Re: [v6ops] PPPoE requirements (was Turning on IPv6 Routers)
Erik Kline <ek@google.com> Tue, 25 July 2017 02:56 UTC
Return-Path: <ek@google.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C020129AD2 for <ipv6@ietfa.amsl.com>; Mon, 24 Jul 2017 19:56:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ULf0hGmypUnA for <ipv6@ietfa.amsl.com>; Mon, 24 Jul 2017 19:56:00 -0700 (PDT)
Received: from mail-yw0-x230.google.com (mail-yw0-x230.google.com [IPv6:2607:f8b0:4002:c05::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 101D112969E for <ipv6@ietf.org>; Mon, 24 Jul 2017 19:56:00 -0700 (PDT)
Received: by mail-yw0-x230.google.com with SMTP id a12so60386269ywh.3 for <ipv6@ietf.org>; Mon, 24 Jul 2017 19:56:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=ol2ei7n6Zf0cTjhkQW2Zm4+0iCOP9BeFkE4PReOe+Zs=; b=TrG0Fwro3tWb6DRq1kWbbgQpwXbO0dcnPIFaTRKoi7jPBFx7Kg2ka7ZZ9fBeaC7KuO MkZFKmNJEolZ1jyY76e89VP6IMD6c/xx1fqXS6cECGF6uU7N2IiYJwZPk1rkXD0fmbGa YbOArNeM9UyJ+RUa+ZPpHIONTzcsmXMyMlutylorLkXEVCGSBqVYTYLn2ILrTXdmzBN1 R6rpiJaMm2VWXg/NiRZ1Ai1bseXDkkrKjcn87AbrEhSv2b8SD2rftvTMXLJ4NsLriVwX tfvyJYh14I1Fo1f0JW6qlh6uqeEu6PRPCoOlmS9i+IiSrOjlDDL7Hm7TkXC4eub0j702 TjCQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=ol2ei7n6Zf0cTjhkQW2Zm4+0iCOP9BeFkE4PReOe+Zs=; b=fbaK8ZZQS8lmlW5DFWjg2MtqQDVLakmkrBw6bs391mfhtY6alYba7tr29ulQ2pq4vO ubBMbxZggnNPotwRAoWvEcasjvbwTHUrCxw97BujMT6YTxs2D4Iq7/zxSgHyxvFVUrxi gpF+GGj3dQA3qFRkKpV77+rfq5a/z1NAgCrKuXFiOWe0Zogve+dgr9o1/BFe5XMz+jA2 eQckteWtDnPd/4aerxzO2XqDinOSyBQVi42OGI7Jyp0Kd8IYr4Tu1u5ZAFWDrdXlqB6W gDmJwVcTYw/yelDYaS0yMn76jR7BEqq61d9DRKTDe4q2rt7toDv+lpMkyefDmsXePrR8 d+Ew==
X-Gm-Message-State: AIVw113YGqgQbUqCoBD3rqmOaJtlo/+qbePpprzBG7lyEp98q2mo53gh TK/C6jeQGOBz6BTQYiTCenHKOKAsdcWGdds=
X-Received: by 10.37.32.193 with SMTP id g184mr16178717ybg.4.1500951358974; Mon, 24 Jul 2017 19:55:58 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.37.50.65 with HTTP; Mon, 24 Jul 2017 19:55:38 -0700 (PDT)
In-Reply-To: <2D09D61DDFA73D4C884805CC7865E6114DBDC2E7@GAALPA1MSGUSRBF.ITServices.sbc.com>
References: <2D09D61DDFA73D4C884805CC7865E6114DBDC2E7@GAALPA1MSGUSRBF.ITServices.sbc.com>
From: Erik Kline <ek@google.com>
Date: Tue, 25 Jul 2017 11:55:38 +0900
Message-ID: <CAAedzxoEVFqNtu5adMHiKXjuDivE4N6jqaT1prk7kEjVyGRsEg@mail.gmail.com>
Subject: Re: [v6ops] PPPoE requirements (was Turning on IPv6 Routers)
To: "STARK, BARBARA H" <bs7652@att.com>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, IPv6 Ops WG <v6ops@ietf.org>, 6man WG <ipv6@ietf.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="001a1143e0d89be7cf05551b78ee"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/T1huE7fpW2jGWYVxaxf6uh6SI24>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Jul 2017 02:56:04 -0000
On 25 July 2017 at 05:00, STARK, BARBARA H <bs7652@att.com> wrote: >> > As an implementer of a PPPoE aggregator/access-router, I found that I >> > had to invert 7084 to determine what I had to implement. >> >> > It might be worth a document, if only so that ISPs would have something >> > against which to issue RFPs. Maybe. >> >> bhs> <bhs> BBF TR-187 documents the telco IPv6 over pppoe access >> network >> bhs> architecture with some specific requirements for access network >> bhs> elements. >> bhs> https://www.broadband-forum.org/technical/download/TR-187_Issue-2.pdf >> >> Yes, I worked from TR-187 as well. It's close to what I want, but it doesn't say >> what the access network elements *MUST* do, but rather tells you what the >> CPE boxes MUST try. > > ?? > Section 9 of TR-187 is all about the BNG (BBF term for access network IP edge router that does aggregation) requirements. > But the doc as a whole presents a number of ways to do IPv6 over PPPoE -- not just one. This means the ISP has to pick one and configure it appropriately. The BNG requirements include support for all of the described ways. The conditional wording in some of the requirements is a bit strange, though. > >> For instance: *SHOULD* a PPPoE access router provide an address for the >> CPE router link via RA or via DHCPv6? > > The BNG has to support RA (SLAAC), IA_NA, and IA_PD. The ISP is responsible for configuring the BNG appropriately/correctly per the ISP's chosen architecture. The ISP can choose to provide the address by RA (SLAAC), IA_NA, or go with