[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

v6-v4 transition scenarios, take 2

To: v6ops@ops.ietf.org
Subject: v6-v4 transition scenarios, take 2
From: Pekka Savola <pekkas@netcore.fi>
Date: Mon, 28 Jul 2008 20:29:27 +0300 (EEST)
In-reply-to: <488DDAD8.5020206@piuha.net>
References: <alpine.LRH.1.10.0807281641550.25398@netcore.fi> <488DDAD8.5020206@piuha.net>
User-agent: Alpine 1.10 (LRH 962 2008-03-14)

Jari spotted a confusion and suggested another scenario (new item 3);here's take 2.


==========

In my comments and on the mike on draft-ietf-v6ops-nat64-pb-statement-req,
I've asked to describe the transition scenarios we're talking of in a bit
more detail so we have better context on what we're actually considering.

Below is my attempt to identify the high-level transition scenarios.If you have a major case you're thinking of that's not listed here,feel free to describe it on- or off-list and I'll consider adding itor rephrasing. Text suggestions are also welcome.

As an observation after writing this, I'm focusing pretty much only onclient-server type applications because I've yet to see p2p or other_inter-domain_ applications that are business critical. Anotherreason may be that I don't know them in detail, and that will likelyrequire application-specific transition scenarios, not just ALGextensions. But I'm willing to be convinced otherwise...


1. ISP offers IPv6-only provisioning as a new service w/ translation

Due to IPv4 exhaustion (public or private space), due to alleged O&Msimplicity, an ISP prefers to provision a futuristic green fielddeployment or residential or small enterprises only with global v6addresses. This requires customers to move voluntarily from oldservice offering to a new one because withdrawing IPv4 completelywould break customers' internal use badly enough to cause outrage. TheISP may or may not be in control of the CPE device. Almost all nodesin the edge network are dual stack capable and may even use IPv4private addresses in the internal network.

Because the vast majority of content is still available only withIPv4, the service provider must provide a translator service at leastfor IPv6-initiated short local handle -type applications. In thisscenario, IPv4->IPv6 initiated communication is not required.Because the change in service offering is voluntary, somereconfiguration in customer's equipment is acceptable; host upgradesshould be avoided if possible.


2. ISP moves customers from v4 public to rfc1918, may provide v6

Due to IPv4 exhaustion, an ISP stops providing public IPv4 addressesthrough DHCP to its residential, SOHO and small enterprise customers.Instead, it provides only private IPv4 addresses and NATs these. Thechange is involuntary, and the customer needs to pay a premium rate ifit wants to continue getting public v4 address space. This causessome problems with some customers' internal networks which useoverlapping private address space, but the ISP's troubleshootingguides give instructions on renumbering the internal network to adifferent private address space.

In addition, the ISP may start providing IPv6 service to the customers asa way to show the users this is actually "the good thing for thecontinued health of Internet". IPv6->IPv4 NAT service is notgenerally provided because IPv4 private addressing + NAT is still aworkable service. However, on the longer term, the ISP may beinterested in piloting a similar v6->v4 NAT solution as above.


3. ISP aims at an IPv6-dominant network but customers keep on using v4

Due to alleged O&M simplicity, political/publicity incentives, orminimizing the number of public IPv4 addresses, etc., an ISP wants tomove to an IPv6-dominant infrastructure, eliminating IPv4 where usingit can be avoided. Customers may or may not be provided with IPv6addresses and connectivity.

Given that customers and local hosts will continue to use IPv4, IPv4must be tunneled or translated either at PE routers, CPE routersand/or end hosts. Tunneling at PE routers gives significant benefitmainly only if tunneling is done at layer 2 (and as a result PErouters can be IPv6-only). Tunneling from CPE devices and/or end hostsrequires that this is offered to customers voluntarily as a newservice offering. At the same time, some customers' IPv4 addressesmay be changed to use private rather than public addresses, furtherreducing the IPv4 address usage.

Customers' IPv4 connecitivity is provided by tunneling IPv4 over IPv6to either an aggregating router (when the customer uses public v4addresses) or to a NAT device (customer is using private v4 addresses;NAT implementation may require minor modifications), from where it isfurther encapsulated or forwarded to other, e.g., border routers.Practically it's simplest to leave the ISP's backbone networkdual-stack at least initially, though.

Most ISP's own systems will likely require some v4 connectivity(tunneled or translated) for external connectivity (e.g. softwarepatches) for some time. Likewise, some systems will provide IPv4services to the rest of the Internet and/or the customers and willrequire untranslated v4 connectivity. Final stage of ISP'sinfrastructure evolution is described in the next scenario.


