ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] For DNSBLs, embedded IPv4 in IPv6

2008-08-04 01:50:52
from [Tim Chown] [Permanent Link] 
Hi,

An excellent reference for application developers is RFC4038.

If you have any issues or clarifications on this text, I know that
at the very least Pekka is still active, so may answer questions
regarding adding IPv6 capability to DNSBL.

My personal experience is that applications should use explicit
IPv4 or IPv6 addresses in configuration files (not mapped addresses).
This is perfectly normal, e.g. in Apache or sendmail configs.

One place you may see mapped addresses is typically in log files.

The late Itojun wrote a draft on why IPv6 mapped addresses on the
wire are considered harmful:
http://www.watersprings.org/pub/id/draft-itojun-v6ops-v4mapped-harmful-02.txt

What was the other issue?  Looking for some 'test' address where currently
127.0.0.2 is used for the IPv4-only application?   What is the purpose of 
the test address?

Tim

On Mon, Aug 04, 2008 at 10:26:45AM +0200, Frank Ellermann wrote:

John Levine wrote:


Someone pointed out that in some popular dual stack systems,
connections from IPv4 addresses appear as IPv6 addresses
in :FFFF:0000:0000/96


Yes, that is what I meant when I mentioned RFC 4408, (ab)using
::FFFF:127.0.0.2 as an "obvious" test entry.  Another proposal
in the meeting was to use one of the IPv6 example addresses
for this purpose.  But I can't remember the example addresses
without my 4408 cheat sheet, an obvious entry would be better.


The immediate question is whether to add a sentence or two
to the DNSBL spec saying that if you have a DNSBL listing
both v4 and v6 addresses, and you list a v4 address, you
SHOULD or MUST also list the corresponding embedded v6


No.  It is the job of the clients to get this right, they are
supposed to ask for the IPv4 form of these addresses.  With
::FFFF:127.0.0.2 as a possible *exception* for test purposes.

 Frank

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/asrg


-- 
Tim


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] For DNSBLs, embedded IPv4 in IPv6, Frank Ellermann
Next by Date:  [Asrg] IPv6 spam data, Tim Chown
Previous by Thread:  Re: [Asrg] For DNSBLs, embedded IPv4 in IPv6, John Levine
Next by Thread:  Re: [Asrg] For DNSBLs, embedded IPv4 in IPv6, Frank Ellermann
Indexes:  [Date] [Thread] [Top] [All Lists]