IETF Logo Mail Archive

Re: Generic anycast addresses...

Ted Lemon <mellon@fugue.com> Fri, 31 May 2019 01:18 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B44D120094 for <ipv6@ietfa.amsl.com>; Thu, 30 May 2019 18:18:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 99-D6RJSjJaX for <ipv6@ietfa.amsl.com>; Thu, 30 May 2019 18:18:22 -0700 (PDT)
Received: from mail-pg1-x52f.google.com (mail-pg1-x52f.google.com [IPv6:2607:f8b0:4864:20::52f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 503BB120019 for <6man@ietf.org>; Thu, 30 May 2019 18:18:22 -0700 (PDT)
Received: by mail-pg1-x52f.google.com with SMTP id 196so3027581pgc.6 for <6man@ietf.org>; Thu, 30 May 2019 18:18:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=2FP3L9RTYxi0aSSi3DC+tALIRueBkujfANnVTIxZKlw=; b=k6DpoNIH/zzk6Pc3zO3FMHuFWZWtPusGJORRJZU/81WbITEJdlR6t3s4WANDzUSlTB jbbD9QGowGdP0pJUzbwm7g3F8foDGB9AVpcgIZj5lVs5VBEPGll2tzJJc66E0murK9JX uivElu30Waa+gSUw7VjcRaQl24aIXedPfApUBWBcf55vJR1yDQ/TmHMBbChlX8Zf7RDW xX3EHm0O8DNfIBtDGdOwldXXnzRPczClavc4SZVgIVkCpInt7iFkNZxncMBAlpJRaLcO DcpajHIKwVPZOqY+60utXKtPNpzOA0H97dSCvHI1JJuFIj9ZJvW0muMlcaU8amxV0Zzo jpKg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=2FP3L9RTYxi0aSSi3DC+tALIRueBkujfANnVTIxZKlw=; b=popHxQiXU2PX7nfSf41Cn/jEJVVb7ytDgrLjCFEmQ76LyaYsBwjen0H5QQK9h+sI/I w6SXhdUi/MiBGgw0fGl5S66XnPOoUtWJVdTQtASOD2A1AnQZdnCdoBTrDVvz3vVK7H7s UrCPnhC4UQZVGnbNiKeSjvQWQY6bg6sc73uSGRdoJPJUcw9/lWKh9ed/IJ1TQyZgkRK1 0Twt7Jifkp/iiaCr43W4WZkNqHe3p+ftmcv18YIVuFeDRGhS/xtOJltPsi3Ua0aqFROO HPC1hQ4d7yvuMbKcIYPfKuUZMRSq7z+RSyfch9OyJUI30oOHuJuQsFhQxFPFSBjIkDP/ StCA==
X-Gm-Message-State: APjAAAUP2HCCYYrw5pftwSS6Bp0dvX41RKXLSMeSwcd+UlBDrgp4EfCl ikqw+nxfR87nUAADeQ2hxo3STw==
X-Google-Smtp-Source: APXvYqyyiuTGr2FzP9Kf4gFPGdZ4cOzJY3KrXS0AAkJBV96Qag7i4OrTY4vRGhjpPfCJ2xStnwE++g==
X-Received: by 2002:a63:135d:: with SMTP id 29mr6167801pgt.38.1559265501585; Thu, 30 May 2019 18:18:21 -0700 (PDT)
Received: from [17.230.172.14] ([17.230.172.14]) by smtp.gmail.com with ESMTPSA id 1sm4230562pfy.69.2019.05.30.18.18.20 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 30 May 2019 18:18:20 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Subject: Re: Generic anycast addresses...
From: Ted Lemon <mellon@fugue.com>
In-Reply-To: <CAO42Z2xXbwUd6G2EZcUvPStP8acyM=Dt8n-R=Cdpra+wMwWf3Q@mail.gmail.com>
Date: Thu, 30 May 2019 18:18:18 -0700
Cc: Sander Steffann <sander@steffann.nl>, Michael Richardson <mcr+ietf@sandelman.ca>, "6man@ietf.org" <6man@ietf.org>, Dave Thaler <dthaler@microsoft.com>
Content-Transfer-Encoding: quoted-printable
Message-Id: <F1401F04-550E-41EA-880E-F66D464B3554@fugue.com>
References: <7A9560FC-0393-45DF-8389-B868455AC6DD@fugue.com> <20190530005734.7d2alod2zoaemmhc@faui48f.informatik.uni-erlangen.de> <D6E27B45-437F-45BE-A305-47DD460BCE02@fugue.com> <26144.1559226966@localhost> <1DD451A7-D898-4105-974C-53776A3DA9F2@fugue.com> <20190530152902.l2nmyhadr4e4kt7x@faui48f.informatik.uni-erlangen.de> <0FF19D6D-1A45-41EF-BE34-CC35B5E51E1E@steffann.nl> <D91629F6-73AC-4A80-80EF-16644F73DA36@fugue.com> <701687d4-842c-6a16-3c97-349125324e3f@gmail.com> <D648647D-60E1-4DCE-B0BE-11002E0AE5A4@fugue.com> <20190530220838.g2hshonsjxmfnd55@faui48f.informatik.uni-erlangen.de> <632BE7EC-26A6-44E9-9CCD-F0AE143D4256@fugue.com> <AF1967FC-526D-47FB-98BE-F9B949F26796@steffann.nl> <CAO42Z2yY=z-wKCUaCYZqJLHfT+LdyDOWz9bLG8QTh9C8sJCx3g@mail.gmail.com> <F3E48F41-DED1-4D5D-AEC1-A01356D4110B@fugue.com> <CAO42Z2xXbwUd6G2EZcUvPStP8acyM=Dt8n-R=Cdpra+wMwWf3Q@mail.gmail.com>
To: Mark Smith <markzzzsmith@gmail.com>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/npg6grp479VDpza4RlGVUPdEiqc>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 31 May 2019 01:18:24 -0000

