Re: RFC4941 text on requirement for public addresses
Alexandre Petrescu <alexandre.petrescu@gmail.com> Thu, 19 May 2016 07:10 UTC
Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E817812B011 for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 00:10:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.353
X-Spam-Level:
X-Spam-Status: No, score=-5.353 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_SOFTFAIL=0.665] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i5kbxuPl0kUP for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 00:10:05 -0700 (PDT)
Received: from oxalide-out.extra.cea.fr (oxalide-out.extra.cea.fr [132.168.224.8]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7481C12B047 for <ipv6@ietf.org>; Thu, 19 May 2016 00:10:04 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by oxalide.extra.cea.fr (8.15.2/8.15.2/CEAnet-Internet-out-2.4) with ESMTP id u4J7A20F004791; Thu, 19 May 2016 09:10:02 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 2C25C205B4F; Thu, 19 May 2016 09:10:04 +0200 (CEST)
Received: from muguet2.intra.cea.fr (muguet2.intra.cea.fr [132.166.192.7]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 1ED73200C4D; Thu, 19 May 2016 09:10:04 +0200 (CEST)
Received: from [10.8.34.184] (is227335.intra.cea.fr [10.8.34.184]) by muguet2.intra.cea.fr (8.15.2/8.15.2/CEAnet-Intranet-out-1.4) with ESMTP id u4J7A1up006821; Thu, 19 May 2016 09:10:01 +0200
Subject: Re: RFC4941 text on requirement for public addresses
To: Tim Chown <Tim.Chown@jisc.ac.uk>
References: <573B5FAC.7060300@gont.com.ar> <FBFC5456-E42D-4E52-BBE2-0ADC898516B0@employees.org> <3BDDD246-C889-4AB5-9C21-62E4BF284192@jisc.ac.uk> <d17cdbc3-0cc3-800c-a08d-dc3cd2895a1c@gmail.com> <AE7E6DF8-9281-49BC-A010-09E93B754EDC@jisc.ac.uk> <f185260a-6041-607a-bc9c-fcacdd59ab78@gmail.com> <AA62DD34-9484-4AB2-81C5-DBC3263C040F@jisc.ac.uk> <e69d3c42-b496-4e06-76ae-4206b6a3f245@gmail.com> <3C4C7992-8343-4F5E-A43C-13C8183E8E85@jisc.ac.uk>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <7aced586-d88f-9aaf-c603-326104586222@gmail.com>
Date: Thu, 19 May 2016 09:10:01 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.0
MIME-Version: 1.0
In-Reply-To: <3C4C7992-8343-4F5E-A43C-13C8183E8E85@jisc.ac.uk>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/5H05h8ruF0TlGW0VX_SDSR2WEBI>
Cc: "ipv6@ietf.org" <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2016 07:10:07 -0000
Le 18/05/2016 à 18:07, Tim Chown a écrit : [...] >> So the perspective in this RFC4941 (there is no value in a static >> address) is contradictory to some operator's interests. > > All we’re discussing here (I think!) is whether 4941 should be > changed to no longer say that SLAAC is a MUST, so that we open the > possibility for a node to use temporary addresses only. In practice the SLAAC is not a MUST. There are many IPv6 computers which dont SLAAC - they DHCPv6, or manually configure, or use only LLs. [...] > But let’s focus on the topic Ole opened - should 4941 change the > requirement for a public address from a MUST to something less, i.e. > SHOULD, so we can very clearly support a mode where nodes can have > just temporary addresses and no public address. Is the Ole's SHOULD/MUST topic on public address use? Or on SLAAC use? Alex (also, nit: may update RFC4941 to no longer say 'privacy addresses' on its pp. 12). > > Tim > >> >> Alex >> >> >>> >>> Tim >>> >>>> Alex >>>> >>>>> >>>>> Tim >>>>> >>>>>> Alex >>>>>> >>>>>>> >>>>>>> Tim >>>>>>> >>>>>>>> Best regards, Ole >>>>>>>> >>>>>>>>> On 17 May 2016, at 20:15, Fernando Gont >>>>>>>>> <fernando@gont.com.ar> wrote: >>>>>>>>> >>>>>>>>> Lorenzo (and wg), >>>>>>>>> >>>>>>>>> The two issues raised by Lorenzo regarding >>>>>>>>> default-iids boil down to: >>>>>>>>> >>>>>>>>> 1) The ability to embed MAC addresses in the IID >>>>>>>>> >>>>>>>>> 2) The requirement to have stable addresses >>>>>>>>> >>>>>>>>> >>>>>>>>> This document does ban "1)" as the default algorithm >>>>>>>>> for generating IIDs, for the reasons discussed in >>>>>>>>> RFC7721 and draft-gont-predictable-numeric-ids. We >>>>>>>>> have a very long history of improper numeric IDs, and >>>>>>>>> I guess that, regarding this one, we simply disagree >>>>>>>>> with Lorenzo. >>>>>>>>> >>>>>>>>> >>>>>>>>> Regarding "2)", this document does not specify any >>>>>>>>> new requirements on the topic. Essentially, nodes >>>>>>>>> are implied to configure a stable addresses as a >>>>>>>>> result of SLAAC&traditional link-layer address >>>>>>>>> properties, and more explicitly by this text in >>>>>>>>> RFC4941: >>>>>>>>> >>>>>>>>> * Section 3, bullet #1: 2. Create additional >>>>>>>>> addresses based on a random interface identifier for >>>>>>>>> the purpose of initiating outgoing sessions. >>>>>>>>> >>>>>>>>> * Section 3.3, bullet #1: 1. Process the Prefix >>>>>>>>> Information Option as defined in [ADDRCONF], either >>>>>>>>> creating a new public address or adjusting the >>>>>>>>> lifetimes of existing addresses, both public and >>>>>>>>> temporary. >>>>>>>>> >>>>>>>>> * Section 3.3, bullet #3: 3. When a new public >>>>>>>>> address is created as described in [ADDRCONF], the >>>>>>>>> node SHOULD also create a