IETF Logo Mail Archive

Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-07.txt

David Farmer <farmer@umn.edu> Fri, 05 April 2024 18:16 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B990AC180B7D for <ipv6@ietfa.amsl.com>; Fri, 5 Apr 2024 11:16:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.096
X-Spam-Level:
X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pBoZUuZnGqDt for <ipv6@ietfa.amsl.com>; Fri, 5 Apr 2024 11:16:24 -0700 (PDT)
Received: from mta-p6.oit.umn.edu (mta-p6.oit.umn.edu [134.84.196.206]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EBC8FC15106C for <ipv6@ietf.org>; Fri, 5 Apr 2024 11:16:23 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mta-p6.oit.umn.edu (Postfix) with ESMTP id 4VB6BH33MDz9wNLY for <ipv6@ietf.org>; Fri, 5 Apr 2024 18:16:23 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p6.oit.umn.edu ([127.0.0.1]) by localhost (mta-p6.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Yf_SGFiPyONW for <ipv6@ietf.org>; Fri, 5 Apr 2024 13:16:23 -0500 (CDT)
Received: from mail-ed1-f71.google.com (mail-ed1-f71.google.com [209.85.208.71]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p6.oit.umn.edu (Postfix) with ESMTPS id 4VB6BG6G7Zz9wNLT for <ipv6@ietf.org>; Fri, 5 Apr 2024 13:16:22 -0500 (CDT)
DMARC-Filter: OpenDMARC Filter v1.3.2 mta-p6.oit.umn.edu 4VB6BG6G7Zz9wNLT
DKIM-Filter: OpenDKIM Filter v2.11.0 mta-p6.oit.umn.edu 4VB6BG6G7Zz9wNLT
Received: by mail-ed1-f71.google.com with SMTP id 4fb4d7f45d1cf-56e242ec7ffso876995a12.3 for <ipv6@ietf.org>; Fri, 05 Apr 2024 11:16:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; t=1712340980; x=1712945780; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=d2p8bHOtdm0WHSX2nG6VwooM4L2dIU0kG9KSLBTvebM=; b=D4AFv3suSPyOd8J4tnHGJa8AeA1xdTirR7EfgFYCrVoHBvIp/S6kA4gscZvchdvXO8 g9sbaDRLwRJj/Ugv9JtK9vs9mgLUPOcU5mtpAYbaapGb1wbH5m1z89+gt9TW5GmTN2Uo pTLEsAYANGA2++kg6yWB++vGuxqH9cq/OxZCZuUuY1cNLUaE5DLrk+WcSweiokWBX6MB laFvh+3oWBj99Q3dhznj4oKRsyGcu9oCdw2a1S9hSqyer356n+AkbydLE6XZmnhQ4mit Id3Xfmv0Q8D7KI8FFNtZoIdgEqbj1JSu7aCRafcn0YEJp0oTZ1ef/TXRyawBGWNWnDwY Fmrw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712340980; x=1712945780; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=d2p8bHOtdm0WHSX2nG6VwooM4L2dIU0kG9KSLBTvebM=; b=fZPnUS7WXo9B3u3IftN32S92ghZ4mlGSGcrTpcsj4kB7uS1dLuSqpMoWC9R6muWgo4 JYcfbr5E3CdzEWr55zK680sG5rI0fLO6cnhkJlLFlQBiJjcu5JMtvnUYcbaP6qC+I44F D6V5Rbqq9nPsrAUCz1pYIpNhLUA0t8SolAdRDb4kVzyQoioiPtmFfJxvmrW3pkOxxF21 fyZa67bCSeuEjLmxfEFuPNXtH6Xo0sgpoR0aeHFp+dQxbRr3dqeEswmyVWsgIK631/UP T2LpERlCo9M4tQr1zSawXqXvjzCqR7Hyij7gkUe3EHQrWeAAAR5toondROJoO8si7RRd TuEg==
X-Forwarded-Encrypted: i=1; AJvYcCUutq6GAc5Ld4x/WASBSbLBEPtMwq0ZFrQxL9H8IxQTcEu3EVogL6cph/7H3rFOequ2fF8q/g+ChnqSu5wx
X-Gm-Message-State: AOJu0Yzbqk66L6wyLLBBHX4f+e6QHqQq5Fefs5/u6CCEgQpYv7JMgIPx tWSs6Op9eFugFetUYaVta08yJSwOQY6fdi4S10qJGj2dhxYvDmFUkKcbvAxEIfMpjz3nxCIYPkE qmd/6/DM7tSplgnCurwrd3JjhsCVFkeCACBt0SC28qRPYL4xB2fkPGSwKTcvddLiXw33h67j2s/ PrDN27y/Nz+fSGZ9uuBQQZ
X-Received: by 2002:a50:d5c2:0:b0:56e:219a:b49c with SMTP id g2-20020a50d5c2000000b0056e219ab49cmr1603975edj.32.1712340980169; Fri, 05 Apr 2024 11:16:20 -0700 (PDT)
X-Google-Smtp-Source: AGHT+IGnd20tc5PpYpsBDt6Nk0zYF+jBxvgzx7l/xBrNTZ+gw4Xo6NMlcTX4nXPZ2RuWpm8b2hcCjyhaNAspTWCgFeI=
X-Received: by 2002:a50:d5c2:0:b0:56e:219a:b49c with SMTP id g2-20020a50d5c2000000b0056e219ab49cmr1603967edj.32.1712340979835; Fri, 05 Apr 2024 11:16:19 -0700 (PDT)
MIME-Version: 1.0
References: <171225751716.18509.12521562864612372012@ietfa.amsl.com> <a4063219-1cd5-4e06-bf42-b0ffebd2b419@gmail.com> <CAN-Dau3VrqfRR+4Eee7TOS1L2RAWbfWv87_QJH_u5gzVU1Av7g@mail.gmail.com> <CAPt1N1nq9V4H9kq+hf4YO-T6OUdYMv8Vmsd3Vpqf264Jm7mrKg@mail.gmail.com>
In-Reply-To: <CAPt1N1nq9V4H9kq+hf4YO-T6OUdYMv8Vmsd3Vpqf264Jm7mrKg@mail.gmail.com>
From: David Farmer <farmer@umn.edu>
Date: Fri, 05 Apr 2024 13:15:59 -0500
Message-ID: <CAN-Dau3nh50j6qB2WryL1tM2ktwSntDKX72v8O-_fzNRnu_C4Q@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, ipv6@ietf.org
Content-Type: multipart/alternative; boundary="000000000000d679eb06155d7370"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/9Ao3ps8cSFejTQZKa9QFbU06r4g>
Subject: Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-07.txt
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Apr 2024 18:16:28 -0000

