nanog mailing list archives
Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?)
From: Mark Andrews <marka () isc org>
Date: Wed, 13 Jul 2011 15:59:52 +1000
In message <9C391C3A-3535-4C47-A743-57287685942E () bogus com>, Joel Jaeggli write s:
On Jul 12, 2011, at 6:41 PM, Mark Andrews wrote:=20 In message <56E0FB8F-BB53-4DB0-829B-39DFBAB483E8 () bogus com>, Joel =Jaeggli writes:=20 On Jul 12, 2011, at 12:53 PM, Owen DeLong wrote: =20=3D20 On Jul 12, 2011, at 8:43 AM, Cameron Byrne wrote: =3D20On Tue, Jul 12, 2011 at 8:28 AM, Ronald Bonica =<rbonica () juniper net> =3Dwrote:Leo, =3D20 Maybe we can fix this by: =3D20 a) bringing together larger groups of clueful operators in the =IETFb) deciding which issues interest them c) showing up and being vocal as a group in protocol developing =3Dworking groups=3D20 To some degree, we already do this in the IETF OPS area, but =judging =3Dby your comments, we don't do it nearly enough.=3D20 Comments? =3D20=3D20 There may be an OPS area, but it is not listened to. =3D20 Witness the latest debacle with the attempt at trying to make 6to4 ==3Dhistoric.=3D20 Various "non-practicing entities" were able to derail what network operators largely supported. Since the IETF failed to make =progressoperators will do other things to stop 6to4 ( i have heard no AAAA over IPv4 transport, blackhole 6to4 anycast, decom relay =routers...)=3D20Those are all REALLY bad ideas. Speaking as an operator, the best =3Dthing youcan do to alleviate the problems with 6to4 is operate more, not less ==3D6to4relays.=20 Unless of course the large providers get their shared transition =space =3Din which case all 6to4 behind it will break in a really ugly way, =pretty =3Dmuch exactly like in the mobile operator in question.=3D20=20 And would deploying draft-andrews-v6ops-6to4-router-option-02.txt =and/oradding router reachability tests have addressed this issue?Neither of these approaches address existing cpe, and shared transtion = space is justified on the basis of existing cpe...
I didn't claim it would work with existing CPE equipment. Declaring 6to4 historic won't work with existing CPE equipment either. As for requesting shared transition space, there are lots of benefits to it other than helping existing CPE equipement. draft-andrews-v6ops-6to4-router-option-02.txt helps when you are just filtering the protocol 41 traffic.
We go into this with the internet we have not the one that we would like = to have the later takes time.
The goal of 6to4 to historic was not to encourage the outcome =described, =3Dit was to take having 6to4 as a default method of any kind off the =table =3Dgoing into the future. If mature adults want to use it great, but =3D conformance tests shouldn't require it, CPE shouldn't it on just =because =3Dwhat they think they have a is a public IP with not filtering and =hosts =3Dshouldn't use it unless told to do so..=20 But that is *not* what the draft did. Making the protocol historic did LOTS more than that. I think there was universal consensus that 6to4 should be off by default.And that'll take some time while particularly for the CPE to age out.There was this nuke 6to4 from orbit attitude which did nothing to help with already deployed/shipped boxes. 6to4 historic is actually harmful for dealing with the existing problems as it tells vendors not to include 6to4 support in future products which means operators won't have boxes with fixes to other problems to alleviate the problems cause but the currently deployed customer boxes.The interpretation of attitude is a matter of taste. When that authors = of 3056 and 3068 come down in support of or opposed to the same draft = there clearly some debate.=20 If we focus on what really would be in the best interests of the end = user, it is a decline to zero in the unintentional use of 6to4 in cpe = and operating systems. it is the removal of 6to4 from requirements where = it presently exists, and it is the continued support of relays to = support legacy devices.=20
And to support those that can't get IPv6 from their ISPs.
