IPv4 header extension for IPv6 translation support

All of lore.kernel.org
 help / color / mirror / Atom feed

* IPv4 header extension for IPv6 translation support
@ 2012-08-28  7:59 Vlad Maraev
  2012-08-28 19:32 ` Eric W. Biederman
  0 siblings, 1 reply; 3+ messages in thread
From: Vlad Maraev @ 2012-08-28  7:59 UTC (permalink / raw)
  To: netdev
  Cc: Влад Мараев

Hi,
I would be happy to get some feedback on my idea that is described below.
I need to tell that I'm a newbie in Linux kernel development but it
would be interesting for me to estimate complexity and to implement
this in practice.

Best Regards,
Vlad Maraev
State University of Telecommunications
St. Petersburg, Russia

-------------------------------------------------------

Why?
----------
During the process of transitioning to IPv6 segments that use
different versions of IP need to interconnect. On the ISP level it can
only be done with NATs. I mean only 6-4 or 4-6 connections, not 4-6-4
or 6-4-6 that can be achieved with tunnel or dual stack in the middle.

NATs have two major disadvantages: scalability and latency. NAT that
is connecting large network segments needs to maintain a huge
translation table. Search in such tables requires lots of CPU/memory
resources.

The protocol
----------
IPv4x (IPv4 eXtended) aims to solve this problem. I think the major
problem with IPv4 is that the IPv4 packet doesn't contain IPv6
address. If it would contain IPv6 address, the 4-6 interaction can be
provided by stateless algorithmic protocol translation without any NAT
tables.

IPv4x header inherits its structure from IPv4 with 3 additional 32-bit
fields after the Destination Address. This field will be used for
extending source or destination address to IPv6 format. IHL field is
also changed.

IPv6 address will be divided in two parts: 32 and 96 bits. First part
will be included in Source or Destination Address field (depending on
the frame direction). Remaining 96 bits will be placed after the
Destination Address.

The assignable Global Unicast Address space is defined
in as being the address block defined by the prefix 2000::/3. First
bits of this addresses are 0010 that means the network of A class in
IPv4 space that could lead to correlation with existing addresses. To
solve this first character is changed from `2` to `F`. First bits of
`F` (1111) will form IPv4 address of class E that is reserved and
could be defined for IPv6 transition. E-class

Example:
-------------------------
| 2001:0db8:cafe:3:2::2 |
-------------------------
      v
-------------
| F001:0db8 | (Destination address)
-------------
| cafe:0003 | (96 bits below)
| 0000:0000 |
| 0000:0002 |
-------------
	  v
----------------
| 240.1.13.184 | (Destination address - IPv4 format)
----------------
| cafe:0003    | (96 bits below)
| 0000:0000    |
| 0000:0002    |
----------------

Transmission of IPv4x packet
----------
IPv4 transmission of IPv4x packet can be processed using IPv4 routing.
Intermediate nodes don't need to implement IPv4x, hey will work with
IPv4x packet as a normal IPv4 packet. Border nodes must implement
IPv4x and provide algorithmic translation of IPv4x frame to IPv6.

Example:
-------------
| F001:0db8 | (Destination address)
-------------
| cafe:0003 | (96 bits below)
| 0000:0000	|
| 0000:0002 |
-------------	
	 v
-------------------------
| 64:ff9b::203.0.113.1  |  source address can be written using some prefix
-------------------------
| 2001:0db8:cafe:3:2::2 |  destination IPv6 address
-------------------------

Problems
----------
1. Intermediate nodes can look below the Destination Address for the
options if ihl>5 and will be confused with IPv4x data.
2. All the IPv4x packets would be routed to one node. But there can be
several different organization IPv6 networks connected to this node.

First steps
----------
1. IPv4x in linux kernel
2. ICMP with ping4x
3. Transmission testing. IPv4x ping request must be routed to node
with class E interface.

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: IPv4 header extension for IPv6 translation support
  2012-08-28  7:59 IPv4 header extension for IPv6 translation support Vlad Maraev
@ 2012-08-28 19:32 ` Eric W. Biederman
  2012-08-29 13:15   ` Vlad Maraev
  0 siblings, 1 reply; 3+ messages in thread
From: Eric W. Biederman @ 2012-08-28 19:32 UTC (permalink / raw)
  To: Vlad Maraev; +Cc: netdev

Vlad Maraev <maraevvb@gmail.com> writes:

> Hi,
> I would be happy to get some feedback on my idea that is described below.
> I need to tell that I'm a newbie in Linux kernel development but it
> would be interesting for me to estimate complexity and to implement
> this in practice.

You are going over territory that has been rather thoroughly explored
already.

You might want to make a study of the rfcs from the ietf that document
why the existing solutions were chosen.

But for a few hints.
- It is possible to implement prefix translation and avoid the need for
  huge NAT state tables.  State tables are only needed when you don't
  have enough addresses or want the benefits of connection tracking.

- Any extention to ipv4 to give it larger addresses is roughly of the
  same difficulty as implementing ipv6.  In fact it is more difficult
  because ipv6 is present in most end devices today, it is the network
  links that are the bottle-neck in rolling out ipv6.

For the best interoperatiblity the best transition strategy remains
dual-stack.  With native ipv6 connectivity and some flavor of ipv4
connectivity (native, dual-stack-lite, or 646xlate).

Eric

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: IPv4 header extension for IPv6 translation support
  2012-08-28 19:32 ` Eric W. Biederman
@ 2012-08-29 13:15   ` Vlad Maraev
  0 siblings, 0 replies; 3+ messages in thread
From: Vlad Maraev @ 2012-08-29 13:15 UTC (permalink / raw)
  To: Eric W. Biederman; +Cc: netdev

Dear Eric,

I'm glad to receive the detailed feedback from you.
But I can't agree with some of your arguments:

> You are going over territory that has been rather thoroughly explored
> already.
I know the territory but I don't see that the problems are solved. I
mean problems caused by NATs: scalability, complexity, connection
tracking, additional addresses for NAT device.

>   In fact it is more difficult
>   because ipv6 is present in most end devices today, it is the network
>   links that are the bottle-neck in rolling out ipv6.
The fact that the end devices are ready for IPv6 doesn't mean that ISP
customers will make transitions in a one period of time. That's why
NATs are needed and they are in use. Detailed motivations are stated
in RFC6144 ("why translation" section).

> For the best interoperatiblity the best transition strategy remains
> dual-stack.  With native ipv6 connectivity and some flavor of ipv4
> connectivity (native, dual-stack-lite, or 646xlate).
My solution doesn't compete with dual stack and ds-lite that is good
for creating overlaying network. I offer a strategy that is an
alternative to existing NAT solutions.

Thanks

Vlad


P.S.
I found that this problem that was stated in my proposal
> 1. Intermediate nodes can look below the Destination Address for the
> options if ihl>5 and will be confused with IPv4x data.
has a solution: we can use IPv4 option field for placing this data.
Intermediate nodes that know nothing about this option will skip it
and forward the packet.

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2012-08-29 13:15 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2012-08-28  7:59 IPv4 header extension for IPv6 translation support Vlad Maraev
2012-08-28 19:32 ` Eric W. Biederman
2012-08-29 13:15   ` Vlad Maraev

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.