IETF Logo Mail Archive

Re: Comments on draft-yourtchenko-colitti-nd-reduce-multicast

Mark ZZZ Smith <markzzzsmith@yahoo.com.au> Wed, 26 February 2014 20:55 UTC

Return-Path: <markzzzsmith@yahoo.com.au>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE8DC1A0198 for <ipv6@ietfa.amsl.com>; Wed, 26 Feb 2014 12:55:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.098
X-Spam-Level:
X-Spam-Status: No, score=-0.098 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eFNbFNe3_qbl for <ipv6@ietfa.amsl.com>; Wed, 26 Feb 2014 12:55:19 -0800 (PST)
Received: from nm36.bullet.mail.ne1.yahoo.com (nm36.bullet.mail.ne1.yahoo.com [98.138.229.29]) by ietfa.amsl.com (Postfix) with ESMTP id E04E71A0213 for <ipv6@ietf.org>; Wed, 26 Feb 2014 12:55:16 -0800 (PST)
Received: from [127.0.0.1] by nm36.bullet.mail.ne1.yahoo.com with NNFMP; 26 Feb 2014 20:55:15 -0000
Received: from [98.138.100.111] by nm36.bullet.mail.ne1.yahoo.com with NNFMP; 26 Feb 2014 20:52:26 -0000
Received: from [66.196.81.173] by tm100.bullet.mail.ne1.yahoo.com with NNFMP; 26 Feb 2014 20:52:25 -0000
Received: from [98.139.212.195] by tm19.bullet.mail.bf1.yahoo.com with NNFMP; 26 Feb 2014 20:52:25 -0000
Received: from [127.0.0.1] by omp1004.mail.bf1.yahoo.com with NNFMP; 26 Feb 2014 20:52:25 -0000
X-Yahoo-Newman-Property: ymail-4
X-Yahoo-Newman-Id: 811581.18981.bm@omp1004.mail.bf1.yahoo.com
Received: (qmail 98428 invoked by uid 60001); 26 Feb 2014 20:52:25 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com.au; s=s1024; t=1393447945; bh=sBb/Z00ORr9sn2hqP8I0pFuK8NdhrrOGy8sm6ZAkWPw=; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=bao3NMyGOnZnYTqXuR4NtJ3aLwl+0c3RLyKF6ARt2dsbvYiCZb3M87qoIEoW5dbltO/Tqa6saTQu+P5wAnodfMUHSytXRiBxL4eGPzahHI9HuRFKyyOAVUkeHYJdaZJDHpAdUqSUUIyHXhxCEFbgsVWz/UPklfMbtJvXgejyauI=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.au; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=2qIg7uuQN0HQLddjFdmniZNt9g4Nc8jK5xIPpJSP6PTaOac/8xmFdPvJfdgcly8Vp7zTX+jRlNFycgbi0mqtOaEQi/vvWbwfv3G7WMcfMesGhMa3pOguy8kU2GU22HJwq2TPKrveC9lok1SI0N8gK+EgvzqemExwhL9UeoWNQVY=;
X-YMail-OSG: rGQ3aQwVM1kSfl87gArjFJ.iEbeYKYlBTKFhOvEG9lY3KrD aIbn1auvU0C1GJGVZqiTBcmW9EZ8BsfEIcHL_ihChJPf81ZkpsKkEiTJwhD8 _6I091UcZrsEbQk1o_ouPcFhdmGQ85kyCRTrJcwZwHcI0APSNu84pB5csgHs VmqYJBUuAAjW8I5PQjwVNJXwh_H8focFqjajSWxrgtqIusaYryZhefTcmsU4 Vowz4oNf8CuI721t6Edbd.gh1R8V.4xFp8Fasz7ZQc2eB4IKL_DZAc0z9dmk zeX2TRzlBajTtapNVVuxWvZ3r6fCD.83.shEUD_rbnLB5p2Ch4xkIQ9jl3Dz ZdSrDgd61pK9kMzePpabJLay0WJ85yFhdOFrzkopr23dLNwbfEmFUOYHv5RA rw6qk_xOeXQvIFVohPJtLjiRtzI.VyHR4OQ2prta9_7iUIBPeDulyvhL5WHO BGSBGpQk5vILniqHy8fP76Z1dXlgL8a2qLAWiioQfASAOFyFmoFTO1ClffNn Ekz5IF68UdRUEqE8RfkeKMt_sfD0EaSwog6sWAdVzdwzLCKy8f9mOpmmLkND _1R28b4.FQK8HOSshbnEBnxLKPOeuEsReREgBKg--
Received: from [150.101.221.237] by web162205.mail.bf1.yahoo.com via HTTP; Wed, 26 Feb 2014 12:52:25 PST
X-Rocket-MIMEInfo: 002.001, SGkgRXJpaywKCgotLS0tLSBPcmlnaW5hbCBNZXNzYWdlIC0tLS0tCj4gRnJvbTogRXJpayBOb3JkbWFyayA8bm9yZG1hcmtAYWNtLm9yZz4KPiBUbzogTWFyayBaWlogU21pdGggPG1hcmt6enpzbWl0aEB5YWhvby5jb20uYXU.OyBPbGUgVHJvYW4gPG90cm9hbkBlbXBsb3llZXMub3JnPgo.IENjOiBBbmRyZXcgWW91cnRjaGVua28gPGF5b3VydGNoQGNpc2NvLmNvbT47IDZtYW4gV0cgPGlwdjZAaWV0Zi5vcmc.Cj4gU2VudDogVHVlc2RheSwgMjUgRmVicnVhcnkgMjAxNCAxMDoxMCBQTQo.IFN1YmplY3Q6IFIBMAEBAQE-
X-Mailer: YahooMailWebService/0.8.177.636
References: <5305AF13.5060201@acm.org> <7461F3DA-FB05-400D-9C54-2F30C73DE2B9@employees.org> <530BCF83.4090500@acm.org> <1393319543.97599.YahooMailNeo@web162201.mail.bf1.yahoo.com> <530C7A37.2030706@acm.org>
Message-ID: <1393447945.97980.YahooMailNeo@web162205.mail.bf1.yahoo.com>
Date: Wed, 26 Feb 2014 12:52:25 -0800
From: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
Subject: Re: Comments on draft-yourtchenko-colitti-nd-reduce-multicast
To: Erik Nordmark <nordmark@acm.org>, Ole Troan <otroan@employees.org>
In-Reply-To: <530C7A37.2030706@acm.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Archived-At: http://mailarchive.ietf.org/arch/msg/ipv6/LkOzOK4wM1Ec8Nkr5uyUBrVbUy4
Cc: Andrew Yourtchenko <ayourtch@cisco.com>, 6man WG <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Feb 2014 20:55:21 -0000

