[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)

To: "'Templin, Fred L'" <Fred.L.Templin@boeing.com>, "'james woodyatt'" <jhw@apple.com>, "'IPv6 Operations'" <v6ops@ops.ietf.org>
Subject: RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
From: "Dan Wing" <dwing@cisco.com>
Date: Fri, 29 Aug 2008 16:45:54 -0700
In-reply-to: <39C363776A4E8C4A94691D2BD9D1C9A104E936B6@XCH-NW-7V2.nw.nos.boeing.com>
References: <20080824204553.08131c65.ipng@69706e6720323030352d30312d31340a.nosense.org> <48B1CCE8.1070305@gmail.com> <01af01c9065b$b4602440$c2f0200a@cisco.com> <48B23391.1090503@gmail.com> <01cd01c90672$a57c8790$c2f0200a@cisco.com> <48B31DA3.6080001@gmail.com> <07d201c906f7$50a85e30$c2f0200a@cisco.com> <48B32B43.5010103@gmail.com> <084c01c906fe$f9bf1840$c2f0200a@cisco.com> <48B33430.40704@gmail.com> <A31EB889-2BD9-4283-A408-AB6DCC1D568A@suspicious.org> <08be01c90712$d876cd40$c2f0200a@cisco.com> <20080827194713.23271bd1.ipng@69706e6720323030352d30312d31340a.nosense.org> <CD947C45-58F7-47F1-807F-A276490B1E39@apple.com> <0e6001c908a2$b8fcf700$c2f0200a@cisco.com> <F0E4B018-AA5E-4344-A40B-3F6D974B7EA1@apple.com> <001b01c908ac$2b7d5140$c2f0200a@cisco.com> <39C363776A4E8C4A94691D2BD9D1C9A104E93359@XCH-NW-7V2.nw.nos.boeing.com> <05ad01c90922$854aa710$c2f0200a@cisco.com> <FD70B36F-FCD4-4BC4-9368-C0BEE1B162F0@apple.com> <39C363776A4E8C4A94691D2BD9D1C9A104E93603@XCH-NW-7V2.nw.nos.boein! g.com> <2A58BE0C-25 10-4C8C-8F34-A4FDAE440A1C@apple.com> <39C363776A4E8C4A94691D2BD9D1C9A104E936B6@XCH-NW-7V2.nw.nos.boeing.com>

> >-----Original Message-----
> >From: james woodyatt [mailto:jhw@apple.com] 
> >Sent: Thursday, August 28, 2008 1:50 PM
> >To: IPv6 Operations
> >Subject: Re: But are we talking IPv6 only? That's how I read 
> >the draft. (Re: Some suggestions for 
> >draft-ietf-v6ops-cpe-simple-security-03)
> >
> >On Aug 28, 2008, at 13:05, Templin, Fred L wrote:
> >> [I wrote:]
> >>>
> >>> The minimum set of models I think we should consider are..
> >>>
> >>> A) CPE is a router connected to a native IPv6 service 
> provider with
> >>> prefix delegation.  Note: this includes dual-stack-lite CPE, as
> >>> currently proposed.
> >>>
> >>> B) CPE is an IPv4/NAT router connected to a service provider where
> >>> IPv6-in-IPv4 tunneling is available with a default route to
> >>> the public
> >>> default-free zone, e.g. 6to4, tunnel-broker, etc.
> >>>
> >>> Are there *any* other realistic models to consider for 
> residential  
> >>> CPE?
> >>
> >> CPE is an IPv4/NAT router connected to a service provider
> >> where IPv6-in-IPv4 tunneling is available with a default
> >> route to a border gateway for the service provider, e.g.,
> >> ISATAP (with private IPv4 address on the CPE's provider-
> >> facing interface).
> >
> >
> >Please correct me if I'm wrong... that's just B) where the 
> >tunnel is ISATAP.  Right?
> 
> The distinction being drawn between B) and this (call it C),
> I guess) is that C) entails a private IPv4 address on the
> CPE provider-facing interace; not a public one.

Both SNAT and Dual-Stack Lite also give private IPv4 addresses
to the CPE.  Figure 1 of draft-droms-softwires-snat-01.txt shows 
the CPE being given a 10.0.0.1 address (RFC1918).  
Sections 4.5 and 4.6 of draft-durand-dual-stack-lite-00.txt 
discuss a Carrier Grade NAT; I expect the IPv4 addresses between
the IPv4 (half of the) CPE and the CGN would be private 
addresses.

-d

References:
- Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Mark Smith <ipng@69706e6720323030352d30312d31340a.nosense.org>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- RE: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- RE: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- RE: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- RE: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: Truman Boyes <truman@suspicious.org>
- RE: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03
  - From: "Dan Wing" <dwing@cisco.com>
- But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: Mark Smith <ipng@69706e6720323030352d30312d31340a.nosense.org>
- Re: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: james woodyatt <jhw@apple.com>
- RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: "Dan Wing" <dwing@cisco.com>
- Re: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: james woodyatt <jhw@apple.com>
- RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: "Dan Wing" <dwing@cisco.com>
- RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: "Templin, Fred L" <Fred.L.Templin@boeing.com>
- RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: "Dan Wing" <dwing@cisco.com>
- Re: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: james woodyatt <jhw@apple.com>
- RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
  - From: "Templin, Fred L" <Fred.L.Templin@boeing.com>

Prev by Date: RE: But are we talking IPv6 only? That's how I read the draft. (Re:Somesuggestions for draft-ietf-v6ops-cpe-simple-security-03)
Next by Date: RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
Previous by thread: RE: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
Next by thread: Re: But are we talking IPv6 only? That's how I read the draft. (Re: Some suggestions for draft-ietf-v6ops-cpe-simple-security-03)
Index(es):
- Date
- Thread