IETF Logo Mail Archive

Re: usage of rebind for PD (Re: [dhcwg] WG last call on draft-ietf-dhc-dhcpv6-opt-prefix-delegation-02.txt)

Ole Troan <ot@cisco.com> Sat, 08 March 2003 23:21 UTC

Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA04031; Sat, 8 Mar 2003 18:21:32 -0500 (EST)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h28NXSO14253; Sat, 8 Mar 2003 18:33:28 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h28NRDO14081 for <dhcwg@optimus.ietf.org>; Sat, 8 Mar 2003 18:27:13 -0500
Received: from sj-core-2.cisco.com (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA02991 for <dhcwg@ietf.org>; Sat, 8 Mar 2003 18:14:30 -0500 (EST)
Received: from cisco.com (mrwint.cisco.com [64.103.71.48]) by sj-core-2.cisco.com (8.12.6/8.12.6) with ESMTP id h28NGVEY007944; Sat, 8 Mar 2003 15:16:32 -0800 (PST)
Received: (from otroan@localhost) by cisco.com (8.8.8/2.6/Cisco List Logging/8.8.8) id XAA29884; Sat, 8 Mar 2003 23:16:31 GMT
X-Authentication-Warning: mrwint.cisco.com: otroan set sender to ot@cisco.com using -f
To: JINMEI Tatuya / 神明達哉 <jinmei@isl.rdc.toshiba.co.jp>
Cc: Ralph Droms <rdroms@cisco.com>, dhcwg@ietf.org, ipng@sunroof.eng.sun.com
Subject: Re: usage of rebind for PD (Re: [dhcwg] WG last call on draft-ietf-dhc-dhcpv6-opt-prefix-delegation-02.txt)
From: Ole Troan <ot@cisco.com>
Date: Sat, 08 Mar 2003 23:16:31 +0000
In-Reply-To: <y7vllztrmpu.wl@ocean.jinmei.org> (JINMEI Tatuya / 神明達哉's message of "Thu, 06 Mar 2003 16:14:05 +0900")
Message-ID: <7t5el5h5u0g.fsf@mrwint.cisco.com>
User-Agent: Gnus/5.090011 (Oort Gnus v0.11) Emacs/21.2.95 (sparc-sun-solaris2.8)
References: <4.3.2.7.2.20030220132513.00ba9a40@funnel.cisco.com> <y7vn0kjqxwf.wl@ocean.jinmei.org> <7t5r89tut8y.fsf@mrwint.cisco.com> <y7vllztrmpu.wl@ocean.jinmei.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Id: <dhcwg.ietf.org>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>

Jinmei-san,

>>> 2. Section 11.1 now specifies the requesting router to use
>>> Rebind/Reply exchanges to verify an existing binding (instead of
>>> Renew/Reply exchanges).  According to the very recent
>>> clarifications on the base DHCPv6 spec, however, I'm not sure if
>>> Rebind is appropriate here; the server should drop the Rebind
>>> message unless it has an explicit knowledge about the validity or
>>> invalidity of the prefix, which should not be the case (e.g.) when
>>> the upstream link flaps.
>
>> Rebind now behaves just like Confirm. if by link flap you mean change
>> of link to another delegating router, the delegating router can reply
>> to a Rebind even without a binding if it knows through explicit
>> configuration that the prefixes in the IA_PD is not valid for the link.
>
> Are you referring to the following part of
> draft-ietf-dhc-dhcpv6-interop-00.txt?
>
> 1. Response of servers to Renew and Rebind messages, sections 18.2.3 and
>    18.2.4
>
>    Resolution: Leave the sentence in section 18.2.3 unchanged.  Replace
>       the sentence in section 18.2.4 with the following text:
>
>          If the server cannot find a client entry for the IA and the
>          server determines that the addresses in the IA are not
>          appropriate for the link to which the client's interface is
>          attached according to the server's explicit configuration
>          information, the server MAY send a Reply message to the client
>          containing the client's IA, with the lifetimes for the
>          addresses in the IA set to zero.  This Reply constitutes an
>          explicit notification to the client that the addresses in the
>          IA are no longer valid.  In this situation, if the server does
>          not send a Reply message it silently discards the Rebind
>          message.
>
> The problem here is that this is a MAY requirement and that "explicit
> configuration information" is ambiguous.
>
> Since this is a MAY, the delegating router (i.e. server) MAY NOT send
> a Reply message, which will cause a bad effect (that the invalid
> prefix is going to be used).  For the case of address assignment, this
> should be a minor issue, because this situation only happens when none
> of the events to issue a Confirm happen but the upstream router has
> somehow been swapped.

Rebind is only done for 10 seconds (using Confirms timers), then the
client goes back to Solicit state.

I don't think we can mandate that a delegating router will know in all
cases that a prefix is valid for a link or not. I think we should keep
the same text and reasoning as in the base spec.

could any of the DHCPv6 base spec guys answer why this is a MAY, as it
does delay detection of movement.

> For the PD case, however, we don't have Confirm/Reply exchanges.  So
> the requirement level should be stronger enough.

we do. just that we have to use a Rebind/Reply exchange using Confirms
timers since we want a binding confirmation, rather than just movement
detection.

> The same argument should apply to the ambiguous of the wording
> "explicit configuration information".  In my understanding, the author
> intentionally uses an ambiguous term because this is a very minor case
> and there can be a (unidentified) trick to build the explicit
> information, e.g., a background communication between a primary server
> and a secondary one.

I don't think "explicit configuration" is ambiguous as such. how a
server is configured to know which prefixes are appropriate for a link
is implementation dependent.

> Again, for the PD case, this is more likely to happen, so we need to
> be specific enough.

why do you say that? isn't it more likely that a host changes links?
what cases do you have in mind?

> Thus, I would suggest to add the following text (or something like
> this) to the delegating router behavior:
>
>          If the delegating router cannot find a requesting router
>          entry for the IA_PD and the delegating router determines that
>          the prefixes in the IA_PD are not appropriate for the
>          requesting router according to the delegating router's
>          explicit configuration information, the delegating router
>          SHOULD send a Reply message to the requesting router
>          containing the requesting router's IA_PD, with the lifetimes
>          for the prefixes in the IA_PD set to zero.  This Reply
>          constitutes an explicit notification to the requesting router
>          that the prefixes in the IA_PD are no longer valid.  The
>          explicit configuration information of the delegating router
>          contains the fact that the proposed prefixes from the
>          requesting router is not covered by a prefix for the
>          organization of the delegating router.
>
> In summary, I propose to change MAY to SHOULD and to add a concrete
> example of "explicit configuration information."
>
> It would also be helpful to describe how the requesting should react
> to this event.

requesting router should go to Solicit state. I think this will be
made clearer in modified base spec/new PD revision where we'll use
NotOnLink rather than lifetimes = 0.

cheers,
Ole
_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg

v2.23.0 | Report a Bug | By Email