IETF Logo Mail Archive

Re: [v6ops] A common problem with SLAAC in "renumbering" scenarios

Ted Lemon <mellon@fugue.com> Sat, 23 February 2019 13:00 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 36F23130ED4 for <ipv6@ietfa.amsl.com>; Sat, 23 Feb 2019 05:00:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LdcrqWNFrelj for <ipv6@ietfa.amsl.com>; Sat, 23 Feb 2019 05:00:14 -0800 (PST)
Received: from mail-qk1-x731.google.com (mail-qk1-x731.google.com [IPv6:2607:f8b0:4864:20::731]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7BEB2124BF6 for <6man@ietf.org>; Sat, 23 Feb 2019 05:00:14 -0800 (PST)
Received: by mail-qk1-x731.google.com with SMTP id y15so2765730qki.8 for <6man@ietf.org>; Sat, 23 Feb 2019 05:00:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=wLPK65F+Q52QMWgZxdxN60J4OWlNmnakcrCqJA6lo3Y=; b=XhVHbTvHCqryWln90NGrcEOXm5hdysRLmWHAgSkt4jKRh6FS4ao9RHJOg9uusBDVIw iZa2ojqAiqlQMJ7QWM5wyk4vTiZCBZnTD6DPqB+SzgZKLPELQXXljLexZM6T8zuACWEp MMXEwsXqLoOhMt3BFggdbQl/+4E+VaIxDtAo+IXTr7D7CNJOwvD7O6qoRg9SYTSzaIV9 vmJSHwIHo5KOQmQK0ACEOKtONy/DjexXdEdxdCKYOeUT8D7oeJddFuLwA/gGpH3VRXlO Tv1haWwkCbAlifdP0mLgNLBKQLMY/LC3/zJk3rA91jA/5p0tGa6HX7Uvtqu55VkQmmIH x6Jg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=wLPK65F+Q52QMWgZxdxN60J4OWlNmnakcrCqJA6lo3Y=; b=bJuTDpk8xpOEPyNR5XghlfyMOgasXhN06QYnyGydbAXqg6RT5JZ/XareaS6cIjEG/F c7bRHSHOLbzuxCuuDpqoA/hRVxSLA26uiKY36GdBYqf8Ntj2v89EpY6Y2b7kM0XW3ZL1 TDRPyHhdZkLgHY1X/6sOBOYbCeiCi0vM1LF8zeyo5zVKb9V+LQRCK+v82zMTDtxheqo6 jQuyh9Yjem+ztPqcU22WM2GI4BdIQNqSzF8tW+7NJZwddWGlftcYkIrPJZdnQUHsERpU ObxOfcBqyLKCy82zkGIs/jp7tmkH9waKaT3GtbE66zKVRtFa4q9q/9D81yLzrNind3sQ pz+g==
X-Gm-Message-State: AHQUAubsDPQfQfZPJFhq1b/VokLDCCDUo2bvw0oPQvL8mdu4QW6y73oo nSnd32AOuHAuotlkIolqIRRCJ/C62EE9mDXgvsbj8g==
X-Google-Smtp-Source: AHgI3IbKsKdAMVcjcZgJgySnWdIyPLBkU5Z9o6UvYgu/pqBDhQAFiOKVnp52DVSbJuL0MbpCAzYqd4k0rnlXT9tCHQ4=
X-Received: by 2002:a37:3d7:: with SMTP id 206mr6381445qkd.164.1550926813005; Sat, 23 Feb 2019 05:00:13 -0800 (PST)
MIME-Version: 1.0
References: <6D78F4B2-A30D-4562-AC21-E4D3DE019D90@consulintel.es> <B6E2EC33-EEAF-40D0-AFCC-BDAFA9134ACD@consulintel.es> <20190220113603.GK71606@Space.Net> <28fbc2c305c640c9afb3704050f6e8d7@boeing.com> <20190220213107.GS71606@Space.Net> <019c552eb1624d348641d6930829fd1f@boeing.com> <CAKD1Yr0HBG+rhyFWg9zh0t3mW486Mjx9umjn+CRqAZg4z9r0dg@mail.gmail.com> <20190221073530.GT71606@Space.Net> <CAO42Z2wmB2W52b4MZ2h9sW5E9cQKm-HRjyf--q8C26jezS7LXQ@mail.gmail.com> <a73818d31db7422b99a524bc431b00ed@boeing.com> <CAO42Z2z9-48Gbb_Exf+oWUqDO=axSLpZBtqeDcxkAoFq5OziGw@mail.gmail.com> <CALx6S3624hnGauG1HaSWPMvQw0t2Q5R3gb8W4R8w3kuK7dcrWQ@mail.gmail.com> <1F07F2BB-2F37-4D12-9731-7892DF4E3D88@consulintel.es> <0a582916-af14-bd82-a4cd-002a36f8830b@huitema.net> <67515a73-26a5-3ed0-da88-1a4ce64550d3@foobar.org> <A1B1BECB-3A64-437D-8D63-676B24F2340A@huitema.net> <564ca34e-981a-ff92-3318-aaeb46b31dac@gont.com.ar>
In-Reply-To: <564ca34e-981a-ff92-3318-aaeb46b31dac@gont.com.ar>
From: Ted Lemon <mellon@fugue.com>
Date: Sat, 23 Feb 2019 08:00:00 -0500
Message-ID: <CAPt1N1=qHAws1wQ1ONK046BqgbTaNE7MPYm4nr0BWNknV9Yt9Q@mail.gmail.com>
Subject: Re: [v6ops] A common problem with SLAAC in "renumbering" scenarios
To: Fernando Gont <fernando@gont.com.ar>
Cc: "6man@ietf.org" <6man@ietf.org>, Christian Huitema <huitema@huitema.net>, IPv6 Operations <v6ops@ietf.org>, JORDI PALET MARTINEZ <jordi.palet=40consulintel.es@dmarc.ietf.org>, Nick Hilliard <nick@foobar.org>
Content-Type: multipart/alternative; boundary="000000000000c325fd05828f490d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/uc4HjJ7l1kM-J6eVbd2vDtqVX30>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Feb 2019 13:00:19 -0000

