[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft-palet-v6ops-auto-trans-01 comments

To: v6ops@ops.ietf.org
Subject: Re: draft-palet-v6ops-auto-trans-01 comments
From: Florent Parent <Florent.Parent@hexago.com>
Date: Sun, 01 Aug 2004 16:30:02 -0700
In-reply-to: <Pine.LNX.4.44.0408011742570.31045-100000@netcore.fi>
References: <Pine.LNX.4.44.0408011742570.31045-100000@netcore.fi>

-- On Sunday, August 01, 2004 17:44:01 +0300, Pekka Savola wrote:

substantial
-----------

In section 3.3, this doc goes on to state that building v6 tunnels over
UDP is not always possible as some middle boxes don't forward those
packets.

I'd argue that this is a scenario we want to declare out of scope.  If
such a box really exists, it's more likely than not that the user is not
supposed to punch holes in the NAT/firewall.  We can simplify this a lot
if we can remove whole section 3.3 and its subsections on HTTP, TCP or
other tunnels.


I agree.

IPv6 over UDP (or TCP if one cares) is used to get IPv6 across NATs in the case where this is allowed/wanted/not prohibited. We don't want to require a protocol to do firewall traversal.

BTW, the most of the tunnel mechanisms described in this section will have the same problem as, say, IPv6 over UDP if the middlebox has strict filtering policy.

Florent

References:
- draft-palet-v6ops-auto-trans-01 comments
  - From: Pekka Savola <pekkas@netcore.fi>

Prev by Date: Re: Proposed way forward with the transition mechanisms
Next by Date: Re: WG Last Call: draft-ietf-v6ops-assisted-tunneling-requirements-00.txt
Previous by thread: draft-palet-v6ops-auto-trans-01 comments
Next by thread: Re: draft-palet-v6ops-auto-trans-01 comments
Index(es):
- Date
- Thread