IETF Logo Mail Archive

Re: Confirmation to advance: draft-ietf-6man-ipv6only-flag-05

Mark Smith <markzzzsmith@gmail.com> Tue, 28 May 2019 02:26 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C43D120096 for <ipv6@ietfa.amsl.com>; Mon, 27 May 2019 19:26:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.498
X-Spam-Level:
X-Spam-Status: No, score=-0.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oVA5npRCI1yI for <ipv6@ietfa.amsl.com>; Mon, 27 May 2019 19:26:53 -0700 (PDT)
Received: from mail-ot1-x335.google.com (mail-ot1-x335.google.com [IPv6:2607:f8b0:4864:20::335]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B2FE7120052 for <ipv6@ietf.org>; Mon, 27 May 2019 19:26:53 -0700 (PDT)
Received: by mail-ot1-x335.google.com with SMTP id 66so16360751otq.0 for <ipv6@ietf.org>; Mon, 27 May 2019 19:26:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=QcxtcTQwk+OJGaDtOQ2IakihLjLnJLP1NLKolwx54hc=; b=KBnDBMvAD9xjRiutQK0bcLKvG3kI+5p5LH3T9qld5v/7pLQ3XCWDrlVq32kQiM4F5l 1BzfAWT3MsofnfqKnWODrZKY79yGk6Dhnx/psrOTzQoHrNb3WthBjhXiLsclHicu7S4b a5TlzICWFoPdV0mbi/FBcHZb5LAZ2x8xS3/fOETX7zHpcAMcZdbJWWy+MT1Fvgqeg1Vp 4O+rSgNE2XRUL1b8A0LLDTVl8XPPOIsUqVV+otwsyIoGcsB7d8VkJR/mUi3lSkcXrhYN afUkzHEGqvNf37Rci4ANconHlAZMjBL/ReIavTNPjsb+xlYPkq8znpes4aLs2Ir2vItb /DRQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=QcxtcTQwk+OJGaDtOQ2IakihLjLnJLP1NLKolwx54hc=; b=ac2qAwXz6nfHefreX2kTDa8iUOZ1Swu8pkX72imkRICiFkSupXHXVuhPjbhSU80rgp X+x8d/7jc9R2usLT8vU44Zy8Tr1pZ92G63pMGZZDWfKiM8H77BNEHoJLd9gNgyGooNM2 WoPGTb4E/saMAd1TzXhOKDLvdxKK4wd1JYm6tQkKkOkPdv5x5k+ygcnopr2Q7TvLHhcp IYM+0cfeC/of+/NCWocXS//wGRiE3IQHs8uvFyBgKzQaEnFbNEa90s1kh1eWWTCI4Eie 0HuCh9VynrUjIFJtm3WGl3br4X6GxDBaooovelfd9W5k8shyQqsVgqsSIuezDvij7R6d pkIg==
X-Gm-Message-State: APjAAAX1Wz+wMnB66wlskpWN8+B0ZEvQYbZWqGygA/aInuTumB7SlDIr twYPmCFXRAgNxBh1pIavLC4C5q51wdj0v/tq7j4=
X-Google-Smtp-Source: APXvYqxiIAweqVvnO62NMsJyFBGLArIC1A1xF82xGtQMky0v6cXw+1fmcDtmTb4gR5ZruSH2qA1yvA6S+EGgH/uyh6s=
X-Received: by 2002:a9d:58c5:: with SMTP id s5mr45614009oth.153.1559010412721; Mon, 27 May 2019 19:26:52 -0700 (PDT)
MIME-Version: 1.0
References: <F8BFFCAD-E58E-4736-8A1C-56579B6F6032@employees.org> <232c1a43-0fd9-4eae-737b-260a3906f72a@gmail.com> <663F6C0B-7B8A-4088-B9C0-B2867B0C3EB8@gmail.com> <CAN-Dau3VJN7qNHAW-yStMrDRCa4vsDs2ObkAxswnYbcHde2t_w@mail.gmail.com> <m1hPqHO-0000J8C@stereo.hq.phicoh.net> <CAN-Dau3R=4JbcbK7tWkJKYzVjq7DvAAEjVsbCLbZdYYO8OJ0YA@mail.gmail.com> <m1hQ7Dm-0000M3C@stereo.hq.phicoh.net> <CAN-Dau040j6U+1CCn0QJiVMy2nVShHqqSFdCkM-FbMAH-2wjRA@mail.gmail.com> <m1hQCYr-0000KBC@stereo.hq.phicoh.net> <561d9dc3-c769-c774-8f65-f975ac2a10a0@gont.com.ar> <m1hT1DZ-0000HEC@stereo.hq.phicoh.net> <ce07ade8-5105-055f-4798-f4ef20a2393c@si6networks.com> <CAN-Dau02MYCrKx2BgyuYJeHBdoz6SHCnp+-byM+LMM8af0S+rA@mail.gmail.com> <40e99171-6dda-29e3-6152-da5ca5219ed9@foobar.org> <CAN-Dau0ALqfAA-Dz56oHAfOtY7E2obx5E7TgoeH357Mckp3t9g@mail.gmail.com> <093ba8e2-6f0a-4c91-9df1-cda33fffea97@foobar.org> <CAN-Dau3kVqb+ZEHB7iPGeRuq1Mu8UHR3FEZv8SgmiqZexaFhuA@mail.gmail.com> <12db9629-f92a-e12a-5ff1-7db2c5d2137e@foobar.org> <F6F0C9DC-545E-4FE5-BB4C-55BB29022E84@steffann.nl> <CAO42Z2yUDi3FHOZsLrHqwLsEWkB1X9FREa8m6dU6ecOr=SsX4g@mail.gmail.com> <E51102E7-D4F0-4469-8888-5072F624EE06@steffann.nl>
In-Reply-To: <E51102E7-D4F0-4469-8888-5072F624EE06@steffann.nl>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Tue, 28 May 2019 12:26:26 +1000
Message-ID: <CAO42Z2ycyMP4vAM+emyVqsF9GLvzpk1Jf6g-dHL4YOUc_iNzqg@mail.gmail.com>
Subject: Re: Confirmation to advance: draft-ietf-6man-ipv6only-flag-05
To: Sander Steffann <sander@steffann.nl>
Cc: David Farmer <farmer@umn.edu>, 6man WG <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/2kq6cAeXnej-WleNiuzGiEJ920Y>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 May 2019 02:26:55 -0000

