IETF Logo Mail Archive

RE: draft-ietf-6man-slaac-renum: Heuristics to deprecate stale information

Vasilenko Eduard <vasilenko.eduard@huawei.com> Thu, 18 August 2022 07:26 UTC

Return-Path: <vasilenko.eduard@huawei.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 671A4C152701 for <ipv6@ietfa.amsl.com>; Thu, 18 Aug 2022 00:26:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.906
X-Spam-Level:
X-Spam-Status: No, score=-1.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1OC1nztrCyH8 for <ipv6@ietfa.amsl.com>; Thu, 18 Aug 2022 00:26:24 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7B2BC14CF13 for <ipv6@ietf.org>; Thu, 18 Aug 2022 00:26:23 -0700 (PDT)
Received: from fraeml707-chm.china.huawei.com (unknown [172.18.147.206]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4M7bsb6q2gz67KY3 for <ipv6@ietf.org>; Thu, 18 Aug 2022 15:21:23 +0800 (CST)
Received: from mscpeml500002.china.huawei.com (7.188.26.138) by fraeml707-chm.china.huawei.com (10.206.15.35) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.24; Thu, 18 Aug 2022 09:26:19 +0200
Received: from mscpeml500001.china.huawei.com (7.188.26.142) by mscpeml500002.china.huawei.com (7.188.26.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.24; Thu, 18 Aug 2022 10:26:19 +0300
Received: from mscpeml500001.china.huawei.com ([7.188.26.142]) by mscpeml500001.china.huawei.com ([7.188.26.142]) with mapi id 15.01.2375.024; Thu, 18 Aug 2022 10:26:19 +0300
From: Vasilenko Eduard <vasilenko.eduard@huawei.com>
To: "Pascal Thubert (pthubert)" <pthubert=40cisco.com@dmarc.ietf.org>, Ted Lemon <mellon@fugue.com>, Fernando Gont <fgont@si6networks.com>
CC: "ipv6@ietf.org" <ipv6@ietf.org>, Erik Kline <ek.ietf@gmail.com>
Subject: RE: draft-ietf-6man-slaac-renum: Heuristics to deprecate stale information
Thread-Topic: draft-ietf-6man-slaac-renum: Heuristics to deprecate stale information
Thread-Index: AdiloFhLa8BjnlR+QA+N8dfMFruYnwAA02igAAD0bmAAAHJb8AIqYm0AAAnOGoAAAcGSAAAAuOyAAIKFslAAAGyOgAAt+AoQAAWUuoAAAEdgAAAAj4CAAC+zrmD//+2XgP/+k10A
Date: Thu, 18 Aug 2022 07:26:19 +0000
Message-ID: <a2f1b977c1d8404880b010bd129012ff@huawei.com>
References: <1b37247f-f700-4d16-1c6e-9495986db7bb@si6networks.com> <193068C8-8A42-4FA9-9F88-86132518E98F@fugue.com> <e35bb0100365461699bbd43635b4b500@huawei.com> <CO1PR11MB488114B96249026A836D350ED86A9@CO1PR11MB4881.namprd11.prod.outlook.com>
In-Reply-To: <CO1PR11MB488114B96249026A836D350ED86A9@CO1PR11MB4881.namprd11.prod.outlook.com>
Accept-Language: zh-CN, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.45.146.105]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/AaC2lUo5sMnKhBaCuYPUC9PTUV4>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Aug 2022 07:26:25 -0000

Hi Pascal,

I do not believe that we have a solution to put in the BCP for situations:
when PIO has been just omitted from the router's announcements
Or the host has been moved between VLANs (to see the different router)
Or CPE has been brutally replaced (old router have no change to deprecate)

Moreover, you are talking below about MHMP use cases (many routers on the link).
That is almost resolved by RFC 8028, except for a couple of corner cases covered here https://datatracker.ietf.org/doc/html/draft-vv-6man-nd-support-mhmp-00

I prefer a more stateful ND router too. But it is not the patch for the ND that is discussed here. It is an ND replacement. My vote is "+1", just I do not believe it would be accepted by this WG.
Reminder, I do not like that you made multi-link subnet (MLSN) the basic mandatory part of WiND. It is too complex and not needed for the majority of use cases.
I understand that MLSN is a good option for some mesh IoT links. It should be a non-mandatory option, clearly separated and really optional.
IMHO: draft-chakrabarti-nordmark-6man-efficient-nd was the best version of ND. It is effectively WiND without MLSN.

Eduard
-----Original Message-----
From: Pascal Thubert (pthubert) [mailto:pthubert=40cisco.com@dmarc.ietf.org] 
Sent: Wednesday, August 17, 2022 2:54 PM
To: Vasilenko Eduard <vasilenko.eduard@huawei.com>; Ted Lemon <mellon@fugue.com>; Fernando Gont <fgont@si6networks.com>
Cc: ipv6@ietf.org; Erik Kline <ek.ietf@gmail.com>
Subject: RE: draft-ietf-6man-slaac-renum: Heuristics to deprecate stale information

Hello Eduard:

I had to twist the standards of the day to make Mobile IPv6 (MIPv6) and NEMO work when I implemented the cisco mobile router (IOS-based), about 20 years ago.
Basically match the source address and the router that sent the PIO (which is now RFC 8028), and use the most recently seen router (which is still not in any standard). 
MIPv6 also defined a way to quickly deprecate a router that is not reachable anymore using a fast RA interval. That was never enough to keep sessions flowing, but at least it could turn 1 week into minutes.