Hi Erik,


----- Original Message -----
> From: Erik Nordmark <nordmark@acm.org>
> To: Mark ZZZ Smith <markzzzsmith@yahoo.com.au>; Ole Troan <otroan@employees.org>
> Cc: Andrew Yourtchenko <ayourtch@cisco.com>; 6man WG <ipv6@ietf.org>
> Sent: Tuesday, 25 February 2014 10:10 PM
> Subject: Re: Comments on draft-yourtchenko-colitti-nd-reduce-multicast
> 
> On 2/25/14 1:12 AM, Mark ZZZ Smith wrote:
>> 
>>  I don't see how we can do this without host changes even for the case 
> of
>>  IA_NA and IA_TA DHCP assigned addresses; the hosts would need to remove
>>  the code which does the DAD check for DHCP. (And there would be
>>  additional DHCP protocol changes needed to support CGA and
>>  stable-privacy-addresses and any future address assignment scheme.)
>>  I think a DAD Proxy is what you're looking for -
>> 
>>  RFC6957 - "Duplicate Address Detection Proxy."
> Mark,
> 
> RFC 6957 is useful for some types of deployment.
> 
> But it don't see how it relates to my observation (in response to Ole) 
> that DHCPv6 doesn't help with different forms of address assignment and 
> DAD. Even with DAD proxy, or some other form of DAD enhancement, we'd 
> still do address assignment (SLAAC, DHCPv6, stable-private, etc) 
> separately from DAD.

