Re: [Int-area] Comments on current MPvD draft.
"Eric Vyncke (evyncke)" <evyncke@cisco.com> Wed, 15 November 2017 08:32 UTC
Return-Path: <evyncke@cisco.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EB29126C0F for <int-area@ietfa.amsl.com>; Wed, 15 Nov 2017 00:32:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.519
X-Spam-Level:
X-Spam-Status: No, score=-14.519 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 74j0BqUm2wuc for <int-area@ietfa.amsl.com>; Wed, 15 Nov 2017 00:32:30 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ECC00128B27 for <int-area@ietf.org>; Wed, 15 Nov 2017 00:32:26 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=17564; q=dns/txt; s=iport; t=1510734746; x=1511944346; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=0rk2yUeMJ+OEBDSguJGpg2vbpR1kU7i5FY6UKjIqbzE=; b=DOplot+T9IgiHdO5apz6YCKhjPRx5xAY/+UFwSb0ncnm/kipXfEYzp/j rhdcbmJISgv4l6J8A3aCveTF/ZwPhaHZG9vxIcicVo8HkdtWGxN/Nq9ux 1gHfksybljkd5z5ma/Jeu7blngmDHer/Y1V0UqUuQWrwWMIBCLJPi3rBl Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DCAADr+gta/5ldJa1dGQEBAQEBAQEBAQEBAQcBAQEBAYJERC5kbicHg3iKH48igVcmkRGFSYIRCoU7AhqEaj8YAQEBAQEBAQEBayiFHgEBAQEDIwpcAgEIDgMDAQIrAgICMB0IAgQBEolAZKplgicminIBAQEBAQEBAQEBAQEBAQEBAQEBAQEdgzSCB4FVghILgnaEUmaCdTGCMgWRcZBGApUEk0SWAAIRGQGBOAEfOIF0ehVJLQGCNoRfd4YsgSSBEQEBAQ
X-IronPort-AV: E=Sophos;i="5.44,398,1505779200"; d="scan'208,217";a="102888422"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 15 Nov 2017 08:32:26 +0000
Received: from XCH-RTP-011.cisco.com (xch-rtp-011.cisco.com [64.101.220.151]) by rcdn-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id vAF8WPDp015911 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 15 Nov 2017 08:32:26 GMT
Received: from xch-rtp-015.cisco.com (64.101.220.155) by XCH-RTP-011.cisco.com (64.101.220.151) with Microsoft SMTP Server (TLS) id 15.0.1320.4; Wed, 15 Nov 2017 03:32:25 -0500
Received: from xch-rtp-015.cisco.com ([64.101.220.155]) by XCH-RTP-015.cisco.com ([64.101.220.155]) with mapi id 15.00.1320.000; Wed, 15 Nov 2017 03:32:25 -0500
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Ted Lemon <mellon@fugue.com>, int-area <int-area@ietf.org>
Thread-Topic: [Int-area] Comments on current MPvD draft.
Thread-Index: AQHTXd5UHo9cNoAB3Eq/LsxEZcVWvaMVgXeA
Date: Wed, 15 Nov 2017 08:32:24 +0000
Message-ID: <CE5C3A81-51FA-4042-90E0-04930B361A88@cisco.com>
References: <45957315-A9A2-4E11-9069-5C41C7397034@fugue.com>
In-Reply-To: <45957315-A9A2-4E11-9069-5C41C7397034@fugue.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.1e.0.170107
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.68.218.169]
Content-Type: multipart/alternative; boundary="_000_CE5C3A8151FA404290E004930B361A88ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/LzFm5bk7-M8C-iAX8byA15fKeYw>
Subject: Re: [Int-area] Comments on current MPvD draft.
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Nov 2017 08:32:32 -0000
Ted, For the benefit of the WG members that were not at the WG meeting, let me thank you again for your interest and your comments on the -00. The authors have already discussed about your points and other similar ones. We have two potential approaches to fix this short-term issue: - PvD containers where PIO, RDNSS, ... options are inside the container so those options will be ignored by non PvD aware hosts - Sending PvD RA not to ff02::1 but to a different link-local multicast group, PvD aware hosts must process RA received via ff02::1 and this new group I personally prefer the later as the former creates a 'complex' encoding that will stay forever to solve a short-term issue (non PvD aware hosts). It also puts a size-constraint on the PvD as RA cannot be fragmented. Expect more discussions/proposals on the list on this topic -éric From: Int-area <int-area-bounces@ietf.org> on behalf of Ted Lemon <mellon@fugue.com> Date: Wednesday 15 November 2017 at 14:52 To: int-area <int-area@ietf.org> Subject: [Int-area] Comments on current MPvD draft. I'd like to have a bit of discussion today on the architectural choices in the current draft, if possible. There are two issues I want to discuss: 1. The assumption that each PvD will have its own router 2. The expected behavior of hosts that do not support MPvD in the presence of multiple routers The first assumption is problematic in the sense that in most cases (I think), it will actually be the case that the multiple provisioning domains will both be on the other side of a leaf router from the host that is accessing them. In this case, requiring multiple RAs with different link-local addresses is fairly heavyweight. The second issue isn't, strictly speaking, an MPvD problem, but I think it implicates MPvD because I think the behavior in this case is undefined. E.g., if both routers advertise a set of name servers, what does the host do? We've been looking at this in Homenet, and this came up as a serious concern: if the host chooses one set of name servers, it may not be able to access services in the other PvD. And yet if the host does support MPvD, we kind of want it to use different name servers per PvD. So what we concluded is that we want to be able to give hosts that do not support MPvD a clear answer that is different than the answer we give out for each PvD. This would not be possible with the current proposal. It's not a hard problem to solve, but we need to consider whether or not, and how, to solve it.
- [Int-area] Comments on current MPvD draft. Ted Lemon
- Re: [Int-area] Comments on current MPvD draft. Eric Vyncke (evyncke)
- Re: [Int-area] Comments on current MPvD draft. Ted Lemon
- Re: [Int-area] Comments on current MPvD draft. Mikael Abrahamsson
- Re: [Int-area] Comments on current MPvD draft. Marcus Keane
- Re: [Int-area] Comments on current MPvD draft. Tim Chown
- Re: [Int-area] Comments on current MPvD draft. Tommy Pauly
- Re: [Int-area] Comments on current MPvD draft. Eric Vyncke (evyncke)
- Re: [Int-area] Comments on current MPvD draft. Ted Lemon
- Re: [Int-area] Comments on current MPvD draft. Pierre Pfister