IETF Logo Mail Archive

Re: Adoption Call for <draft-troan-6man-universal-ra-option>

Brian E Carpenter <brian.e.carpenter@gmail.com> Thu, 23 September 2021 22:43 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 843823A0A84 for <ipv6@ietfa.amsl.com>; Thu, 23 Sep 2021 15:43:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nazHLzcLWL-s for <ipv6@ietfa.amsl.com>; Thu, 23 Sep 2021 15:43:02 -0700 (PDT)
Received: from mail-pj1-x102b.google.com (mail-pj1-x102b.google.com [IPv6:2607:f8b0:4864:20::102b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BB95B3A0A80 for <ipv6@ietf.org>; Thu, 23 Sep 2021 15:43:02 -0700 (PDT)
Received: by mail-pj1-x102b.google.com with SMTP id z14-20020a17090a8b8e00b0019cc29ceef1so8042220pjn.1 for <ipv6@ietf.org>; Thu, 23 Sep 2021 15:43:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=qf0gtUQ0h7nRwialmW7hYANKvgc3zG+ziixCH8rPcdY=; b=RmUL6h9xjIaRFZ4k/VPxORof1cFmNQ4fukX64guvTmJw2rM/CqFLuC65DAavVj7eSs GfhwyyCuGbxWIkF+bcmkvF30ntvMYYDRNt+adirJ9JfawVa9JBHKm4F5rG8m/l4GGKdh oeOdB+O5sSMmWXtcE8N8+51b4q9IFr/ekwe5XwFn2W17S3lwybMINlTYkrg4S5A1QLpm XRGHj/jNhcdRlbtAvIDVlTWXpZHIrVdbQxlQo8j7tM1XQIAeUENTiilgErQbAsViCxWb L/OyBNnfcvilFkOBSp/Qz2Wj8U+mnvHbPlltpXBjN8UNNt9nxW5DiJby61oiyPt4Sb8E Whxg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=qf0gtUQ0h7nRwialmW7hYANKvgc3zG+ziixCH8rPcdY=; b=qmhXsXjtj7y1/kGr4Y9uJQ3Gd0i9QOevuAEBYCdNEQdGpWmlyS13MsJBHcLQC2Enkc yn2850xrhvsAeSqRkD1HRPh9ecjwY0EJoIw8B/fZeS8S2184c5jWPphmvK8ZNc8QoalB 18hpTUJwU9XVklhb4RjDFR9JpGhybjEbIsOWcFPJfpvowWGwDQAr+8h+R9nn34u2RwUw EvXNrgXcUt5H1uYKlrToCU9LbsC/EedizchBbBMDW1x3TUDaZp5rYsDKailIKd+phKjr YPYqrk5wu3Mh3aVLJKvFXkOt4GY3RWhlrjtmfVe+WNuPemhUwHdyLhHrEubV7/TyYlwr qawg==
X-Gm-Message-State: AOAM530+3P3oSUCnXLwbupcukvML1HLfNw47/60M+TpIdqLft9GRMhUv vjjguZdiz5af5+4Lk8bbp9s063P9dwSHWA==
X-Google-Smtp-Source: ABdhPJwJkEu1Bf/3tR4cFVQgVAz2lWToL4qQFaMUwkki0N2VnogqMAfwBR76CrxhFNGSLdF2ZAe1eQ==
X-Received: by 2002:a17:90a:f411:: with SMTP id ch17mr8015965pjb.182.1632436981421; Thu, 23 Sep 2021 15:43:01 -0700 (PDT)
Received: from ?IPv6:2406:e003:11aa:d701:80b2:5c79:2266:e431? ([2406:e003:11aa:d701:80b2:5c79:2266:e431]) by smtp.gmail.com with ESMTPSA id r76sm6597086pfc.2.2021.09.23.15.42.59 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 23 Sep 2021 15:43:01 -0700 (PDT)
Subject: Re: Adoption Call for <draft-troan-6man-universal-ra-option>
To: Philip Homburg <pch-ipv6-ietf-7@u-1.phicoh.com>, ipv6@ietf.org
References: <FB7CE846-627F-43CF-A54C-35B0EE6D5A2D@gmail.com> <c7a49df3-59a1-ac24-3d6a-8d71896733a1@foobar.org> <84347b3f-8462-4dc6-580d-544b1bf8aaad@gmail.com> <CAKD1Yr0NapC=Hw9WcjZcKi5O0FE0pM413wqSMALS0310Ps3R8g@mail.gmail.com> <cd2b98a8-4f3e-3d1e-4b6b-0d4c7e2745e9@gmail.com> <CAKD1Yr0cYC=g4WhmYvEmn4W9npFu-xjWKf8hd55fwbjAFFo_yA@mail.gmail.com> <109a3287-38da-1ab2-453a-74422a8f75a3@gmail.com> <a0673b6f-9d46-0e6b-976f-bab44f372b9d@edgeuno.com> <17228f7ef1ad4a6f85654f3d1fdea27e@huawei.com> <584325b9-b978-2c0a-c782-12d470809143@gmail.com> <m1mT2cq-0000J8C@stereo.hq.phicoh.net> <73594a5f-d9d5-f571-6037-5df190e90c7b@gmail.com> <m1mTKpm-0000OxC@stereo.hq.phicoh.net>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Message-ID: <d52157e8-d5a8-620d-370c-5973b6683c2c@gmail.com>
Date: Fri, 24 Sep 2021 10:42:57 +1200
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.10.0
MIME-Version: 1.0
In-Reply-To: <m1mTKpm-0000OxC@stereo.hq.phicoh.net>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/tDwNx90ZwCQFHmIYtJlPM_lCy4E>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Sep 2021 22:43:06 -0000

