Re: [dhcwg] 3315 clarifications
Ralph Droms <rdroms@cisco.com> Mon, 19 March 2007 08:05 UTC
Return-path: <dhcwg-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HTCs9-0007dA-G8; Mon, 19 Mar 2007 04:05:41 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HTCs8-0007ct-6W for dhcwg@ietf.org; Mon, 19 Mar 2007 04:05:40 -0400
Received: from rtp-iport-2.cisco.com ([64.102.122.149]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1HTCs4-0005wT-Or for dhcwg@ietf.org; Mon, 19 Mar 2007 04:05:40 -0400
Received: from rtp-dkim-1.cisco.com ([64.102.121.158]) by rtp-iport-2.cisco.com with ESMTP; 19 Mar 2007 04:05:36 -0400
Received: from rtp-core-1.cisco.com (rtp-core-1.cisco.com [64.102.124.12]) by rtp-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id l2J85aVc023734; Mon, 19 Mar 2007 04:05:36 -0400
Received: from xbh-rtp-211.amer.cisco.com (xbh-rtp-211.cisco.com [64.102.31.102]) by rtp-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id l2J85ZGd012248; Mon, 19 Mar 2007 08:05:35 GMT
Received: from xmb-rtp-211.amer.cisco.com ([64.102.31.118]) by xbh-rtp-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 19 Mar 2007 04:05:35 -0400
Received: from 10.86.242.109 ([10.86.242.109]) by xmb-rtp-211.amer.cisco.com ([64.102.31.118]) via Exchange Front-End Server email.cisco.com ([64.102.31.38]) with Microsoft Exchange Server HTTP-DAV ; Mon, 19 Mar 2007 08:05:35 +0000
User-Agent: Microsoft-Entourage/11.3.3.061214
Date: Sun, 18 Mar 2007 12:28:49 -0400
Subject: Re: [dhcwg] 3315 clarifications
From: Ralph Droms <rdroms@cisco.com>
To: shane_kerr@isc.org, Bud Millwood <budm@weird-solutions.com>
Message-ID: <C222E101.3DD79%rdroms@cisco.com>
Thread-Topic: [dhcwg] 3315 clarifications
Thread-Index: AcdpeoHrwF2SmtVtEdu0YgARJOT6eg==
In-Reply-To: <45F58AAD.2080503@isc.org>
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
X-OriginalArrivalTime: 19 Mar 2007 08:05:35.0735 (UTC) FILETIME=[5FBF1870:01C769FD]
DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=4165; t=1174291536; x=1175155536; c=relaxed/simple; s=rtpdkim1001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=rdroms@cisco.com; z=From:=20Ralph=20Droms=20<rdroms@cisco.com> |Subject:=20Re=3A=20[dhcwg]=203315=20clarifications |Sender:=20 |To:=20<shane_kerr@isc.org>, =20Bud=20Millwood=20<budm@weird-solutions.com >; bh=mub97wiCSE/u3XQQ3wi9q7FOU0ifEWpWupAnVs1KsNU=; b=J8zg15+6VRjDcivxjkZN+RmVvMXgrgpyx1tPDDwHOmrLqsrb48QPeHsYRsJWLiVgoM//h+G1 jGBVZ3d8pKhm3aFp4sif6es3qICp+1gj4NSBJi7TvkWDgdgxbap0r7kO;
Authentication-Results: rtp-dkim-1; header.From=rdroms@cisco.com; dkim=pass ( sig from cisco.com/rtpdkim1001 verified; );
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 6e922792024732fb1bb6f346e63517e4
Cc: dhcwg@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: dhcwg.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Errors-To: dhcwg-bounces@ietf.org
On 3/12/07 1:15 PM, "Shane Kerr" <Shane_Kerr@isc.org> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Bud Millwood wrote: >> On Sunday 11 March 2007 16:57, Bernie Volz (volz) wrote: >>> Bud: >>> >>> 1. In our server chose to allow no IAs for SOLICIT/REQUEST -- there was >>> some discussion a while back about this topic (RFC 3315 vs RFC 3736 and >>> the meaning of the RA M & O bits). > > As a data point, the ISC DHCPv6 server (not yet release) happily replies to > Solicit/Request messages without addresses. > >> Hmm. If you allow no IAs for solicit/request, then it's kinda like stateless, >> right? > > Kinda, but not necessarily. The server might provide no information at all in > the case of Solicit/Request without IAs, and this is perfectly okay. Not so > good > for Information-Request... What do you mean by "no information"? No response at all or an Advertise/Reply (resp.) with no