message agents and ipv6 interoperability problems
play

Message Agents and IPv6 interoperability problems Research Project - PowerPoint PPT Presentation

Feb 28, 2024 •20 likes •350 views

Message Agents and IPv6 interoperability problems Research Project Universiteit van Amsterdam System and Network Engineering (MSc) Conducted at SARA June 30, 2010 Michiel Timmers (michiel.timmers@os3.nl) Sebastian Carlier

  1. Message Agents and IPv6 interoperability problems Research Project Universiteit van Amsterdam System and Network Engineering (MSc) Conducted at SARA June 30, 2010 Michiel Timmers (michiel.timmers@os3.nl) Sebastian Carlier (sebastian.carlier@os3.nl)

  2. Contents ● Research Question ● Why ● Intro ● Design problems with MX records in IPv4/IPv6 ● Implementation problems on clients ● Things to keep in mind ● Question 2 / 33

  3. Research Question What e-mail architecture components and configurations introduce connectivity problems in an IPv4/IPv6 mixed environment? 3 / 33

  4. Why IPv6 on your public facing services will only become more and more important. Therefore study is needed to see where problems originate to be able to fix or avoid them. 4 / 33

  5. Test environment ● SARA network ● /28 for IPv4 and /64 for IPv6 ● OS3 Lab ● /27 for IPv4 and /64 for IPv6 ● Approximately 20 machines ● Ubuntu 10.04, Windows, Mac OSX 10.6 ● Exim, Sendmail, Postfix, Exchange 2007 SP1 5 / 33

  6. Message Agents - Intro MTA MTA SMTP Mail Delivery Relay (IMAP/POP3) 6 / 33 Client Client (aMUA) (rMUA)

  7. Address Selection Message Agent Message Agent IPv6 Step 1 IPv6 IPv6 IPv6 Step 2 IPv4 IPv4 IPv4 Step 3 7 / 33

  8. DNS A and AAAA ● Round robin for load balancing your services: ● With MXs of equal preference ● With multiple A or AAAA records ● RFC 3484 brakes this behaviour ● Longest matching prefix (section 6, rule 9) ● Draft “Things To Be Considered for RFC 3484 Revision” ● RFC 3484 does not recognize private IPv4 addresses as native (Section 6, rule 7) 8 / 33

  9. SMTP Relay - Problems MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) 9 / 33

  10. SMTP Relay - Problems Client will send message to SMTP Relay MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) 10 / 33

  11. SMTP Relay - Problems Try to send it to mx10 using IPv4 MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) 11 / 33

  12. SMTP Relay - Problems Recipient address rejected: User unknown MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) 12 / 33

  13. SMTP Relay - Problems E-mail error needs to be send to sender, Not possible as domain is IPv6-only MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) MTA: skimbee.net IPv6-only 13 / 33

  14. SMTP Relay - Problems E-mail does not reach receiver and error code does not get returned to sender MTA: brainbird.nl IPv4/IPv6 client SMTP Relay IPv4-only From: user@skimbee.net (IPv6) To: unknown_user@brainbird.nl (IPv4/IPv6) MTA: skimbee.net IPv6-only 14 / 33

  15. MX Routing - Problems mx10 is down IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 15 / 33 To: unknown_user@brainbird.nl mx30 relay

  16. MX Routing - Problems No connectivity possible between SMTP Relay and mx20 IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 16 / 33 To: unknown_user@brainbird.nl mx30 relay

  17. MX Routing - Problems Deliver to mx30 IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 17 / 33 To: unknown_user@brainbird.nl mx30 relay

  18. MX Routing - Problems mx10 is still down IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 18 / 33 To: unknown_user@brainbird.nl mx30 relay

  19. MX Routing - Problems Deliver to mx20 IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 19 / 33 To: unknown_user@brainbird.nl mx30 relay

  20. MX Routing - Problems mx10 is still down IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 20 / 33 To: unknown_user@brainbird.nl mx30 relay

  21. MX Routing - Problems E-mail error needs to be send to sender, Not possible as domain is IPv4-only IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only MTA: skimbee.net IPv4-only From: user@skimbee.net IPv4/IPv6 21 / 33 To: unknown_user@brainbird.nl mx30 relay

