Re: Generic anycast addresses...
Toerless Eckert <tte@cs.fau.de> Thu, 30 May 2019 15:29 UTC
Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 46D3F1200EB for <ipv6@ietfa.amsl.com>; Thu, 30 May 2019 08:29:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.198
X-Spam-Level:
X-Spam-Status: No, score=-4.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o6W2Cq8nA5To for <ipv6@ietfa.amsl.com>; Thu, 30 May 2019 08:29:09 -0700 (PDT)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [131.188.34.40]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A97812013B for <6man@ietf.org>; Thu, 30 May 2019 08:29:08 -0700 (PDT)
Received: from faui48f.informatik.uni-erlangen.de (faui48f.informatik.uni-erlangen.de [IPv6:2001:638:a000:4134::ffff:52]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id 279C1548904; Thu, 30 May 2019 17:29:03 +0200 (CEST)
Received: by faui48f.informatik.uni-erlangen.de (Postfix, from userid 10463) id 192FA440041; Thu, 30 May 2019 17:29:03 +0200 (CEST)
Date: Thu, 30 May 2019 17:29:03 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: Ted Lemon <mellon@fugue.com>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, "6man@ietf.org" <6man@ietf.org>, Dave Thaler <dthaler@microsoft.com>
Subject: Re: Generic anycast addresses...
Message-ID: <20190530152902.l2nmyhadr4e4kt7x@faui48f.informatik.uni-erlangen.de>
References: <D22E680C-3EE3-4AD7-90C0-9339DA2E5A29@fugue.com> <BN6PR21MB04978DB375C05CB3CE4C914EA31F0@BN6PR21MB0497.namprd21.prod.outlook.com> <4EF97F31-1F39-4150-B044-955C46E96FB4@fugue.com> <20190530002833.wfvjfbj2lv2ig664@faui48f.informatik.uni-erlangen.de> <7A9560FC-0393-45DF-8389-B868455AC6DD@fugue.com> <20190530005734.7d2alod2zoaemmhc@faui48f.informatik.uni-erlangen.de> <D6E27B45-437F-45BE-A305-47DD460BCE02@fugue.com> <26144.1559226966@localhost> <1DD451A7-D898-4105-974C-53776A3DA9F2@fugue.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <1DD451A7-D898-4105-974C-53776A3DA9F2@fugue.com>
User-Agent: NeoMutt/20170113 (1.7.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/Z9iEfVQhSFXOtmL_f9YqYO9a5aY>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 May 2019 15:29:11 -0000
On Thu, May 30, 2019 at 07:55:03AM -0700, Ted Lemon wrote: > That seems reasonable. Even if at some point we want to have a mechanism for allocating ULAs globally, this would just be one that was allocated globally. I still haven't seen an argument why this anycast scoped app could not simply use an existing ULA prefix. AFAIK, there is nothing prohibiting the author of an app using ULA to pick the randomn ULA prefix and write it into an RFC. Of course, you want to make sure that your scheme still works when multiple instances of that application/side do interconnect, but th way i understand what you want to do, that would be the case. I am not saying this is the best way, i am just saying that i hven't seen enough evidence to try to create more RIR work. > > So maybe site-local space can be used for scoped anycast? > > How are site-local addresses routed now? If a packet with a site-local address as a destination escapes to the backbone, does it go anywhere, or is it blackholed immediately? Not sure if any vendor products have defaults to filter ULA space. Don't think i remember having seen default blackhole routes for the ULA prefix. Could be wrong. Would assume that ULAs today just stop automatically in SPs on the first default-free-router. Aka: most likely no different treatment from what you would get from a globally allocated but not globally routed prefix. > > and I think you want an address which is synatically distinguishable from > > unicast. Maybe something that does not get caught by default route; although > > I'm not sure about that. > > I don???t actually care for my application whether the address is semantically distinct from unicast. However, I think from an internet architecture standpoint we do care, and we want the behavior to be scoped. The scoping is the design problem given the experience with scoped unicast addresses (and even more so multicast scoped addresses). If you are defining anycast in the routing instead of RIR domain, one could be a lot more flexible, for example tagging anycast prefix routes not only with a flag saying "anycast", but also with some "zone" identifier (such as AS domain-prefix or any other appropriate name space). That would allow to automatically build anycast-prefix specific zones of arbitrary sizes without ending up in the same planning mess we get whenever we tried to do this via fixed address architectures. > Mark???s proposal is quite a bit more heavyweight than what I???m looking for; not necessarily the wrong thing to do, just more than I need. I???m wary of ???more than I need??? solutions because it???s hard to get traction with them, as Mark has rather aptly demonstrated on this thread. > > I do care that the anycast be routed edge-ward, so in fact I want it to be routed toward a default route. My expectation would be that like a ULA destination, a packet heading for this anycast destination would be discarded by a border router if it reached one, unless the border router is where it???s consumed. In the specific application I have in mind, the constrained-network border router, which would be on the way to the edge router but would be reached first, would either consume the anycast or direct it to the right destination, which would be within the operational domain containing the originating host. If you where