On May 30, 2019, at 5:05 PM, Mark Smith <markzzzsmith@gmail.com> wrote:
> Adding, even if both upsream/parent NSPs are providing DNS resolver service with the same NSP scoped anycast address (because it will be a generic NSP scoped DNS resolver address), the downstream customers' routing will pick only one of them to use.

This might be dysfunctional.  Sometimes if you query the DNS server for one upstream and then use the answer on the other upstream, the results will not be the same, and might be quite suboptimal.   That said, this isn’t likely a problem with the real point you are making, so I only mention it for completeness.

> Similar to multicast, what I've proposed supports embedding a unicast /64 prefix. The all-zeros /64 is used as "unspecified".
> 
> So in this scenario, both NSPs would advertising the same generic NSP scoped anycast DNS resolver address with an all zeros /64 part - and likely such a well-known anycast address that it could be a factory default for devices. They may also each advertise an NSP scoped anycast DNS address which embeds one of their GUA /64s.
> 
> So a customer could leave the choice of which NSP's DNS resolver they use entirely up to their routing system by using the generic DNS anycast address, which would be the default, or they could prefer only one of their NSP's DNS anycast resolver services by configuring their hosts to use that NSP's specific anycast DNS address that includes the NSP's chosen GUA /64.
> 
> They could go further and configure the second NSP's specific NSP scope anycast DNS resolver address as a second DNS entry on a host to get NSP independent DNS redundancy, if the first and preferred NSP's DNS anycast resolution service isn't considered reliable enough. 

This isn’t actually the use case that I’m talking about—I’m a bit puzzled.  Here you are configuring the anycast address just like a regular IP address.  The use case I need is for a well-defined anycast address that does not need to be discovered.   So while what you are doing may be useful, it doesn’t have anything to do with my use case.   The reason I was pointing out that your scoping model didn’t work is that I didn’t understand that you intended to use different anycast addresses for different ISPs.   For that use case, there’s no need for a special scoped anycast address—each ISP can simply allocate an IP address or IP addresses and configure their routing to treat them as anycast addresses.   There are problems with this, but these problems are already discussed e.g. in RFC 7094.

v2.23.0 | Report a Bug | By Email