  22. MX Routing - Problems E-mail does not reach receiver and error code does not get returned to sender IPv4/IPv6 mx10 IPv6-only SMTP Relay mx20 relay IPv4-only From: user@skimbee.net IPv4/IPv6 22 / 33 To: unknown_user@brainbird.nl mx30 relay

  23. Implementation problems on clients ● Most of the implementation problems were found on the client side ● Clients don't implement RFC 3484 correctly ● Windows will end up with the same metric for tunnels and native ● Outlook 2007/2010 does not fall back to IPv4 ● Apple Mac OSX 10.6 is broken by design... 23 / 33

  24. Apple's mDNSResponder ● Introduced in Mac OSx 10.6 (Snow Leopard) ● Simultaneous query for A and AAAA ● to speed up connectivity if there are DNS lookup problems Query: A Query: AAAA 24 / 33 Mac OSX 10.6 DNS Resolver

  25. Apple's mDNSResponder ● Introduced in Mac OSx 10.6 (Snow Leopard) ● Simultaneous query for A and AAAA ● to speed up connectivity if there are DNS lookup problems ● Only accepts first response Return: A Return: AAAA 25 / 33 Mac OSX 10.6 DNS Resolver

  26. Apple's mDNSResponder ● This does not comply with RFC 3484. ● Twice the amount of DNS queries on your resolver. ● Clients will randomly access over IPv4 or IPv6 depending on what record is returned first. ● This breaks many things ● No fall back possible!!! ● Problems when only AAAA is available but A “NOERROR” is returned first. 26 / 33

  27. Conclusion ● Reflecting back on our research question: What e-mail architecture components and configurations introduce connectivity problems in an IPv4/IPv6 mixed environment? 27 / 33

  28. Conclusion - MTA ● No implementation problems. ● Problems in IPv4/IPv6 mixed environments when doing MX routing. RFC 3974. ● Make sure YOU have implemented Dual-Stack (IPv4/IPv6) so in all situations MTAs can reach you. 28 / 33

  29. Conclusion - MUA ● Clients will give the biggest problems. ● Be careful before announcing AAAA for your SMTP Relay and POP3/IMAP services. ● Use a controlled environment to test impacted behaviour 29 / 33

  30. Keep in mind ● Transition mechanism are unreliable and unpredictable ● Do not configure them on a server (disable them on Windows Server 2008). ● Do not make any services available over transition mechanism, like configuring an AAAA that points to a Teredo interface!!!! ● RFC 4941 - Privacy addresses. ● Double the amount of monitoring. 30 / 33

  31. Acknowledgments ● SARA ● Ronald van der Pol ● Freek Dijkstra 31 / 33

  32. Questions? 32 / 33

  33. References Wiki for this research ● Apple IPv6 problems ● Things To Be Considered for RFC 3484 Revision ● 33 / 33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6 Ready Logo Goal 2001-Present: Conformance and Interoperability test program intended to increase user confidence and promote IPv6 deployment.

403 views • 11 slides
1 Problems with IPv4: Header Limitations Problems with IPv4: Header Limitations Problems with

1 Problems with IPv4: Header Limitations Problems with IPv4: Header Limitations Problems with

Outline Outline IPv6: An Introduction IPv6: An Introduction Problems with IPv4 Problems with IPv4 Basic IPv6 Protocol Basic IPv6 Protocol IPv6 features IPv6 features Dheeraj Sanghi Dheeraj Sanghi Auto

512 views • 7 slides
IPv6 Protocol IPv6 Protocol Does it solve all the security problems of IPv4? Franjo Majstor

IPv6 Protocol IPv6 Protocol Does it solve all the security problems of IPv4? Franjo Majstor

IPv6 Protocol IPv6 Protocol Does it solve all the security problems of IPv4? Franjo Majstor EMEA Consulting Engineer fmajstor@cisco.com Cisco Systems, Inc. 1 fmajstor@cisco.com, IPv6 Security Agenda IPv6 Primer IPv6 Protocol

