IETF Logo Mail Archive

Re: [dhcwg] DUID+IAID

Ted Lemon <Ted.Lemon@nominum.com> Fri, 30 March 2012 06:23 UTC

Return-Path: <Ted.Lemon@nominum.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 445E121E802B for <dhcwg@ietfa.amsl.com>; Thu, 29 Mar 2012 23:23:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.192
X-Spam-Level:
X-Spam-Status: No, score=-106.192 tagged_above=-999 required=5 tests=[AWL=-0.193, BAYES_00=-2.599, J_CHICKENPOX_44=0.6, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gppFbRbBaqDS for <dhcwg@ietfa.amsl.com>; Thu, 29 Mar 2012 23:23:03 -0700 (PDT)
Received: from exprod7og112.obsmtp.com (exprod7og112.obsmtp.com [64.18.2.177]) by ietfa.amsl.com (Postfix) with ESMTP id 32F9421E8095 for <dhcwg@ietf.org>; Thu, 29 Mar 2012 23:23:03 -0700 (PDT)
Received: from shell-too.nominum.com ([64.89.228.229]) (using TLSv1) by exprod7ob112.postini.com ([64.18.6.12]) with SMTP ID DSNKT3VRRhSaj73ry6V6IVmAX1ygHuDdLsNt@postini.com; Thu, 29 Mar 2012 23:23:03 PDT
Received: from archivist.nominum.com (archivist.nominum.com [64.89.228.108]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.nominum.com", Issuer "Go Daddy Secure Certification Authority" (verified OK)) by shell-too.nominum.com (Postfix) with ESMTP id 49BBF1B8225 for <dhcwg@ietf.org>; Thu, 29 Mar 2012 23:23:02 -0700 (PDT)
Received: from webmail.nominum.com (cas-01.win.nominum.com [64.89.228.131]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (Client CN "mail.nominum.com", Issuer "Go Daddy Secure Certification Authority" (verified OK)) by archivist.nominum.com (Postfix) with ESMTPS id 3DEF7190064; Thu, 29 Mar 2012 23:23:02 -0700 (PDT) (envelope-from Ted.Lemon@nominum.com)
Received: from MBX-01.WIN.NOMINUM.COM ([64.89.228.133]) by CAS-01.WIN.NOMINUM.COM ([64.89.228.131]) with mapi id 14.02.0247.003; Thu, 29 Mar 2012 23:22:56 -0700
From: Ted Lemon <Ted.Lemon@nominum.com>
To: "A. Gregory Rabil" <greg.rabil@jagornet.com>, "dhcwg@ietf.org" <dhcwg@ietf.org>
Thread-Topic: [dhcwg] DUID+IAID
Thread-Index: AQHNDbbP4FgtkXLiwESgwgUDJGkpD5aBV/GogACefoD//9jW1oAAsEmA///d68w=
Date: Fri, 30 Mar 2012 06:22:55 +0000
Message-ID: <8D23D4052ABE7A4490E77B1A012B6307472D46D5@mbx-01.win.nominum.com>
References: <CAAed6vtfuig6Y1Zqqxd=rQc7MarO7vfkYVDG0HbzeaQrx7GcYw@mail.gmail.com> <8D23D4052ABE7A4490E77B1A012B6307472D4438@mbx-01.win.nominum.com> <CAAed6vsga7nimW-uA00nStj-sEJ2g9kUbT1=eR1qgxBesczOow@mail.gmail.com> <8D23D4052ABE7A4490E77B1A012B6307472D462B@mbx-01.win.nominum.com>, <CAAed6vsuc5AoJ-pmdu-CYLzJ4jEtSUkxYy1aLTJbkoRiEjUQ9A@mail.gmail.com>
In-Reply-To: <CAAed6vsuc5AoJ-pmdu-CYLzJ4jEtSUkxYy1aLTJbkoRiEjUQ9A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.1.10]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: Re: [dhcwg] DUID+IAID
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Mar 2012 06:23:04 -0000

> I am not sure I understand that.  Why would the proposed hardware-addr-option
> not identify the interface?

Because it is not an identifier.   It is a hint.   If you call it an identifier, someone will start using it as one.

> My understanding of the proposal is that the MAC address is *added* to the request
> as an option, so we would have both the DUID and the MAC, thus allowing us to
> identify both the device and the interface, which is good IMO.

In principle there's nothing incorrect about this statement, but in practice there is no protocol need to identify the interface.   So if you call it an identifier, people are going to confuse it with the DHCPv4 way of identifying *clients*, and not understand that you mean it to be identifying *interfaces*.   So it's better to not put it that way.

> As I read that snippet from RFC 3315, such a device may send multiple
> IAs in one request where, for example, one IA_NA is for upstream interface
> A, and a second IA_NA is for upstream interface B.  If this is possible, then
> I was simply suggesting that the proposed hardware-addr-option be an
> IA-level option rather than a message-level option, so as to identify each interface.

This is a use case that was advocated at the time RFC3315 was written, but I didn't understand at the time under what circumstances this would happen, and as the protocol has evolved, I think it's pretty clear that it isn't a plausible use case.   If you want to configure an interface, you send a DHCP packet on that interface, not on some other interface.

It's possible that you might want to use DHCP to allocate an address for a tunnel endpoint, but in that case there is no physical interface, and the MAC address that the relay agent will add to the packet will be the address of the physical interface, not the tunnel, which has no MAC address.   So this is another reason not to call this an "interface identifier."   It's the MAC address of the interface out which the DHCP packet was sent.

v2.23.0 | Report a Bug | By Email