IETF Logo Mail Archive

Re: I-D Action: draft-ietf-6man-rfc6434-bis-01.txt

Erik Kline <ek@google.com> Sun, 16 July 2017 10:13 UTC

Return-Path: <ek@google.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05683126DC2 for <ipv6@ietfa.amsl.com>; Sun, 16 Jul 2017 03:13:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.702
X-Spam-Level:
X-Spam-Status: No, score=-2.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wUY0l-ejJ6EV for <ipv6@ietfa.amsl.com>; Sun, 16 Jul 2017 03:13:37 -0700 (PDT)
Received: from mail-yw0-x22b.google.com (mail-yw0-x22b.google.com [IPv6:2607:f8b0:4002:c05::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 44018129B2C for <ipv6@ietf.org>; Sun, 16 Jul 2017 03:13:37 -0700 (PDT)
Received: by mail-yw0-x22b.google.com with SMTP id a12so38560964ywh.3 for <ipv6@ietf.org>; Sun, 16 Jul 2017 03:13:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=d7318fwZyHCsGua+PuP6JF0W2pJi/kfvO0tArhK7q6U=; b=euqzw79/MKZFF+NvFPqLkiRyGLI6m60YWGLLVp78FnUOWBpb+8pTP7R+orL8wx9zbp xZHI/QdqZBRnsjaVb868NeRqcLGUhU50G4TF8M8n+/L9YeCQCo0kn46cRntl4sKAbd46 bXO085vQjhrJOqs72lg/0kKJKtNuNyscI3US+fEQMjHx0HBaW5ud64XDqBIza/O6P0QA 6L36mEx1i8//w16JzRuNSgMgRTKDNUJDFRgJsXXVAAk2OhdNvdKcrhSVmBup7PxRQiwf qI0h/OxY07DU3/VbY0eyA3XumzUprrkZCc6Uokj39qx0vQAy5OHet/U3NvPmkPJa41ER MFgg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=d7318fwZyHCsGua+PuP6JF0W2pJi/kfvO0tArhK7q6U=; b=jQjF/Uq7sjYwm8+BWbbG+TuI2rkujQ5sZzlni1FfaBtPUlW4WppB+XFVFjrBuT+SOZ v3e4cPbKiPlUQqjdpqVZgV+ulV/XdFv+KCfkFckEuUqx12Bq7MlkVxcWZh9mEC1D23C6 g5kpF7U6ic2Sf53Az6VcXB1ZEvHZwh4CuFp4FGWDE8P16DrF4xo+OE/jmW2fHdApwT1W IfBfOzqn5W7iP0hPHW9WUOr/Pr/FEMzrECdf/dF2kX+DQODEVhU8kwMorBcgjr3hGR1O Qcv7Xk5KF3/kqpk4rKEgaadVKVjRrdh6JSqeNzuPMQ+2GEGhPJ/1qa46Ivp+DnUK6PaE Qk8Q==
X-Gm-Message-State: AIVw112riWUbPaNzc5XaHuTk1mbozkfXDO6S4QPWBiYV7ugyJewipptD lAKtRJ/xSMgYrD8bxzSZ7pxJCYZa0+jcYjA=
X-Received: by 10.129.46.3 with SMTP id u3mr3649573ywu.312.1500200016186; Sun, 16 Jul 2017 03:13:36 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.37.35.69 with HTTP; Sun, 16 Jul 2017 03:13:15 -0700 (PDT)
In-Reply-To: <CAKD1Yr25jk22qTTqJ-RoxOVTu7=e=vQWWLQZnek-HGCKaZgU=w@mail.gmail.com>
References: <149909644776.22718.16227939850699261560@ietfa.amsl.com> <CAKD1Yr25jk22qTTqJ-RoxOVTu7=e=vQWWLQZnek-HGCKaZgU=w@mail.gmail.com>
From: Erik Kline <ek@google.com>
Date: Sun, 16 Jul 2017 19:13:15 +0900
Message-ID: <CAAedzxo4VjZycuj2Qhsu+fmR6ySAXbrOcBS=3wQj3AvdTrWtEg@mail.gmail.com>
Subject: Re: I-D Action: draft-ietf-6man-rfc6434-bis-01.txt
To: Lorenzo Colitti <lorenzo@google.com>
Cc: IETF IPv6 Mailing List <ipv6@ietf.org>, draft-ietf-6man-rfc6434-bis@tools.ietf.org
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="001a114080ce14da8305546c896c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/bdqkWhqG1-ShvGNVBYNHXeasXv8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Jul 2017 10:13:39 -0000

