Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt-netboot-05
Jarrod Johnson <jarrod.b.johnson@gmail.com> Sat, 10 October 2009 19:51 UTC
Return-Path: <jarrod.b.johnson@gmail.com>
X-Original-To: dhcwg@core3.amsl.com
Delivered-To: dhcwg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5E90228C0E6 for <dhcwg@core3.amsl.com>; Sat, 10 Oct 2009 12:51:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.17
X-Spam-Level:
X-Spam-Status: No, score=-2.17 tagged_above=-999 required=5 tests=[AWL=0.429, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3EplFdisVFOU for <dhcwg@core3.amsl.com>; Sat, 10 Oct 2009 12:51:28 -0700 (PDT)
Received: from mail-yx0-f192.google.com (mail-yx0-f192.google.com [209.85.210.192]) by core3.amsl.com (Postfix) with ESMTP id 25FF63A67FC for <dhcwg@ietf.org>; Sat, 10 Oct 2009 12:51:27 -0700 (PDT)
Received: by yxe30 with SMTP id 30so10776760yxe.29 for <dhcwg@ietf.org>; Sat, 10 Oct 2009 12:53:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=BK2V/JQypB42dEs6FjQw4/IAO6y4SFeCODXe2kJoiuo=; b=oK21U5pS+AarwOr1FFT9COtC4zKWEvqdJXo5YjN7/9xWKsOxpsChesAHXffY103hwd UYt7s5mw2HzAyPZrMIUA6CmsW3t/oPcpeZparg6/98Fvzq0f26MPRNQyFfDzFDgrY5Ki 260ToCHyMP1kckE2Sda77YKZ0D2PUxgs+rtME=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=oc0KdxWxPN6YlNOFfsEDgS4/hwnbukzHtxFUc7S56fZis50rNnoK0ahKCewAJOW6L8 /Uxju5LMQZgKP1QvOsTIbgKAqo8LkFm06apl+K07ZAMWOz+DMXB9Qc/wBR2iB5BMuofB d8Txv98omoidwxqateH4B4BB+2NwX7Mj7kpTg=
MIME-Version: 1.0
Received: by 10.150.89.22 with SMTP id m22mr7142797ybb.294.1255204392153; Sat, 10 Oct 2009 12:53:12 -0700 (PDT)
In-Reply-To: <OF7C528424.182656B7-ONC125764B.004D3670-C125764B.004E7472@de.ibm.com>
References: <994ABFCB-3ABF-484C-9855-1EEACC663CF4@nominum.com> <200910061918.n96JI5Nv005405@cichlid.raleigh.ibm.com> <42BCDBAE-673E-44FA-B44C-42A8149D6838@nominum.com> <200910072139.12968.budm@weird-solutions.com> <OF7C528424.182656B7-ONC125764B.004D3670-C125764B.004E7472@de.ibm.com>
Date: Sat, 10 Oct 2009 15:53:12 -0400
Message-ID: <fab4e42a0910101253l20e35a97m96f5032d59cf8b80@mail.gmail.com>
From: Jarrod Johnson <jarrod.b.johnson@gmail.com>
To: Thomas Huth <THUTH@de.ibm.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailman-Approved-At: Sat, 10 Oct 2009 13:23:05 -0700
Cc: dhcwg@ietf.org, Bud Millwood <budm@weird-solutions.com>
Subject: Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt-netboot-05
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 10 Oct 2009 19:51:29 -0000
One new question for the discussion, how does one ensure a consistent network identity/configuration between the firmware DHCP activity and the target OS DHCP activity? In DHCPv4, it was common to just match on the hw type and address, but in v6, all that is guaranteed is DUID which gives clients the liberty to choose. The OSes tend to prefer DUID-LLT, which will never match a firmware solicit even if it picks the same scheme. Even if everyone dropped DUID-LLT for some reason, DUID-LL rules allow for the OS and firmware to pick whichever interface they like within the constraints. PXE had the same problems as they put forth UUID as a host selector, which worked fine for PXE firmware but OS discover's wouldn't generally not populate that field. More commentary about my approach for active-active boot redundancy in a layer 2 segment below. On Sat, Oct 10, 2009 at 10:16 AM, Thomas Huth <THUTH@de.ibm.com> wrote: > Bud Millwood <budm@weird-solutions.com> wrote on 07/10/2009 21:39:12: >> >> I think Damien has a point about presentation. I also think it's easier > to >> present a subencoded option to the user with multiple (possibly required) > >> suboptions than to present top-level options (just because there are so > many >> top-level options). >> >> The way our GUI works, for example, you define a subencoded option, >> then "inside it" you can only define the suboptions declared for that > parent. >> So the list of data you can put in the suboption is short and easy to >> comprehend. > > Ok, these "sub-options" might work fine with a GUI, but I think the plain > text configuration files of the DHCP server gets more complicated with > sub-options. The settings then have to specified in a nested way like: > > option netboot = { > url = http://... > params = "acpi = off ..." > ... > } > > >> Thomas, you said: >> >> > In the past years, I've seen a couple of cluster installations with _a > lot_ >> > of computers, ... so the scenario is really valid (though it's > something >> > that you might not use at home ;-) ) >> >> How does that work in practice today with DHCPv4? Are they configured to > have >> multiple boot files somehow, or is this an attempt to solve a need that >> wasn't solved in DHCPv4? > > With DHCPv4, the only way to work-around overloaded TFTP servers was: > 1) Introduce a random delay in the boot process of the nodes, so that they > don't try to contact the TFTP server at the same time. > 2) Add new TFTP servers and then hard-code a given set of nodes to always > boot from these servers. FYI, when faced with the task of a broadcast domain of thousands of servers and deploying all of them via netboot, I took a little different strategy