IETF Logo Mail Archive

Re: [6man] New Version Notification for draft-nordmark-6man-impatient-nud-00.txt

Ray Hunter <v6ops@globis.net> Wed, 25 May 2011 17:58 UTC

Return-Path: <v6ops@globis.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 83298E06E0 for <ipv6@ietfa.amsl.com>; Wed, 25 May 2011 10:58:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.754
X-Spam-Level:
X-Spam-Status: No, score=-2.754 tagged_above=-999 required=5 tests=[AWL=-0.156, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W9lcea3M9dMV for <ipv6@ietfa.amsl.com>; Wed, 25 May 2011 10:58:58 -0700 (PDT)
Received: from globis01.globis.net (RayH-1-pt.tunnel.tserv11.ams1.ipv6.he.net [IPv6:2001:470:1f14:62e::2]) by ietfa.amsl.com (Postfix) with ESMTP id 95527E0684 for <ipv6@ietf.org>; Wed, 25 May 2011 10:58:55 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by globis01.globis.net (Postfix) with ESMTP id EDAD58700CD for <ipv6@ietf.org>; Wed, 25 May 2011 19:58:50 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at globis01.globis.net
Received: from globis01.globis.net ([127.0.0.1]) by localhost (mail.globis.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F5iSdohKJH8R for <ipv6@ietf.org>; Wed, 25 May 2011 19:58:41 +0200 (CEST)
Received: from Rays-iMac.local (unknown [192.168.0.3]) (Authenticated sender: Ray.Hunter@globis.net) by globis01.globis.net (Postfix) with ESMTPA id 482E687007F for <ipv6@ietf.org>; Wed, 25 May 2011 19:58:41 +0200 (CEST)
Message-ID: <4DDD4351.7090502@globis.net>
Date: Wed, 25 May 2011 19:58:41 +0200
From: Ray Hunter <v6ops@globis.net>
User-Agent: Postbox Express 1.0.1 (Macintosh/20100705)
MIME-Version: 1.0
To: ipv6@ietf.org
Subject: Re: [6man] New Version Notification for draft-nordmark-6man-impatient-nud-00.txt
References: <4DDABDA6.2070705@globis.net> <4DDBE1BF.7040104@acm.org> <4DDBF9E9.1040702@globis.net> <4DDD2778.2030008@acm.org> <4DDD42B9.8060902@globis.net>
In-Reply-To: <4DDD42B9.8060902@globis.net>
Content-Type: multipart/alternative; boundary="------------090600030402050408030401"
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 May 2011 17:58:59 -0000

Thanks once again for replying

I think the differences are indeed down to bad implementations rather 
than specification.

Although it is acknowledged in RFC5461 section 4.1 as late as 2009 that 
there are non-compliant implementations in the field where TCP does 
react to soft errors. Some of the kit I work on is a lot older than that.

Also my operational experience of ARP says that dead gateway protection 
is not widely supported, and black holing was more the norm than the 
exception.

Erik Nordmark wrote:
> I don't understand why you think all the nodes on a link need to be 
> coordinated in such a way; the Internet protocols are designed to be 
> robust and not assume that all the nodes have the same code and 
> tuning. For instance, we don't require that ARP or TCP on all the 
> nodes on a link to have the same timer values, and things work just fine.
>
>    Erik 

>> And if all nodes on the link aren't behaving the same way, don't you
>> still get say 50% of the multicasts as the partner nodes revert to the
>> "-" state by timing out "too fast" for that link type?
>>
>> Just seems like another reason to have this as a "per link" parameter
>> rather than a "per node" parameter.
>>
>> Best regards,
>> RayH 
The last point was simply one from an operational perspective. Forgive 
me for being such a low level guy.

[side track]
One of my grumbles about IPv6 is that network managers just don't have 
the standard/generic tools to be able to tune the behavior of end nodes 
effectively. There are quite a lot of host behaviors that are set with 
local preferences and have default values, but which are not coordinated 
across implementations. e.g. dare I mention SLAAC v. DHCPv6.

As a network admin that's just a nightmare to manage in an environment 
where there are multiple operating systems, guest end nodes, traveling 
users, new nodes, old implementations...... half of the implementations 
are performing in a way that isn't suitable for your network, but you 
might not have admin rights on that end node, and there's no way to 
provide the end node with a hint of correct behavior.

Think of a network using "Bring Your Own Device" policy where you do not 
have any admin control e.g. no Active Directory.

There's seems to be no (effective) way of network equipment being able 
to signal to end nodes what is appropriate behavior for your particular 
network, compared to the simple existing tools like DHCPv4 options + 
extensions we are already have today. I'm sure certain SLAAC evangelists 
will tell me it's no business of mine to try to manage this at all, and 
self-configuration is the future. But never mind.
[/side track]

I've just read the RFC covering the (very interesting) mesh under / 
route over mechanism used in 6LoWPAN 
http://tools.ietf.org/html/draft-ietf-6lowpan-nd-16 . Very cool stuff.

Even there it was a requirement that all nodes taking part in the 
network behave the same way.
 > The applicability of this specification is limited to LoWPANs where 
all nodes on the subnet implement these optimizations in a homogeneous way.


So if the point of this draft is really to limit multicast, then from an 
operational perspective don't you want ALL nodes on a link to avoid 
using multicast as much as possible?

So if the point of this draft is really to avoid operational problems 
with STP thrashing, then from an operational perspective don't you want 
ALL nodes on a link to avoid timing out too fast as much as possible?

And how do the end nodes know what is appropriate operational behavior 
on this particular link? Out of scope of the draft ........ ?

If that's really true that the end nodes do not have to behave the same 
way then I do not understand why the Reachable Time and the Retransmit 
Timer are sent in an RA message.

Put it the other way around way: I don't understand then why it was 
considered so important that all nodes used the same values for 
Reachable Time and Retransmit Timer (for NUD), if it now isn't 
considered important that they even use the same retry mechanism in the 
probe state, or for how long that state can last.

That's all I'm saying. If you perform link-level coordination for one 
set of parameters used by NUD, why not this particular one?

Also for debugging, it's just one more thing to look at on that sniffer 
trace when spending a weekend / evening debugging in a data centre (not 
my favorite hobby and something I try to avoid). So is a node not 
responding because it is using exponential NUD back off, or is it not 
responding because a ND message is being dropped due to spanning tree 
thrashing around, or is it not responding because the end node 
implementation is plain broken?

Hope this helps clarify where I'm coming from. It's not in any way a 
criticism of your draft, just a potential pointer to how it could be 
"improved" from the perspective of someone operational.

regards,
RayH

v2.23.0 | Report a Bug | By Email