IETF Logo Mail Archive

Re: [dhcwg] WGLC for draft-ietf-dhc-sedhcpv6-02 - Respond by May 18

"Bernie Volz (volz)" <volz@cisco.com> Wed, 07 May 2014 19:52 UTC

Return-Path: <volz@cisco.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3968D1A02E8 for <dhcwg@ietfa.amsl.com>; Wed, 7 May 2014 12:52:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.152
X-Spam-Level:
X-Spam-Status: No, score=-10.152 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FeMK0-WCkp7a for <dhcwg@ietfa.amsl.com>; Wed, 7 May 2014 12:52:44 -0700 (PDT)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) by ietfa.amsl.com (Postfix) with ESMTP id 733F81A0366 for <dhcwg@ietf.org>; Wed, 7 May 2014 12:52:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2032; q=dns/txt; s=iport; t=1399492358; x=1400701958; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=AIjrjDeH+xRce6Ypvx7jm9Ng2u3Ll5wggBRbEkRl1bU=; b=j+6u9WIUHgYrx4HD8uUVvhteKGKarw3Mu9tCgIeoYfTiaUYG0QcTOd99 oDRMk8EgfnCB3OKBnVzHcaB5vJ8cUu8m9FZFbx2ieYm1ur4/G75c0Qaui jaChht0sYIU4JTuRW5i96JaVHIQysq4f+sCtmr+8rtBOcShYE0eUEYJiV Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AhoFAAmOalOtJV2Z/2dsb2JhbABagwZPWIJnwjgBgRwWdIIlAQEBAgIhAQVSDAQCAQgRBAEBAgMGBRgCAwIyFAkIAgQOBQiIOQ2OOJwZAaU6F4EnihyCShQxBwaCazmBFQSac5E/gzRtAYFB
X-IronPort-AV: E=Sophos;i="4.97,1006,1389744000"; d="scan'208";a="41862095"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-7.cisco.com with ESMTP; 07 May 2014 19:52:38 +0000
Received: from xhc-aln-x02.cisco.com (xhc-aln-x02.cisco.com [173.36.12.76]) by rcdn-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id s47JqcOT009860 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Wed, 7 May 2014 19:52:38 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.140]) by xhc-aln-x02.cisco.com ([173.36.12.76]) with mapi id 14.03.0123.003; Wed, 7 May 2014 14:52:37 -0500
From: "Bernie Volz (volz)" <volz@cisco.com>
To: Ted Lemon <ted.lemon@nominum.com>
Thread-Topic: [dhcwg] WGLC for draft-ietf-dhc-sedhcpv6-02 - Respond by May 18
Thread-Index: AQHPag0KHMzNFfxEIk6wcBa/GM4ndJs1oYkAgAAGu4D//7E7YIAAby6A//+thtCAAFjVAP//rJ9QAAsk+AAACmPbUP//sJEAgABTnVA=
Date: Wed, 07 May 2014 19:52:37 +0000
Message-ID: <489D13FBFA9B3E41812EA89F188F018E1B00F3EF@xmb-rcd-x04.cisco.com>
References: <535FEDAD.5010103@gmail.com> <CAJE_bqen37j5UCsKZj6syVyvk2Xed4V_xGp-t4xY8shjmS+H5g@mail.gmail.com> <489D13FBFA9B3E41812EA89F188F018E1B008430@xmb-rcd-x04.cisco.com> <4F2473AB-E8F7-4620-874C-3DCA59E70DE5@gmail.com> <5D36713D8A4E7348A7E10DF7437A4B923AE431FB@nkgeml512-mbx.china.huawei.com> <489D13FBFA9B3E41812EA89F188F018E1B00BAC1@xmb-rcd-x04.cisco.com> <9A6A9452-AF57-4EE1-9401-E0CE26922E6B@gmail.com> <5D36713D8A4E7348A7E10DF7437A4B923AE438BE@nkgeml512-mbx.china.huawei.com> <4891B713-5C8E-414A-99D7-64869C2E6F3A@gmail.com> <CAJE_bqc+qofsHEHZyuG7UotHmZ170OuFoUzz13hz7Rj_8V5FsA@mail.gmail.com> <87A01A92-7517-40A4-8DD0-EE29AADA4AF6@nominum.com> <CAJE_bqeKYoRzVxSgJHg2Ud6H2qEZGaEdFyD=4Ps84NTFyOdELA@mail.gmail.com> <489D13FBFA9B3E41812EA89F188F018E1B00EF3B@xmb-rcd-x04.cisco.com> <074EF8DF-6404-4D90-B56C-6955A3939A6D@nominum.com> <489D13FBFA9B3E41812EA89F188F018E1B00F1F6@xmb-rcd-x04.cisco.com> <9EDC6F15-62FA-42B4-A145-94CEFAAE2918@nominum.com> <489D13FBFA9B3E41812EA89F188F018E1B00F31E@xmb-rcd-x04.cisco.com> <9C5EC552-A039-4EC5-B475-3A58A3C9BC70@nominum.com> <489D13FBFA9B3E41812EA89F188F018E1B00F37C@xmb-rcd-x04.cisco.com> <18E909A0-1955-4E5B-A003-304FE2B946FD@nominum.com>
In-Reply-To: <18E909A0-1955-4E5B-A003-304FE2B946FD@nominum.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [161.44.70.121]
Content-Type: text/plain; charset="iso-2022-jp"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/dhcwg/evHoowFo9gk1ENHWfvz32WWn63k
Cc: dhcwg <dhcwg@ietf.org>, 神明達哉 <jinmei@wide.ad.jp>, Ralph Droms <rdroms.ietf@gmail.com>
Subject: Re: [dhcwg] WGLC for draft-ietf-dhc-sedhcpv6-02 - Respond by May 18
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 May 2014 19:52:46 -0000

It is interesting that Jinmei raised this issue given the following presentation he gave:

http://www.v6.wide.ad.jp/Presentations/ietf49-udpapp.pdf

"- But ... At least every BSD kernel always performs PMTU discovery.
 - not necessary if we can always rely on the kernel’s behavior."

I do agree that the DNS problem is different because (a) there may not be many attempts per 'transaction' so working out the PMTU can be difficult and (b) there could be LOTS of end-points and that may exceed the kernel's cache by the time a request comes around again.

So, I guess best to just rely on the Kernel PMTU support.

Getting back to this draft, I think pointing out that this can result in large packets and that for some communication (relay <-> relay/server, client/server unicast), PMTU support is critical. And, that where packets are larger than the v6 min mtu (1280), firewalls in the DHCPv6 communication path that drop fragments must not be used.

We can consider your request in 3315bis - I created http://trac.tools.ietf.org/group/dhcpv6bis/ticket/92.

- Bernie

-----Original Message-----
From: Ted Lemon [mailto:ted.lemon@nominum.com] 
Sent: Wednesday, May 07, 2014 3:42 PM
To: Bernie Volz (volz)
Cc: dhcwg; 神明達哉; Ralph Droms
Subject: Re: [dhcwg] WGLC for draft-ietf-dhc-sedhcpv6-02 - Respond by May 18

There are two ways to do PMTU discovery.   One is to just send the packet, and if we get an ICMP Packet Too Big packet back, we set the path MTU to the reported size and try again.   The other is to detect it in the application layer protocol.   In this case, that would be DHCP, probably the DHCP relay agent and server.   This would be necessary in the case of a firewall that drops ICMP Packet Too Big messages.

I think it would make sense to add a recommendation in 3315bis that operators configure their firewalls to pass ICMP Packet Too Big messages.   I don't think we should go any further than that.

v2.23.0 | Report a Bug | By Email