IETF Logo Mail Archive

Re: [dhcwg] [radext] [homenet] PPP, DHCPv6 and Prefix Delegation

Michael Richardson <mcr+ietf@sandelman.ca> Wed, 20 November 2013 14:08 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB8771ADFAC; Wed, 20 Nov 2013 06:08:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.942
X-Spam-Level:
X-Spam-Status: No, score=-0.942 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FRT_ADULT2=1.474, RP_MATCHES_RCVD=-0.525, SPF_PASS=-0.001, T_FRT_ADULT2=0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jOanfH6YKF-O; Wed, 20 Nov 2013 06:08:46 -0800 (PST)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3::184]) by ietfa.amsl.com (Postfix) with ESMTP id 979141ADFA3; Wed, 20 Nov 2013 06:08:46 -0800 (PST)
Received: from sandelman.ca (desk.marajade.sandelman.ca [209.87.252.247]) by tuna.sandelman.ca (Postfix) with ESMTP id 283982036E; Wed, 20 Nov 2013 10:21:10 -0500 (EST)
Received: by sandelman.ca (Postfix, from userid 179) id D99A6A9042; Wed, 20 Nov 2013 09:08:36 -0500 (EST)
Received: from sandelman.ca (localhost [127.0.0.1]) by sandelman.ca (Postfix) with ESMTP id C3F22B8EBE; Wed, 20 Nov 2013 09:08:36 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Athanasios Douitsis <aduitsis@gmail.com>
In-Reply-To: <CABT9mj-eZ2Xz24YXT7dBvY9jLwyZyuCCFzNoD4YqG7Vz37YuSw@mail.gmail.com>
References: <11836.1384276281@sandelman.ca> <CAKOT5Ko2OO=U_0jADb6R88JiFh59BLDSe4P0haqgaBr2M7HobA@mail.gmail.com> <3673.1384528283@sandelman.ca> <CAKOT5Kpp0dCqbZyFzwtjTh9UJ5hGHUMN0ZGQHUL35+mkO9VRrA@mail.gmail.com> <CABT9mj-rw5bsVa7UAiraxu-U2t1QGqPronYj3Fx6ZxoPWo0Zow@mail.gmail.com> <CABT9mj-sQbfiNyfUZDxVmCg7SYWaJXcp+pNbyUSj64iFSA5fuA@mail.gmail.com> <70913413-2B68-4703-84E3-F7CC47E1A0E2@cisco.com> <CABT9mj9Jg-5pM4JKKOOgqszarFj6eDHji_rHZkTw3Eknddaqdw@mail.gmail.com> <489D13FBFA9B3E41812EA89F188F018E1AD9CDF7@xmb-rcd-x04.cisco.com> <B10FDF95-9612-4DD7-8C3E-9361CCBCA4E3@gmail.com> <CABT9mj-p3tjamspMo-F5vJRSCAWEVkvBEogFjAFrr4jL3p9vpw@mail.gmail.com> <489D13FBFA9B3E41812EA89F188F018E1AD9D36C@xmb-rcd-x04.cisco.com> <CABT9mj8Gt==+m-JL2foTvZnU49EhSODN0595cb-P1jn9YQgE6Q@mail.gmail.com> <57C3345230A4F94C9B2F5CFA05D7F2BD1D4ED850@xmb-rcd-x01.cisco.com> <659AA1B8-BA47-420F-A452-24DB776B3061@gmail.com> <57C3345230A4F94C9B2F5CFA05D7F2BD1D4EDB99@xmb-rcd-x01.cisco.com> <CABT9mj-eZ2Xz24YXT7dBvY 9jLwyZyu CCFzNoD4YqG7Vz37YuSw@mail.gmail.com>
X-Mailer: MH-E 8.2; nmh 1.3-dev; GNU Emacs 23.4.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha1"; protocol="application/pgp-signature"
Date: Wed, 20 Nov 2013 09:08:36 -0500
Message-ID: <14253.1384956516@sandelman.ca>
Sender: mcr@sandelman.ca
Cc: "radext@ietf.org" <radext@ietf.org>, "Bernie Volz (volz)" <volz@cisco.com>, "dhcwg@ietf.org WG" <dhcwg@ietf.org>, "homenet@ietf.org" <homenet@ietf.org>
Subject: Re: [dhcwg] [radext] [homenet] PPP, DHCPv6 and Prefix Delegation
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Nov 2013 14:08:49 -0000

Athanasios Douitsis <aduitsis@gmail.com> wrote:
    > Indeed in a scenario where all the requesting routers connecting to a
    > delegating router (BNG) would have PD_EXCLUDE capability, using the
    > Framed-IPv6-Prefix to infer what to put into the OPTION_PD_EXCLUDE field is
    > sufficient. 

    > But if there is a mix of PD_EXCLUDE-capable and not capable requesting clients,
    > the situation becomes more complex. The fundamental problem is that Prefix
    > Delegation usually happens after the RADIUS exchange, so the RADIUS server
    > cannot really know whether the customer is exclude-capable or not. 

Note that CPEs ought to be smart enough to exclude the subnet that their WAN
link is in, but it's certainly the case that many are not yet that smart.
(the dnsmasq PD implementation was missing related smarts at first)

    > If, for example, the client is not exclude-capable, then having the RADIUS
    > return a Framed-IPv6-Prefix that is part of the  (greater)
    > Delegated-IPv6-Prefix is problematic for obvious reasons. In fact, I, for one,
    > cannot wrap my head around a way to cover both cases (exclude-capable and
    > non-exclude-capable) using only the two existing RADIUS attributes *and* at the
    > same time maintain backwards compatibility with old customers.

If the CPE is not EXCLUDE capable, and not smart enough to avoid the WAN
link, then it doesn't matter what the set of attributes returned is, does it?
Assuming simple minded prefix assignment by CPEs, if they start at subnet
"1", then using subnet "0" probably works.  But, using subnet "ff" for the
WAN link is perhaps simpler.


--
Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works

v2.23.0 | Report a Bug | By Email