IETF Logo Mail Archive

Re: RFC4941 text on requirement for public addresses

Alexandre Petrescu <alexandre.petrescu@gmail.com> Thu, 19 May 2016 07:10 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E817812B011 for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 00:10:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.353
X-Spam-Level:
X-Spam-Status: No, score=-5.353 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_SOFTFAIL=0.665] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i5kbxuPl0kUP for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 00:10:05 -0700 (PDT)
Received: from oxalide-out.extra.cea.fr (oxalide-out.extra.cea.fr [132.168.224.8]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7481C12B047 for <ipv6@ietf.org>; Thu, 19 May 2016 00:10:04 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by oxalide.extra.cea.fr (8.15.2/8.15.2/CEAnet-Internet-out-2.4) with ESMTP id u4J7A20F004791; Thu, 19 May 2016 09:10:02 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 2C25C205B4F; Thu, 19 May 2016 09:10:04 +0200 (CEST)
Received: from muguet2.intra.cea.fr (muguet2.intra.cea.fr [132.166.192.7]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 1ED73200C4D; Thu, 19 May 2016 09:10:04 +0200 (CEST)
Received: from [10.8.34.184] (is227335.intra.cea.fr [10.8.34.184]) by muguet2.intra.cea.fr (8.15.2/8.15.2/CEAnet-Intranet-out-1.4) with ESMTP id u4J7A1up006821; Thu, 19 May 2016 09:10:01 +0200
Subject: Re: RFC4941 text on requirement for public addresses
To: Tim Chown <Tim.Chown@jisc.ac.uk>
References: <573B5FAC.7060300@gont.com.ar> <FBFC5456-E42D-4E52-BBE2-0ADC898516B0@employees.org> <3BDDD246-C889-4AB5-9C21-62E4BF284192@jisc.ac.uk> <d17cdbc3-0cc3-800c-a08d-dc3cd2895a1c@gmail.com> <AE7E6DF8-9281-49BC-A010-09E93B754EDC@jisc.ac.uk> <f185260a-6041-607a-bc9c-fcacdd59ab78@gmail.com> <AA62DD34-9484-4AB2-81C5-DBC3263C040F@jisc.ac.uk> <e69d3c42-b496-4e06-76ae-4206b6a3f245@gmail.com> <3C4C7992-8343-4F5E-A43C-13C8183E8E85@jisc.ac.uk>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <7aced586-d88f-9aaf-c603-326104586222@gmail.com>
Date: Thu, 19 May 2016 09:10:01 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.0
MIME-Version: 1.0
In-Reply-To: <3C4C7992-8343-4F5E-A43C-13C8183E8E85@jisc.ac.uk>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/5H05h8ruF0TlGW0VX_SDSR2WEBI>
Cc: "ipv6@ietf.org" <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2016 07:10:07 -0000

Le 18/05/2016 à 18:07, Tim Chown a écrit :
[...]

>> So the perspective in this RFC4941 (there is no value in a static
>> address) is contradictory to some operator's interests.
>
> All we’re discussing here (I think!) is whether 4941 should be
> changed to no longer say that SLAAC is a MUST, so that we open the
> possibility for a node to use temporary addresses only.

In practice the SLAAC is not a MUST.  There are many IPv6 computers 
which dont SLAAC - they DHCPv6, or manually configure, or use only LLs.

[...]

> But let’s focus on the topic Ole opened - should 4941 change the
> requirement for a public address from a MUST to something less, i.e.
> SHOULD, so we can very clearly support a mode where nodes can have
> just temporary addresses and no public address.

Is the Ole's SHOULD/MUST topic on public address use?  Or on SLAAC use?

Alex
(also, nit: may update RFC4941 to no longer say 'privacy addresses'
  on its pp. 12).