241 views • 21 slides
IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already Here Monash IPv6 Progress Addressing End Systems Monitoring Network Address Usage Traffic Monitoring Problems IPv6 is Coming

779 views • 41 slides
Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How

Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How

Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How can TEI support interoperability? Wendell Piez Interedition Think Tank Wrzburg, Lower Franconia October 12, 2011 Costs and Benefits of

982 views • 5 slides
for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences

for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences

Interoperability challenges for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences for multi-supplier-solutions Ways to achieve interoperability Interoperability test specification for CAN &

833 views • 17 slides
Interoperability of retail DFS What is Interoperability? DFS interoperability models

Interoperability of retail DFS What is Interoperability? DFS interoperability models

Interoperability of retail DFS What is Interoperability? DFS interoperability models The essentials of interoperability State of retail DFS interoperability in Malawi Benefits of interoperability Challenges of

257 views • 10 slides
Problem-Solving Agents Subclass of goal-based agents goal formulation problem formulation

Problem-Solving Agents Subclass of goal-based agents goal formulation problem formulation

CPE/CSC 580-S06 Artificial Intelligence Intelligent Agents Problem-Solving Agents Subclass of goal-based agents goal formulation problem formulation example problems toy problems real-world problems search search strategies

540 views • 31 slides
IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

Outline IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer Science and IPv6 Autoconfiguration Institute of Communications Engineering National Tsing Hua University jcchen@cs.nthu.edu.tw

783 views • 11 slides
Planning Agents Chapter Overview planning problems from problem solving to planning

Planning Agents Chapter Overview planning problems from problem solving to planning

CPE/CSC 580-S06 Artificial Intelligence Intelligent Agents Planning Agents Chapter Overview planning problems from problem solving to planning representations for planning problems states, goals, actions, plans partial-order planning

640 views • 41 slides
Foundations of AI 3. Solving Problems by Searching Problem-Solving Agents, Formulating

Foundations of AI 3. Solving Problems by Searching Problem-Solving Agents, Formulating

Foundations of AI 3. Solving Problems by Searching Problem-Solving Agents, Formulating Problems, Search Strategies Luc De Raedt and Wolfram Burgard and Bernhard Nebel Contents Problem-Solving Agents Formulating Problems Problem

662 views • 41 slides
Agents that Plan Reflex Agents Reflex agents: Choose

Agents that Plan Reflex Agents Reflex agents: Choose

Today CS 232: Ar)ficial Intelligence Search Agents that Plan Ahead September 3 rd , 2015 Search Problems Uninformed Search Methods

436 views • 10 slides
The Security Impact of IPv6 How I Learned to Stop Worrying and Love IPv6 Johannes B. Ullrich,

The Security Impact of IPv6 How I Learned to Stop Worrying and Love IPv6 Johannes B. Ullrich,

The Security Impact of IPv6 How I Learned to Stop Worrying and Love IPv6 Johannes B. Ullrich, Ph.D. jullrich@sans.edu 1 Housekeeping This presentation consists of slides and audio. If you are experiencing any problems/ issues,

1.12k views • 56 slides
Mobile IPv6 Mobile IPv6 Connectathon 2003 2003 Connectathon IETF56 IETF56 Interoperability

Mobile IPv6 Mobile IPv6 Connectathon 2003 2003 Connectathon IETF56 IETF56 Interoperability

Mobile IPv6 Mobile IPv6 Connectathon 2003 2003 Connectathon IETF56 IETF56 Interoperability Testing Report Interoperability Testing Report Samita Chakrabarti Samita Chakrabarti Samita. .chakrabarti chakrabarti@Sun.com @Sun.com Samita

420 views • 8 slides
Contents Foundations of Artificial Intelligence Problem-Solving Agents 1 3. Solving Problems by

Contents Foundations of Artificial Intelligence Problem-Solving Agents 1 3. Solving Problems by

Contents Foundations of Artificial Intelligence Problem-Solving Agents 1 3. Solving Problems by Searching Formulating Problems 2 Problem-Solving Agents, Formulating Problems, Search Strategies Problem Types 3 Wolfram Burgard, Bernhard

