[IPv6]Re: Analysis of Ungleich ULA Registry

[Mark Smith <markzzzsmith@gmail.com>]

Hi David,

On Fri, 24 May 2024 at 11:47, David Farmer <farmer@umn.edu> wrote:
>
>
>
> On Thu, May 23, 2024 at 8:05 PM Bob Hinden <bob.hinden@gmail.com> wrote:
>>
>> Mark,
>> > On May 22, 2024, at 8:55 PM, Mark Smith <markzzzsmith@gmail.com> wrote:
>> > I think you can only conclude that if you believe that most people are
>> > generating ULA /48s correctly. I've seen enough examples that they
>>
>> I note that it’s probably not “people” doing this, it is routers.  On my home network, the routers (eero) creates what looks to me to be a ULA /48 with a random prefix.
>
>
> I agree with Bob. Most people aren't generating them. Either their router is, or they use a tool. l\Looking at the Ungleich ULA Registry, while there are plenty that are not random, the vast majority are.
>

You were using this registry data to justify the need for people to
have shorter than /48s, meaning multiple /48s. I was pointing out that
I don't think they're realistic because I've seen too many examples of
incorrect and unrealistic ULAs.

> 581 Names with >1 Entry
> 8 Names with >10 Entries

Are you saying that more than 10% of the 4886 unique names have a
realistic need for between 131 072 /64s (2 x /48s) and 655 360 /64s
(10 x /48s)?

Or that 8 of them have a realistic need for 11 or more /48s?

How do you know that these are legitimately sized registrations rather
than just an IPv6 ULA "land grab" because ULA /48s are very cheap to
generate?

We shouldn't be miserly with IPv6 address space (I advocate and have
deployed /48s for residential ISP customers), however we also
shouldn't swing too far the other way and try to accommodate single
address space sizes that are beyond realistic or common.

>> > .... I don't think
>> > shorter than /48 ULA is actually a common requirement at all.
>>
>> I agree with that.
>>
>> I would go further and say that organizations that require shorter prefixes, should probably just get Global addresses from their ISPs or from the RIRs.
>
>
> I agree they are not common. Even the Ungleich ULA Registry shows that, but it also seems to demonstrate their existence. However, my primary argument for short prefixes is that the known-local ULA change we are making puts a practical limit on the number of ULA prefixes of about 10. Again, this is not a problem for most networks; they seem to exist.
>
> Your answer seems to be don't use ULA for your internal addressing.
>

Not at all. There are security and renumbering benefits to deploying
ULAs in parallel with GUAs in any network (internal services/servers
that only have ULA addresses cannot be an Internet DoS target because
the Internet traffic can't reach them).

In a network large enough, e.g., with an supposed need for 1 048 576
/64s, I'd quite happily use 16 x random ULA /48s rather than a single
/44 "ULA".

The usefulness and time/cost savings of having a single /44 rather
than 16 x /48s would be trivial in a large network for an internal
address space.

Experience with running a network with multiple aggregate address
spaces isn't rare, ISPs have been doing it for decades with multiple
IPv4 assignments from RIRs.

Regards,
Mark.


> --
> ===============================================
> David Farmer               Email:farmer@umn.edu
> Networking & Telecommunication Services
> Office of Information Technology
> University of Minnesota
> 2218 University Ave SE        Phone: 612-626-0815
> Minneapolis, MN 55414-3029   Cell: 612-812-9952
> ===============================================