just trying to make moneey out of an application product doing this, you would simply use a global address from your company and build out the clients so that the total number of packets arriving at the actual official unicast location of that address from clients deployed in networks without the appropriate anycast function in routers enabled would still be bearable. A simple service unreachable reply from the server in your cloud location to shut up those clients would go a long way for example. A more intelligent responder might even provide a helper function for the resolution. Now if you want to stanardize this, you just talk to IANA if they have an address for you. We did the same thing towards RFC7450 except that i think most people understaning how Anycast works wouldn't necessary recommend to actually use the default anycast numbers assigned to AMT in section 7 - primarily because there is no single global entity guaranteeing that there is such a fallback group member. Independent of those allocated global anycast prefixes for AMT< the protocol itself is probably doing alreasdy something you want to do to - resolving from anycast address to unicast instance ddress. just the service offered is fixed (stream multicast traffic through tunnels). Which i guess is where you want something else. > > Ted, having read through the thread, maybe you can do this with a multicast address which > > typically has only one listener :-) > > I don???t know enough about non-local multicast to know whether or not this is a good idea, but it???s certainly a plausible idea. My worry would be that it would actually be treated as a multicast. That might produce some interesting side effects given that the application I have in mind involves DNS updates, which are not idempotent. Expecting support for layer 3 multicast routing deployed in networks is a safe bet to kill the widespread adoption of the idea. > > Or maybe you want a more radical rethink. There's one at https://tools.ietf.org/html/draft-jiang-service-oriented-ip <https://tools.ietf.org/html/draft-jiang-service-oriented-ip>. We hadn't thought of it for constrained devices, but I don't see an issue there. > > Like Mark???s proposal, this is quite a bit more ambitious than I want to be, although it would definitely address my use case. The security/privacy implications alone of this proposal make it look like a decade or more of work to make real, even if it winds up seeing widespread deployment eventually. Cheers Toerless
- Generic anycast addresses... Ted Lemon
- RE: Generic anycast addresses... Dave Thaler
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... George Michaelson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Bob Hinden
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... George Michaelson
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... George Michaelson
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... JORDI PALET MARTINEZ
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Sander Steffann
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Sander Steffann
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Fred Baker
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... STARK, BARBARA H
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Brian E Carpenter
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Sander Steffann
- Re: Generic anycast addresses... George Michaelson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Brian E Carpenter
- Re: Generic anycast addresses... Brian E Carpenter
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Fred Baker
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mikael Abrahamsson
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Mikael Abrahamsson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... joel jaeggli
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Fred Baker
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Nick Hilliard
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Joel Jaeggli
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Ole Troan
- Re: Generic anycast addresses... Brian E Carpenter
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Sander Steffann
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Nick Hilliard
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... joel jaeggli
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Mikael Abrahamsson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Mikael Abrahamsson
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Christian Huitema
- Re: Generic anycast addresses... Toerless Eckert
- Re: Generic anycast addresses... Michael Richardson
- Re: Generic anycast addresses... Brian E Carpenter
- Re: Generic anycast addresses... Mikael Abrahamsson
- Re: Generic anycast addresses... Sander Steffann
- Re: Generic anycast addresses... Christian Huitema
- Anycast to unicast resolution (was: Re: Generic a… Toerless Eckert
- Re: Anycast to unicast resolution (was: Re: Gener… Christian Huitema
- Re: Anycast to unicast resolution (was: Re: Gener… Brian Haberman
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Alexandre Petrescu
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Bob Hinden
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Bob Hinden
- Re: Generic anycast addresses... Ted Lemon
- Re: Generic anycast addresses... Mark Smith
- Re: Generic anycast addresses... Erik Kline
- Re: Generic anycast addresses... Mark Smith