IETF Logo Mail Archive

Re: [EXTERNAL] Re: 64bit MAC addresses and SLAAC

Alexandre Petrescu <alexandre.petrescu@gmail.com> Thu, 18 June 2020 13:47 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C5F73A0FA7 for <ipv6@ietfa.amsl.com>; Thu, 18 Jun 2020 06:47:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.671
X-Spam-Level:
X-Spam-Status: No, score=0.671 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FORGED_GMAIL_RCVD=1, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vYfpDJd_v4f1 for <ipv6@ietfa.amsl.com>; Thu, 18 Jun 2020 06:47:53 -0700 (PDT)
Received: from cirse-smtp-out.extra.cea.fr (cirse-smtp-out.extra.cea.fr [132.167.192.148]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C38B43A0FD1 for <ipv6@ietf.org>; Thu, 18 Jun 2020 06:47:52 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by cirse-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id 05IDllit009752; Thu, 18 Jun 2020 15:47:47 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id F3E85207ABC; Thu, 18 Jun 2020 15:47:46 +0200 (CEST)
Received: from muguet2-smtp-out.intra.cea.fr (muguet2-smtp-out.intra.cea.fr [132.166.192.13]) by pisaure.intra.cea.fr (Postfix) with ESMTP id E1C0720712F; Thu, 18 Jun 2020 15:47:46 +0200 (CEST)
Received: from [10.8.35.150] (is154594.intra.cea.fr [10.8.35.150]) by muguet2-sys.intra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id 05IDlklp028956; Thu, 18 Jun 2020 15:47:46 +0200
Subject: Re: [EXTERNAL] Re: 64bit MAC addresses and SLAAC
To: "Templin (US), Fred L" <Fred.L.Templin@boeing.com>, Fernando Gont <fgont@si6networks.com>, Bob Hinden <bob.hinden@gmail.com>
Cc: IPv6 List <ipv6@ietf.org>
References: <e8a25961-5ac9-d35e-77dd-bf86f45cd077@gmail.com> <a17ae9f3-001c-07f6-84f9-a0ca583e6a00@gmail.com> <7AE5B6D0-AB01-4077-A9EF-5BD86F428681@gmail.com> <7a3b839f-099e-8fd3-35a2-4625df3c369e@gmail.com> <76e8bd7a-4333-480f-de0f-dcc775418739@si6networks.com> <79d494caa7874696b787aadb80cc322b@boeing.com>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <7da1c847-9847-1022-30bd-30f02a2c331f@gmail.com>
Date: Thu, 18 Jun 2020 15:47:46 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.9.0
MIME-Version: 1.0
In-Reply-To: <79d494caa7874696b787aadb80cc322b@boeing.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: fr
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/eIO-8PlX0TSVosXBxFaBbo_mwg4>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Jun 2020 13:48:02 -0000


Le 17/06/2020 à 18:17, Templin (US), Fred L a écrit :
> Fernando, I think an unspoken assumption in these past several messages is that
> privacy is ALWAYS a required property. However, there are cases where address
> privacy is not only not required, but it is also desirable and useful to be able to
> track a node by a stable and unchanging IP address or prefix.
> 
> This is not intended to challenge the non-use of MAC addresses in Interface
> Identifiers per your documents, but just to say that in some environments the
> randomization and constant changing of IP addresses may actual run counter to
> operational objectives.
> 
> Thanks - Fred
> 
>> -----Original Message-----
>> From: ipv6 [mailto:ipv6-bounces@ietf.org] On Behalf Of Fernando Gont
>> Sent: Wednesday, June 17, 2020 8:21 AM
>> To: Alexandre Petrescu <alexandre.petrescu@gmail.com>; Bob Hinden <bob.hinden@gmail.com>
>> Cc: IPv6 List <ipv6@ietf.org>
>> Subject: [EXTERNAL] Re: 64bit MAC addresses and SLAAC
>>
>> This message was sent from outside of Boeing. Please do not click links or open attachments unless you recognize the sender and
>> know that the content is safe.
>> On 17/6/20 08:39, Alexandre Petrescu wrote:
>>> Le 15/06/2020 à 23:01, Bob Hinden a écrit :
>>>> Alexandre,
>>>>
>>>>> On Jun 15, 2020, at 1:23 PM, Alexandre Petrescu
>>>>> <alexandre.petrescu@gmail.com> wrote:
>>>>>
>>>>> Hi,
>>>>>
>>>>> Before the sanitary situation I was studying an issue at ISO.
>>>>>
>>>>> The issue is about 64bit MAC addresses and SLAAC.
>>>>>
>>>>> SLAAC needs a 48bit MAC addresses in order to work, and it can not
>>>>> work with a 64bit MAC address; (but yes, it can with 64bit IIDs).
>>>>
>>>> SLACC does not specify the length of the Interface ID, it does not
>>>> require require 48-bit MAC addresses, and the reason for Modified
>>>> EUI-64 Format Interface Identifiers in RFC4291 was to support 64bit
>>>> EUI-64 Identifiers.   We have since moved away from using MAC
>>>> addresses as Interface IDs.  See RFC 8064.
>>>
>>> Bob,
>>>
>>> RFC8064 says "this document [...] recommends against embedding stable
>>> link-layer addresses in IPv6 Interface Identifiers".
>>>
>>> But a 64bit MAC address could be a random number as well, not
>>> necessarily stable.  Windows randomizes some of its MAC addresses.
>>
>> Reusing IDs in multiple contexts is known to be a bad idea. See e.g.:
>> https://tools.ietf.org/html/draft-irtf-pearg-numeric-ids-generation and
>> https://tools.ietf.org/html/draft-gont-numeric-ids-sec-considerations

Using same IIDs in several interfaces might be a bad idea some times but 
good elsewhere.

For example, when I am manually configuring two interfaces of the same 
router it is easy for me to know I just need to change one or two hex 
digits in the subnet number.  It is much faster.

It is a matter of convenience to humans, in some contexts.

Alex

>>
>> Thanks,
>> --
>> Fernando Gont
>> SI6 Networks
>> e-mail: fgont@si6networks.com
>> PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
>>
>>
>>
>>
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email