>
> Tim
>
>>
>> Alex
>>
>>
>>>
>>> Tim
>>>
>>>> Alex
>>>>
>>>>>
>>>>> Tim
>>>>>
>>>>>> Alex
>>>>>>
>>>>>>>
>>>>>>> Tim
>>>>>>>
>>>>>>>> Best regards, Ole
>>>>>>>>
>>>>>>>>> On 17 May 2016, at 20:15, Fernando Gont
>>>>>>>>> <fernando@gont.com.ar> wrote:
>>>>>>>>>
>>>>>>>>> Lorenzo (and wg),
>>>>>>>>>
>>>>>>>>> The two issues raised by Lorenzo regarding
>>>>>>>>> default-iids boil down to:
>>>>>>>>>
>>>>>>>>> 1) The ability to embed MAC addresses in the IID
>>>>>>>>>
>>>>>>>>> 2) The requirement to have stable addresses
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> This document does ban "1)" as the default algorithm
>>>>>>>>> for generating IIDs, for the reasons discussed in
>>>>>>>>> RFC7721 and draft-gont-predictable-numeric-ids. We
>>>>>>>>> have a very long history of improper numeric IDs, and
>>>>>>>>> I guess that, regarding this one, we simply disagree
>>>>>>>>> with Lorenzo.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Regarding "2)", this document does not specify any
>>>>>>>>> new requirements on the topic. Essentially, nodes
>>>>>>>>> are implied to configure a stable addresses as a
>>>>>>>>> result of SLAAC&traditional link-layer address
>>>>>>>>> properties, and more explicitly by this text in
>>>>>>>>> RFC4941:
>>>>>>>>>
>>>>>>>>> * Section 3, bullet #1: 2.  Create additional
>>>>>>>>> addresses based on a random interface identifier for
>>>>>>>>> the purpose of initiating outgoing sessions.
>>>>>>>>>
>>>>>>>>> * Section 3.3, bullet #1: 1.  Process the Prefix
>>>>>>>>> Information Option as defined in [ADDRCONF], either
>>>>>>>>> creating a new public address or adjusting the
>>>>>>>>> lifetimes of existing addresses, both public and
>>>>>>>>> temporary.
>>>>>>>>>
>>>>>>>>> * Section 3.3, bullet #3: 3.  When a new public
>>>>>>>>> address is created as described in [ADDRCONF], the
>>>>>>>>> node SHOULD also create a new temporary address.
>>>>>>>>>
>>>>>>>>> * Section 3.6, for instance, says (even recommending
>>>>>>>>> that temp addrs default to "off"): The use of
>>>>>>>>> temporary addresses may cause unexpected difficulties
>>>>>>>>> with some applications. As described below, some
>>>>>>>>> servers refuse to accept communications from clients
>>>>>>>>> for which they cannot map the IP address into a DNS
>>>>>>>>> name.  In addition, some applications may not behave
>>>>>>>>> robustly if temporary addresses are used and an
>>>>>>>>> address expires before the application has
>>>>>>>>> terminated, or if it opens multiple sessions, but
>>>>>>>>> expects them to all use the same addresses.
>>>>>>>>> Consequently, the use of temporary addresses SHOULD
>>>>>>>>> be disabled by default in order to minimize potential
>>>>>>>>> disruptions.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Our document simply requires implementations that
>>>>>>>>> their stable addresses are RFC7721-friendly. But if
>>>>>>>>> anything, the requirement of whether to have a stable
>>>>>>>>> address or not is not something introduced by our
>>>>>>>>> document.
>>>>>>>>>
>>>>>>>>> As a co-author of draft-ietf-6man-default-iids, I
>>>>>>>>> just wanted to check that we're on the same page,
>>>>>>>>> because I have the feeling that the above keeps
>>>>>>>>> getting misinterpreted.
>>>>>>>>>
>>>>>>>>> I believe all of the co-authors of default-iids agree
>>>>>>>>> and understand that there can be scenarios where you
>>>>>>>>> may want to do temporary-addresses-only. However,
>>>>>>>>> that is orthogonal to this particular document
>>>>>>>>> (default-iids), and would probably require an update
>>>>>>>>> to RFC4941, such that temporary addresses can be
>>>>>>>>> employed as a replacement of stable addresses, rather
>>>>>>>>> than as something that you do "in addition to" them.
>>>>>>>>>
>>>>>>>>> This document is about how to do stable addresses in
>>>>>>>>> a more RFC7721-friendly way than we currently do.
>>>>>>>>>
>>>>>>>>> Thanks!
>>>>>>>>>
>>>>>>>>> Best regards, -- Fernando Gont e-mail:
>>>>>>>>> fernando@gont.com.ar || fgont@si6networks.com PGP
>>>>>>>>> Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF
>>>>>>>>> D076 FFF1
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --------------------------------------------------------------------
>>>>>>>>>
>>>>>>>>>
>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>>>>>>
>>
>>>>>>>>>
IETF IPv6 working group mailing list
>>>>>>>>> ipv6@ietf.org Administrative Requests:
>>>>>>>>> https://www.ietf.org/mailman/listinfo/ipv6
>>>>>>>>> --------------------------------------------------------------------
>>>>>>>>
>>>>>>>>
>>>>>>>>>
>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>
>>>>>>>>>
>>>>>>>>>
>>
>>>>>>>>>
--------------------------------------------------------------------
>>>>>>>> IETF IPv6 working group mailing list ipv6@ietf.org
>>>>>>>> Administrative Requests:
>>>>>>>> https://www.ietf.org/mailman/listinfo/ipv6
>>>>>>>> --------------------------------------------------------------------
>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>
>>>>>>>>
>>>>>>>>
>>
>>>>>>>>
--------------------------------------------------------------------
>>>>>>> IETF IPv6 working group mailing list ipv6@ietf.org
>>>>>>> Administrative Requests:
>>>>>>> https://www.ietf.org/mailman/listinfo/ipv6
>>>>>>> --------------------------------------------------------------------
>>>>>>>
>>>>>>
>>>>>>
>>>>>>>
>>>>>>>
>>>>
>>>>>>>
>>>>>>>
>>
>>>>>>>
--------------------------------------------------------------------
>>>>>> IETF IPv6 working group mailing list ipv6@ietf.org
>>>>>> Administrative Requests:
>>>>>> https://www.ietf.org/mailman/listinfo/ipv6
>>>>>> --------------------------------------------------------------------
>
>>>>>>
>

v2.23.0 | Report a Bug | By Email