On Fri, Apr 5, 2024 at 9:30 AM Ted Lemon <mellon@fugue.com> wrote:

> It's not at all clear to me that the burden of implementation here is
> sufficient to justify constrained devices not implementing the policy table
> update. If we want to do that, I think we need to explain exactly what sort
> of device we are talking about. Does the device not listen to RAs? Does it
> always send packets to the default router? If not, it's probably already
> doing things equivalently hard to maintaining a policy table.
>

I think we are good as long as the constrained device meets the host type C
specification in RFC4191.

Furthermore, what I originally proposed to address this was to simply
> change the policy table without requiring it to be dynamically updated:
> rather than having one type of ULA, have two: known and unknown ULAs. Known
> ULAs have a higher priority than IPv6 GUAs and IPv4 addresses. Unknown ULAs
> continue to be treated as before.
>
> What then needs to be maintained is a list of known ULAs. I realize that
> this isn't /that/ different from updating the policy table, but it is a bit
> simpler in the sense that there's no complexity to it—you're just keeping
> track of a list of ULAs, and when you do source/dest address selection each
> ULA is checked against that table before checking against the policy table.
>
> If constrained devices already support the policy table, I do not think
> this additional work is onerous.
>

How would the "known-local" ULA prefixes be populated if not dynamically
updated from PIOs and RIOs?

My worry wasn't about constrained devices not supporting the policy table;
my worry is whether there are any constrained devices of Type A or B from
RFC4191 that don't support RIOs.



