[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: changes to draft-ietf-v6ops-nat64-pb-statement-req-00.txt

To: Alain Durand <alain_durand@cable.comcast.com>
Subject: Re: changes to draft-ietf-v6ops-nat64-pb-statement-req-00.txt
From: marcelo bagnulo braun <marcelo@it.uc3m.es>
Date: Sat, 19 Jul 2008 17:30:16 +0200
Cc: 'IPv6 Operations' <v6ops@ops.ietf.org>, Fred Baker <fred@cisco.com>, Dan Wing <dwing@cisco.com>, teemu.savolainen@nokia.com, Brian E Carpenter <brian.e.carpenter@gmail.com>, Rémi Després <remi.despres@free.fr>, Jari Arkko <jari.arkko@piuha.net>, Philip Matthews <philip_matthews@magma.ca>
In-reply-to: <C4A4F11F.14414%alain_durand@cable.comcast.com>
References: <C4A4F11F.14414%alain_durand@cable.comcast.com>
User-agent: Thunderbird 2.0.0.14 (Macintosh/20080421)

Alain Durand escribió:


On 7/17/08 12:00 PM, "marcelo bagnulo braun" <marcelo@it.uc3m.es> wrote:

No, you need a v4 stack, not a v4 address. That is the whole point of the
dual-stack lite model.

i guess i will need to read the draft then cause i fail to understand
how useful could a stack wihtout an IP address could be


When a dual-stack lite host (dual stack capable, v6-only provisioned) wants
to send a v4 packet, it can simply put any v4 dummy address as source
address before shipping the packet through the v6 tunnel to the CGN. Even
0.0.0.1 will work as it will be replaced later by the CGN. The mapping will
be disambiguified by the tunnel ID (v6 src address).

i see
clever, indeed

I have read the draft (at least parts of it)

You state that:

  o  Dual-stack lite does not require any hack to the DNS.  In other
     words, there is no need to synthesize fake AAAA records to
     represent IPv4 addresses.  This make DNSsec works more reliably.

  o  Because of the DNS ALG hack, NAT-PT places restriction on the
     topology, in most cases requiring that all exiting traffic go
     through a single point of contention.  Because there is no DNS ALG
     with dual-stack lite and because each dual-stack lite device can
     be directed independently to a different dual-stack lite NAT, the
     dual-stack lite architecture can scale better.

While this was true for nat-pt and to some degree for nat64, if we adoptDave's suggestion of using the v4 mapped prefixes, this all go away ithink cause there is no relationship whatdoever between the dns64 andthe nat64

As long as you recieve a AAAA RR from somehwere, the nat64 can be placedin a completely different part of the topology and the actual datapackets do not need to use the same path than the DNS query/repsonse did


So, i think this is no longer true

Regards, marcelo

  - Alain.

References:
- Re: changes to draft-ietf-v6ops-nat64-pb-statement-req-00.txt
  - From: Alain Durand <alain_durand@cable.comcast.com>

Prev by Date: Re: I-D Action:draft-ietf-v6ops-nat64-pb-statement-req-00.txt
Next by Date: Re: comments on draft-ipv6-v6ops-nat64-pb-statement-req-00
Previous by thread: Re: changes to draft-ietf-v6ops-nat64-pb-statement-req-00.txt
Next by thread: RE: changes to draft-ietf-v6ops-nat64-pb-statement-req-00.txt
Index(es):
- Date
- Thread