IETF Logo Mail Archive

Re: 6man w.g. last call for <draft-ietf-6man-grand>

Gyan Mishra <hayabusagsm@gmail.com> Mon, 20 July 2020 00:57 UTC

Return-Path: <hayabusagsm@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 241093A0C52 for <ipv6@ietfa.amsl.com>; Sun, 19 Jul 2020 17:57:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.087
X-Spam-Level:
X-Spam-Status: No, score=-2.087 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5KPCtudomfzb for <ipv6@ietfa.amsl.com>; Sun, 19 Jul 2020 17:57:56 -0700 (PDT)
Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E91C73A0C53 for <ipv6@ietf.org>; Sun, 19 Jul 2020 17:57:55 -0700 (PDT)
Received: by mail-io1-xd2b.google.com with SMTP id i4so15823147iov.11 for <ipv6@ietf.org>; Sun, 19 Jul 2020 17:57:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ZkMubkkZD8cD3AB/kbXMFqOD2YMlin9oL2za+LgNuXc=; b=b8bUPrrWA7/E0B2k8C0oyKg3T1Bqwa0yCoOVfONx+fybtV6jrVtpfxwvm4EPm59ef8 LXNgUkF0e4qqo/2Fj6FAx1cyTscS5WORSl0RWSt46l4d9vH2Rh3vLg5dH7sxJ+1LPNle 74WArY6belvfw/MgHiBAUBPBJaqpHbGnDTx5ZClJzcOagQIT1LyD62nNjHkrBRCSS5Em jYBgb9C+eITi4cABayea3+ZYLIPgj9BgHpRguQdFCLJUOqppKxGtDQOoHh1JpYWTpbxQ uxBCubfMIaYGMbbejXibaJAZ+e7WdERFCN46Mtgqx390C4Tx/V79V1enAWer4CCKBu3a POfA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ZkMubkkZD8cD3AB/kbXMFqOD2YMlin9oL2za+LgNuXc=; b=CZMAW9Zl2OlB/hebk44Qx8vG/vb0zDc5u9x5KGicTjK3YMCdvFwLfj0SklBjol1RYr FH35e15RgkQ00tFyazBNJyx8duld/VaH64UtWdP0ZSCa041yikuRSTvQ2MT4T7fVrD+k MCbdrTsmKZxAjzg9vGYxzJelsYo53v+WRz80foqRvu2sFROO4X7hmeTmW2BqI3qCBa6m 6rBv3dtsAsRJv1P22FrsT7tTr0Rb8PNq1M77P2HD418tpHkAaBy9Q7MD5LMFwvsxoEPF JwL7FNzUEUurnCOV2W6i+o+f0Lctr2AjO98hAPLPE21Dawj0XbI8r/TTQkgG2lHXVQJ5 1xGg==
X-Gm-Message-State: AOAM533FCioXis1/f8adsDRY9EbD0c9/jst47TReC44VOD/ZyehjAaPl 6ZZOLbFSsmqbcByd70bpuvS8ccbDCq4Z2CgaXr4=
X-Google-Smtp-Source: ABdhPJzXCEsqhng/i3NOpu3dAR0Cc1fPS/kyzSYcXsptb8tejCykins+YisZYFaC8pnLmbjcY6jbSfRuuM0oeV4ch5c=
X-Received: by 2002:a02:4083:: with SMTP id n125mr22917135jaa.83.1595206675008; Sun, 19 Jul 2020 17:57:55 -0700 (PDT)
MIME-Version: 1.0
References: <20160428004904.25189.43047.idtracker@ietfa.amsl.com> <882A1EDB-4A41-47E7-88D6-AC37D3341C6A@gmail.com> <CAO42Z2yWzcQBkDjOsaiM2Ppij0v=s1edMLyZeLbf1e89wVU3UA@mail.gmail.com> <CAFU7BAQvpHiJ9X=y72Zr5VAXs4ZGVqP1A5-snxBbrmxecPnpWA@mail.gmail.com> <CAO42Z2xLEQFbMYLUHHza3fM2O4Df=-ZC35P=ugeEbF2cs=Oiwg@mail.gmail.com> <CABNhwV28PO6xWZwaPaGzEb2dWsOMpkiuyNn7Egqadn2+s2YU6w@mail.gmail.com>
In-Reply-To: <CABNhwV28PO6xWZwaPaGzEb2dWsOMpkiuyNn7Egqadn2+s2YU6w@mail.gmail.com>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Sun, 19 Jul 2020 20:57:44 -0400
Message-ID: <CABNhwV3g9e0DEJJ0_9uceZp5aPXKDNzbVDLs3hopED7Ws_D-3g@mail.gmail.com>
Subject: Re: 6man w.g. last call for <draft-ietf-6man-grand>
To: Mark Smith <markzzzsmith@gmail.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, IPv6 List <ipv6@ietf.org>, Jen Linkova <furry13@gmail.com>, Jen Linkova <furry@google.com>
Content-Type: multipart/alternative; boundary="00000000000035127605aad4ff82"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/EPTc6Oo5st1MXzUXF-G-FL5PKp0>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Jul 2020 00:57:59 -0000

