IETF Logo Mail Archive

Re: A common problem with SLAAC in "renumbering" scenarios

Jan Zorz - Go6 <jan@go6.si> Mon, 04 February 2019 11:38 UTC

Return-Path: <jan@go6.si>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B42412DF71 for <ipv6@ietfa.amsl.com>; Mon, 4 Feb 2019 03:38:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=go6.si
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q8dpPcK9SN-F for <ipv6@ietfa.amsl.com>; Mon, 4 Feb 2019 03:38:25 -0800 (PST)
Received: from mx.go6lab.si (mx.go6lab.si [IPv6:2001:67c:27e4::23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F3191294D0 for <ipv6@ietf.org>; Mon, 4 Feb 2019 03:38:25 -0800 (PST)
Received: from localhost (localhost [IPv6:::1]) by mx.go6lab.si (Postfix) with ESMTP id 2D42A60749 for <ipv6@ietf.org>; Mon, 4 Feb 2019 12:38:24 +0100 (CET)
X-Virus-Scanned: amavisd-new at go6.si
Received: from mx.go6lab.si ([IPv6:::1]) by localhost (mx.go6lab.si [IPv6:::1]) (amavisd-new, port 10024) with LMTP id JkFfepZwqIPr for <ipv6@ietf.org>; Mon, 4 Feb 2019 12:38:22 +0100 (CET)
Received: from mail.go6.si (mail.go6.si [IPv6:2001:67c:27e4::61]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.go6.si", Issuer "Let's Encrypt Authority X3" (not verified)) by mx.go6lab.si (Postfix) with ESMTPS id B4514603E3 for <ipv6@ietf.org>; Mon, 4 Feb 2019 12:38:22 +0100 (CET)
Received: from haktar.local (unknown [IPv6:2001:67c:27e4:5::19]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "Jan Zorz", Issuer "COMODO RSA Client Authentication and Secure Email CA" (not verified)) (Authenticated sender: jan) by mail.go6.si (Postfix) with ESMTPSA id 60F46809E6 for <ipv6@ietf.org>; Mon, 4 Feb 2019 12:38:22 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=go6.si; s=mail; t=1549280302; bh=Ub4YYYHjzix+i7bV6D1UUwpRuBImzdZCFRMLVN+asf0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=KKwbjAUvgrvyl78iRCPVjX5ln8LJ/w9/sdFQSHWt34KRyGJ+XGhyQ917vhlPS5IuX XydjmtJ9JQLnx5FrWbtehj8gsqIURXYvuHZy6ksKAQDmJaDmlNk8GIGBJqpPkIGQ4e aWLRc4vnrVarDCziL6OKZS5rmKyIcvCkevN1XupA=
Subject: Re: A common problem with SLAAC in "renumbering" scenarios
To: ipv6@ietf.org
References: <60fabe4b-fd76-4b35-08d3-09adce43dd71@si6networks.com> <alpine.DEB.2.20.1901311236320.5601@uplift.swm.pp.se> <m1gpCcz-0000FlC@stereo.hq.phicoh.net> <ddd28787-8905-bafd-3546-2ceef436c8b0@si6networks.com> <m1gptWx-0000G3C@stereo.hq.phicoh.net> <69609C58-7205-4519-B17A-4FBC8AE2EA16@employees.org> <ac773bb5-0da8-064b-d46b-3a218b8c9e7a@si6networks.com> <CFAEACC4-BA78-4DF9-AD8A-3EB0790B8000@employees.org> <a4f6742e-f18e-3384-d4cc-06bfab49101f@si6networks.com> <FEFA99C2-4F09-4D8F-8D51-C9D9D7090637@employees.org> <a484d5de-0dce-a41a-928e-785d8d80d05d@si6networks.com> <CAO42Z2xzYQESqqsz4AEE89vx=AhvBEf8Yzyae9o7z1U1XYyarw@mail.gmail.com> <af53b388-2985-9e45-a41c-18fc588f88b8@si6networks.com> <CAO42Z2w=mJfhN5vws37d8Qg2rJg5yhqSH0y+3-MvHsusVemE+Q@mail.gmail.com>
From: Jan Zorz - Go6 <jan@go6.si>
Message-ID: <9ef25513-f343-815e-983c-c53cdd257e5d@go6.si>
Date: Mon, 04 Feb 2019 12:38:20 +0100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.5.0
MIME-Version: 1.0
In-Reply-To: <CAO42Z2w=mJfhN5vws37d8Qg2rJg5yhqSH0y+3-MvHsusVemE+Q@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/qCCxuWydoLrzNkrN_bTb59bEstg>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Feb 2019 11:38:27 -0000

On 04/02/2019 01:51, Mark Smith wrote:
> So I think it is worth finding out exactly why ISPs are doing this, to
> then work out what the best solution or solutions are.
> 
> Are they doing it
> 
> 1. because they're used to giving residential IPv4 customers dynamic
> addresses by default, so they've carried that practice over to IPv6
> without realising there are different and avoidable consequences?

Yes.

> 
> 2. their employer charges a premium for static address assignment in
> IPv4, and their employer assumes or expects, possibly implicitly, to
> do the same with IPv6?

Yes.

> 
> 3. because PD privacy e.g. German example?

Yes.

> 
> 4. to suit occasional flash renumbering?

Yes.

Cheers, Jan

> 
> 5. ???
> 
> In some of these cases, education may be a better, easier and quicker
> solution in comparison to the years it'd take to deploy CPE behaviour
> changes.
> 
> I put options in radvd that tried to mitigate this nearly 10 years ago
> (DeprecatePrefix, DecrementLifetimes), as radvd was popular in IPv6
> CPE I was working with at the time. Assuming radvd is still popularly
> used, if those options haven't been widely enabled and are not well
> known, then that might indicate an education and expectations problem.
> 
> Ultimately though, the residential ISP I worked for decided to give up
> the specialness and price premium of static addresses and gives all
> customers their own persistent stable PD prefix tied to PPPoE
> username. I've had the same one at home for 7 years.
> 
>>
>>>> The CPE should -- if possible -- be faithful to its LAN hosts, and
>>>> advertise if previous contracts between the CPE and the LAN hosts are
>>>> void. i.e., if the CPE does  not get leased the same prefix as before,
>>>> it shoudl notifiy its "clients". However, possibly for simplicity sake,
>>>> CPEs don't record what
>>>> information was previously advertised on the LAN -- they are not
>>>> required, so.... when they reboot, they may not not be in a position to
>>>> notify hosts accordingly.
>>>>
>>>> That's the environment hosts operate in -- no matter whether you or me
>>>> like it.
>>>>
>>>> In that environment, hosts can and should be smarter.
>>>
>>>
>>> Multipath transport layer protocols for the win. They're splitting
>>> identifier semantics off from IP addresses.
>>
>> That's mostly irrelevant -- because the thing here is to get rid of the
>> invalid addresses which tends to be benefical for anything running on IP.
>>
>>
> 
> I don't think it is. Invalid addresses become far less of an issue
> when a transport layer connection doesn't depend on a single address
> at each end and that it is valid all of the time.
> 
> Regards,
> Mark.
> 
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email