IETF Logo Mail Archive

Re: [EXTERNAL] Re: 64bit MAC addresses and SLAAC

Fernando Gont <fgont@si6networks.com> Thu, 18 June 2020 10:33 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F08E63A08D6 for <ipv6@ietfa.amsl.com>; Thu, 18 Jun 2020 03:33:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FNhBXPyjxeHU for <ipv6@ietfa.amsl.com>; Thu, 18 Jun 2020 03:33:07 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [91.239.96.14]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E43BB3A08C3 for <ipv6@ietf.org>; Thu, 18 Jun 2020 03:33:05 -0700 (PDT)
Received: from [IPv6:2800:810:464:1f7:59f5:79ee:c876:5454] (unknown [IPv6:2800:810:464:1f7:59f5:79ee:c876:5454]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id DB0E72815C6; Thu, 18 Jun 2020 10:32:46 +0000 (UTC)
Subject: Re: [EXTERNAL] Re: 64bit MAC addresses and SLAAC
To: "Pascal Thubert (pthubert)" <pthubert=40cisco.com@dmarc.ietf.org>, "Templin (US), Fred L" <Fred.L.Templin@boeing.com>, Kerry Lynn <kerlyn@ieee.org>
Cc: IPv6 List <ipv6@ietf.org>
References: <e8a25961-5ac9-d35e-77dd-bf86f45cd077@gmail.com> <a17ae9f3-001c-07f6-84f9-a0ca583e6a00@gmail.com> <7AE5B6D0-AB01-4077-A9EF-5BD86F428681@gmail.com> <7a3b839f-099e-8fd3-35a2-4625df3c369e@gmail.com> <76e8bd7a-4333-480f-de0f-dcc775418739@si6networks.com> <79d494caa7874696b787aadb80cc322b@boeing.com> <MN2PR11MB35654EDB29696C2C33412691D89B0@MN2PR11MB3565.namprd11.prod.outlook.com>
From: Fernando Gont <fgont@si6networks.com>
Message-ID: <7e430050-fa9a-d43c-5eaa-a8f7d53d222c@si6networks.com>
Date: Thu, 18 Jun 2020 06:40:40 -0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.1
MIME-Version: 1.0
In-Reply-To: <MN2PR11MB35654EDB29696C2C33412691D89B0@MN2PR11MB3565.namprd11.prod.outlook.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/R2y70Kbjr1W2GEDtJVlTxBEYGlw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jun 2020 10:33:09 -0000

Hi, Pascal,

On 18/6/20 04:38, Pascal Thubert (pthubert) wrote:
> 
> There are cases where anonymity is entirely undesirable.

The key issue here is what the defaults should be. In the context of
RFC7258, I think it would be hard to make a case for privacy-insensible
algorithms for default configurations.



> Also +1 to Kerry. Some standards (including ours) can do a preferred
> treatment if the IPv6 address derives from the MAC. 

1) Embedding MAC adresses in IIDs is kind of a kludge. Yes, it made 
sense when borrowed from IPX ages ago... but the context was quite 
different.

2) From an interoperability standpoint, you should only rely on the IID 
being unique.


> Note that this
> looks antinomic with the spare part goal above; that would indeed be
> antinomic for burn-in MAC addresses; but there are also standards out
> there that use a shorter assigned MAC address, e.g., to reduce the
> frame size and save energy and bandwidth; in that case you can have
> both properties of deriving the IPv6 address from the MAC and
> replacing a failing device by a virtually identical one.

I don't mind when this sort of thing is employed for specific scenarios 
such as the one you describe. However, it would seem seem to me that if 
you really need the addresses to embed the underlying link-layer address 
so that you can compress the IPv6 header and keep the associated 
overhead at a decent level... one might (unfortunately) want to 
reconsider the extent to which IPv6 is really applicable here, or 
whether some sort of gateway that bridges a low-overhead simple protocol 
with the rest of the network might be a better approach.



> I support documenting pro/cons of address allocation behaviors, but I
> object constraining how people use IPv6, be it flow label, address
> format, routing headers and all, because of one's use case or
> religion. There are others.

RFC8064 makes a recommendation for the default algorithm for generating 
stable addresses. General purpose systems need some guidance recarding 
how to generate the IIDs, are what considerations should be had when 
developing such an algorithm.

As all "SHOULDs/SHOULD NOTs", it's okay to not follow the advice if you 
have really good reasons to and/or know better what you are doing.

Thanks,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492

v2.23.0 | Report a Bug | By Email