Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

Ted Lemon <mellon@fugue.com> Sat, 13 February 2021 05:47 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 374B53A0E1D for <ipv6@ietfa.amsl.com>; Fri, 12 Feb 2021 21:47:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BvPMEB12cCX8 for <ipv6@ietfa.amsl.com>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
Received: from mail-qv1-xf2b.google.com (mail-qv1-xf2b.google.com [IPv6:2607:f8b0:4864:20::f2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 190D23A0E1B for <6man@ietf.org>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
Received: by mail-qv1-xf2b.google.com with SMTP id g3so865427qvl.2 for <6man@ietf.org>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=ces7L/390CjYfLNTs6ISu8K8qdnXbTNYiH0fXZXxH6I=; b=hqqRL3bo4g9hKpjKkyAkJ85+1NYEuZfdda5yzjarYfctgvuXXx9slrAqNB5eqea1R5 rS75NsWDDM2TO6qtkPM9typoUAQmmQ9PDLbyQxP+NqRiUR+kqJhOMABc3Zu4llDklu+2 0hzl7oJ5gOXKGx/8A9Pw4ED9WCakDLhrgkAtK7zBm6UtH0gPAsDHfZ6oZM9PNoigeuHb qGbl5oW7Envy8rM0+dlBzX3vh0Vi9o69BALjqwL3pbw3sSX03SSWk6XQU4XB9oBE4W/Q YnkjjAZIy/rfAYR44prsfs/MXLiZBtKhvxZpPt9wWv4Z8v8JL4VQbQ5UTeW0gpCkDJZP 4/Ig==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=ces7L/390CjYfLNTs6ISu8K8qdnXbTNYiH0fXZXxH6I=; b=NynyNriXtDVT6cLaqP7M8qLwtcaE8feWoqQN8Fr+ny/y+ht51M+guIdQgTRCBWTk0B TsofHvPwHRcHpJKSMeB7Y6g2MmPj9uloP5764NJ0X5ZalWB8Mkc/I3ste3bCJ7dEr95h EAU/g8k8HT257YshovkyFTPFRQ0YtkpDDvBe0C4voi6AUodgrDaZ7uuc+jDJyWJwZVdc dZl1Cz/hpzsYcveMTmklu6YeoArAn4ZvelZPAnsNZbHDGNrv7iUz2d2OpG9Tw0++nhBh 0i2KY+YiYvRXSgsYStJlBKHfzsbU80KZu2LVHl7R68feSSmMK1RR6O8OnOS9zcdLuC76 z4gw==
X-Gm-Message-State: AOAM5335v3Pi/wyF2cINJbclKMkdc4rq0YUeb9Zb456YW6KCX8Fjz+rr qx37ZPGFGIoe6Kmi9G+grH8UtA==
X-Google-Smtp-Source: ABdhPJzEjhncPmGCvtqwNt34cikzv4LqHFFNMwr+s94fcnbEdPYO01WfbCWEpF+fhBCs6E0fEQUi1Q==
X-Received: by 2002:a0c:8304:: with SMTP id j4mr5838904qva.18.1613195216064; Fri, 12 Feb 2021 21:46:56 -0800 (PST)
Received: from smtpclient.apple (c-24-91-177-160.hsd1.ma.comcast.net. [24.91.177.160]) by smtp.gmail.com with ESMTPSA id e1sm4412607qkf.99.2021.02.12.21.46.55 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Feb 2021 21:46:55 -0800 (PST)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <46888959-FE01-49E8-9E54-9A3B1E07B97E@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_E9BF1E27-1CFC-4C3C-A48B-89D02D8F8D57"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.32\))
Subject: Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)
Date: Sat, 13 Feb 2021 00:46:54 -0500
In-Reply-To: <e2f45fba-dd1e-3cb6-b929-ab03e321020a@si6networks.com>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, Michael Richardson <mcr+ietf@sandelman.ca>, IPv6 Operations <v6ops@ietf.org>, "6man@ietf.org" <6man@ietf.org>
To: Fernando Gont <fgont@si6networks.com>
References: <160989494094.6024.7402128068704112703@ietfa.amsl.com> <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com> <F4E00812-E366-4520-AE17-7BB46E28D575@gmail.com> <b2e51a89-e8a7-9ddb-643d-63a98569b03c@si6networks.com> <CB9EA5F4-A241-46A4-A371-B2A1BFB8C72F@fugue.com> <dff93a2e-f4f8-01c9-ce88-c2dbb20a04f1@si6networks.com> <759637FF-77C7-41EA-8671-73988AD48873@fugue.com> <9877D352-E9BB-453B-A676-D2B5C546C1C2@gmail.com> <11035C3E-BA75-4B9D-A047-B2AA1DE23BEA@fugue.com> <b3f1c53f-c22d-c9fb-6094-9a15d79fcd43@si6networks.com> <b9972eb4-b4db-e82d-12ec-1cfcc75a9e45@gmail.com> <6488.1613188541@localhost> <e0fec02c-a284-fbe1-2067-ca7f59f54853@gmail.com> <e2f45fba-dd1e-3cb6-b929-ab03e321020a@si6networks.com>
X-Mailer: Apple Mail (2.3654.80.0.2.32)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/kEwVTZ2vS1UVUltRdnd-7uBrl7Y>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Feb 2021 05:47:00 -0000

Okay. Consider the clarifications I suggested a while back:

---
ULA addresses are, in principle, VALID in any scope.

They are not, in principle, UNIQUE to a particular link: it’s entirely possible to have two instances of the same ULA referring to different interfaces connected to different links.

In principle, the set of all networks which can route a packet to a particular instance of a ULA /48 MUST be DISJOINT from the set of all networks which can route a packet to some other instance of that ULA /48.

In practice, the randomness of ULAs gives us some reasonable assurance that the principle will hold.

However, users of ULAs that are routed beyond an individual site had better have some policies and procedures in place to make sure that this is true.

Internet backbone routers should never accept BGP advertisements for ULA prefixes.

Sites connecting to the Internet should never, by default, route ULAs northbound of their connection to their ISP.

The last four lines are points of practice, not points of definition of terms.

But the bottom line is that if the term “global” is confusing as it applies to ULAs, it shouldn’t be that hard to clarify what we mean by global.
---

Do you think anything I’ve said here is wrong, not in the sense of contradicting RFC 4007, but in the sense that it is incorrect?

Is there anything missing?

I’m not trying to win an argument here—the reason I wrote the above is that I think it’s correct, and I was trying to figure out whether it was in any way consistent with the problem you have.

I think Brian has said that the “scoped architecture” is just not how things actually work in real life, with which I agree, so the fact that you can’t explain it to anyone is not a big shock. I think RFC 4007 says some interesting and useful things. It might be worthwhile to write a new document that’s a sort of Talmudic commentary on RFC 4007.

What I do not want to see is some kind of effort to rationalize ULAs into something other than what they are at present, which is quite useful.