[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-durand-dual-stack-lite

To: IPv6 Operations <v6ops@ops.ietf.org>
Subject: draft-durand-dual-stack-lite
From: james woodyatt <jhw@apple.com>
Date: Wed, 30 Jul 2008 18:12:06 +0100

everyone--

This draft describes a scenario where the public IPv4 address mappedto any particular CPE host is assigned to a carrier-grade NAT devicelocated in the service provider network. To that end, I'd like to seemore text that talks about port-mapping protocols like UPnP IGD andNAT-PMP than simply a naked statement that they "may or may not besupported" by the NAT.

If these protocols are to be supported by a NAT located in the serviceprovider network, regardless of whether the dual-stack-litearchitecture is used vs. the multiple-layers of NAT, there is theissue that NAT-PMP and/or UPnP needs to be proxied by the local CPEgateway on behalf of the NAT.

This is where the dual-stack-lite architecture may be inferior tomultiple-layers of NAT, but it's not clear from the draft. Let meexplain...

In the dual-stack-lite architecture, it's not clear to me that all theIPv4 hosts behind the CPE router-- using RFC1918 addresses, which Ihesitate to call private addresses because they are *not* private inthis architecture-- will be assigned NAT mappings for the same publicIPv4 address. If they do not, then NAT-PMP cannot be proxied by theCPE router. The reason is that the single public IPv4 address used bythe NAT-PMP server is multicast in the announcement packets to all thehosts in the RFC 1918 subnet.

This deficiency in the dual-stack-lite architecture could be addressedby making an explicit guarantee that all the nodes behind a singleIPv6 tunnel to the NAT will be mapped to a single public IPv4 address.

I also have concerns about hairpinning in the dual-stack-litearchitecture. Not only must the NAT exhibit proper hairpinningbehavior, it must hairpin properly between multiple overlappingcustomer address realms. I see no mention of hairpinning at all inthis draft. If it's out of scope, I'd like to see a reference to thedocuments for which it *is* in scope.


--
james woodyatt <jhw@apple.com>
member of technical staff, communications engineering

Follow-Ups:
- Re: draft-durand-dual-stack-lite
  - From: Alain Durand <alain_durand@cable.comcast.com>
- Re: draft-durand-dual-stack-lite
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

Prev by Date: RE: Open issues list? [Re: New (-02) version of IPv6 CPE Router draft is available for review]
Next by Date: Re: Open issues list? [Re: New (-02) version of IPv6 CPE Router draft is available for review]
Previous by thread: Client side for RDNSS option in RA (RFC 5006)
Next by thread: Re: draft-durand-dual-stack-lite
Index(es):
- Date
- Thread