On 16 July 2017 at 18:31, Lorenzo Colitti <lorenzo@google.com> wrote:
> On Mon, Jul 3, 2017 at 5:40 PM, <internet-drafts@ietf.org> wrote:
>>
>> A New Internet-Draft is available from the on-line Internet-Drafts
>> directories.
>> This draft is a work item of the IPv6 Maintenance of the IETF.
>>
>>         Title           : IPv6 Node Requirements
>>         Authors         : Tim Chown
>>                           John Loughney
>>                           Timothy Winters
>>         Filename        : draft-ietf-6man-rfc6434-bis-01.txt
>
>
> I see that the document still says:
>
>    There will be a wide
>    range of IPv6 deployment models and differences in address assignment
>    requirements, some of which may require DHCPv6 for stateful address
>    assignment.  Consequently, all hosts SHOULD implement address
>    configuration via DHCPv6.
>
> We should abandon this documentation, for two reasons.
>
> First, networks that require DHCPv6 assignment are explicitly NOT
> RECOMMENDED by current IETF best practices. Specifically, RFC 7934 section 8
> says "it is RECOMMENDED that the network give the host the ability to use
> new addresses without requiring explicit requests". A DHCPv6-only network
> cannot meet this recommendation, because on a DHCPv6-only network, all
> addresses acquisition requires an explicit request to the network.
>
> Second, the draft says "Where devices are likely to be carried by users and
> attached to multiple visisted networks, DHCPv6 client anonymity profiles
> SHOULD be supported as described in [RFC7844]".
>
> But RFC 7844 says that hosts SHOULD prefer stateless address configuration
> over DHCPv6: "hosts using the anonymity profile SHOULD use stateless address
> configuration instead of stateful address configuration".
>
> So for such devices, there is a direct conflict: this document says they
> SHOULD do DHCPv6, but RFC 7844 says they SHOULD not if other addressing
> modes are available.
>
> I would propose the following text for section 6.5:
>
>    [...] There will be a wide
>    range of IPv6 deployment models and differences in address assignment
>    requirements, some of which may use DHCPv6 for stateful address
>    assignment in addition to other addressing modes. Using DHCPv6 as the
>    only IPv6 address configuration mechanism is NOT RECOMMENDED
>    [RFC 7934 section 8].
>
>    In the absence of a router, IPv6 nodes using DHCP for address
>    assignment MAY initiate DHCP to obtain IPv6 addresses and other
>    configuration information, as described in Section 5.5.2 of
>    [RFC4862].
>
>    Where devices are likely to be carried by users and attached to
>    multiple visisted networks, DHCPv6 client anonymity profiles SHOULD
>    be supported as described in [RFC7844] to minimise the discolosure of
>    identifying information. This profile recommends that the device prefer
>    stateless address configuration over DHCPv6 address configuration.
>
>    Devices that do not have particular anonymity requirements SHOULD
>    implement address configuration via DHCPv6 in order to be able to
>    take advantage of IPv6 addresses available only via DHCPv6.

Sounds good to me.

I also think that section 5.9 on RFC 4191 should be a MUST.  We don't
want to end up in a situation where routers are sending out PIOs with
/56s and L=0 in order to maintain internal connectivity when RAs have
default_router_lifetime=0, e.g. because the upstream network has gone
away.

v2.23.0 | Report a Bug | By Email