IETF Logo Mail Archive

RE: Comments on draft-yourtchenko-colitti-nd-reduce-multicast

Andrew Yourtchenko <ayourtch@cisco.com> Fri, 21 February 2014 15:53 UTC

Return-Path: <ayourtch@cisco.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 836101A041B for <ipv6@ietfa.amsl.com>; Fri, 21 Feb 2014 07:53:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.049
X-Spam-Level:
X-Spam-Status: No, score=-10.049 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.548, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AtpfIibZD7nc for <ipv6@ietfa.amsl.com>; Fri, 21 Feb 2014 07:53:30 -0800 (PST)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) by ietfa.amsl.com (Postfix) with ESMTP id 4D0AD1A01BE for <ipv6@ietf.org>; Fri, 21 Feb 2014 07:53:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4248; q=dns/txt; s=iport; t=1392998006; x=1394207606; h=date:from:to:cc:subject:in-reply-to:message-id: references:mime-version; bh=L+fwtkMUFZsaX05oWieNqLp+LEITaiuuPv8dUws2hOA=; b=mdiGiLWiXVwWvkCqMGj29nAtFbrpqtWCBc3jiukyvIoGVeD97XhnA03Q jbJuhk+i3TJ5fXiuU2dIhmpqEt3rHyvWqzB0w9/S48q4Ay24gaZBNgz5R ja+noJr5IL3kepdynTLcW+EtSmPptLJ3Hi0BwEbeKtphWeql+xGFyrhug 4=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgEFACx2B1OtJXHA/2dsb2JhbABagwaBEsA9gQ4WdIIlAQEBAwE4Aj8FCwtGSQENBg6IAgjLZBeOZAeEOASefItfgy6CKQ
X-IronPort-AV: E=Sophos;i="4.97,519,1389744000"; d="scan'208";a="22208745"
Received: from rcdn-core2-5.cisco.com ([173.37.113.192]) by alln-iport-7.cisco.com with ESMTP; 21 Feb 2014 15:53:26 +0000
Received: from xhc-rcd-x04.cisco.com (xhc-rcd-x04.cisco.com [173.37.183.78]) by rcdn-core2-5.cisco.com (8.14.5/8.14.5) with ESMTP id s1LFrPeH031249 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Fri, 21 Feb 2014 15:53:25 GMT
Received: from [10.61.163.42] (10.61.163.42) by xhc-rcd-x04.cisco.com (173.37.183.78) with Microsoft SMTP Server (TLS) id 14.3.123.3; Fri, 21 Feb 2014 09:53:25 -0600
Date: Fri, 21 Feb 2014 16:52:50 +0100
From: Andrew Yourtchenko <ayourtch@cisco.com>
X-X-Sender: ayourtch@ayourtch-mac
To: "Hemant Singh (shemant)" <shemant@cisco.com>
Subject: RE: Comments on draft-yourtchenko-colitti-nd-reduce-multicast
In-Reply-To: <75B6FA9F576969419E42BECB86CB1B89115F99A9@xmb-rcd-x06.cisco.com>
Message-ID: <alpine.OSX.2.00.1402211620560.49053@ayourtch-mac>
References: <5305AF13.5060201@acm.org> <75B6FA9F576969419E42BECB86CB1B89115F99A9@xmb-rcd-x06.cisco.com>
User-Agent: Alpine 2.00 (OSX 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"; charset="US-ASCII"
X-Originating-IP: [10.61.163.42]
Archived-At: http://mailarchive.ietf.org/arch/msg/ipv6/HLQt2p4jUuytx9B7_8pK0TNHg8w
X-Mailman-Approved-At: Fri, 21 Feb 2014 08:47:29 -0800
Cc: Erik Nordmark <nordmark@acm.org>, IETF IPv6 <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Feb 2014 15:53:32 -0000

On Fri, 21 Feb 2014, Hemant Singh (shemant) wrote:

> ErikN has commented on section 4.7.   I have additional comments.   ND 
>as defined in RFC 4861 has no means to specify a prefix as off-link. 
>Thus the L-bit equals zero is not a valid means to signal an off-link 
>prefix to SLAAC hosts.  ND can only specify an ipv6 destination as 
>off-link.   Here is the reason.  The RA sets the A-bit to have hosts use 
>SLAAC for ipv6 address assignment.  The router also sets the L-bit to 
>zero in the RA.   After address assignment the host has an incomplete 
>entry in the Neighbor Cache for a packet destination where the packet 
>destination matches the host address up to 64 bits.  Due to the A-bit

hmm I'd be really interested to see which host implementation behaves this 
way. I explicitly tested Linux, MacOS X, iOS - none of them do. I glanced 
over the shoulder at the behavior of the Windows box - and it was behaving 
in a similar fashion which does not match what you describe.


>set, all addresses within the /64 assigned to the host are on-link.  Does

RFC4861 says this:

    on-link     - an address that is assigned to an interface on a
                  specified link.  A node considers an address to be on-
                  link if:

                     - it is covered by one of the link's prefixes (e.g.,
                       as indicated by the on-link flag in the Prefix
                       Information option), or

                     - a neighboring router specifies the address as the
                       target of a Redirect message, or

                     - a Neighbor Advertisement message is received for
                       the (target) address, or

                     - any Neighbor Discovery message is received from
                       the address.

Note - that the "on-link" flag needs to be on as well, A-bit alone does 
not cut it.

The "off-link" shortcut of mine is unfortunate, since indeed it is not 
strictly speaking correct. But
"Not-on-link-but-because-ICMPv6-redirects-are-disabled-it-is-treated-as-off-link" 
is a bit too long to write. Probably a new term is due there.

>the host issue an address resolution NS because the packet destination is 
>on-link or due to the L-bit cleared in the received RA, the host sends 
>the packet to the default router(s)?

L-bit set to zero and no-redirects (Thanks Erik Nordmark for the 
correction of this important omission in the write-up!) worked fine to 
have the hosts send all the packets to the default router, thus avoiding 
performing the ND for this destination.

Of course, a better wording proposal is always welcome.

>
> The only means in ND to specify all destinations as off-link is to have 
>the RA include no PIO and have the A-bit cleared.   The hosts use DHCPv6 
>for address assignment.   This is the NBMA ND link model.  The router 
>also supports a DAD Proxy.
>
>> For multicast behavior in network switches, please see RFC 4541.

Interesting read, thanks.

>Additionally MLD snooping is old and a burden for consumer devices to 
>implement.   New protocol work is needed to mark packets for specific 
>multicast flows so that hosts don't have to snoop MLD.

The consumer switches can flood, it's not a problem there, really.

>
> Additionally, section 4.6 mentions the avalanche effect.  The ND 
>protocol randomizes and adds jitter when issuing messages to the link 
>precisely to alleviate any avalanche effect.  Thus I am not convinced of 
>the avalanche effect.    May I also know why the wifi nodes in a 100,000 
>clients link will have not of entries in the Neighbor Cache?  Each client 
>talks to one or two clients at a time.  So what traffic causes the number 
>of entries in a client to be large?  How large is large?

If you're not convinced, then you can skip this item for your 
deployment. I've seen it once, and there were multiple contributing 
factors, so I don't have a good data to convince you. Equally I don't have 
a spare lab with 9000 hosts of various operating systems, moving around. I 
left it because it does seem like a conservatively prudent thing to do.

--a

>
> Thanks,
>
> Hemant
>

v2.23.0 | Report a Bug | By Email