4. A greenfield IPv6 deployment needs to provide services to the rest
     of Internet

Due to IPv4 exhaustion or due to alleged O&M simplicity, a futuristicenterprise, ISP, content provider or similar deploys its internalinfrastructure using only IPv6. However, it still seeks to providethe services to IPv4 users in Internet; those users which have IPv6connectivity are able to use them over IPv6. IPv4 users must eitherbe translated near the user or the service provider. As such,v4-initiated local handle -type applications must be supported. (Dueto need to apply software updates, etc. the hosts at the site may alsoneed to communicate with the v4 internet, but that is already coveredin previous cases.)

It is unreasonable to expect that IPv4 sites would provide thistransition service, so the service provider (or a subcontractor, e.g.its upstream ISP) to provide IPv4 version of these services. This canbe done e.g. using TCP/UDP proxy (an inverse of RFC3142) or a moreadvanced translator if ALGs or ICMP support is required.

An alternative that does not require translation or proxying is tobuild an IPv4-over-IPv6 tunnel from service-providing hosts (e.g. webservers) to some point in the topology (e.g. the service provider orits upstream) and assign addresses over that link either permantly ortemporarily (this is the original DSTM concept). Addresses can beassigned with IPv4 /32 netmask which ensures efficient address usage.

Because deploying these services requires the same amount of publicIPv4 addresses no matter whether translation or tunneling is used, itseems easier to employ tunneling or similar other deploymentstrategies to avoid the problem in the first place. It could also beargued whether the IETF needs to support these kind of deploymentchoices (at this point) because it's difficult to find a compellingreason why this scenario needs to be created in the first place.


5. Nearing 2015, ISP wants to ensure its users can reach all the
     services in Internet, and deploys a v4-to-v6 NAT

Enterprises, content providers, etc. may have problems obtainingenough IPv4 addresses to provide their services over IPv4 even if theywanted to. During the next 5 years, this is not going to be a majorobstacle because existing IP address usage can be made more efficientwith some O&M expense (and more addresses freed e.g. by movingclient-only users behind NATs).

However, some years after the IANA free pool has been exhausted thismay become a problem, depending on how much money the content provideris willing to use to obtain public v4 addresses.

Sometime in 2015-2020 range it may be that the pain of providing IPv4services becomes so big that some significant content providers wantto stick to just IPv6 (and don't even want to pay for someone else todeal with this problem for them as in scenario 4) above).

Around the time when this happens, even those ISPs which have wantedto ignore IPv6 as long as they could, may decide that they will needto do something. (Or the case could be that the ISP still hascustomers with only v4 capabilities.) The possible fixes to thisproblem are to a) deploy v6 to customers (if v4-only customers is rareenough) or b) to provide a v4->v6 translation service for v4-initiatedshort local handle -type applications.


6. Explicitly not considered scenarios

a) Deployment being so far that a reasonable content provider mightdecide to deploy the service using only IPv6 and require that non-IPv6capable users either upgrade or have their connectivity translated forthem. (Somewhat similar to case 4) above).

b) Such complex services (e.g. SIP, possibly p2p apps) which are noteasily translateable or proxyable that if users exist in both IPversions, communication between these is a major challenge andrequires application-specific proxying mechanisms or an acceleratedIPv6 deployment.

IPv4 exhaustion is not causing major problems for these applicationsas these already have a pretty good NAT traversal mechanisms and thosemechanisms are likely to get better over time. App developers (esp.p2p) also have an incentive to add IPv6 support to overcome the NATtraversal problems if uPNP, NAT-PMP, and manual hole punching becomesless and less practical due to NAT functionality moving intoISP-controlled NAT.


--
$Id: scenarios.txt,v 1.2 2008/07/28 17:26:41 pekkas Exp $

Follow-Ups:
- Re: v6-v4 transition scenarios, take 2
  - From: Nathan Ward <v6ops@daork.net>

References:
- v6-v4 transition scenarios, take 1
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: v6-v4 transition scenarios, take 1
  - From: Jari Arkko <jari.arkko@piuha.net>

Prev by Date: Public awareness of v6 & NAT (was comments on draft-ietf-v6ops-nat64-pb-statement-req-00)
Next by Date: APBP informal discussion
Previous by thread: Re: v6-v4 transition scenarios, take 1
Next by thread: Re: v6-v4 transition scenarios, take 2
Index(es):
- Date
- Thread