Re: [EXTERNAL] New Version Notification for draft-jens-7050-secure-channel-00.txt
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/utCudhJVIDLWLsLdpfl4rQwI_4Q>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>

Am 27.06.2024 um 14:42:54 Uhr schrieb Gabor LENCSE:

> However, I agree with Marco that if CLAT is not available then DNS64
> + stateful NAT64 can be useful, thus I think, DNS64 should not be
> deprecated (yet). 

Exactly that is the reason.
DNS64 is still being usable in some situations where the network
operator has no control over the end device.
To make 464XLAT useful in most situations, operating systems need to
provide support for 464XLAT by default on all network interfaces. IIRC
this isn't the case for Windows yet (support for WWAN exists) and most
Linux machines also don't have such a service enabled by default.
As long as that is the case, DNS64 is an intermediate solution,
although not for all stuff, especially when using software without IPv6
support.

-- 
kind regards
Marco

v2.39.1 | Report a Bug | By Email | System Status