I agree. The DAD proxy is how the DAD issue is dealt with in broadband N:1 / hub-and-spoke etc. link-layer forwarding models when hosts/CPE are layer 2 isolated from each other, and can only send traffic to other on-link destinations via the default router (performing the DAD proxy function)

>> 
>>  More broadly though, I think a method that supports any forms of multicast 
> from a host to the other hosts on the link, hair-pinned through the upstream 
> router(s), would be better. It would support DAD operation, and would also 
> support other multicasts from hosts, such as Multicast DNS for device (printer) 
> discovery, and SSDP for DLNA server discovery.
> You mean instead of hair-pinning at L2 (through the AP) do the 
> hair-pinning at L3 (through the router)?
> 
> Would the router decrement ttl as it forwards those packets?
> (If not, then I think you are talking about hair-pinning at L2 but 
> placing it in the router.)

Yes. 

> Note that L2 hair-pinning typically (always?) does split horizon, hence 
> you'd need to it in the devices along the path from the sender to the 
> router (e.g., the AP) if you want to ensure that all receivers can get a 
> copy of the packet.

Yes, layer 2 split horizon is preserved. It is the default router that forwards traffic to all destinations, even those that fall within the prefixes from which the origin host has its addresses.

> Hair-pinning can potentially be avoided for L3 - if the router 
> decrements ttl then it would be safer to send the multicast packet out 
> the input port.
> 

The router would perform standard IPv6 forwarding, including TTL decrement. Although Link-Locals currently won't use their default gateway to reach other Link-Local destinations, if that was changed, I think it is quite legal for a router to forward a link-local packet back onto the same link (with a TTL decrement) - RFC4291 only precludes them being forwarded onto a different link. 

> However, ttl decrements break the protocols that use the ttl=255 check 
> (and ND isn't the only protocol which does this.)
> 

That is a good point, one I hadn't considered. I'd be interested to know which non-ND protocols use the TTL=255 trick if you know them off of the top of your head. We might be lucky, the other ones which do use the TTL=255 trick might be ones that for security purposes we wouldn't want the default router to forward between hosts attached to the same link anyway. 

The use of the TTL=255 trick for ND would actually be useful for naturally preventing rogue RAs from the hosts - if the default router forwarded them to other hosts on the link, decrementing the TTL to 254, the receiving hosts should then ignore them.

Regards,
Mark.


> Regards,
> 
>     Erik
> 
>>  I've been thinking about this scenario for quite a while, and it seems 
> to me that there are fundamentally two approaches to this problem.
>> 
>>  The first one involves minimal or no changes to the hosts (e.g., an 
> optional RA PIO for link-local flagged as off-link and that is it, as a host 
> local optimisation instead of ND proxy for link-local addresses), and emulate 
> functions at the upstream router(s) that won't work because of host to host 
> isolation within the link.
>> 
>>  The other one involves wholesale changes to the hosts, and I think that 
> would mean fully implementing an IPv6 NBMA subnet, perhaps with an RA option to 
> announce to the hosts that the link is operating in NBMA mode, and the 
> address(es) of the MARS cluster.
>> 
>>  The NBMA method would be convenient, as all these sorts of 
> multicast/link-local etc. issues are already dealt with. However, I think 
> wholesale changes to hosts to support it are probably infeasible.
>> 
>> 
>>  Regards,
>>  Mark.
>> 
>> 
>> 
>> 
>>>       Erik
>>> 
>>> 
>>>  --------------------------------------------------------------------
>>>  IETF IPv6 working group mailing list
>>>  ipv6@ietf.org
>>>  Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>>>  --------------------------------------------------------------------
>>> 
>

v2.23.0 | Report a Bug | By Email