IETF Logo Mail Archive

RE: [dhcwg] dhc wg last call on agentopt-delegate and srsn-optiondrafts

"Bernie Volz \(volz\)" <volz@cisco.com> Sat, 10 February 2007 00:28 UTC

Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HFg6n-0000IJ-W4; Fri, 09 Feb 2007 19:28:53 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HFg6m-0000AH-NA for dhcwg@ietf.org; Fri, 09 Feb 2007 19:28:52 -0500
Received: from rtp-iport-2.cisco.com ([64.102.122.149]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HFg6l-00089z-AY for dhcwg@ietf.org; Fri, 09 Feb 2007 19:28:52 -0500
Received: from rtp-dkim-1.cisco.com ([64.102.121.158]) by rtp-iport-2.cisco.com with ESMTP; 09 Feb 2007 19:28:51 -0500
X-IronPort-AV: i="4.13,308,1167627600"; d="scan'208"; a="113527593:sNHT59225252"
Received: from rtp-core-1.cisco.com (rtp-core-1.cisco.com [64.102.124.12]) by rtp-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id l1A0SpQq009041; Fri, 9 Feb 2007 19:28:51 -0500
Received: from xbh-rtp-211.amer.cisco.com (xbh-rtp-211.cisco.com [64.102.31.102]) by rtp-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id l1A0SoVV026583; Fri, 9 Feb 2007 19:28:51 -0500 (EST)
Received: from xmb-rtp-20a.amer.cisco.com ([64.102.31.15]) by xbh-rtp-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Fri, 9 Feb 2007 19:28:50 -0500
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
Subject: RE: [dhcwg] dhc wg last call on agentopt-delegate and srsn-optiondrafts
Date: Fri, 09 Feb 2007 19:28:47 -0500
Message-ID: <8E296595B6471A4689555D5D725EBB210333ECF1@xmb-rtp-20a.amer.cisco.com>
In-Reply-To: <45CB0D91.2060605@uninett.no>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [dhcwg] dhc wg last call on agentopt-delegate and srsn-optiondrafts
thread-index: AcdLdz7ztjCWQUvNSAOvK02henem3ABMMsvg
From: "Bernie Volz (volz)" <volz@cisco.com>
To: Stig Venaas <stig.venaas@uninett.no>, dhcwg <dhcwg@ietf.org>
X-OriginalArrivalTime: 10 Feb 2007 00:28:50.0773 (UTC) FILETIME=[6FD50050:01C74CAA]
DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=4065; t=1171067331; x=1171931331; c=relaxed/simple; s=rtpdkim1001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=volz@cisco.com; z=From:=20=22Bernie=20Volz=20\(volz\)=22=20<volz@cisco.com> |Subject:=20RE=3A=20[dhcwg]=20dhc=20wg=20last=20call=20on=20agentopt-dele gate=20and=20srsn-optiondrafts |Sender:=20 |To:=20=22Stig=20Venaas=22=20<stig.venaas@uninett.no>, =20=22dhcwg=22=20<d hcwg@ietf.org>; bh=qHMKrNFfBEKkPlh1kgn3cSZhoIDlWcrssUD4Fi1cQ74=; b=NllM3alL6NGa1GkQHHD2m38HizCh/1gDyKsSNKlqCgIdo0aGq1cCHnlca7mh2UjkcPnVVrdQ tj6tqwLYTJz2Q8D+uIiZ5JLAxTnYY/mAufsWSAjapB23upncx5+nU8hd;
Authentication-Results: rtp-dkim-1; header.From=volz@cisco.com; dkim=pass (s ig from cisco.com/rtpdkim1001 verified; );
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 32b73d73e8047ed17386f9799119ce43
Cc:
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: dhcwg.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Errors-To: dhcwg-bounces@ietf.org

I'd also suggest that members read
http://www.ietf.org/internet-drafts/draft-stenberg-pd-route-maintenance-
00.txt.

Perhaps agentopt-delegate combined with some of the concepts in this
other draft (such as Bidirectional Forwarding Detection (BFD)) can be
used to provide additional information/feedback loops to address some of
the shortcomings. In particular, if a client releases or declines a
delegated prefix or stateful address but the router fails to receive the
Reply with the updated RAAN information, the router would find out via
BFD that the client is no longer using it and could stop announcing the
route (and/or perform a leasequery to assure it has updated
information).

I too do not feel that having the DHCP server handle the route injection
is feasible; it comes with its own set of issues since the server has no
idea whether the router(s) are up, the full paths (hops) to the routers,
the metrics with which to advertise the routes, etc.

Snooping has its own set of issues and complexities. Even more so with
DHCP authentication as you probably don't want to require the relay also
have the keys. Snooping is also subject to the issues that the SRSN
option attempted to solve, so if snooping were the desired solution, we
still need the SRSN option.

- Bernie

-----Original Message-----
From: Stig Venaas [mailto:stig.venaas@uninett.no] 
Sent: Thursday, February 08, 2007 6:46 AM
To: dhcwg
Subject: Re: [dhcwg] dhc wg last call on agentopt-delegate and
srsn-optiondrafts

As I wrote below, these drafts did not pass wglc. Most members of the
wg did not respond to the last call. Some of those who responded had
technical objections to agentopt-delegate.

We now need to find out what to do next. Do people believe that we
don't need this, do you believe that snooping is a fine alternative?
Or do you believe it can be done in some other way?

The main issue is how to inject the necessary routes into the routing
system. From a routing point of view it would be reasonable to have the
route announced by the router that requested and was assigned the
prefix. However this router would often be a customer router where the
ISP router would not accept such route advertisements unless it knows
they are legitimate. If the ISP router does not know what prefixes the
customer has been assigned, some form of authentication would be needed.
I don't know if that exists and it sounds complicated. agentopt-delegate
would allow the ISP router to know what prefixes to allow routes for, or
to announce routes for those itself. Another theoretical possibility 
would be for the DHCP server to somehow inject the route itself on
behalf of the customer. I believe this is generally not possible, and
does not sounds like a particularly nice solution.

In short, what I would like to ask is, what is the alternative solution,
or don't we need one? Or can the agentopt-delegate solution be improved
in some way? I would like to get some discussion on this so that we can
determine where to go next with these drafts.

Stig

Stig Venaas wrote:
> Stig Venaas wrote:
>> This message announces a wg last call on two drafts. They are
>>
>> DHCPv6 Relay Agent Assignment Notification (RAAN) Option
>> <draft-ietf-dhc-dhcpv6-agentopt-delegate-02.txt>
>>
>> and
>>
>> DHCPv6 Server Reply Sequence Number Option
>> <draft-ietf-dhc-dhcpv6-srsn-option-00.txt>.
>>
>> The last call will conclude at 1700EST on Mon, 2007-01-15.
> 
> These drafts did not pass wg last call. It appears we need to
> further investigate whether there are better approaches, or
> maybe even whether snooping is sufficient. In particular,
> draft-stenberg-pd-route-maintenance may help us find or
> eliminate other approaches. Apart from route injection, there
> may be other reasons why the relay agent needs this information,
> e.g. access control.
> 
> Stig

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

v2.23.0 | Report a Bug | By Email