I support advancement of the draft as it fixes a real world Day 1 issue.

Kind Regards

Gyan

On Sun, Jul 19, 2020 at 8:16 PM Gyan Mishra <hayabusagsm@gmail.com> wrote:

>
>
> Jen
>
> I have not read through the draft again but from what I remember and from
> Marks comment having the S flag set on the RS for both GUA and LL.
>
> The point that Mark made for the LL having S flag set on the NS makes
> sense for hosts and also routers so that any ND NS/NA a d RD RS/RA entry
> gets built immediately then waiting for NA and DAD of during DAD for
> optimistic DAD.  Since OSPF uses LL address to FF02::5 ::6 makes sense to
> help optimize routing.
>
> Thanks
>
> Gyan
>
> On Sun, Jul 19, 2020 at 6:48 PM Mark Smith <markzzzsmith@gmail.com> wrote:
>
>> Hi Jen,
>>
>> On Thu, 16 Jul 2020 at 07:59, Jen Linkova <furry13@gmail.com> wrote:
>> >
>> > On Thu, Jul 16, 2020 at 6:48 AM Mark Smith <markzzzsmith@gmail.com>
>> wrote:
>> > > Unfortunately I don't support advancement right now, as I've had some
>> > > further fairly significant suggestions for it which I've been
>> > > struggling to finding time to provide. Apologies for the delay,
>> > > started a new job.
>> >
>> > Thanks for the ideas!
>> >
>> > > In summary, and I'll provide more details and text over the weekend:
>> > >
>> > > - I've changed my mind on the idea of an optimisation of not
>> > > performing this for link-local addresses i.e. only performing it for
>> > > off-link addresses, for two reasons:
>> > >
>>
>>
>> <snip>
>>
>> > So basically you are suggesting s/GUA/an IPv6 address/g ?
>> >>
>>
>> Yes. Do GRAND for all types of addresses the host creates, not just
>> addresses that might be reached from off link.
>>
>> It would be marginally simpler for the hosts to do it universally for
>> all addresses than being selective.
>>
>> It preloads the routers' neighbor caches with entries for all types of
>> the host's addresses, so if the router needs to send to a host's
>> Link-Local Address, the router would already have a neighbor cache
>> entry for the Link-Local address.
>>
>> Over time, as GRAND is implemented in hosts, this would also mean that
>> the routers' neighbor caches become a database of all addresses
>> present on the link for well behaved hosts, including link-local
>> addresses, useful for troubleshooting. Also better than DHCPv6 for
>> address security auditing, as DHCPv6 doesn't record link-local
>> addresses or SLAAC addresses, although a smart malicious host won't do
>> any of GRAND, DHCPv6, MLD, DAD or possibly even ND to hide itself. I
>> think people are realising that scraping a router's ND cache is a
>> better solution for this.
>>
>> Thinking about the Link-Local use case, I think routers doing GRAND
>> towards each other could also be a useful optimisation. As IGPs like
>> OSPF use Link-Local addresses as neighbor next hop addresses, GRAND
>> may as well be used to load the neighbor routers' caches with
>> Link-Local/layer 2 address entries, rather than the remote router
>> waiting for a packet to trigger ND. BGP using Link-Local addresses
>> looks to be coming too -
>> https://www.ietf.org/id/draft-white-linklocalnh-01.txt .
>>
>> So I think it would be useful to generalise performing GRAND (towards
>> routers) to all IPv6 nodes, not just hosts.
