IETF Logo Mail Archive

Re: [homenet] RFC: dhcpv4 to slaac DNS naming scheme

Simon Kelley <simon@thekelleys.org.uk> Sat, 15 February 2014 09:23 UTC

Return-Path: <simon@thekelleys.org.uk>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F127D1A013F for <homenet@ietfa.amsl.com>; Sat, 15 Feb 2014 01:23:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.3
X-Spam-Level:
X-Spam-Status: No, score=-1.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_51=0.6] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cj83NhHGc-NU for <homenet@ietfa.amsl.com>; Sat, 15 Feb 2014 01:23:57 -0800 (PST)
Received: from eyas.biff.org.uk (eyas.biff.org.uk [IPv6:2001:41c8:1:519c::20]) by ietfa.amsl.com (Postfix) with ESMTP id D0DBF1A013C for <homenet@ietf.org>; Sat, 15 Feb 2014 01:23:56 -0800 (PST)
Received: from cl-1441.lon-02.gb.sixxs.net ([2a01:348:6:5a0::2]:56345 helo=central.thekelleys.org.uk) by eyas.biff.org.uk with esmtpsa (TLS1.0:RSA_AES_256_CBC_SHA1:256) (Exim 4.80) (envelope-from <simon@thekelleys.org.uk>) id 1WEbTS-0000Y4-LJ; Sat, 15 Feb 2014 09:23:50 +0000
Received: from archie.thekelleys.org.uk ([192.168.1.167]) by central.thekelleys.org.uk with esmtpa (Exim 4.72) (envelope-from <simon@thekelleys.org.uk>) id 1WEbTS-0005wN-1v; Sat, 15 Feb 2014 09:23:50 +0000
Message-ID: <52FF3228.8060108@thekelleys.org.uk>
Date: Sat, 15 Feb 2014 09:23:52 +0000
From: Simon Kelley <simon@thekelleys.org.uk>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
MIME-Version: 1.0
To: Lorenzo Colitti <lorenzo@google.com>, Dave Taht <dave.taht@gmail.com>
References: <CAA93jw6G5s1v1PubeJ-gJPhcd7_ngjX_iFngVBw_XWzOiJqj7w@mail.gmail.com> <CAKD1Yr2a6B62kYkCR0W351LQynFnjf7+AMXPaVxEeb1xqsXaKQ@mail.gmail.com>
In-Reply-To: <CAKD1Yr2a6B62kYkCR0W351LQynFnjf7+AMXPaVxEeb1xqsXaKQ@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/homenet/3VLVTkGrEuPlViRw2qN477Sds8E
Cc: Evan Hunt <each@isc.org>, HOMENET <homenet@ietf.org>
Subject: Re: [homenet] RFC: dhcpv4 to slaac DNS naming scheme
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Feb 2014 09:23:59 -0000

On 15/02/14 02:18, Lorenzo Colitti wrote:
> On Sat, Feb 15, 2014 at 8:12 AM, Dave Taht <dave.taht@gmail.com
> <mailto:dave.taht@gmail.com>> wrote:
>
>         This memo presents a technique for using the hostname acquired
>     from a
>         DHCPv4 client request to publish AAAA records on that domain
>     name for
>         public IPv6 addresses acquired by the same dual-stack host using
>         SLAAC.
>
>
> Dave,
>
> Good to see some work being done on this problem. A few comments:
>
> 1. Assuming that hosts generate IPv6 interface IDs per RFC 4291 will
> soon be mostly obsolete. As you point out, Windows already doesn't do
> it, and I believe Mac OS and iOS have recently stopped doing it too. So
> that's a large chunk of the client population already. For the rest, see
> http://tools.ietf.org/html/draft-gont-6man-deprecate-eui64-based-addresses-00
> , which is likely going to be adopted by 6man. It likely won't deprecate
> EUI-64-based IPv6 addresses, but it will almost certainly discourage
> them. As you also point out, the proposed mechanism also doesn't work
> for privacy addresses, which is what virtually all hosts are going to be
> using for outgoing connections anyway. So I don't think that the
> proposed scheme is a solution to the problem.

This technique is useful for all the _existing_ systems that only do 
EUI64 SLAAC, I don't think it's something we should do going forward. It 
might be worth pointing out that deprecate-eui64-based-addresses goes 
backwards in this respect, and deprecate-eui64-based-addresses-and 
use-dhcpv6-instead would be better, or define a hostname option in the 
Router Solicit packet.
>
> 2. Since you propose getting this information using MAC addresses,
> you're doing layering violations and protocol violations already. So why
> not go a step further and look into the neighbour cache? In principle,
> you could have the reverse DNS lookup cause a lookup into the IPv6
> neighbour cache to find the address that you would then look up in the
> DHCP lease database. That's expensive, but you could cache the result,
> and you could also snoop DAD probes to populate the cache when hosts
> join the network. That would work in a lot more cases than the proposed
> scheme.
>

Two reasons.

1) Using ICMP6 works even when the client is not a neighbour of the 
server, ie when it's on a remote network segment and DHCPv4 relay is in use.

2) Implementation. There'a a well defined, stable and universal API to 
send and recieve ICMP6 packets. The same code runs everywhere. Snooping 
the ND takes code that's platform specific and rather more complex.



Cheers,

Simon.

v2.23.0 | Report a Bug | By Email