On 23-Sep-21 21:16, Philip Homburg wrote:
>> Yes, I think that was the world view in ~1994 when this conversation started.
>> I was thinking of SLAAC, not SLAAC+RA. SLAAC starts with link-local addresses.
>> Certainly, a modern version of "dentist's office" is more like a homenet with
>> several in-house routers. RA is what you get out of the box when you install
>> an IPv6 router. Then you need ULAs unless you have an active ISP.
> 
> Maybe we should leave the "dentist's office" in 1994 with the original 
> definition: no router at all.
> 
> Then we can have another term for a network with routers, but without a
> connection to the wider internet.

I'm pretty sure that scenario was considered by HOMENET, and it's certainly
one we've considered (at least during network construction) in ANIMA.

> 
>> Just to be clear, we defined IPv6 in such a way that it doesn't depend on
>> having an active ISP or any kind of centralised top-down configuration.
>> That's something we need to keep; we aren't here to support any 
>> particular business model such as an ISP-based Internet. (The very
>> concept of "CPE" assumes that business model.)
> 
> Recently my home network is a bit unstable. Quite a few devices are
> complaining that they don't have a network connection when there is no link
> to the internet.
> 
> So client side, we already moved on, a 'network' implies a connection to the
> internet.

And that's something we need to fix. I was very disturbed when I acquired
a new TV that its first demand was that I should create an account with
$MANUFACTURER before I could continue the setup. This may be current
reality, but it isn't OK.
 
> As far as I can tell, there is barely any market for networks that are
> not connected to the internet. Of course they exists. It is just that for
> most people a network without an internet connection is a broken network.

Of course. But that doesn't (or shouldn't) apply to IoT deployments or
any situation where an air gap is a basic security environment.
> 
> It is good that we have the mechanisms (such as ULA) for disconnected
> operation. But it's a corner case.

It is for today's mainstream business model.

>> Of course, we also need the ability to add either top-down configuration via
>> something like DHCP, or automatic self-configuration. The latter could make
>> DHCP redundant. There's nothing magic about DHCP; it's just an overlay on
>> the basic IPv6 mechanisms if you want centralised top-down configuration.
>> If you don't want that, you don't want DHCP.
> 
> As DHCPv4 shows, DHCP works in the same environment as RA. There is nothing
> particularly heavy weight, or centralised about DHCP. DHCP supports those
> things, whereas RA does not. DHCP on it's own is perfectly fine for network
> configuration.
> 
> With one exception: in networks where network parameters change a lot,
> RA is better. In my experience, those networks are rare. Obviously, we want
> to keep RA for those cases.

Right. But as I just said, your argument applies to today's mainstream
business model.

>> I remind you that we did the basic IPv6 design, including RA, before DHCP
>> was a thing. (Strictly speaking, it was an emerging technology.)
>> DHCPv6 is an add-on.
> 
> DHCPv4 was a thing before IPv6 was deployed at any scale. Even DHCPv6 was
> defined before there was any significant deplyment of IPv6.

That's true. I was talking about when the basic design decisions were
taken. As with any technology, those are very hard to change.

> I'm not saying we should get rid of RA. It is just that there is a constant
> stream of negativity to anybody who would want to use DHCPv6 configure all
> network parameters of IPv6 hosts in a network.

Because of a business model tussle, perhaps? Not the only example of that
in IETF history.

>>> Where RA goes beyond DHCP is in supporting multiple default routers. Which
>>> is no longer a small, simple network. And in my experience, having multiple
>>> routers announcing their own prefixes, creates interesting corner cases.
>>
>> It does. Hence RFC8028 and PVDs.
> 
> Indeed there is RFC 8028. It is tricky to implement and very few hosts 
> support it. And realistically, it only works if all hosts in a subnet support
> it. It is good have, but it may take a very long time before all hosts
> support it.
> 
> Each time I look at PVD, it seems to be information that could be put in
> DHCP, but got a different transport and is defined in an informational RFC.
> 
> It is funny how RFC 8801 went to work around the limitations of RA. In
> DCHP a host would request a particular piece of information. Section 5.2 in
> RFC 8801 describes how you can send RAs from different link-local addresses
> to address hosts that are PvD-aware and Non-PvD-aware. And then extra
> hacks to include an RA header in the PvD-option.
> 
> It seems a rather deperate attempt to keep using the RA hammer.
> 
> I have to admit, the PvD option is sufficiently convoluted that it would
> be a very good candidate to be expressed in CBOR.

I agree with all you say about PVDs. RFC8028 would have happened about
5 years earlier if I hadn't hoped that MIF would find a neat solution.

    Brian

v2.23.0 | Report a Bug | By Email