[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt

To: Brian Dickson <briand@ca.afilias.info>
Subject: Re: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Tue, 4 Dec 2007 12:19:37 -0800
Cc: IPv6 Operations <v6ops@ops.ietf.org>
In-reply-to: <4754859D.20005@ca.afilias.info>
References: <E1Iu5v0-0001hM-7w@stiedprstage1.ietf.org> <33D2999E-3BA9-4FE6-AD88-BA3A4D881482@muada.com> <4754859D.20005@ca.afilias.info>

On 3 dec 2007, at 14:39, Brian Dickson wrote:

Do IPv4-to-IPv6 protocol translation - but now, the extra "twist" -embed the *port* in the IPv6 destination, *above* the IPv4 address.This lets us set up "generic" ALGs, based on covering aggregates forthe "special" address space we use for the place where 6-back-to-4happens.And, we can then set up ALGs on a per-port basis, which are more-specific addresses.

When I read this it wasn't obvious to me what you meant, but beingable to talk in person can sometimes be helpful. :-)

The idea is to have a format like ::port:v4:addr which makes itpossible to route all traffic for a given destination port to aseparate translator that is better prepared to translate the protocolin question. This is a good trick!

There are even a few advanced tricks that can be accomplished, likereverse-port-mapping to request inbound port(s) and possibly inboundport+IPv4 address "reservation".Combined with dynamic DNS, it may be possible to extend theusefulness of a very small number of IPv4 addresses, to support amuch larger of "servers" who need reserved ports, although possiblyonly intermittently. (Think SMTP for hosting, inbound with MX andrelay.)

Right, there are services that need a more or less permanent inboundcapability and others that only need this at certain times. I'd saythat SMTP is an example of the former, though. The latter would bethings like peer-to-peer applications that only run once in a while,such as videoconferencing.

The implementation of things like DHCP (for IPv4) use well-know IPv4"broadcast" address destination 255.255.255.255. But, having an IPv6host listen on that address, transmogrified by the mapping includingport, means a specific IPv6 address can act as a DHCP server (orrelay).


Is this useful?

Oh, yeah, one other good thing - there is no requirement that theALGs or NAT-PT exist on the same network, just that they bereachable via IPv6 natively. So, a small network could point their"ALG default" at an upstream, who then would handle all the NAT-PTstuff (presumably as either a value-add, paid, or bundled service)for access to the V4 Internet.


Indeed.

Follow-Ups:
- Re: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
  - From: "Erik Kline" <ekline@ekline.com>

References:
- Fwd: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Fwd: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
  - From: Brian Dickson <briand@ca.afilias.info>

Prev by Date: Re: new version of draft-narten-ipv6-3177bis-48boundary-03.txt
Next by Date: draft-ietf-v6ops-cpe-simple-security-00
Previous by thread: Re: Fwd: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
Next by thread: Re: I-D Action:draft-van-beijnum-modified-nat-pt-02.txt
Index(es):
- Date
- Thread