Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

[Fernando Gont <fgont@si6networks.com>]

On 6/1/21 04:07, Lorenzo Colitti wrote:
> On Wed, Jan 6, 2021 at 11:01 AM Mark Smith <markzzzsmith@gmail.com 
> <mailto:markzzzsmith@gmail.com>> wrote:
> 
>     ULAs are intended to be globally unique addresses, but not to be
>     globally (Internet) forwardable. Their forwarding scope is limited
>     to non-global, either within a single local network, or between a
>     set of local networks that have agreed to forward their respective
>     ULA /48 prefixes between each other, overriding the default of local
>     networks only forwarding scope. (Ethernet addresses are a similar
>     example, globally unique addresses, link only forwarding scope.)
> 
> 
> IMO defining ULAs as they are was a mistake. Global scope implies 
> unique. But probabilistic uniqueness doesn't work because humans choose 
> ULAs instead of generating them manually.

Not only that. At a global scale, the Birthday problem tells you that 
the ULA prefixes will also be non-unique. ~1.2M of house-hods generating 
their ULA prefixes already gives you P~1 that you have a collision at 
the global level. Indeed, the math in 
https://tools.ietf.org/html/rfc4193#section-3.2.3 already implicitly 
acknowledges this fact, because the probability of collision is computed 
on the basis of how many networks you interconnect -- that's certainly 
not what "global scope" means.



> Registry-based uniqueness 
> doesn't work (and, to be fair, was never tried by the IETF) because 
> there is no registry that has jurisdiction. Even if there were, there is 
> no reason to keep addresses unique if they don't have global reachability.

Fully agreed.



> So I guess I'm somewhere between 1) and 3). The specs are consistent but 
> they fail to consider human behaviour, so they don't actually work in 
> practice.

If you look at the definition of scope and global scope from RFC4007, 
it's inconsistent with employing it for defining ULAs as global.

(Indeed, the *L* in ULA says it all ;-) )



> I don't know what to do about this though. If we say they're 
> non-global scope, then they are going to be the exact equivalent of 
> RFC1918 addresses, with all the problems that that causes. If we 
> continue to say they're global scope, then the specs don't match 
> reality. :-(

One can say that they are local scope, with the expectation that since 
the ULA prefix is meant to be randomly generated, then sites that comply 
with such requirement will have a small probability of prefix collisions 
if two ULA-based sites were to be merged/interconnected.

I think that's as real and factually correct as it can get.

Besides, this also means that libraries such as ipaddress match the 
specs. -- right now, they don't. And it would be hard to argue that 
libraries such as Python's ipaddress should be changed such that ULAs 
are flagged as both "global" and "public". -- something that would not 
only be wrong, but that can also not be done in a backwards compatible 
manner.  Also, if apps, for some reason, are checking such address 
attributes, it's certainly better that the attributes are set in an 
intuitive way (the current one, which doesn't match the specs), in the 
hopes that they can make something useful out of differentiating IPv6 
address properties.

Thanks,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492