Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151)
"Bernie Volz (volz)" <volz@cisco.com> Tue, 10 November 2015 19:54 UTC
Return-Path: <volz@cisco.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B98E51B3DF1 for <dhcwg@ietfa.amsl.com>; Tue, 10 Nov 2015 11:54:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.211
X-Spam-Level:
X-Spam-Status: No, score=-14.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id swoKLj279eip for <dhcwg@ietfa.amsl.com>; Tue, 10 Nov 2015 11:54:37 -0800 (PST)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B3DB1B3DEC for <dhcwg@ietf.org>; Tue, 10 Nov 2015 11:54:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4796; q=dns/txt; s=iport; t=1447185277; x=1448394877; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=JKQLs9enKmySqB2Vu+KPEvAKwD0UiYg4yvxDT28XBzM=; b=aK8t7egWRFxAe1RlzIHpBCgDJQIm7nPkzHN9G4NfzklVN2/YHhRIF0LW PMshLRVRvMabgsQxP775sUiEUW81dE/yy5sI9a/SlG4+qyMYKAIURrQ21 AhgBsIm6SXqDZoOZLtqItGhditj5iCS6R7K2Bp0TDxjVP78cXYXqNX++s I=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AQAgD+SkJW/4kNJK1egztTbwavW4xPghoBDYFlIYVvAhyBLzgUAQEBAQEBAYEKhDQBAQECAQEjEToLBQcEAgEIEQQBAQMCIwMCAgIfERQBCAgBAQQOBQgTh34DCggNsn6MBA2ETQEBAQEBAQEBAQEBAQEBAQEBAQEBARiBAYpRgUABgRKBdSmDBIFEBZJng2EBhRyGFIFugiuSTodSAR8BAUKCRIFAcgGEJoEHAQEB
X-IronPort-AV: E=Sophos;i="5.20,271,1444694400"; d="scan'208";a="43750476"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by rcdn-iport-8.cisco.com with ESMTP; 10 Nov 2015 19:54:36 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by alln-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id tAAJsaXC007186 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 10 Nov 2015 19:54:36 GMT
Received: from xch-aln-003.cisco.com (173.36.7.13) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1104.5; Tue, 10 Nov 2015 13:54:35 -0600
Received: from xch-aln-003.cisco.com ([173.36.7.13]) by XCH-ALN-003.cisco.com ([173.36.7.13]) with mapi id 15.00.1104.000; Tue, 10 Nov 2015 13:54:35 -0600
From: "Bernie Volz (volz)" <volz@cisco.com>
To: 神明達哉 <jinmei@wide.ad.jp>
Thread-Topic: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151)
Thread-Index: AdEbW5hQ3BXnVJtZT8240DpQSVth8AAxx0yAAAyCgnA=
Date: Tue, 10 Nov 2015 19:54:35 +0000
Message-ID: <90b3860b6ece4a0bb3ca2ff906f47c8f@XCH-ALN-003.cisco.com>
References: <5283fb1a6bb74fd981bb4d96755cd5b9@XCH-ALN-003.cisco.com> <CAJE_bqdjGE33QZbXaNV+=cjbtcN+9Rwav_UYzw5LxviKMFW34A@mail.gmail.com>
In-Reply-To: <CAJE_bqdjGE33QZbXaNV+=cjbtcN+9Rwav_UYzw5LxviKMFW34A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.131.78.27]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/dhcwg/hbuMCSjNnue51uLbVKa1Iev8DC0>
Cc: "dhcwg@ietf.org" <dhcwg@ietf.org>
Subject: Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151)
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Nov 2015 19:54:39 -0000
Thanks Jinmei. Since this is the release case, perhaps the 3315bis text says that a PD Release should only be done if the PD is not already in use (i.e. advertised in a PIO or assigned to DHCP and addresses leased) or the process to deprecate the prefix must be started early enough to allow all this to occur (i.e., 2 hours previous). We likely should also add that DHCPv6 Reconfigure messages to clients could be used to expedite deprecating the prefix (when stateful address assignment is used). This likely has some interaction with Ticket #152 (as that represents the client side behavior). - Bernie -----Original Message----- From: jinmei.tatuya@gmail.com [mailto:jinmei.tatuya@gmail.com] On Behalf Of ???? Sent: Tuesday, November 10, 2015 2:46 PM To: Bernie Volz (volz) <volz@cisco.com> Cc: dhcwg@ietf.org Subject: Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc3315bis - Release Delegated Prefix (Ticket #151) At Tue, 10 Nov 2015 02:15:00 +0000, "Bernie Volz (volz)" <volz@cisco.com> wrote: > This is to confirm on the DHC WG mailing list our proposal to resolve the RFC3315bis Ticket #151 (Release Delegated Prefix) by updating RFC3315bis as follows (see http://trac.tools.ietf.org/group/dhcpv6bis/ticket/151 and https://www.ietf.org/proceedings/94/slides/slides-94-dhc-5.pdf for more details): > > The problem statement is that there is currently no text for if and when a requesting router should invalidate prefix information that has been delegated to it when the requesting router issues a release for a prefix (or prefixes). > > The proposed solution is that the prefix should be invalidated once the DHCPv6 Release is performed - the RAs must be transmitted to set the prefix lifetimes to zero in the PIO for the released prefixes. As I noted in the meeting, it's not trivial to invalidate an end hosts' prefix. To recap: First, just setting the preferred lifetime to 0 as suggested on the issue tracker is obviously not enough since addresses generated from the prefix will still be valid. Setting the valid lifetime to 0 is also not enough since hosts will still use the derived address(es) for at least 2 hours according to Section 5.5.3 of RFC4862. I'm not sure which level of detail should be described in rfc3315bis, but a graceful invalidation process would be something like this: 1. The requesting router decides to invalidate a prefix. 2. The requesting router starts advertising an RA with PIO for the prefix whose valid and preferred lifetimes are 0. It keeps advertising this RA for at least 2 hours. (It should probably keep advertising the 0-lifetime prefix longer, in case some hosts fail to receive the prefix during the 2-hour window) 3. The requesting router sends a DHCPv6 Release for the prefix to the delegating router. If, for some reason, the requesting router finds it has to release the prefix immediately...it'll be tricky, but there's probably not much the requesting router can do in that case. Again, I'm not sure how much rfc3315bis should discuss this, but some possible points are: - It's generally discouraged to perform such a non-graceful release - If it's inevitable, it's advisable for the requesting router to filter packets using an address generated from the now-released prefix - The requesting router should still advertise the 0-lifetime prefix via RAs as described in the graceful scenario You may also want to refer to RFC4192. -- JINMEI, Tatuya
- [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rfc331… Bernie Volz (volz)
- Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rf… 神明達哉
- Re: [dhcwg] IETF-94 Follow-up - draft-ietf-dhc-rf… Bernie Volz (volz)