new temporary address. >>>>>>>>> >>>>>>>>> * Section 3.6, for instance, says (even recommending >>>>>>>>> that temp addrs default to "off"): The use of >>>>>>>>> temporary addresses may cause unexpected difficulties >>>>>>>>> with some applications. As described below, some >>>>>>>>> servers refuse to accept communications from clients >>>>>>>>> for which they cannot map the IP address into a DNS >>>>>>>>> name. In addition, some applications may not behave >>>>>>>>> robustly if temporary addresses are used and an >>>>>>>>> address expires before the application has >>>>>>>>> terminated, or if it opens multiple sessions, but >>>>>>>>> expects them to all use the same addresses. >>>>>>>>> Consequently, the use of temporary addresses SHOULD >>>>>>>>> be disabled by default in order to minimize potential >>>>>>>>> disruptions. >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Our document simply requires implementations that >>>>>>>>> their stable addresses are RFC7721-friendly. But if >>>>>>>>> anything, the requirement of whether to have a stable >>>>>>>>> address or not is not something introduced by our >>>>>>>>> document. >>>>>>>>> >>>>>>>>> As a co-author of draft-ietf-6man-default-iids, I >>>>>>>>> just wanted to check that we're on the same page, >>>>>>>>> because I have the feeling that the above keeps >>>>>>>>> getting misinterpreted. >>>>>>>>> >>>>>>>>> I believe all of the co-authors of default-iids agree >>>>>>>>> and understand that there can be scenarios where you >>>>>>>>> may want to do temporary-addresses-only. However, >>>>>>>>> that is orthogonal to this particular document >>>>>>>>> (default-iids), and would probably require an update >>>>>>>>> to RFC4941, such that temporary addresses can be >>>>>>>>> employed as a replacement of stable addresses, rather >>>>>>>>> than as something that you do "in addition to" them. >>>>>>>>> >>>>>>>>> This document is about how to do stable addresses in >>>>>>>>> a more RFC7721-friendly way than we currently do. >>>>>>>>> >>>>>>>>> Thanks! >>>>>>>>> >>>>>>>>> Best regards, -- Fernando Gont e-mail: >>>>>>>>> fernando@gont.com.ar || fgont@si6networks.com PGP >>>>>>>>> Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF >>>>>>>>> D076 FFF1 >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -------------------------------------------------------------------- >>>>>>>>> >>>>>>>>> >>>>>> >>>>>>>>> >>>>>>>>> >>>> >>>>>>>>> >>>>>>>>> >> >>>>>>>>> IETF IPv6 working group mailing list >>>>>>>>> ipv6@ietf.org Administrative Requests: >>>>>>>>> https://www.ietf.org/mailman/listinfo/ipv6 >>>>>>>>> -------------------------------------------------------------------- >>>>>>>> >>>>>>>> >>>>>>>>> >>>>>> >>>>>>>>> >>>>>>>>> >>>> >>>>>>>>> >>>>>>>>> >> >>>>>>>>> -------------------------------------------------------------------- >>>>>>>> IETF IPv6 working group mailing list ipv6@ietf.org >>>>>>>> Administrative Requests: >>>>>>>> https://www.ietf.org/mailman/listinfo/ipv6 >>>>>>>> -------------------------------------------------------------------- >>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> >>>>>>>> >>>>>>>> >>>> >>>>>>>> >>>>>>>> >> >>>>>>>> -------------------------------------------------------------------- >>>>>>> IETF IPv6 working group mailing list ipv6@ietf.org >>>>>>> Administrative Requests: >>>>>>> https://www.ietf.org/mailman/listinfo/ipv6 >>>>>>> -------------------------------------------------------------------- >>>>>>> >>>>>> >>>>>> >>>>>>> >>>>>>> >>>> >>>>>>> >>>>>>> >> >>>>>>> -------------------------------------------------------------------- >>>>>> IETF IPv6 working group mailing list ipv6@ietf.org >>>>>> Administrative Requests: >>>>>> https://www.ietf.org/mailman/listinfo/ipv6 >>>>>> -------------------------------------------------------------------- > >>>>>> >
- default-iids and stable addresses Fernando Gont
- Re: default-iids and stable addresses Lorenzo Colitti
- RFC4941 text on requirement for public addresses … otroan
- Re: RFC4941 text on requirement for public addres… Lorenzo Colitti
- Re: RFC4941 text on requirement for public addres… Tim Chown
- AW: RFC4941 text on requirement for public addres… Johanna Ullrich
- Re: RFC4941 text on requirement for public addres… Alexandre Petrescu
- Re: RFC4941 text on requirement for public addres… Tim Chown
- Re: RFC4941 text on requirement for public addres… Alexandre Petrescu
- Re: RFC4941 text on requirement for public addres… Tim Chown
- Re: RFC4941 text on requirement for public addres… Alexandre Petrescu
- Re: RFC4941 text on requirement for public addres… Tim Chown
- RE: RFC4941 text on requirement for public addres… Dave Thaler
- Re: default-iids and stable addresses 神明達哉
- Re: RFC4941 text on requirement for public addres… Brian E Carpenter
- Re: RFC4941 text on requirement for public addres… Lorenzo Colitti
- Re: default-iids and stable addresses Lorenzo Colitti
- Re: RFC4941 text on requirement for public addres… Alexandre Petrescu
- Re: default-iids and stable addresses Tim Chown
- Re: default-iids and stable addresses Tim Chown
- Re: default-iids and stable addresses Fernando Gont
- Re: default-iids and stable addresses Fernando Gont