IETF Logo Mail Archive

Re: Node Requirements: Elevating DHCPv6 from MAY to SHOULD

Thomas Narten <narten@us.ibm.com> Fri, 13 May 2011 16:26 UTC

Return-Path: <narten@us.ibm.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE8C4E0792 for <ipv6@ietfa.amsl.com>; Fri, 13 May 2011 09:26:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tTDmO2h4p8-j for <ipv6@ietfa.amsl.com>; Fri, 13 May 2011 09:26:04 -0700 (PDT)
Received: from e38.co.us.ibm.com (e38.co.us.ibm.com [32.97.110.159]) by ietfa.amsl.com (Postfix) with ESMTP id 4E02FE0776 for <ipv6@ietf.org>; Fri, 13 May 2011 09:26:04 -0700 (PDT)
Received: from d03relay04.boulder.ibm.com (d03relay04.boulder.ibm.com [9.17.195.106]) by e38.co.us.ibm.com (8.14.4/8.13.1) with ESMTP id p4DGHvbn009773 for <ipv6@ietf.org>; Fri, 13 May 2011 10:17:57 -0600
Received: from d03av03.boulder.ibm.com (d03av03.boulder.ibm.com [9.17.195.169]) by d03relay04.boulder.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id p4DGR0Or056244 for <ipv6@ietf.org>; Fri, 13 May 2011 10:27:00 -0600
Received: from d03av03.boulder.ibm.com (loopback [127.0.0.1]) by d03av03.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP id p4DAPkex002712 for <ipv6@ietf.org>; Fri, 13 May 2011 04:25:46 -0600
Received: from cichlid.raleigh.ibm.com (sig-9-65-244-19.mts.ibm.com [9.65.244.19]) by d03av03.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id p4DAPjp0002682 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 13 May 2011 04:25:45 -0600
Received: from cichlid.raleigh.ibm.com (cichlid.raleigh.ibm.com [127.0.0.1]) by cichlid.raleigh.ibm.com (8.14.4/8.12.5) with ESMTP id p4DGPiUT010897; Fri, 13 May 2011 12:25:44 -0400
Message-Id: <201105131625.p4DGPiUT010897@cichlid.raleigh.ibm.com>
To: john.loughney@nokia.com
Subject: Re: Node Requirements: Elevating DHCPv6 from MAY to SHOULD
In-reply-to: <1571128F4B736C42B743F492521F123B1EAAB8@008-AM1MPN1-003.mgdnok.nokia.com>
References: <201105131337.p4DDbdao009901@cichlid.raleigh.ibm.com> <1571128F4B736C42B743F492521F123B1EAAB8@008-AM1MPN1-003.mgdnok.nokia.com>
Comments: In-reply-to <john.loughney@nokia.com> message dated "Fri, 13 May 2011 16:19:02 -0000."
Date: Fri, 13 May 2011 12:25:44 -0400
From: Thomas Narten <narten@us.ibm.com>
Cc: ipv6@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 May 2011 16:26:05 -0000

Hi John.

> Should we give some guidance on what to do if both mechanisms are available
> on a network, the methods give contradictory information? I don't think it is
> enough to say that both SHOULD be supported, without giving additional
> clarification on what it means when both are supported.

IMO, it is a bit of a myth that the specs don't say anything to this
point.

Here is Section 5.6 from RFC 4862:

>    5.6.  Configuration Consistency
> 
>    It is possible for hosts to obtain address information using both
>    stateless autoconfiguration and DHCPv6 since both may be enabled at
>    the same time.  It is also possible that the values of other
>    configuration parameters, such as MTU size and hop limit, will be
>    learned from both Router Advertisements and DHCPv6.  If the same
>    configuration information is provided by multiple sources, the value
>    of this information should be consistent.  However, it is not
>    considered a fatal error if information received from multiple
>    sources is inconsistent.  Hosts accept the union of all information
>    received via Neighbor Discovery and DHCPv6.
> 
>    If inconsistent information is learned from different sources, an
>    implementation may want to give information learned securely
>    precedence over information learned without protection.  For
>    instance, Section 8 of [RFC3971] discusses how to deal with
>    information learned through Secure Neighbor Discovery conflicting
>    with information learned through plain Neighbor Discovery.  The same
>    discussion can apply to the preference between information learned
>    through plain Neighbor Discovery and information learned via secured
>    DHCPv6, and so on.
> 
>    In any case, if there is no security difference, the most recently
>    obtained values SHOULD have precedence over information learned
>    earlier.

The last sentence is the main one.

I also think that dealing with this issue in more detail may not be so
easy, and it would be better to do that as updates to those documents
(or a standalone document).

E.g., even DHCP by itself has a longstanding vagueness about how to
handle the merging of information received from running DHCP on
different interfaces. (And one reason its hard is that if the two
interfaces are in different management domains, there is no easy way
to merge the information. We now have a separate WG (MIF) dealing with
that sort of thing.)

Thomas

v2.23.0 | Report a Bug | By Email