the unnumbered model (CE router picks address from IA_PD prefix). > >> If it does both, should it offer the same >> address? > > I would recommend against configuring the BNG to use the same prefix for SLAAC and IA_NA or IA_PD, or for IA_NA and IA_PD. Then DAD would really be needed. And I don't understand why anyone would want to. I would recommend the ISP pick a single method to use. The TR-124 RG is expected (by default) to support all numbering models. If offered SLAAC, it must take an address from that prefix (at least one). If offered IA_NA, it must accept that. It must do IA_PD. If neither SLAAC nor IA_NA are offered, then it must assign itself an address from the IA_PD. You don't need DAD to deal for link-local addresses? >> It would be rather better if one *knew* the CPE would do PD >> and then assign itself an address out of one of the /64s. That would >> eliminate a bunch of routes. > > TR-124 RG requirements (referenced by TR-187) do require support for IA_PD and the unnumbered model. RFC 7084 does not require support for the unnumbered model; there it's optional. An ISP procuring CE routers can use TR-124 for an RFP. But such an ISP cannot depend on "retail" CE routers supporting the unnumbered model. This is because CableLabs eRouters do not support the unnumbered model, and eRouters needed to be compliant with RFC 7084. I'm not sure of the status of the unnumbered model in non-eRouter "retail" CE routers. > >> Part of the problem is that one can't necessarily >> depend upon the CPE to do DHCPv6 (-PD) at all! Is this because it might actually just be a host that's connecting? > Support for IA_PD is mandatory in RFC 7084, CableLabs eRouters, and TR-124. The default flow in TR-124 (Appendix A.1 which leads to A.2) is for IA_PD always to be requested (don't wait for RA). TR-124 was specifically designed for use in RFPs. RFC 7084 requires IA_PD be requested if M or O = 1. The fact that some CE routers don't support any of these specs doesn't mean we need more specs. It means we need more compliant CE routers. > >> It would just be nice to reduce the number of options. Maybe a BCP is in >> order. > > Unless we know some of the options aren't being used by any ISP, it would be hard to get agreement to get rid of any. My sense is there is widespread support of both IA_NA and unnumbered. I don't know if anyone is using SLAAC over PPPoE, but I suspect there are. But since the IPv6 over PPPoE flow is identical to native IPv6 after IPv6CP is done, and for native IPv6 we do know of deployments with SLAAC, I would be tempted to keep that same flow rather than get rid of an option for IPv6 over PPPoE. > My recommended practices would be more like: > - if doing PPPoE, make sure your CE routers / RGs are compliant with TR-124 WAN.PPP and WAN.PPP.IPv6 modules > - make your CE router vendors get the IPv6 Ready CE router certification > - don't configure the same prefix on SLAAC and IA_* or IA_NA and IA_PD > > I would like to see if we could reduce the number of v4 over v6 tunneling options that v6ops will be "recommending". I think the current laundry list is a bad idea. But that's another topic. > > _______________________________________________ > v6ops mailing list > v6ops@ietf.org > https://www.ietf.org/mailman/listinfo/v6ops
- PPPoE requirements (was Turning on IPv6 Routers) STARK, BARBARA H
- Re: [v6ops] PPPoE requirements (was Turning on IP… Erik Kline
- RE: [v6ops] PPPoE requirements (was Turning on IP… STARK, BARBARA H
- Re: [v6ops] PPPoE requirements (was Turning on IP… Michael Richardson
- Re: [v6ops] PPPoE requirements (was Turning on IP… Michael Richardson
- RE: [v6ops] PPPoE requirements (was Turning on IP… Mark Smith
- Re: [v6ops] Turning on IPv6 Routers (was PPPoE re… Tim Chown
- Re: [v6ops] Turning on IPv6 Routers (was PPPoE re… Brian E Carpenter
- Re: [v6ops] Turning on IPv6 Routers sthaug
- Re: [v6ops] Turning on IPv6 Routers Brian E Carpenter
- Re: [v6ops] Turning on IPv6 Routers Mark Smith
- Re: [v6ops] Turning on IPv6 Routers Gert Doering
- Re: [v6ops] Turning on IPv6 Routers Mark Smith
- Re: [v6ops] Turning on IPv6 Routers Gert Doering
- Re: [v6ops] Turning on IPv6 Routers Mark Smith
- Re: [v6ops] Turning on IPv6 Routers Brian E Carpenter
- Re: [v6ops] Turning on IPv6 Routers Gert Doering