Re: [dhcwg] passing relay info back to client
Kent Watsen <kwatsen@juniper.net> Thu, 04 January 2018 21:41 UTC
Return-Path: <kwatsen@juniper.net>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89C341277BB; Thu, 4 Jan 2018 13:41:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z8XYjCXvEJDl; Thu, 4 Jan 2018 13:41:21 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F2BD0129511; Thu, 4 Jan 2018 13:41:18 -0800 (PST)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.21/8.16.0.21) with SMTP id w04LdsSR023598; Thu, 4 Jan 2018 13:41:16 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=RfXuiH8wpi8QHxoAXGVtJKaSIOyhLO4xdx0nRJb9MtU=; b=lej/2rHgQsSXxo+t3Ah+j0m60rDjwH83TtHFK/4R05NSqN+edsN5v+DGC2N1JA30LMfC 2uy+/3pgGsM16d7qdeOJOM2pFzHCjIUDbZmWVcM6k98JgpKIGZYVC5VMYinNZGgzZz7W BaUtkfI+3qtn+YZ6c0zodn/P6lUy/rHA5tMTMhmPuf/rk7xpdR+hTbm5ddVP80zWQGAY AJxVrZoVRsPIOtiDSu7vx9I9+OQ7gmVjnldDFGI0/Dpbp3zppdWWmm3hBl/8JuEvDyQ1 mKgeyrgbKNYfw1g0kyw1OLqqan7ucSmiXcJoGIGg3sh1B0TFwytZNJqrm2SrH3GmEa8i qg==
Received: from nam03-co1-obe.outbound.protection.outlook.com (mail-co1nam03lp0022.outbound.protection.outlook.com [216.32.181.22]) by mx0a-00273201.pphosted.com with ESMTP id 2f9v4d00r4-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Thu, 04 Jan 2018 13:41:15 -0800
Received: from DM5PR05MB3484.namprd05.prod.outlook.com (10.174.240.147) by DM5PR05MB3388.namprd05.prod.outlook.com (10.174.191.153) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.407.1; Thu, 4 Jan 2018 21:41:14 +0000
Received: from DM5PR05MB3484.namprd05.prod.outlook.com ([10.174.240.147]) by DM5PR05MB3484.namprd05.prod.outlook.com ([10.174.240.147]) with mapi id 15.20.0407.000; Thu, 4 Jan 2018 21:41:14 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: Ted Lemon <mellon@fugue.com>
CC: "dhcwg@ietf.org" <dhcwg@ietf.org>, "draft-ietf-netconf-zerotouch@ietf.org" <draft-ietf-netconf-zerotouch@ietf.org>
Thread-Topic: [dhcwg] passing relay info back to client
Thread-Index: AQHThYq5t46JLrGOc0qesTzgGz1RDaNkIXAA///JJIA=
Date: Thu, 04 Jan 2018 21:41:14 +0000
Message-ID: <538FCED7-3077-418C-A830-C07998CE0573@juniper.net>
References: <88649CAA-99B6-48FA-8E47-6D386BD50FFD@contoso.com> <6C753DD6-D6E4-426B-ABE5-78F8C85AB66C@fugue.com>
In-Reply-To: <6C753DD6-D6E4-426B-ABE5-78F8C85AB66C@fugue.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR05MB3388; 6:KqR/Y+nPl6RAtwTpquhcPg+A8zavsFNyflcjChK22sLjPOjhn1Ely34lzLa5GDDxJSD6gTB+/QE48eFDMMogPKrGOEuGAHoc6/DrzGVC/eKagxqEuHoEnYh8/0n4vMQMndyFvmSPc/dxTahE7upp1jOSqxQ3dWVEW72Uwp6p7ah1WjT0YrR3V2QNMRRiLSFm0TkJA0iWp5MEK64oGnI8iMhsCMpVs7iimZeOANcFMgVf9FhRVJEoLT5NoZpE/0qDnn7+MBvVn73e5aAUp0R7zGjkZqeFL6X+yGz4Lzjou44UH/+v+srDv5X76o13Zd9ZE0Gz8nOFeOMJ3comAI+Nq4iqqnvMbfAu/Bm7tEMCjukAqM7z+I3iHfIisedTW56q; 5:F4+3buRGUkpDurQ2A5dhK0muF7WY3l+dARUdRXL3t9fZNcUrpabWj9JWEU5NXxVn1jMMt6AMsFDRYZzUpol6Lh14Ukf2QDy2627FVok989EsSoz/9cYk6kFd5MlV3dAgT6sR2sZ1SJZnnsa4SpDC7VmQm/tsdUk16VEE/ToQaNQ=; 24:V+Cpa7B36ZODUoUEg0H6uiVHNY7ahDc5mxT1F8or2oiIrCzqdJK2mhb+KK/4L7XjCVluSBaxB9CSwzd3r3WB6nUVx4sgo0ghZnFU8ks1Ca8=; 7:cJq7fuzCb4zHQXwZvBXtscNG/GH081G9fJLuabvrGFI80OdIaDj7kz9xhgLGNK7Y9Z3ifTawSOmA+BtvbkvjYR45qo4RWvBO7BpEck6VAOWR5GZhJGgPFv6hYrlUOHO64ghOBxZaPVjl5478a/Y/D49Z3SlHFATOWnTkhUelBt2FXsW/eaKtuo4AtK36f0nxjC/2ztx2iHy9jdE82kt8QpkVlViTRqMQmrV6kZmu37/dIzZvlnWftH0XoqHPTedN
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 737931c4-0a0c-4fae-1130-08d553bbe101
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(48565401081)(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(5600026)(4604075)(3008032)(2017052603307)(7153060); SRVR:DM5PR05MB3388;
x-ms-traffictypediagnostic: DM5PR05MB3388:
x-microsoft-antispam-prvs: <DM5PR05MB33882DF89BC0D520B0A5FDB6A51F0@DM5PR05MB3388.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040470)(2401047)(8121501046)(5005006)(93006095)(93001095)(3231023)(944501075)(3002001)(10201501046)(6055026)(6041268)(20161123558120)(20161123560045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(6072148)(201708071742011); SRVR:DM5PR05MB3388; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:DM5PR05MB3388;
x-forefront-prvs: 054231DC40
