Re: [dhcwg] RFC3315 DECLINE definition

Simon Hobson <> Thu, 09 February 2017 16:46 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 3CC28129BA8 for <>; Thu, 9 Feb 2017 08:46:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id IbBlTBXDb6-T for <>; Thu, 9 Feb 2017 08:46:26 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 89BB8129421 for <>; Thu, 9 Feb 2017 08:46:26 -0800 (PST)
X-Quarantine-ID: <jqAwuAykl-Fb>
X-Virus-Scanned: Debian amavisd-new at
X-Amavis-Alert: BAD HEADER SECTION, Header line longer than 998 characters: References: <91[...]
Received: from [] ( []) by (Postfix) with ESMTPSA id 41CF31A071 for <>; Thu, 9 Feb 2017 16:46:22 +0000 (UTC)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Simon Hobson <>
In-Reply-To: <>
Date: Thu, 9 Feb 2017 16:46:21 +0000
Content-Transfer-Encoding: quoted-printable
Message-Id: <>
References: <> <> <> <> <> <> <> <> <> <> <> <> <> <> <> <0540D77C-E307-4B96-A53B-81599408C8> <>
To: dhcwg <>
X-Mailer: Apple Mail (2.1510)
Archived-At: <>
Subject: Re: [dhcwg] RFC3315 DECLINE definition
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 09 Feb 2017 16:46:28 -0000

"Mudric, Dusan (Dusan)" <> wrote:

> One server is configured to statically assign IPv6 addresses (based on the client MAC) or with a pool of IPv6 addresses for the local link. If a client on that location assigns the misconfigured address it becomes unreachable. A user does not even know how to spell DHCPv6 and all he/she experiences is that the device is unusable. The network operator does not get any indication that the device is out of service.

And just how does the client differentiate between that being a deliberate policy choice by the admin (perhaps that location is not supposed to have outside IPv6 connectivity) and a server misconfiguration ?
Besides, just how is that different from other (eg DHCP4) setups ? If I configure the HCP server to give the wrong router address then clients get broken network configs.

At the end of the day, unless you are going to build an all-knowing, globe spanning, AI service that auto-configures everything - then you have to allow for admins to have some intelligence and some competency in their work. So far I've seen nothing in your suggestions that goes beyond "the admin may make a mistake and then things are broken". yes we can make mistakes - but finding and dealing them is part of the job.

So, other than "the admin may make a mistake", what use cases do you have ?

"Mudric, Dusan (Dusan)" <> wrote:

> The application does the semantic check for the address and, if the address is semantically correct, checks if the device using the offered address can be reached within the domain the in which device has to communicate. If, for example, the device has to be globally reachable, the address has to be an unreserved, or not deprecated, global address.

You have **NOT** described anything related to whether the address issued is usable at the network level, basically at the level DHCP is working at. By your own admission, the device **DOES** have a valid working address, but for some reason the **APPLICATION** cannot use it. The **APPLICATION** should report that there is a communications problem - this is how it works normally. The address may well be perfectly usable for other traffic.

Part of troubleshooting such an issue is to look at the network connectivity and the requirements of the application. This sounds very much like the refrain you hear from users who declare "the internet is down" because the web page they are trying to reach isn't working.