IETF Logo Mail Archive

Re: IPv6 Routing & ND vs. Addressing, (Was: Re: <draft-ietf-6man-rfc4291bis-09.txt>)

David Farmer <farmer@umn.edu> Mon, 10 July 2017 17:08 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 169E1131806 for <ipv6@ietfa.amsl.com>; Mon, 10 Jul 2017 10:08:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.801
X-Spam-Level:
X-Spam-Status: No, score=-3.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_SORBS_SPAM=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e238JyhMRpVD for <ipv6@ietfa.amsl.com>; Mon, 10 Jul 2017 10:08:40 -0700 (PDT)
Received: from mta-p5.oit.umn.edu (mta-p5.oit.umn.edu [134.84.196.205]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 42AD11317E0 for <ipv6@ietf.org>; Mon, 10 Jul 2017 10:08:40 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mta-p5.oit.umn.edu (Postfix) with ESMTP id 7880593D for <ipv6@ietf.org>; Mon, 10 Jul 2017 17:08:39 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p5.oit.umn.edu ([127.0.0.1]) by localhost (mta-p5.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TzpkqXNkJ2-W for <ipv6@ietf.org>; Mon, 10 Jul 2017 12:08:39 -0500 (CDT)
Received: from mail-vk0-f72.google.com (mail-vk0-f72.google.com [209.85.213.72]) (using TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p5.oit.umn.edu (Postfix) with ESMTPS id 2E339817 for <ipv6@ietf.org>; Mon, 10 Jul 2017 12:08:39 -0500 (CDT)
Received: by mail-vk0-f72.google.com with SMTP id i63so41781813vkh.0 for <ipv6@ietf.org>; Mon, 10 Jul 2017 10:08:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=vbFwV2LMm/3eEWRJB1JNapa3IhcpCQ7hqD/F6i6sxRk=; b=ZWzS/CoDld3ozLRqfLtQbw0tW71Jb4srZhRm6ya1LG8FMz4eIdcw1m8BP6E0O5u0CZ ym4ukEbhpRM3pg3ry0taVuBJ2evFHRZttbYxTleL20JvNOwUqFYVImFPzzCMImZLwlxK r6oU7puoZMMDu9fV0LaMs6bVf3PkDTwKVlmbHAsEPnPfXjxeueqGUkrEOaREvM9kvmxW FJ8CEGjlBYU766eUnpcOJSK7LFf7cVVKgVmGq+R4It35cBuCbRtiHqH0lkEQbDZ9dOwr 3FI1HEbkkVgr+oy4DsKk9g2aw3avdH+/P4cUb88hUJ3R1xy4NLdf3z17r32BZ5mwuej6 SthA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=vbFwV2LMm/3eEWRJB1JNapa3IhcpCQ7hqD/F6i6sxRk=; b=Y5K1KUhKstfJGnUlG20efjTDfLnQOFq66j7LfL+HwSwacInfEvSqTQU1Awmq8S6rzo wxjUsIpu06n4Jf7UrgvuN6Zqh1aq2yAIyqnYs/NLWijmGGhDBcVhzKMi1CA7ZnMRiiOb 6aDbQY//wm1Qtio32/CP3FDF45VUOu75S9aFl04+3Co+2aT+fvbgOV/X4zxtcTlNOgMt wmBz6b9nIpYqKWet4hrgI++WfSDHqeEB9rhEQiEl05iPPd0zdHN0JwQvkkgM+7dhl383 C99ZfWCXlTrCcegziQZMy2hRNt3O2FGH6s48lCLf0iVX991bG3Cqp6+i9GmDE17NXEj6 D7yg==
X-Gm-Message-State: AIVw112IJdOFFxeSObRLOA5pbj0EtPW9mXgCiQa1voclSa0aGJYtaHrU UsHoqxPezAS9Z8kOKI5hYJ8a8C1QiNNL25GjdyI3LRWO5MOryhQ5k3lng8QQjGYllokKchOfSYI yAbBjDxHSXd/HfbA=
X-Received: by 10.31.165.150 with SMTP id o144mr8446472vke.37.1499706518179; Mon, 10 Jul 2017 10:08:38 -0700 (PDT)
X-Received: by 10.31.165.150 with SMTP id o144mr8446466vke.37.1499706517974; Mon, 10 Jul 2017 10:08:37 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.103.47.144 with HTTP; Mon, 10 Jul 2017 10:08:37 -0700 (PDT)
In-Reply-To: <CAKD1Yr2+Si_tzNF8p6ASf4=StgFSX9Gm3TEj9iiqdE2gHQaNmQ@mail.gmail.com>
References: <CAN-Dau2zgthR2w9e5ZVUdGc-vm+YvK2uTUJ8O=vrcv0jNc58RA@mail.gmail.com> <CAKD1Yr2+Si_tzNF8p6ASf4=StgFSX9Gm3TEj9iiqdE2gHQaNmQ@mail.gmail.com>
From: David Farmer <farmer@umn.edu>
Date: Mon, 10 Jul 2017 12:08:37 -0500
Message-ID: <CAN-Dau03r_CKW53kegaLa=F_R_RG4cWaCT1j6idrqPm9UuN03A@mail.gmail.com>
Subject: Re: IPv6 Routing & ND vs. Addressing, (Was: Re: <draft-ietf-6man-rfc4291bis-09.txt>)
To: Lorenzo Colitti <lorenzo@google.com>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, 6man WG <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="001a1142d3104580240553f9a206"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/PDS1vrLS1dbVAeUhxJjBRQIZ67U>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Jul 2017 17:08:43 -0000

