IETF Logo Mail Archive

Re: Reducing the battery impact of ND

Carsten Bormann <cabo@tzi.org> Sat, 01 February 2014 10:04 UTC

Return-Path: <cabo@tzi.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D34AB1ACCE2 for <ipv6@ietfa.amsl.com>; Sat, 1 Feb 2014 02:04:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.551
X-Spam-Level:
X-Spam-Status: No, score=-1.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_DE=0.35, SPF_HELO_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H8GMENxka2pj for <ipv6@ietfa.amsl.com>; Sat, 1 Feb 2014 02:04:53 -0800 (PST)
Received: from informatik.uni-bremen.de (mailhost.informatik.uni-bremen.de [IPv6:2001:638:708:30c9::12]) by ietfa.amsl.com (Postfix) with ESMTP id B7E991A04CD for <ipv6@ietf.org>; Sat, 1 Feb 2014 02:04:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at informatik.uni-bremen.de
Received: from smtp-fb3.informatik.uni-bremen.de (smtp-fb3.informatik.uni-bremen.de [134.102.224.120]) by informatik.uni-bremen.de (8.14.5/8.14.5) with ESMTP id s11A4dq3028119 for <ipv6@ietf.org>; Sat, 1 Feb 2014 11:04:40 +0100 (CET)
Received: from [192.168.217.105] (p54892C3C.dip0.t-ipconnect.de [84.137.44.60]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by smtp-fb3.informatik.uni-bremen.de (Postfix) with ESMTPSA id 6ADF557F; Sat, 1 Feb 2014 11:04:39 +0100 (CET)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
Subject: Re: Reducing the battery impact of ND
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <52ECA6EE.1080201@acm.org>
Date: Sat, 01 Feb 2014 11:04:37 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <8A362DBA-6CBE-4DAA-A132-5E9647A37BBD@tzi.org>
References: <CAKD1Yr29S=O5L4DfhNoiVieWPkgBJ2veuOu6ig5rwgK4ELz7Xw@mail.gmail.com> <52D96663.6060005@sonic.net> <CAKD1Yr3pCQ15uFz36MvKG3Q_Vzt27ws0aG1=94377FFaJtWV7g@mail.gmail.com> <52DA0ABA.8030903@acm.org> <CAKD1Yr1zSfAOv8j9XgB_ph9uaUUNW0yrJhfjJTsSTYHNKYNx9A@mail.gmail.com> <52E03BB4.8040309@acm.org> <DCA1F00D-0775-4030-A3BF-700F01F98C35@employees.org> <52E0423A.5070906@acm.org> <01DC3532-C73A-4644-A323-04BE6231AADA@employees.org> <52E9EF2D.9050402@acm.org> <2CFF305E-DE44-4D57-82D3-241196D94610@employees.org> <CAHw9_i+0DKS7pTFmRaajdX0=R9yhY7=6gXs2nV_vEKqEsz=d2Q@mail.gmail.com> <52ECA6EE.1080201@acm.org>
To: 6man WG <ipv6@ietf.org>
X-Mailer: Apple Mail (2.1827)
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Feb 2014 10:04:54 -0000

On 01 Feb 2014, at 08:49, Erik Nordmark <nordmark@acm.org> wrote:

>> ... and can someone please remind me what exactly was wrong with ARP? Other than the fact that v4 uses it?!

What Erik said, plus maybe this reminder:

When ARP was invented more than 30 years ago, Ethernet networks were run on the assumption that everyone on them could be trusted, both from a security and from an implementation bugs perspective.
(Those yellow-cable networks were so fragile... Let’s not digress.)

To make ARP actually work in less peaceful environments, there is usually significant hackery deployed at layer 2 (in Ethernet switches and WiFi base stations/controllers).  With all that hackery in place, it may *seem* as if ARP works, but it is really the combination of the ARP implementation in the IP nodes and the magic in the switches that makes this so.

ND inherited most of this situation, except that the hackery wasn’t deployed yet.  That’s why you hear so much about ND being “insecure”, “not deployable” — ND really is much better than ARP, it just had to wait for the hacks to catch up.  The directed multicast of ND (as opposed to ARP’s broadcast) only makes a difference where L2 actually implements that directionality; more hackery.  (The irony is that MLD now becomes an address registration protocol that is needed to make the illusion of "no registration" work at the ND level, but I digress again.)

So the reality today is that we have this fragile combination of the documented protocols and the switch vendor magic that makes it all work.  Of course, the switch vendors don’t complain; it creates an opportunity for market differentiation.

Now, for 6LoWPAN, we had to build something that relies much less on multicast.  That became 6LoWPAN-ND, RFC 6775.  Having built this fine hammer, of course other nails sprang to mind.  The above situation looks like a fine nail to me (except that legacy compatibility makes things so much more complex).  That’s maybe the explanation why this discussion didn’t start with documenting the well-known problems, but with looking at one specific solution, and how it could be made to work with legacy.  But I agree documenting the problem would be a worthwhile exercise, if it is not used as an excuse to stop looking for solutions.

Clearly, efficient-ND will work best if it doesn’t require a new layer of L2 hackery, and if it cooperates reasonable with (or works around) the existing, deployed hackery.  This is more work to make sure given that this hackery is only partially documented.  So that is maybe another reason to work on documenting ARP/ND’s problems and the existing magic.

Grüße, Carsten

v2.23.0 | Report a Bug | By Email