IETF Logo Mail Archive

Re: “DHCPv6, SLAAC, Static Day X - 17 year interoperability issue” 2nd issue

Mark Andrews <marka@isc.org> Tue, 10 November 2020 06:14 UTC

Return-Path: <marka@isc.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 209D83A07A0; Mon, 9 Nov 2020 22:14:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ztRHbkFSBxLA; Mon, 9 Nov 2020 22:14:04 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 476253A07C4; Mon, 9 Nov 2020 22:13:50 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.pao1.isc.org (Postfix) with ESMTPS id 1F3943AB070; Tue, 10 Nov 2020 06:13:50 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id 1021016005A; Tue, 10 Nov 2020 06:13:50 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id EF0AF160064; Tue, 10 Nov 2020 06:13:49 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id zCZ4mBiYXhdA; Tue, 10 Nov 2020 06:13:49 +0000 (UTC)
Received: from [1.0.0.3] (n114-75-120-99.bla3.nsw.optusnet.com.au [114.75.120.99]) by zmx1.isc.org (Postfix) with ESMTPSA id 9F8AB16005A; Tue, 10 Nov 2020 06:13:48 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.7\))
Subject: Re: “DHCPv6, SLAAC, Static Day X - 17 year interoperability issue” 2nd issue
From: Mark Andrews <marka@isc.org>
In-Reply-To: <4e015b11-bdad-b719-2af2-015d949f0764@joelhalpern.com>
Date: Tue, 10 Nov 2020 17:13:45 +1100
Cc: Ted Lemon <mellon@fugue.com>, Ca By <cb.list6@gmail.com>, draft-mishra-6man-variable-slaac@ietf.org, 6man WG <ipv6@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <D1BC571B-BE62-4ED9-9A19-4320BDD8E827@isc.org>
References: <3A94E3B6-EA5A-453A-8CB1-C11BBDF88B53@gmail.com> <CAD6AjGTcy3eo=4P52fOjCKRLDveVMUJcD7Y_u9JzJtpq3RAj0Q@mail.gmail.com> <636E07D5-2554-40A7-9C3B-C699EA29BD52@isc.org> <CAD6AjGSnw+DG+sDb1ddHVudZdHsGWcN+8GgJd2DKrqpBG3WWUg@mail.gmail.com> <61D91FAE-C7AF-48E6-AE90-638F92E4EB35@fugue.com> <4e015b11-bdad-b719-2af2-015d949f0764@joelhalpern.com>
To: "Joel M. Halpern" <jmh@joelhalpern.com>
X-Mailer: Apple Mail (2.3445.9.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/XwyCN1Z9A1Rjurmf24BGlpwFuNU>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Nov 2020 06:14:06 -0000


> On 10 Nov 2020, at 15:27, Joel M. Halpern <jmh@joelhalpern.com> wrote:
> 
> Ted, I'm not an operator, but I sure find that a very dismissive response.  (I doubt that was your intent)
> There are operational complexities to adding a new kind of server into an operational network.
> (Side note, we are in this case not talking about the IT department.  We are talking about the operational efforts of an ISP.)
> 
> When operators tell us they have constraints, it is fair for us to inquire as to the nature of the constraints.  It is not fair for us to say "you MUST make different operational choices."
> 
> We as a community decided that there were going to be two paths to operating an IPv6 network.  (SLAAC and DHCP, let's not worry about other corner cases.)  When we made that choice, we should ahve recognized that there were operational implications, complications, and trades inherent in that decision.  Just as we need to (and usually have) listened when operators have asked for DHCP capabilites that they need, we should be listening when operators tell us there are RA / SLAAC capabilities they need.

RA has the O bit for a reason.  It was so every client didn’t have to code 2 solutions for getting information.  It was designed to be used with a minimal DHCPv6 server in the router.  A server that didn’t hand out addresses.  A server that didn’t need to save state.  Instead we now have every device having to be coded with 2 solutions (RA + DHCPv6).  The same data that would have been handed out in a DHCPv6 packet is now being handed out in a ICMPv6 packet.  The router is still returning the information to the client.  The only difference from the routers perspective is that it has opened one socket to listen for ICMPv6 traffic instead of 2 sockets (ICMPv6 + DHCPv6).  It still has to encode the data.  It still has to be configured with the data it is handing out.  The big difference is every other device on the planet now has to support 2 ways to get the same information.

I suspect most of this came down to operators and equipment vendors not realising how the O bit was supposed to be implemented.  If you think you have to run a DHCPv6 servers with failover that is keeping state that has to be co-ordinated with the router just to hand out nameserver addresses, etc. then yes a complaint was valid, but that was never the intention.  It could be done with seperate machines for the DHCPv6 servers but it didn’t have to be done that way.

> In particular, Cameron has been very forthcoming and clear about what he wants to deliver and what his operational constraints are.  Implying he should just use DHCP anyway seems an odd answer.
> 
> Quite a number of us have said over the years that we want operators to participate more, and we want to understand what they need.  We may or may not decide to make changes (listening does not mean agreeing).  But we really should be paying attention to what the range of operators are telling us.

> I hope that my notes to Gyan have been questioning and done dismissing.  Apologies if they have come off otherwise.
> 
> Yours,
> Joel
> 
> 
> On 11/9/2020 10:31 PM, Ted Lemon wrote:
>> On Nov 9, 2020, at 10:15 PM, Ca By <cb.list6@gmail.com <mailto:cb.list6@gmail.com>> wrote:
>>> The force required to break the current stasis is more than i have, if i must use dhcpv6.  Again, many years of proof. 
>> So, to summarize, the problem is that you can’t get your IT department to install DHCPv6 servers?
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
> 
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742              INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email