On Sun, Jul 9, 2017 at 9:03 PM, Lorenzo Colitti <lorenzo@google.com> wrote:

> On Mon, Jul 10, 2017 at 6:09 AM, David Farmer <farmer@umn.edu> wrote:
>
>> So, What should we say in RFC4291bis? Personally I'd prefer we eliminate
>> the term subnet from RFC4291bis, but assuming that won't happen how about
>> the following;
>>
>> Currently, IPv6 continues the IPv4 model in that a subnet prefix is
>> associated with one link. Multiple subnet prefixes may be assigned to the
>> same link.  The relationship between links and IPv6 subnet prefixes differs
>> from the IPv4 model in that the prefixes used for on-link determination are
>> separate and may differ from the assigned subnet prefixes. However, on-link
>> prefixes identical with assigned subnet prefixes are recommended. A prefix
>> length associated with a manually configured address determines the on-link
>> prefix associated with the manually configured address. See [RFC5942] "The
>> IPv6 Subnet Model: The Relationship between Links and Subnet Prefixes" for
>> more details.
>>
>>
>> Note: Any on-link prefixes longer than a covering assigned subnet prefix
>> must be associated with the same link as the assigned subnet prefix. Also,
>> any assigned subnet prefixes longer than a covering on-link prefix must be
>> associated with the same link as the on-link prefix.
>>
>>
>> ----
>>
>> IPv6 unicast routing is based on on-link prefixes of any valid length up
>> to 128 [BCP198], which are not necessarily the same as the subnet prefixes
>> assigned to a link.
>>
>>
>> ----
>>
>> When forming or assigning unicast addresses, except those that start with
>> the binary value 000, Interface IDs are required to be 64 bits long.  The
>> rationale for using 64 bit Interface Identifiers can be found in [RFC7421].
>>
>> Note: the previous paragraph implies nothing about on-link determination
>> which as discussed in section 2.1 is separate from subnet assignment in
>> IPv6.
>>
>>
> Thanks for putting this all together. I think it's the best assessment of
> the current state of the standards that I've seen so far.
>

Glad it was useful.


> I'm not sure the text covers RFC6164 though; I'm not sure whether current
> deployments of /127 meet the "Any on-link prefixes longer than a covering
> assigned subnet prefix must be associated with the same link as the
> assigned subnet prefix" text. I'd expect many networks to number entirely
> separate links using /127s that are all drawn from one covering /64; at
> least, I know that I've written addressing plans that do that and are still
> in use.
>

I agree it doesn't really cover RFC6164, and an exception covering it needs
to be added. However, I wasn't sure how narrow or broad of an exception to
add. This is basically comes back to Brian's question, where is the right
balance point "between excessive rigidity and excessive flexibility".

We could add a very narrowly scoped exception basically adding, "or when
used for point-to-point router links [RFC6164]", or very broad exception,
"or when the addresses are manually configured", or possible something
focused on routers only, "or when used on a link with only routers and not
any hosts."

As you bring up, assigning a bunch of point-to-point router links out of a
single /64 could be quite common.  However there are other considerations
too, like router loopback /128s, maybe /126s for point-to-point, or small
networks connecting only routers.  I think it could also be quite common to
assign router loopbacks out of a common /64, maybe even the same one as the
point-to-point router links. And then I've seen some networks use /126s to
coincide with /30s for IPv4, instead of /127s with /31s for IPv4. Also, if
you connect a small group of routers but no hosts should you have to use
/64 assigned subnets?

So, what is the right balance?   Do we need an RFCs explicitly allowing
/128 router loopbacks and small networks connecting only routers?  Or, how
broad of an exception should we make?

Thanks.

-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815 <(612)%20626-0815>
Minneapolis, MN 55414-3029   Cell: 612-812-9952 <(612)%20812-9952>
===============================================

v2.23.0 | Report a Bug | By Email