> On Fri, Apr 5, 2024 at 2:45 AM David Farmer <farmer=
> 40umn.edu@dmarc.ietf.org> wrote:
>
>>
>> On Thu, Apr 4, 2024 at 2:52 PM Brian E Carpenter <
>> brian.e.carpenter@gmail.com> wrote:
>>
>>> All good changes, thanks.
>>>
>>
>> +1
>>
>>
>>> About this in section 3:
>>>
>>> "AUTHORS' NOTE: The authors have had feedback suggesting this
>>> requirement should be a MUST, which would mean that "known-local" ULAs
>>> would take precedence on compliant implementations over all IPv6 GUAs and
>>> all IPv4 addresses, but other general ULAs would not."
>>>
>>> I think the answer is clear, in section 8:
>>>
>>> "Receiving a DNS response for a ULA destination that is not attached to
>>> the local network... will typically fail..."
>>>
>>> That justifies the MUST in my opinion. But I agree we need to hear from
>>> kernel implementers.
>>>
>>
>> Ideally, I'd like to see all IPv6 implementations automatically insert
>> "known-local" ULAs into their policy table. From that point of view, I
>> support MUST.
>>
>> However, should constrained devices be an exception? If so, are there any
>> other exceptions? If there are exceptions, SHOULD might make more sense
>> than MUST.
>>
>> Also, SHOULD allows for a two-phase implementation approach. Phase one is
>> a mostly trivial change to the default policy table that can be implemented
>> quickly and easily. Phase two is a fairly complicated addition of a new
>> feature for inserting "known-local" ULAs into the policy table that
>> probably needs quite a bit of testing before going into production.
>>
>> In the long run, MUST is the right answer. However, SHOULD could have
>> some short-term advantages.
>>
>> In either case, since I'm not aware of any implementations of the current
>> MAY, I'd like to see some proof-of-concept running code to make sure what
>> we think we are saying is actually doable.
>>
>> Thanks.
>>
>> Nit: in the .txt version, there is a glitch in the rendering of Rule 5
>>> at the beginning of section 8.1 - the newlines have been lost.
>>>
>>
>> There are a number of rendering glitches that I mentioned previously.
>>
>>
>>> Regards
>>>     Brian Carpenter
>>>
>>> On 05-Apr-24 08:05, internet-drafts@ietf.org wrote:
>>> > Internet-Draft draft-ietf-6man-rfc6724-update-07.txt is now available.
>>> It is a
>>> > work item of the IPv6 Maintenance (6MAN) WG of the IETF.
>>> >
>>> >     Title:   Preference for IPv6 ULAs over IPv4 addresses in RFC6724
>>> >     Authors: Nick Buraglio
>>> >              Tim Chown
>>> >              Jeremy Duncan
>>> >     Name:    draft-ietf-6man-rfc6724-update-07.txt
>>> >     Pages:   15
>>> >     Dates:   2024-04-04
>>> >
>>> > Abstract:
>>> >
>>> >     When RFC 6724 was published it defined an address selection
>>> algorithm
>>> >     along with a default policy table, and noted a number of examples
>>> >     where that policy table might benefit from adjustment for specific
>>> >     scenarios.  It also noted that it is important for implementations
>>> to
>>> >     provide a way to change the default policies as more experience is
>>> >     gained.  This update draws on several years of operational
>>> experience
>>> >     to refine RFC 6724 further, with particular emphasis on preference
>>> >     for the use of ULA addresses over IPv4 addresses and the addition
>>> of
>>> >     mandatory support for Rule 5.5.  The update also demotes the
>>> >     preference for 6to4 addresses.  The changes to default behavior
>>> >     improve supportability of common use cases, including automatic /
>>> >     unmanaged scenarios.  It is recognized that some less common
>>> >     deployment scenarios may require explicit configuration or custom
>>> >     changes to achieve desired operational parameters.
>>> >
>>> > The IETF datatracker status page for this Internet-Draft is:
>>> > https://datatracker.ietf.org/doc/draft-ietf-6man-rfc6724-update/
>>> >
>>> > There is also an HTMLized version available at:
>>> >
>>> https://datatracker.ietf.org/doc/html/draft-ietf-6man-rfc6724-update-07
>>> >
>>> > A diff from the previous version is available at:
>>> >
>>> https://author-tools.ietf.org/iddiff?url2=draft-ietf-6man-rfc6724-update-07
>>> >
>>> > Internet-Drafts are also available by rsync at:
>>> > rsync.ietf.org::internet-drafts
>>> >
>>> >
>>> > _______________________________________________
>>> > I-D-Announce mailing list
>>> > I-D-Announce@ietf.org
>>> > https://www.ietf.org/mailman/listinfo/i-d-announce
>>> >
>>>
>>> --------------------------------------------------------------------
>>> IETF IPv6 working group mailing list
>>> ipv6@ietf.org
>>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>>> --------------------------------------------------------------------
>>>
>>
>>
>> --
>> ===============================================
>> David Farmer               Email:farmer@umn.edu
>> Networking & Telecommunication Services
>> Office of Information Technology
>> University of Minnesota
>> 2218 University Ave SE        Phone: 612-626-0815
>> Minneapolis, MN 55414-3029   Cell: 612-812-9952
>> ===============================================
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>>
>

-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email