So to your point, I'd say that we need more of a BCP to implement what exists rather than new stuff. Maybe Xipeng's v6Ops work could cover that?

Now there's still a need to "sync" state changes between a router and a host when one's state depends on the other, e.g., new PIO deprecating old PIO. 
In the context of stateful AAC (WiND) we defined a new ND option for what impacts the registration state, see https://datatracker.ietf.org/doc/html/draft-ietf-6lo-multicast-registration-09#section-10. 

Erik K. (as 6lo A-D) raised the issue that this option may be generalized and sh/could be its own draft. Awaiting confirmation on that. 	

All the best;

Pascal

> -----Original Message-----
> From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Vasilenko Eduard
> Sent: mercredi 17 août 2022 12:13
> To: Ted Lemon <mellon@fugue.com>; Fernando Gont 
> <fgont@si6networks.com>
> Cc: ipv6@ietf.org
> Subject: RE: draft-ietf-6man-slaac-renum: Heuristics to deprecate 
> stale information
> 
> Hi Ted,
> 
> The case that Jen has mentioned, I have heard the 1st time from 
> Olorunloba
> Olopade:
> CPE is switched off, thrown in the garbage basket, and a new CPE is 
> installed.
> The old CPE is not in the reload - it would never be powered again.
> For some time (up to 30min), the host would think that 2 routers are 
> available.
> For a long time (1 week), the host would think that the old PIO is 
> available.
> Hence, the need to do something about this traffic black holing.
> 
> The case: "Router absence during reload" is out of "flash renumbering"
> scope Because such things needs something like BFD to fast detect.
> It is possible to add something like BFD to the host, but it is 
> probably a different draft/RFC.
> 
> All cases in the scope of flash renumbering are "reaction to the 
> new/different announcement of the router".
> It does not matter why announcement is new - host should have 
> consistet configuration.
> "Flash renumbering" is about "fast depricate after new information 
> arrival in RA".
> Reloading router could not deliver a new information. Hence, not 
> related to this draft discussion.
> 
> Ed/
> -----Original Message-----
> From: Ted Lemon [mailto:mellon@fugue.com]
> Sent: Tuesday, August 16, 2022 5:14 PM
> To: Fernando Gont <fgont@si6networks.com>
> Cc: Vasilenko Eduard <vasilenko.eduard@huawei.com>; ipv6@ietf.org
> Subject: Re: draft-ietf-6man-slaac-renum: Heuristics to deprecate 
> stale information
> 
> Right, I think Eduard was talking about the case where the arrival of 
> a new router signals a possible link change. In this case, if the old 
> router is not reachable, that probably means you’re on a reconfigured link.
> However, it could also mean that the router is rebooting, and your 
> timing is bad. So it makes sense to deprecate the prefixes you got 
> from that router, so that you don’t continue to use them in case they 
> won’t work, but to not flush them, and not break connections using 
> them, because if the router is only temporarily gone, the other router 
> that showed up may not be offering equivalent connectivity, and so 
> trashing existing connections could result in a bad user experience.
> 
> Of course, the easy way out of this is to not look for signals that 
> the network has been reconfigured, on the assumption that that should 
> never happen without a link state transition. In a sense, the question 
> is whether this is actually a valid assumption or not. How likely is a 
> link reconfiguration without a link state change and without an 
> explicit signal from the router?
> 
> Sent from my iPad
> 
> > On Aug 16, 2022, at 9:58 AM, Fernando Gont <fgont@si6networks.com>
> wrote:
> >
> > Hi, Ted,
> >
> >> On 16/8/22 10:49, Ted Lemon wrote:
> >>> On Aug 16, 2022, at 5:04 AM, Vasilenko Eduard
> <vasilenko.eduard@huawei.com> wrote:
> >>> I do not understand the benefit to keep stale ND information
> >> It might not be stale. The router might just be briefly offline. 
> >> You
> don’t want to break all your connections because of that. If the 
> prefix is genuinely no longer valid, then a more advanced 
> implementation could notice that all the connections on that 
> deprecated prefix have timed out, and then flush it, but flushing it immediately seems premature.
> >
> > FWIW, in our I-D we only deprecate information when the router 
> > ceases to
> advertise a previously-advertised prefix while still sending RAs.
> >
> > (i.e., it's not that the router "disappears", but rather it simply 
> > stops
> advertising the previously-advertised prefix).
> >
> > Thanks,
> > --
> > Fernando Gont
> > SI6 Networks
> > e-mail: fgont@si6networks.com
> > PGP Fingerprint: F242 FF0E A804 AF81 EB10 2F07 7CA1 321D 663B B494
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email