Re: [DNSOP] [v6ops] DNS64/Thread RE: WG call for adoption: draft-momoka-v6ops-ipv6-only-resolver-01
Hi, On Fri, Jul 07, 2023 at 01:19:38PM +, mohamed.boucad...@orange.com wrote: > For your last point: problems may arise if a distinct pref64 is used by the > upstream DNS64 than the one used locally. Unless I???m mistaken, we currently > don???t have a solution to detect mismatches between what is used by a local > NAT64 and an upstream DNS64 let alone whether an upstream resolver is also > performing DNS64. I used to have a proposal for this: > https://datatracker.ietf.org/doc/html/draft-boucadair-dnsop-prefix64-02 I would assume that it just does not matter if there are two NAT64 boxes available, with different prefixes. Depending on which prefix you use for the IPv6 synthesis, your packets will use one or the other to be translated - which is actually one of the brilliant aspects of NAT64, that it does not need to be in the "non NAT" packet flow. Same for "having two DNS64 in sequence" - while unusual, it will still work. The first DNS64 to see the IPv4-only reply will do synthesisis, the second DNS64 will see an IPv6 answer, and won't have to do anything except "forward". If they agree on the NAT64 prefix, packets will use the same NAT64 gateway in any case, if not, see above. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] DNS64/Thread RE: WG call for adoption: draft-momoka-v6ops-ipv6-only-resolver-01
Hi, On Tue, Jul 11, 2023 at 10:04:38AM +1000, Mark Andrews wrote: > I think the issue is that NAT64 is being used to reach internal IPv4 addresses > (e.g. RFC 1918) so the traffic needs to go through a NAT64 that can reach > those > addresses. If you do that (which is a nice way to leverage IPv6 to work around duplicate use of private network segments, by having a NAT64 gateway for each), then you really do not want to use "arbitrary DNS64" resolvers, but maybe have the NAT64 address right in the internal DNS, for v6-enabled clients... But yes, just setting up random NAT64 and DNS64 boxes and hoping for magic to do the right thing might not work out very well. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 signature.asc Description: PGP signature ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] New Version Notification for draft-palet-sunset4-ipv6-ready-dns-00.txt
Hi, On Mon, Nov 27, 2017 at 12:28:16PM +, Tony Finch wrote: > The 31 TLDs with no v6 nameservers: [..] > mil. Yay. Like, IPv6 mandate, and all that. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AGVorstand: Sebastian v. Bomhard Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] Fwd: New Version Notification for draft-v6ops-xie-network-happyeyeballs-00.txt
Hi, On Tue, Sep 25, 2018 at 10:30:05AM +0800, Davey Song wrote: > Before I put down this draft, I talked with some CPs (content/app > providers) and ISPs, they have motivations and requirement on this. One > example is Tencent, they are planning to deploy a complicated measurement > network to info their Apps (with a SDK ) which address family they should > try first (their apps use dns over http). I'm told that Tencent think HE > implemented on each client is too complicated (they have comlicated apps) > and resource consuming. This hints at a general misunderstanding on how "The Internet" works. Talking to the local ISP on "what would you recommend, IPv4 or IPv6?" can give an indication, but if the server you're trying to talk to is on the other side of the world, the local ISP's preference for IPv4-vs-IPv6 might be the opposite of what actually works better to reach said server. There are many networks on the path... Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] New Version Notification for draft-v6ops-xie-network-happyeyeballs-00.txt
Hi, On Wed, Sep 26, 2018 at 03:28:24PM +1000, George Michaelson wrote: > run a race, but bias the race towards the one you like? oky.. But > once we're beyond a world where the V6 needs the bias, for anyone > stuck on the vestigial 4-is-better space, this means they incurred > *additional* connection penalty. wheres the control knob? We need a bias for one or the other protocol. Otherwise you'll end up flipflopping between v4 and v6 for subsequent connections if both are equal (because the networks in beween just run v4 and v6 over the same links, same devices, same peerings, ...) - and that is a major annoyance when trying to troubleshoot things. Like, web server access that "sometimes works and on reload brings an error" (because apache ACLs are not in sync for v4 vs. v6). In the long run, we want a single protocol, whichever it is. Dual-stack is dual-work. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] New Version Notification for draft-v6ops-xie-network-happyeyeballs-00.txt
Hi, On Wed, Sep 26, 2018 at 03:14:42PM +0800, Davey Song wrote: > NHE can > help reduce the unnecessary traffic emitted by HE client becuase the > record > will be omitted or delayed if IPv6 connectivity is poorer. I don't see any > interferance now. I'm not sure how often I've heard the well-meaning suggestion "just do not deliver DNS records of type if ". It was a bad idea at all times, and it is still a bad idea. Never withhold legitimate records. [..] > I think MP-TCP or other transmition protocol are based on stable, > high-performance ip layer. Read up again what MP-TCP does :-) Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 signature.asc Description: PGP signature ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] New Version Notification for draft-v6ops-xie-network-happyeyeballs-00.txt
Hi, On Wed, Sep 26, 2018 at 03:56:15PM +0800, Chongfeng Xie wrote: > In the early stage of dual-stack deployment, we can not expect the > IPv6 has matched performance with IPv4. This is true. But "early stage of dual-stack deployment" was 15 years ago, so this is not a valid excuse today. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
Re: [DNSOP] [v6ops] New Version Notification for draft-v6ops-xie-network-happyeyeballs-00.txt
Hi, On Thu, Sep 27, 2018 at 11:09:39AM +0800, Davey Song wrote: > So the suffering of users is real in dualstack. This is a misconception. "A few applications are lazy, so performance for them is poor" is better describing things. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279 signature.asc Description: PGP signature ___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