that involved no delays. But it requires multiple DHCP servers. Specifically: -The deployment manager manages several servers -Each server has one 'standalone' DHCP server and download server -The deployment manager ensures each standalone DHCPv4 server has synced up host declarations and non-overlapping dynamic ranges. -When a netboot client boots, things are set up to make sure that it takes the first DHCPOFFER that comes in (at least the first that gets through ACK). -Each DHCP server points to itself as the download server. It's interesting to watch the results, 95% of the time if just one server is booting, it will pick the server with the fewest switch hops. If all of the ones that tend to prefer that server try to boot, they will spread out more due to the load on that server making it less responsive than further away servers. Anyway, they can pull any of the deployment servers and the network is none the wiser, so you can have redundant boot servers with DHCPv4, just not with a single DHCP server instance (besides, it wouldn't be redundant if there was only one DHCP server anyway) For dynamic pools, one would have to divide the pool amongst the servers to avoid overlap. This is actually a lot more trivial in IPv6 since your segment would never be lacking for addresses. > > There was no way to specify redundant boot servers in the DHCPv4 protocol, > so this would be a new feature in DHCPv6 which makes the configuration of > large networks much easier (you don't have to assign a given set of MAC > addresses to only one of the available server which still might to fail. > You could simply say, that all nodes should try to boot from either > server1, or if it fails try server2, then server3, etc.). One thing I like about the approach I employ is that it isn't an ordered list, it is unordered with no preference, winner chosen by network responsiveness. However, to fit in more general environments, the DHCP serving step and the file serving entities being separate would be helpful. Of course, DHCP servers with only boot information (I think that was the whole point of ProxyDHCP servers in PXE, but that aspect of PXE I avoid when possible in favor of the more straightforward configuration) could live on the network to augment the 'normal' DHCP server. > > Mit freundlichen Grüßen / Kind regards, > Thomas Huth > > IBM Deutschland Vorsitzender des Aufsichtsrats: > Research & Development GmbH Martin Jetter > Schönaicher Str. 220 Geschäftsführung: Erich Baier > 71032 Böblingen Sitz der Gesellschaft: Böblingen > Tel.: +49-7031-16-2183 Registergericht: Amtsgericht > Stuttgart, HRB 243294 > > > > _______________________________________________ > dhcwg mailing list > dhcwg@ietf.org > https://www.ietf.org/mailman/listinfo/dhcwg >
- [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt-net… Damien Neil
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Huth
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Narten
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Ted Lemon
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Narten
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Ted Lemon
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Narten
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Damien Neil
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Ted Lemon
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Stephen Jacob
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Alfred Hönes
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Ted Lemon
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Huth
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Bud Millwood
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Huth
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Jarrod Johnson
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Jarrod Johnson
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Jarrod Johnson
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Jarrod Johnson
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Bud Millwood
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Jarrod Johnson
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Jarrod Johnson
- Re: [dhcwg] Comments on draft-ietf-dhc-dhcpv6-opt… Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Niall.oReilly+lists
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Chuck Anderson
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … H. Peter Anvin
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Niall.oReilly+lists
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Narten
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … jarrod.b.johnson@gmail.com
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Woundy, Richard
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Narten
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Woundy, Richard
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Thomas Narten
- Re: [dhcwg] netboot load balancing (was: draft-ie… Thomas Huth
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … Ted Lemon
- Re: [dhcwg] draft-ietf-dhc-dhcpv6-opt-netboot-05 … H. Peter Anvin