Hi Sander,

On Tue, 28 May 2019 at 10:47, Sander Steffann <sander@steffann.nl> wrote:
>
> Hi Mark,
>
> Blocking 0x800/0x806 on individual link-layer ports would prevent IPv4
> traffic including link-layer broadcasts on the link, but it doesn't
> stop hosts initialising their IPv4 stack and trying to acquire an IPv4
> address via DHCP. It requires link-layer per-host port configuration,
> which would involve configuring 100s if not 1000s of individual ports.
>
>
> Most switch operating systems and/or automation solutions provide easy ways to do that, but let's look a bit further.
>
> RFC2563 should stop an IPv4 host sending IPv4 packets after the
> initial DHCP transaction. However, it doesn't prevent link-layer
> broadcast DHCPDISCOVERS, which is flooded to all other hosts on the
> link and has to be processed by their main OS CPU to be discarded,
> because the NIC can't filter them using the DA. This is where the main
> battery cost will be when mobile nodes join the link, likely
> continuously on big Wifi networks at e.g. conferences.
>
>
> Do you have numbers on this? I'd like to see whether this is a significant drain on batteries.

I think the impact of link-layer broadcasts on battery life is going
to be pretty similar to that of multicast RAs that are also link-layer
flooded to all-nodes, as they both have to be passed up to the general
purpose OS and CPU for processing.

The impact of multicast RAs on battery life has been enough that we've
published a BCP on using unicast RAs when possible to reduce devices'
energy consumption.

"Reducing Energy Consumption of Router Advertisements"
https://tools.ietf.org/html/bcp202

There are numbers in section 4 discussing the battery consumption
costs of flooded multicast RAs.


It is self-evident that doing nothing is more efficient and effective
than spending resources on doing something that is of no use and has
no value. The latter is the definition of the word "waste".

Link-layer broadcasts caused by IPv4 on an IPv6 Only link are wasting
mobile devices' battery capacity.

It's been advice to reduce or avoid link-layer broadcasts, well before
battery powered mobile devices were common.

"But broadcasts must be used with discretion, since all hosts that
receive one incur a certain amount of software overhead, if only to
discard it."

"Practical Considerations in Ethernet Local Network Design", by Ronald
C. Crane and Edward A. Taft
October 1979, revised February 1980

https://ethernethistory.typepad.com/papers/PracticalConsiderations.pdf



>
> A link with a DHCPv4 server on it supporting RFC2563 is not an IPv6
> Only link, because IPv4 is still present on the link. There should be
> no IPv4 services/infrastructure and no IPv4 packets on an IPv6 Only
> link, including IPv4 zero-conf link-local traffic. An IPv4 only
> zero-conf printer should not work on an IPv6 Only link, intentionally.
>
>
> This is what I consider an overly restrictive view ("purist") of an IPv6-only link. Telling your clients that ask for IPv4 using DHCP that there isn't any isn't an operational problem.
>

It's not being purist, it is being literal. It is complying with the
literal definition of the word "only".

You can't call your link an "IPv6 Only" link if there is any IPv4 is
present on it.

A link with DHCPv4 and RFC2563 is an "IPv6 Mostly" link, not an "IPv6
Only" link.

> The combination of those two mechanisms would go close to achieving what this flag would, except that the first mechanism prevents the
> second from working.
>
>
> So individually or in combination, neither of these are a solution to
> the problem of achieving an IPv6 only link.
>
>
> Ok. SAVI then instead of full ethertype filtering. Widely implemented and it allows DHCP, DHCP filtering and if the clients don't get addresses assigned it will drop their traffic.
>

Doesn't solve the problem of hosts needlessly, wastefully and
persistently trying to acquire IPv4 addresses that they'll never get.

It's making hosts into hamsters in wheels, activity with no progress.

Regards,
Mark.




> Cheers,
> Sander
>
> PS: it's almost 3am here. Don't expect more replies until tomorrow :)
>

v2.23.0 | Report a Bug | By Email