IETF Logo Mail Archive

Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151)

神明達哉 <jinmei@wide.ad.jp> Tue, 10 November 2015 19:45 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 360C61B2DA0 for <dhcwg@ietfa.amsl.com>; Tue, 10 Nov 2015 11:45:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.978
X-Spam-Level:
X-Spam-Status: No, score=-0.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uIbuAStQ4x8N for <dhcwg@ietfa.amsl.com>; Tue, 10 Nov 2015 11:45:57 -0800 (PST)
Received: from mail-io0-x22f.google.com (mail-io0-x22f.google.com [IPv6:2607:f8b0:4001:c06::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B26221B2D9D for <dhcwg@ietf.org>; Tue, 10 Nov 2015 11:45:57 -0800 (PST)
Received: by iody8 with SMTP id y8so12463791iod.1 for <dhcwg@ietf.org>; Tue, 10 Nov 2015 11:45:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type:content-transfer-encoding; bh=GJYKTvw5YDHg/jJb2ThzoEV8pq/caIqxR59DIyUJ8Nk=; b=Lu64UWPzgh8FmOXFb+1mY5NdBwpvoM8XnYvB1QjXAgxXBap9vSX8wQ0PghvzSW3Knc nKfLuF7+uxTT2xq9jRk51B5fKdBrKOD2IIEwk1Y8PKpspPiwJquprZr3g3eZzgO+6dmJ 7/owHj/FcxhpmBWSGbuNWgfGhIOruE34FSFlK0YeayR6OYp0sSnoLD0UdET6coadzf11 HXbmRoJM6IL9Fq1+G31Xk8+NYPErh+yuyf8SRLjVei3umf4HF3P9vJw0Xb8pCbUsfSjL 4n9vIHMt1BdrfTaBC9+ss6YaU02VAtxAkYxcddIqXMflKhD5/oqJflbFTpDYisSuRqCN OD1A==
MIME-Version: 1.0
X-Received: by 10.107.170.213 with SMTP id g82mr5330858ioj.178.1447184757085; Tue, 10 Nov 2015 11:45:57 -0800 (PST)
Sender: jinmei.tatuya@gmail.com
Received: by 10.107.140.71 with HTTP; Tue, 10 Nov 2015 11:45:57 -0800 (PST)
In-Reply-To: <5283fb1a6bb74fd981bb4d96755cd5b9@XCH-ALN-003.cisco.com>
References: <5283fb1a6bb74fd981bb4d96755cd5b9@XCH-ALN-003.cisco.com>
Date: Tue, 10 Nov 2015 11:45:57 -0800
X-Google-Sender-Auth: CrxFr0LOWpcio6DM_LjYSaiqUMs
Message-ID: <CAJE_bqdjGE33QZbXaNV+=cjbtcN+9Rwav_UYzw5LxviKMFW34A@mail.gmail.com>
From: 神明達哉 <jinmei@wide.ad.jp>
To: "Bernie Volz (volz)" <volz@cisco.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/dhcwg/WOYNk0ZswOhOi8iuFM532VOePyQ>
Cc: "dhcwg@ietf.org" <dhcwg@ietf.org>
Subject: Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151)
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Nov 2015 19:45:59 -0000

At Tue, 10 Nov 2015 02:15:00 +0000,
"Bernie Volz (volz)" <volz@cisco.com> wrote:

> This is to confirm on the DHC WG mailing list our proposal to resolve the RFC3315bis Ticket #151 (Release Delegated Prefix) by updating RFC3315bis as follows (see http://trac.tools.ietf.org/group/dhcpv6bis/ticket/151 and https://www.ietf.org/proceedings/94/slides/slides-94-dhc-5.pdf for more details):
>
> The problem statement is that there is currently no text for if and when a requesting router should invalidate prefix information that has been delegated to it when the requesting router issues a release for a prefix (or prefixes).
>
> The proposed solution is  that the prefix should be invalidated once the DHCPv6 Release is performed - the RAs must be transmitted to set the prefix lifetimes to zero in the PIO for the released prefixes.

As I noted in the meeting, it's not trivial to invalidate an end
hosts' prefix.

To recap: First, just setting the preferred lifetime to 0 as suggested
on the issue tracker is obviously not enough since addresses generated
from the prefix will still be valid.  Setting the valid lifetime to 0
is also not enough since hosts will still use the derived address(es)
for at least 2 hours according to Section 5.5.3 of RFC4862.

I'm not sure which level of detail should be described in rfc3315bis,
but a graceful invalidation process would be something like this:

1. The requesting router decides to invalidate a prefix.
2. The requesting router starts advertising an RA with PIO for the
   prefix whose valid and preferred lifetimes are 0.  It keeps
   advertising this RA for at least 2 hours. (It should probably keep
   advertising the 0-lifetime prefix longer, in case some hosts fail
   to receive the prefix during the 2-hour window)
3. The requesting router sends a DHCPv6 Release for the prefix to the
   delegating router.

If, for some reason, the requesting router finds it has to release the
prefix immediately...it'll be tricky, but there's probably not much
the requesting router can do in that case.  Again, I'm not sure how
much rfc3315bis should discuss this, but some possible points are:
- It's generally discouraged to perform such a non-graceful release
- If it's inevitable, it's advisable for the requesting router to
  filter packets using an address generated from the now-released
  prefix
- The requesting router should still advertise the 0-lifetime prefix
  via RAs as described in the graceful scenario

You may also want to refer to RFC4192.

--
JINMEI, Tatuya

v2.23.0 | Report a Bug | By Email