319 views • 12 slides
Cryptography Hard Problems encryption message encryption key algorithm Some problems are

Cryptography Hard Problems encryption message encryption key algorithm Some problems are

Cryptography Hard Problems encryption message encryption key algorithm Some problems are hard to solve. No polynomial time algorithm is known. Transmission E.g., NP-hard problems such as machine scheduling, Channel bin packing,

516 views • 8 slides
ODOT TEAM INTRODUCTIONS ODOT Darren Saliba - Division 1 Engineer Chris Wallace -

ODOT TEAM INTRODUCTIONS ODOT Darren Saliba - Division 1 Engineer Chris Wallace -

ODOT TEAM INTRODUCTIONS ODOT Darren Saliba - Division 1 Engineer Chris Wallace - Division 1 Construction Engineer Siv Sundaram - Environmental Programs Laurie Effinger - Division 1 NEPA Project Manager Bob Rusch -

1.18k views • 49 slides
I-90 Mississippi River Bridge & Interchange Project Presentation Outline I. Background:

I-90 Mississippi River Bridge & Interchange Project Presentation Outline I. Background:

I-90 Mississippi River Bridge & Interchange Project Presentation Outline I. Background: Context & Need for Project II. Preferred Alternative Overview III. Project Development IV. Project Management Tools & Innovation V.

572 views • 44 slides
DX (GROUP) PLC Full year Results Presentation for the year ended 30 June 2016 INVESTOR

DX (GROUP) PLC Full year Results Presentation for the year ended 30 June 2016 INVESTOR

DX (GROUP) PLC Full year Results Presentation for the year ended 30 June 2016 INVESTOR PRESENTATION SEPTEMBER 2016 1 AGENDA Annual overview Petar Cvetkovic Financial review Daljit Basi/ Ian Pain Review of services and development Petar

476 views • 19 slides
Los Gatos Creek Bridge Replacement / South Terminal Phase III Project Community Meeting Sept.

Los Gatos Creek Bridge Replacement / South Terminal Phase III Project Community Meeting Sept.

Los Gatos Creek Bridge Replacement / South Terminal Phase III Project Community Meeting Sept. 17, 2013 Agenda I. Overview II. Project Description III. Environmental Process IV. Project Construction V. Project Benefits VI. Community

515 views • 28 slides
Pr Priv ivat ate Ser e Service of Pr ice of Process In Ot ocess In Other S her Stat ates

Pr Priv ivat ate Ser e Service of Pr ice of Process In Ot ocess In Other S her Stat ates

Pr Priv ivat ate Ser e Service of Pr ice of Process In Ot ocess In Other S her Stat ates es & Comparison W & Comparison With N th North Car rth Carolina lina Pr Present esented F d For t r the e Committ mmittee on Pr e

276 views • 12 slides
Residential Seller Disclosure Law; and Recent Developments in Real Estate Matters in Polk County

Residential Seller Disclosure Law; and Recent Developments in Real Estate Matters in Polk County

Residential Seller Disclosure Law; and Recent Developments in Real Estate Matters in Polk County Polk County Bar Association, Spring 2019, General Practice CLE Presented By: Martin J. Kenworthy Kenworthy Law, P.C. Residential Seller

388 views • 28 slides
TRID Rachel Cahill What is TRID? How will you build your house? Straw TILA Ive heard of

TRID Rachel Cahill What is TRID? How will you build your house? Straw TILA Ive heard of

NTXAMP LUNCHEON 06/10/2015 Whos Afraid of the Big Bad Wolf? TRID Rachel Cahill What is TRID? How will you build your house? Straw TILA Ive heard of TRID, but weve still got time RESPA Sticks Ive heard of TRID and

539 views • 28 slides
Timeline Notes: Only the applications provided by School Choice and Parent Options are to be

Timeline Notes: Only the applications provided by School Choice and Parent Options are to be

Timeline Notes: Only the applications provided by School Choice and Parent Options are to be used for registration. No additional applications can be used. Only one application per student is allowed. For double registration, the first

845 views • 42 slides

More recommend