IETF Logo Mail Archive

Re: L=0 [was draft-pioxfolks-6man-pio-exclusive-bit-02.txt]

Mikael Abrahamsson <swmike@swm.pp.se> Thu, 01 February 2018 11:04 UTC

Return-Path: <swmike@swm.pp.se>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 70C861318FA for <ipv6@ietfa.amsl.com>; Thu, 1 Feb 2018 03:04:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.31
X-Spam-Level:
X-Spam-Status: No, score=-4.31 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=swm.pp.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gDRm3DVu-eWc for <ipv6@ietfa.amsl.com>; Thu, 1 Feb 2018 03:04:29 -0800 (PST)
Received: from uplift.swm.pp.se (swm.pp.se [212.247.200.143]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10C44131764 for <ipv6@ietf.org>; Thu, 1 Feb 2018 03:04:19 -0800 (PST)
Received: by uplift.swm.pp.se (Postfix, from userid 501) id 252E5B1; Thu, 1 Feb 2018 12:04:16 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=swm.pp.se; s=mail; t=1517483056; bh=vCyngUwq0G1/kJ4T6TnrNF0GaSCWv1qyBwig/4KsFH8=; h=Date:From:To:cc:Subject:In-Reply-To:References:From; b=XhmfJ5NFyTA07ynVPTtfnCrcJS2fn7clgLSFD6zLnzDuJQWu9i3Q4KdvfRP7bHUu3 F/ULqoDbzdn+3umpJFcXMdJmG1y7fk5Owz6xj3/BYUbtipmZ5UK+lWR/ipYaxl7LIj zfwsJAP4GaYojF64jPOAKwPnuDTbB9W8EVB+bR30=
Received: from localhost (localhost [127.0.0.1]) by uplift.swm.pp.se (Postfix) with ESMTP id 1F5A4B0; Thu, 1 Feb 2018 12:04:16 +0100 (CET)
Date: Thu, 01 Feb 2018 12:04:16 +0100
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: Lorenzo Colitti <lorenzo@google.com>
cc: 6man WG <ipv6@ietf.org>
Subject: Re: L=0 [was draft-pioxfolks-6man-pio-exclusive-bit-02.txt]
In-Reply-To: <CAKD1Yr28iU=jCBv7dy4D8gyeL=uB5hFu-YhGOKPiih9sykZ1GQ@mail.gmail.com>
Message-ID: <alpine.DEB.2.20.1802011138010.8884@uplift.swm.pp.se>
References: <91953634-9B4A-405B-AB36-FBB2079A0A40@gmail.com> <CAO42Z2worXnmmTEx7_g_R1kuoywc40O0Yo7b6Bf4cdLJ70=rFA@mail.gmail.com> <alpine.DEB.2.20.1801300611070.8884@uplift.swm.pp.se> <CAO42Z2ydjfsvL0ita9TW8Hgrqfd30E6BSPAf0DmLn0cZaCt3tg@mail.gmail.com> <alpine.DEB.2.20.1801311042240.8884@uplift.swm.pp.se> <alpine.DEB.2.20.1801311125400.8884@uplift.swm.pp.se> <91E4B0D5-BB27-4961-883B-0774729F1A83@employees.org> <CAKD1Yr23G+rz7woT1K504UEb2=sQGJd2p_CcQogLA5BbmTomZA@mail.gmail.com> <32FB86D8-235A-434F-A20C-6624FB7C3CE2@employees.org> <CAKD1Yr1oTmBOQR7YJnJV3S9_NG54sA-+phzRMwPT5qQcF1nKPA@mail.gmail.com> <alpine.DEB.2.20.1801311327410.8884@uplift.swm.pp.se> <CAKD1Yr04NV0+r1V1XnOo9XUu2GF_RiVPN6pqM0pJ0a68=mC9Zw@mail.gmail.com> <alpine.DEB.2.20.1801311402350.8884@uplift.swm.pp.se> <CAKD1Yr2cTdK+kkojHa5qPOO4VyT=jW1pmJmf=uXSrdif404iQQ@mail.gmail.com> <alpine.DEB.2.20.1802010954270.8884@uplift.swm.pp.se> <CAKD1Yr28iU=jCBv7dy4D8gyeL=uB5hFu-YhGOKPiih9sykZ1GQ@mail.gmail.com>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
Organization: People's Front Against WWW
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/QfmR_nNtoABF91wzUNGKrPJAAw8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Feb 2018 11:04:32 -0000

On Thu, 1 Feb 2018, Lorenzo Colitti wrote:

> Are you talking about something that's not standardized? All the SAVI 
> RFCs that I have seen track individual addresses.

You're right, it seems work was started but never finished:

https://www.ietf.org/proceedings/77/slides/savi-1.pdf

I thought this was completed. Pity.

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_fhsec/configuration/15-s/ip6f-15-s-book/ip6-src-guard.html

It looks like Cisco has support for DHCPv6-PD source guard, but it looks 
like this was never standardized in the IETF (SAVI). I'm sure other 
vendors have this functionality as well, as this is an obvious requirement 
from potential customers with the need of these first-hop security 
features.

It's similar to the fact that DHCPv6 relay snooping and route installation 
for PD was never standardized, but most vendors have this functionality 
anyway.

I have several times in the past few years brought up SAVI and that we 
should take this into account when we design protocols, but I have been 
met with no interest what so ever so far. I still haven't given up hope 
that this will change, because I think it's an important functionality to 
have, even if some people think it's a protocol layer violation (which is 
one of the arguments I have been met with before).

-- 
Mikael Abrahamsson    email: swmike@swm.pp.se

v2.23.0 | Report a Bug | By Email