IETF Logo Mail Archive

[dhcwg] Re: Renumbering DNS with stateless DHCPv6 - bug?

Tim Chown <tjc@ecs.soton.ac.uk> Tue, 18 November 2003 22:41 UTC

Received: from optimus.ietf.org ([132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA22416 for <dhcwg-archive@odin.ietf.org>; Tue, 18 Nov 2003 17:41:46 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AMEXI-0006Oq-0G for dhcwg-archive@odin.ietf.org; Tue, 18 Nov 2003 17:41:29 -0500
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id hAIMfRVG024594 for dhcwg-archive@odin.ietf.org; Tue, 18 Nov 2003 17:41:27 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AMEXC-0006Ob-PU for dhcwg-web-archive@optimus.ietf.org; Tue, 18 Nov 2003 17:41:22 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA22342 for <dhcwg-web-archive@ietf.org>; Tue, 18 Nov 2003 17:41:09 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1AMEXA-0001CP-00 for dhcwg-web-archive@ietf.org; Tue, 18 Nov 2003 17:41:20 -0500
Received: from [132.151.1.19] (helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 1AMEX9-0001CM-00 for dhcwg-web-archive@ietf.org; Tue, 18 Nov 2003 17:41:19 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AMEWu-0006N7-Is; Tue, 18 Nov 2003 17:41:04 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1AMEVw-0006Lz-JL for dhcwg@optimus.ietf.org; Tue, 18 Nov 2003 17:40:05 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA22293 for <dhcwg@ietf.org>; Tue, 18 Nov 2003 17:39:46 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1AMEVp-0001AU-00 for dhcwg@ietf.org; Tue, 18 Nov 2003 17:39:57 -0500
Received: from raven.ecs.soton.ac.uk ([152.78.70.1]) by ietf-mx with esmtp (Exim 4.12) id 1AMEVo-0001AL-00 for dhcwg@ietf.org; Tue, 18 Nov 2003 17:39:56 -0500
Received: from pigeon.ecs.soton.ac.uk (ns1 [152.78.68.1]) by raven.ecs.soton.ac.uk (8.9.3/8.9.3) with ESMTP id WAA17519; Tue, 18 Nov 2003 22:39:54 GMT
Received: from login.ecs.soton.ac.uk (IDENT:root@login [152.78.68.162]) by pigeon.ecs.soton.ac.uk (8.9.3/8.9.3) with ESMTP id WAA11364; Tue, 18 Nov 2003 22:39:53 GMT
Received: (from tjc@localhost) by login.ecs.soton.ac.uk (8.11.6/8.11.6) id hAIMdrk32028; Tue, 18 Nov 2003 22:39:53 GMT
Date: Tue, 18 Nov 2003 22:39:53 +0000
From: Tim Chown <tjc@ecs.soton.ac.uk>
To: dnsop@cafax.se, dhcwg@ietf.org
Message-ID: <20031118223953.GE31666@login.ecs.soton.ac.uk>
Mail-Followup-To: dnsop@cafax.se, dhcwg@ietf.org
References: <20031113191145.GS3473@login.ecs.soton.ac.uk> <200311181755.hAIHtCRE020479@rotala.raleigh.ibm.com>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="+g7M9IMkV8truYOl"
Content-Disposition: inline
In-Reply-To: <200311181755.hAIHtCRE020479@rotala.raleigh.ibm.com>
User-Agent: Mutt/1.4i
Subject: [dhcwg] Re: Renumbering DNS with stateless DHCPv6 - bug?
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Id: <dhcwg.ietf.org>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>

On Tue, Nov 18, 2003 at 12:55:12PM -0500, Thomas Narten wrote:
> 
> note that there are issues with unicast reconfigure. During the IESG
> review of the DHCv6 spec, concerns were raised about the
> appropriateness of _requiring_ that all nodes have an open port on
> which DHC messages could be sent. This is viewed as a security
> issue. E.g., for security reasons, some sites require that clients
> have no open ports on which they are listening for arbitrary packets
> from anyone. Consequently, the DHCPv6 spec was revised to make the use
> of this feature more of a negotiation between the client and
> server. See the RFC for details.

There may be other methods to give the hint for a (RFC2462) client to send 
a new (options) request to the (stateless) DHCP server.   This might involve
something in an RA, some new form of Reconfigure message (although I can see
this isn't favoured, it is specified for stateful servers to use), or some
other method.

> Personally, I think something along the lines of Bernie's suggestion
> seems the simplest. E.g., just define a lifetime that applies to all
> options that don't themselves have a lifetime.  Client can then
> recheck at appropriate intervals.

A timer is an improvement; at least then the timer could be tuned down a
bit like DNS TTL for a planned renumbering event, or for simpler events
like adding a new NTP server or changing the DNS search path.

Attached is a draft that I've just submitted describing the problem
statement.  Vijay and Stig are both working on proposals for solutions.
It would be great to get your input on those based on the IESG discussion
experience (for example on the security requirements).

The problem/gap is a bit broader then just site renumbering, so the draft
name is not ideal.

Tim

v2.23.0 | Report a Bug | By Email