It is really hard to justify the expansion and deployment of new relays = when in fact tunneled traffic can be observed to be on the decline = (possibly because devices particularly hosts that do receive regular = updates receive tweaks to their address selection algorithm). = http://asert.arbornetworks.com/2011/04/six-months-six-providers-and-ipv6/
Which may or may not be a short term dip. We are yet to see much in the way of IPv6 only content. When that appears, which it will, the tunneled traffic will go up unless ISPs have deployed native IPv6 to all customers. Are you willing to bet on which will happen first? This whole area is in a state of flux.
What would have been much better would have been to encourage CPE vendors to release images which address some of the known issues. Just adding a check box saying "enable 6to4" and for ISP to send out email to say "check your router vendor web site for fixed images". The better fix would be to get them to also add support for draft-andrews-v6ops-6to4-router-option-02.txt which greys out the checkbox when 0.0.0.0 is sent as a response to the option. =20 Remember operators are in the position to alleviate lots of the 6to4 issues themselves. =20Blocking AAAA over IPv4 transport is just silly. It's just as likely ==3Dthat yourAAAA record is destined for an end-host that has native IPv6 =3Dconnectivitywith an intermediate resolver that desn't have IPv6 as it is that =3Dyou'resending that to a 6to4 host. Further, there's no reason to believe =the6to4 host won't attempt to resolve via IPv6, so, it doesn't really =3D=helpanyway. =3D20Real network operators have a relatively low BS threshold, they =havecustomers to support and businesses to run, and they don't have =3Dthumbwrestle these people who don't actually have any skin in the game. =3D20I agree, but, it's not hard to run 6to4 relays and running them does ==3Dmuchmore to alleviate the problems with 6to4 than anything you proposed above. Indeed, what you proposed above will likely create more =3Dcustomerissues rather than reduce them. =3D20 Owen =3D20Cameron =3D20 =3D20Ron =3D20 =3D20 -----Original Message----- From: Leo Bicknell [mailto:bicknell () ufp org] Sent: Monday, July 11, 2011 3:35 PM To: nanog () nanog org Subject: Re: Anybody can participate in the IETF (Was: Why is IPv6 ==3Dbroken?)=3D20 In a message written on Sun, Jul 10, 2011 at 06:16:09PM +0200, =3DJeroen Massar wrote:Ehmmmm ANYBODY, including you, can sign up to the IETF mailing =3Dlistsand participate there, just like a couple of folks from NANOG are ==3Dalready doing.=3D20 The way the IETF and the operator community interact is badly =3Dbroken.=3D20 The IETF does not want operators in many steps of the process. If ==3Dyou try to bring up operational concerns in early protocol =development =3Dfor example you'll often get a "we'll look at that later" response, =3D=which in many cases is right. Sometimes you just have to play with =3D=something before you worry about the operational details. It also =does =3Dnot help that many operational types are not hardcore programmers, =and =3Dcan't play in the sandbox during the major development cycles.=3D20 =3D20 =3D20 =3D20=3D20 =3D20 =3D20=20 =20--=20 Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka () isc org =20
-- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka () isc org
Current thread:
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?), (continued)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Michael Thomas (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Joel Jaeggli (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Cameron Byrne (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Doug Barton (Jul 12)
- RE: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Ronald Bonica (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Owen DeLong (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Joel Jaeggli (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Mark Andrews (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Cameron Byrne (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Joel Jaeggli (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Mark Andrews (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Joel Jaeggli (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Mark Andrews (Jul 13)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Owen DeLong (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Joel Jaeggli (Jul 12)
- Re: Anybody can participate in the IETF (Was: Why is IPv6 broken?) Fred Baker (Jul 11)
- Re: Why is IPv6 broken? Nick Hilliard (Jul 11)
- Re: Why is IPv6 broken? Jeff Wheeler (Jul 11)
- Re: Why is IPv6 broken? Tom Hill (Jul 11)