>>
>> Thoughts?
>>
>> (I haven't provided any suggested text, I'll do so if we decide to
>> have routers perform GRAND too.)
>>
>> <snip>
>> >
>> > Also keep in mind that in some networks only the VRRP master sends
>> > RAs. So hosts might never know about VRRP backup routers while those
>> > routers might be in the path for the return traffic flows.
>> >
>>
>> Yes, I understand.
>>
>> I was hoping there might be a way to leverage that Router flag in ND
>> NAs to somehow detect that situation, so link-layer unicasts could be
>> used, however I can't think of one.
>>
>> I think it would be better to remove all the text around link-layer
>> unicasting of GRAND NAs for the time being.
>>
>> It would be a useful thing to do if it was possible to easily indicate
>> to hosts that they're aware of all routers on the link, so they could
>> link-layer unicast GRAND NAs, however I think that requires developing
>> a mechanism for that, so should be left to another ID iif we want to
>> pursue it. ("MLDv2 Procedures for Link-Layer Unicast Delivery of
>> Multicast IPv6" -
>> https://tools.ietf.org/html/draft-smith-mldv2-link-unicast-00 - may be
>> able to be built on.)
>>
>> Regards,
>> Mark.
>>
>> >
>> > As the current version of the draft suggests sending it to all
>> > routers, the router lifetime does not really matter.
>> >
>> > > On Thu, 16 Jul 2020 at 03:17, Bob Hinden <bob.hinden@gmail.com>
>> wrote:
>> > > >
>> > > > Hello,
>> > > >
>> > > > This message starts a new two week 6MAN Working Group Last Call on
>> advancing:
>> > > >
>> > > >         Title:    Gratuitous Neighbor Discovery: Creating Neighbor
>> Cache Entries on First-
>> > > >                   Hop Routers
>> > > >         Author:   Jen Linkova
>> > > >         Filename: draft-ietf-6man-grand-00
>> > > >         Pages:    11
>> > > >         Date:     March 9, 2020
>> > > >
>> > > >        https://tools.ietf.org/html/draft-ietf-6man-grand
>> > > >
>> > > > as a Proposed Standard.
>> > > >
>> > > > Substantive comments and statements of support for publishing this
>> document should be directed to the mailing list.  Editorial suggestions can
>> be sent to the author.  This last call will
>> > > > end on 29 July 2020.
>> > > >
>> > > > Thanks,
>> > > > Bob & Ole
>> > > >
>> > > >
>> > > > --------------------------------------------------------------------
>> > > > IETF IPv6 working group mailing list
>> > > > ipv6@ietf.org
>> > > > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> > > > --------------------------------------------------------------------
>> > >
>> > > --------------------------------------------------------------------
>> > > IETF IPv6 working group mailing list
>> > > ipv6@ietf.org
>> > > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> > > --------------------------------------------------------------------
>> >
>> >
>> >
>> > --
>> > SY, Jen Linkova aka Furry
>>
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>>
> --
>
> <http://www.verizon.com/>
>
> *Gyan Mishra*
>
> *Network Solutions A**rchitect *
>
>
>
> *M 301 502-134713101 Columbia Pike *Silver Spring, MD
>
> --

<http://www.verizon.com/>

*Gyan Mishra*

*Network Solutions A**rchitect *



*M 301 502-134713101 Columbia Pike *Silver Spring, MD

v2.23.0 | Report a Bug | By Email