IETF Logo Mail Archive

RE: [dhcwg] AD Review: draft-ietf-dhc-dhcpv6-opt-timeconfig-02.txt

Margaret.Wasserman@nokia.com Mon, 06 October 2003 17:54 UTC

Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA14680; Mon, 6 Oct 2003 13:54:25 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A6ZYX-0001p1-Nk; Mon, 06 Oct 2003 13:54:01 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A6ZXj-0001oM-7c for dhcwg@optimus.ietf.org; Mon, 06 Oct 2003 13:53:11 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA14649 for <dhcwg@ietf.org>; Mon, 6 Oct 2003 13:53:01 -0400 (EDT)
From: Margaret.Wasserman@nokia.com
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1A6ZXg-0001dA-00 for dhcwg@ietf.org; Mon, 06 Oct 2003 13:53:08 -0400
Received: from mgw-x1.nokia.com ([131.228.20.21]) by ietf-mx with esmtp (Exim 4.12) id 1A6ZXg-0001d7-00 for dhcwg@ietf.org; Mon, 06 Oct 2003 13:53:08 -0400
Received: from esvir05nok.ntc.nokia.com (esvir05nokt.ntc.nokia.com [172.21.143.37]) by mgw-x1.nokia.com (Switch-2.2.8/Switch-2.2.6) with ESMTP id h96Hr7614649 for <dhcwg@ietf.org>; Mon, 6 Oct 2003 20:53:07 +0300 (EET DST)
Received: from daebh001.NOE.Nokia.com (unverified) by esvir05nok.ntc.nokia.com (Content Technologies SMTPRS 4.2.5) with ESMTP id <T651f95746eac158f250bc@esvir05nok.ntc.nokia.com>; Mon, 6 Oct 2003 20:53:05 +0300
Received: from bsebe001.NOE.Nokia.com ([172.19.160.13]) by daebh001.NOE.Nokia.com with Microsoft SMTPSVC(5.0.2195.6139); Mon, 6 Oct 2003 10:53:03 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.0.6375.0
content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Subject: RE: [dhcwg] AD Review: draft-ietf-dhc-dhcpv6-opt-timeconfig-02.txt
Date: Mon, 06 Oct 2003 13:53:01 -0400
Message-ID: <E320A8529CF07E4C967ECC2F380B0CF902335059@bsebe001.americas.nokia.com>
Thread-Topic: [dhcwg] AD Review: draft-ietf-dhc-dhcpv6-opt-timeconfig-02.txt
Thread-Index: AcOML/sQoS9X+1/TSOmTruBjjfd6aAAAFzQw
To: vijayak@india.hp.com, mrw@windriver.com, narten@us.ibm.com, rdroms@cisco.com
Cc: dhcwg@ietf.org
X-OriginalArrivalTime: 06 Oct 2003 17:53:03.0166 (UTC) FILETIME=[B05D3DE0:01C38C32]
Content-Transfer-Encoding: quoted-printable
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Id: <dhcwg.ietf.org>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: quoted-printable

Hi Vijay,

Thanks for your response.

> > General question on this document:  We recently deprecated
> > the option code allocation for the IPv4 version of this 
> > option.  Why do we think that there is a greater need for 
> > this in IPv4 than in IPv6?  Has anyone implemented these options?  
>  
> NTP version 4.0 available in www.ntp.org supports IPv6. Most of the
> vendors provide this version and support NTP on IPv6. So, it is really
> needed.

Your response answers my concern about whether or not NTP is available
for IPv6, but it doesn't answer my larger concern.

We just deprecated the corresponding configuration options for IPv4,
because they weren't implemented.  Do we have some reason to believe
that people will implement this option for DHCPv6 when no one implemented
the same option for IPv4?  If so, why? 

> > It is also my understand that we haven't (yet) specified how
> > NTP would run over IPv6, so this option may be premature.
> 
> Since, there is actually no protocol changes are needed in 
> existing RFC for NTP, there is no specification for NTP on IPv6. Its 
> just like another application migration to IPv6. But, IPv6 version of 
> NTP are available in various platforms. I don't think this option is 
> a premature one.

Actually, there are several IPv4 dependencies in the NTP specification,
as document in:  

http://www.ietf.org/internet-drafts/draft-ietf-v6ops-ipv4survey-apps-02.txt

The folks who have implemented NTP for IPv6 must have worked around
those dependencies, but I don't believe that their changes have been
document in an IETF specification (yet).

> > What is the reason for specifying a timezone format in this
> > document, instead of relying completely on another establish 
> > standard for timezone representation? 
> 
> This flexibility is provided to help the vendors to use some other
> vendor specific database for timezone information. This is needed, if
> they feel that their databases can convey more information than POSIX
> time string.
[...]
> > What is a "timezone database"?  Is this a standard concept,
> > or something you are assuming will be specific to each host?  
> > If the latter, why do we need this flexibility?
> 
> Its not a standard concept. Its something specific to the OS. For the
> last question, you refer the prev answer.

How do you maintain interoperability between the DHCP server and
clients from multiple vendors, if the server may return the timezone
in an OS-proprietary format?  You mentioned earlier that this timezone
information is set on a per-subnet basis, with the assumption that all
clients on the same subnet are in the same timezone.  Do you also 
assume that all clients on the same subnet are running the same OS?

> > > To avoid attacks through these options, the DHCP client
> > > SHOULD use authenticated DHCP (see section "Authentication of DHCP 
> > > messages" in the DHCPv6 specification [1]).
> > 
> > Why only a "SHOULD"?  Given the critical nature of time
> > information to some security protocols, I would prefer a 
> > statement that this option MUST only be used when the DHCP 
> > messages are authenticated.  Is there a reason not to say that?
> 
> As such authentication is not mandatory in the DHCPv6 
> specification (RFC 3315) except for reconfiguration. That's the 
> reason why "MUST" is not used here.

True, although we could require that DHCP security be implemented
and used whenever certain sensitive options are in use...  I'm not
sure what sort of policy has been used for deciding this in the 
past, though.

> > > [2]  D. Mills.  Simple Network Time Protocol (SNTP) 
> > > Version 4 for IPv4, IPv6 and OSI.  Request for Comments
> > > (Informational) 2030, Internet Engineering Task Force, 
> > > October 1996.
> > 
> > This should be a reference to NTP, not to SNTP.
> 
> Basically, the NTP servers I am referring are SNTP servers. I 
> believe, I could change the "NTP server option" to "SNTP server 
> option".

If that is more accurate, then I think it would make sense to 
make that change. 
 

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

v2.23.0 | Report a Bug | By Email