[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Follow-up work on NAT-PT

To: David Miles <davidm@thetiger.com>
Subject: Re: Follow-up work on NAT-PT
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Date: Tue, 30 Oct 2007 09:40:26 +1300
Cc: IPv6 Operations <v6ops@ops.ietf.org>
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:organization:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=Z4uFLmZW6kXk8Y1KBPQ1npTCGm+SxCxz2ZGLcq33P0KUjA/9ltsSNOQ2e7h0rM7lWLLt334uudNLVAJChYtoFGq79eHdTA1e4WYUDKRxmihjiy2IGshdm3yHAfGaI7HLk2tq/EdprJkKRZSXpTiqlGZM/ANbTmqDzIEG2PfxgN8=
In-reply-to: <FBBEC281-65AB-47C6-A9D8-389DB9435D55@thetiger.com>
Organization: University of Auckland
References: <5FCD348C-5927-4F18-A002-0E3BF21ED5F4@NLnetLabs.nl> <47110056.70400@piuha.net> <47251FBA.9030507@gmail.com> <FBBEC281-65AB-47C6-A9D8-389DB9435D55@thetiger.com>
User-agent: Thunderbird 2.0.0.6 (Windows/20070728)

On 2007-10-30 02:47, David Miles wrote:

Brian,
In the introduction I'd suggest we add some words to clarify that thescope of v4-to-v6 translation is not broadly "IPv4 to IPv6", but aspecific case where a IPv6-only host is modified (with the inclusion ofa shim and possibly DNS resolver changes) to allow it to leverage aseparate device (the translator) to access the IPv4 Internet.


Sure, that's the scenario (or possibly "to access a residual fragment
of the IPv4 Internet" at some much later stage).

Alsoconsider the readability of the draft (your intro is very detailed) andadding a section about the placement of the translator?


Agreed; this is a first cut rapidly transcribed from the whiteboard.

I'm afraid that we need to push the IPv6 component of your proposal muchcloser to the IPv4 host appreciating the dire situation with globallyroutable IPv4 addresses. As it stands SHANTI would most likely bedeployed with both v6-host and translator in a closed administrativeenvironment,


I don't think that is required, but it seems likely that a network
wishing to support IPv6-only hosts would choose to deploy SHANTI
translators at its edge. However, the reason that only standard
IPv6 addresses are used is so that there are no topological
restrictions on where the translators are placed.

but I'd like to consider the bigger challenge of thesev6-only hosts communicating with v4-only hosts over a IPv6 Internet(rather than an IPv4 one). I'm not sure you were trying to take onsomething that big, but I thought I'd shoot the question through.


Well, in that case your translator, however it works, has to be
close to the fragment of IPv4 that the v4-only host is attached
to. That will apply even if the fragment is a single PPP link.
I wouldn't recommend SHANTI for that, probably.

I'm interested to hear your thoughts on IPv6-only hosts (as opposed todual-stack hosts) during the IPv4-to-IPv6 transition period. The workI've been doing up till now has made a fundamental assumption that wewould see only v4-only and dual-stack hosts, assuming that only postIPv4 shutdown would we see an emergence of IPv6-only devices.


The IAB request specifically asks for a solution for IPv6-only
hosts. It's long been my view that the primary coexistence strategy
must be dual-stack, but I'm trying to answer the IAB's question.

Finally, from my reading the usefulness of SHANTI is only where theIPv6-only host has an application that appreciates IPv4 parameters (portand address) or the translation itself. Do we expect applicationdevelopers to widely cater for this scenario, or to make the assumptionthat "if IPv4 matters we should use the IPv4 stack"?


No, SHANTI will work out of the box for any application that runs
through a traditional NAT or NAPT without problems *and* has been
upgraded to AF_INET6 sockets. However, applications that require
an ALG with traditional NA(P)T will need to be tweaked, I think.
The question is whether that overhead is justified to get rid of
the problems of NAT-PT?

    Brian


Best Regards,

-David Miles

On 29/10/2007, at 10:48 AM, Brian E Carpenter wrote:

On 2007-10-14 06:28, Jari Arkko wrote:

Thanks for this, Olaf. Indeed, we are considering follow-up work,
and understanding the scenarios & possible need for producing
a revised version of NAT-PT is on the Vancouver agenda (currently
planned to be a discussion in V6OPS, with protocol work to fall
out to an INT area WG).

I realise this may be jumping the gun a bit, but since I won't be
in Vancouver, here is a sketch of one possible direction.

   Brian

-------- Original Message --------
Subject: I-D Action:draft-carpenter-shanti-00.txt
Date: Sun, 28 Oct 2007 18:20:01 -0400
From: Internet-Drafts@ietf.org
Reply-To: internet-drafts@ietf.org
To: i-d-announce@ietf.org

A New Internet-Draft is available from the on-line Internet-Draftsdirectories.

Title : Shimmed IPv4/IPv6 Address Network TranslationInterface (SHANTI)

    Author(s)       : B. Carpenter
    Filename        : draft-carpenter-shanti-00.txt
    Pages           : 12
    Date            : 2007-10-28

There is a pragmatic need for a packet-level translation mechanism
between IPv4 and IPv6, for scenarios where no other mode of IPv4 to
IPv6 interworking is possible.  The mechanism defined here uses a
shim in both the translator and the IPv6 host to mitigate the
problems introduced by stateless translation.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-carpenter-shanti-00.txt

Follow-Ups:
- Re: Follow-up work on NAT-PT
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Follow-up work on NAT-PT
  - From: Brian Dickson <briand@ca.afilias.info>

References:
- Re: Follow-up work on NAT-PT
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- Re: Follow-up work on NAT-PT
  - From: David Miles <davidm@thetiger.com>

Prev by Date: Re: Follow-up work on NAT-PT
Next by Date: Fwd: [ppml] Policy Proposal: IPv6 Assignment Size Reduction
Previous by thread: Re: Follow-up work on NAT-PT
Next by thread: Re: Follow-up work on NAT-PT
Index(es):
- Date
- Thread