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(366004)(376002)(346002)(39380400002)(39860400002)(40224003)(51914003)(43784003)(85664002)(24454002)(199004)(189003)(6506007)(7736002)(99286004)(102836004)(83506002)(2906002)(2900100001)(59450400001)(6246003)(68736007)(83716003)(53546011)(3660700001)(8936002)(9326002)(76176011)(6116002)(97736004)(2950100002)(5660300001)(86362001)(53936002)(106356001)(54896002)(236005)(77096006)(6486002)(6512007)(3846002)(14454004)(4326008)(6306002)(478600001)(8676002)(6916009)(3280700002)(105586002)(229853002)(6436002)(81156014)(82746002)(81166006)(36756003)(66066001)(33656002)(25786009)(316002)(58126008)(54906003); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3388; H:DM5PR05MB3484.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: kaZ0n7zlwoePjEwr1doVaZuipntU97ro2XiZW9d07DnQuGHPD2d2Sqv6j69l3r5uS8rjQ/VEPwk0iB9YfSAcbw==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_538FCED73077418CA830C07998CE0573junipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 737931c4-0a0c-4fae-1130-08d553bbe101
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Jan 2018 21:41:14.1414 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3388
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2018-01-04_10:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1801040295
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/awiZemoalVhTOgkM6rsTAaYZWX4>
Subject: Re: [dhcwg] passing relay info back to client
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2018 21:41:28 -0000
Hi Ted, Thanks for the speedy reply and the pointer to RFC 6422. Yes, that seems to do it, but looking at the IANA registry, I see that OPTION_ERP_LOCAL_DOMAIN_NAME is the only option that is supported thus far, so we'd have to add the Remote-ID and Interface-ID options if needed… The problem I'm trying to solve is one whereby an operator has a number of devices in storage, any one of which may be retrieved and placed somewhere in their network. The goal is for the device to bootstrap itself with the correct configuration for its given location in the network. Normally, a device would "call home", identifying itself via its serial number (i.e., IDevID certificate), for which the NMS is preconfigured to know the device's location, and hence sends the correct configuration (for that location in the network) to the device. However, some operators don't want to implement the backend tracking logic to know which serial number goes where; instead, they want to rely on values such as remote-id and circuit-id to identify the device's location. In this case, the device's call home message is something like "this is my serial number, and this is where I'm located". The NMS receiving the call home message can still verify that the device is a valid device (i.e., its serial number is allowed on the network), but rather than rely on preconfiguration to know where the device is located, it instead uses the location information passed by the device. Both scenarios lead to the same initial configuration being passed back to the device, they only differ in the steps take to determine where the device is located. Makes sense? BTW, in case it's unclear, this zerotouch bootstrapping (call home) step is envisioned to be something that happens just the very first time the device boots. The NMS would record/bind the device (serial number) to the given location, and hence does not need to be informed of its location ever again. Thanks again, Kent On 1/4/18, 2:57 PM, "Ted Lemon" <mellon@fugue.com<mailto:mellon@fugue.com>> wrote: RFC 6422 addresses this issue for DHCPv6. There's no solution for DHCPv4. In general, we don't want the relay to be adding options to the packet on the way to the client, so it would have to be special-case behavior. There's no reason why something like RFC 6422 couldn't be done for DHCPv4—it's just that it's a legacy protocol, so we aren't doing work on it. That said, can you talk about the actual problem you're trying to solve here? What you said you want to do doesn't actually make sense to me, so either I'm missing something, or you're thinking of doing something with DHCP that doesn't actually make sense in the greater context of DHCP.
- [dhcwg] passing relay info back to client Kent Watsen
- Re: [dhcwg] passing relay info back to client Ted Lemon
- Re: [dhcwg] passing relay info back to client Kent Watsen
- Re: [dhcwg] passing relay info back to client Bernie Volz (volz)
- Re: [dhcwg] passing relay info back to client kkinnear