IETF Logo Mail Archive

Re: [dhcwg] What sorts of services does DHCP configure?

Ted Lemon <mellon@fugue.com> Tue, 15 October 2013 14:14 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D3F911E8128 for <dhcwg@ietfa.amsl.com>; Tue, 15 Oct 2013 07:14:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rZKlgpojBAkF for <dhcwg@ietfa.amsl.com>; Tue, 15 Oct 2013 07:14:23 -0700 (PDT)
Received: from toccata.fugue.com (toccata.fugue.com [204.152.186.142]) by ietfa.amsl.com (Postfix) with ESMTP id 753E211E8121 for <dhcwg@ietf.org>; Tue, 15 Oct 2013 07:14:20 -0700 (PDT)
Received: from [IPv6:2001:470:88a3::b89c:175c:85c:2515] (unknown [IPv6:2001:470:88a3:0:b89c:175c:85c:2515]) by toccata.fugue.com (Postfix) with ESMTPSA id CAFE923805B3; Tue, 15 Oct 2013 10:14:17 -0400 (EDT)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 7.0 \(1812\))
From: Ted Lemon <mellon@fugue.com>
In-Reply-To: <45A697A8FFD7CF48BCF2BE7E106F06040B733790@xmb-rcd-x04.cisco.com>
Date: Tue, 15 Oct 2013 10:14:13 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <468A1C46-7425-4499-BBF2-50EED2DBD248@fugue.com>
References: <45A697A8FFD7CF48BCF2BE7E106F06040B733790@xmb-rcd-x04.cisco.com>
To: Reinaldo Penno <repenno@cisco.com>
X-Mailer: Apple Mail (2.1812)
Cc: "dhcwg@ietf.org WG" <dhcwg@ietf.org>
Subject: Re: [dhcwg] What sorts of services does DHCP configure?
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Oct 2013 14:14:29 -0000

On Oct 15, 2013, at 9:41 AM, Reinaldo Penno (repenno) <repenno@cisco.com> wrote:
> Would it make sense to determine which DHCP options are used today in wild
> and reasoning behind them?
> 
> I have done a few captures before and noticed that DHCP options vary
> between home, Hotel, Hotspot, Airport, etc.

It can't hurt to ask this question, but I'm not convinced that it's necessary.   DHCP clients don't use options they don't request, so it doesn't matter if the server sends them.   So it's probably not necessary to survey DHCP servers—just survey DHCP clients and see what options they request.

> As far as your SIP example below, I see SIP server through DHCP just as a
> discovery step. Your SIP client should apply whatever security policies to
> accept or not that SIP Server.

Right, but going a little farther into your example, this only works for clients that (a) request the SIP option and (b) have some way of validating the response they get back.   So we can have a very clear discussion about this security model, and also possibly ask whether existing clients actually do this, and whether this is a good idea, or just the best we could do with what services are available.

And then this question can be asked about lots of other services as well.  E.g., does it make sense to configure NTP this way, given that NTP provides replay protection for security protocols (that's a complicated question)?   Does it make sense to configure SMTP this way, given that SMTP servers are no longer really interchangeable as they were in the early days of the Internet?   POP?   IMAP?   Etc.

v2.23.0 | Report a Bug | By Email