Lightweight 4over6: An Extension to the Dual-Stack Lite Architecture
draft-ietf-softwire-lw4over6-13
Yes
(Ted Lemon)
No Objection
(Alia Atlas)
(Jari Arkko)
(Pete Resnick)
(Richard Barnes)
(Spencer Dawkins)
Abstain
(Joel Jaeggli)
Note: This ballot was opened for revision 10 and is now closed.
Ted Lemon Former IESG member
Yes
Yes
(for -10)
Unknown
Adrian Farrel Former IESG member
No Objection
No Objection
(2014-10-30 for -11)
Unknown
I don't have any specific objection to this document. I agree with others that there are too many options and potential solutions being published. While there is a good chance that the market will decide and winnow this down to just a very few practical solutions, I believe the IETF (and specifically the Softwire working group) is letting down the industry. Vendors will be unclear which solutions to implement and operators are unlikely to give early direction. This will result in multiple implementations that either do not interoperate or that increase the net cost of equipment. And in the end, who pays? I wish more effort had gone into reducing the options.
Alia Atlas Former IESG member
No Objection
No Objection
(for -11)
Unknown
Alissa Cooper Former IESG member
No Objection
No Objection
(2014-10-29 for -11)
Unknown
= Section 4 = "The solution specified in this document allows the assignment of either a full or a shared IPv4 address requesting CPEs." I think this sentence is missing a word -- maybe "to" requesting CPEs? = Section 5.2 = "The lwB4 is responsible for performing ALG functions (e.g., SIP, FTP), and other NAPT traversal mechanisms (e.g., UPnP, NAPT-PMP, manual binding configuration, PCP) for the internal hosts." I would suggest adding "if necessary" at the end of this sentence. At least for SIP, we have IETF guidance (in BCP 127) recommending that SIP ALG functionality be disabled by default. = Section 9 = It seems like the mechanism specified in this draft basically trades off the user's security (in the case where contiguous ports are used) in favor of efficiency/cost savings for the service provider. It seems like that should be stated more clearly -- at best there is no benefit of this solution to the user, and at worst it increases the attack potential. Or is there a place in the softwire document suite where this is explained more generally for other mechanisms that also use contiguous ports in port sets?
Barry Leiba Former IESG member
No Objection
No Objection
(2014-10-29 for -11)
Unknown
I've had a quick look, and nothing stands out. I trust my distinguished colleagues from Vermont and Maryland to duke it out.
Benoît Claise Former IESG member
(was Discuss)
No Objection
No Objection
(2014-11-20)
Unknown
Thanks
Jari Arkko Former IESG member
No Objection
No Objection
(for -11)
Unknown
Kathleen Moriarty Former IESG member
(was Discuss)
No Objection
No Objection
(2014-11-06 for -11)
Unknown
The proposed changes address the discuss points raised int he SecDir review, thank you. http://www.ietf.org/mail-archive/web/secdir/current/msg05163.html
Pete Resnick Former IESG member
No Objection
No Objection
(for -11)
Unknown
Richard Barnes Former IESG member
No Objection
No Objection
(for -11)
Unknown
Spencer Dawkins Former IESG member
No Objection
No Objection
(for -11)
Unknown
Brian Haberman Former IESG member
Abstain
Abstain
(2014-10-14 for -10)
Unknown
I find it a dis-service to the community for the softwire WG to put forth multiple solutions that solve essentially the same problem (https://mailarchive.ietf.org/arch/msg/ietf/jcscmIHmAQSvXLAlLLvfhnC2P8A). I believe the confusion caused by a myriad of solutions in this space, regardless of whether they are Standards Track or Experimental, will adversely impact vendors, operators, and end-users. My only hope is that this confusion will speed up the transition to IPv6-only operations within the affected networks.
Joel Jaeggli Former IESG member
Abstain
Abstain
(for -11)
Unknown