options? > Sending Solicit/Request without IAs is probably something clients should not > do, > and something server should probably handle gracefully. :) If I'm understanding Bernie and Shane correctly, a Solicit/Request with no IAs might not be particularly useful - or perhaps redundant with Information-Request - but there's no critical reason to include an outright ban on Solicit/Request with no IAs. >>> 2. I would say NO to IAs in Replys for Information-Request. >>> We presently >>> have no address specific options (when working on early drafts of what >>> is now RFC 4704, I had proposed allowing the FQDN option in IAs and >>> IAADDR options to restrict the applicability but that was deemed more >>> complicated than it was worth). >> >> Wow... My reading of 3315 gave me the impression that most any DHCPv6 option >> could appear anywhere in the options heirarchy, and the client should >> understand that a delivered option was only valid in the context in which it >> was delivered. In fact, my server presently allows you to set options in >> IAADDRS, and I was seriously wondering if DHCPv6 clients would really >> understand that a DNS server option (for example), delivered in an IAADDR, >> was really only to be used for that address. It seemed to be asking *a lot* >> from a DHCP client. What does it mean for a DNS server option only with a given address? > Well, there is the handy Appendix A: Appearance of Options in Message Types, > which says which are allowed or not. (Although others on this list have > mentioned that this appendix is not 100% correct...) > >>> And, the general rule is that IA_* >>> options in server replies are restricted to those that were in the >>> client's message (except for the Reconfigure message -- which isn't a >>> server reply anyway). >> >> It seems that I should view my server from a much more client-driven >> approach. >> An administrative policy defining a set of options should first give those >> options that are asked for in IAs, then those asked for in the top-level >> options, then, anything remaining in the policy goes in the top-level >> options. Does this seem like a coherent strategy? > > I'm not 100% sure what you mean. But we work basically how I think you are > suggesting. :) > > There are options not associated with any specific IA, which are added to the > Reply (or Advertise) packets from the server. Each IA added as an option to > the > Reply/Advertise has its own options. (We don't currently put options in > IAADDR, > but I suppose that could happen eventually.) > > These are all determined by both the ORO from the client as well as any > configuration on the server side and some requirements from the RFCs. > > - -- > Shane > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFF9YqtMsfZxBO4kbQRAs99AKCdAPqqet4gGZrXhns5USz59i1fUwCfXJFq > VAXoLSqxchuFzQPpa0OeBDI= > =SJAZ > -----END PGP SIGNATURE----- > > _______________________________________________ > dhcwg mailing list > dhcwg@ietf.org > https://www1.ietf.org/mailman/listinfo/dhcwg _______________________________________________ dhcwg mailing list dhcwg@ietf.org https://www1.ietf.org/mailman/listinfo/dhcwg
- [dhcwg] 3315 clarifications Bud Millwood
- RE: [dhcwg] 3315 clarifications Bernie Volz (volz)
- Re: [dhcwg] 3315 clarifications Bud Millwood
- Re: [dhcwg] 3315 clarifications David W. Hankins
- RE: [dhcwg] 3315 clarifications Bernie Volz (volz)
- Re: [dhcwg] 3315 clarifications Shane Kerr
- Re: [dhcwg] 3315 clarifications Bud Millwood
- RE: [dhcwg] 3315 clarifications Bernie Volz (volz)
- Re: [dhcwg] 3315 clarifications Ralph Droms
- RE: [dhcwg] 3315 clarifications Bernie Volz (volz)
- Re: [dhcwg] 3315 clarifications David W. Hankins
- Re: [dhcwg] 3315 clarifications Shane Kerr