So, who’s going to summarize this discussion in a presentation at IETF, and
will it be in 6man or v6ops?

On Sat, Feb 23, 2019 at 00:23 Fernando Gont <fernando@gont.com.ar> wrote:

> On 22/2/19 13:44, Christian Huitema wrote:
> >
> >>> Do we agree that this is indeed a bug, or do we think that having
> >>> users disconnected from the Internet after a home router reboots
> >>> is just a desirable feature of IPv6?
> >>
> >> Most people feel the outcome is undesirable when it happens.  Some
> >> people feel that it's not worth getting too excited about because
> >> assignment stickiness tends to ensure that prefix assignments are
> >> long-lived enough that it probably won't cause too much difficulty.
> >> Others noted that long SLAAC lifetimes and lack of application
> >> workarounds (HE, etc) would make it a noticeable problem, when it
> >> happens, but didn't comment on how frequently it happened.
> >
> > I think that's a good summary: a problem that does not occur very
> > often, but is very annoying when it does.
>
> Everytime there's a power outage, this problem will happen. Similarly,
> at least in these latitudes, whenever you call tech support at your ISP,
> first question is "have you tried disconnecting and reconnecting the
> router" -- that's the way most non-technical users (and also technical
> users) first approach issues with their connectivity. Everytime this
> happens, this problem may occur.
>
> For the time being, as long as we have IPv4, IPv4/HE may mask the
> problem. So, as long as this gets fixed before we go IPv6-only (which in
> many places will not be anytime soon), that's pretty good timing to get
> the problem solved.
>
>
>
> [....]
> >
> >>
> >>> Do we agree that the working group should actually start working
> >>> on some improvement in SLAAC that would mitigate the issue? Not
> >>> excluding of course solutions that would also mitigate related
> >>> egress filtering issue?
> >>
> >> Fixing or updating SLAAC is likely to take years to roll out and at
> >> least one person was of the opinion that SLAAC was basically
> >> unfixable in this regard.  This ignores whether it would be useful
> >> or viable for the IETF to issue advice to CPE vendors and service
> >> providers about how to avoid the problem from happening in the
> >> first place.
> >
> > Anything we do in this space can take a long time to roll out, but it
> > does not take forever.
>
> Indeed. As one datapoint, we published RFC8064 in early 2017. And even
> mid 2018 if you were to install a fresh copy of a modern OS, in most
> cases it would implement RFC8064/RFC7217.
>
> Particularly when you get implementers in the loop, and when they
> realize that stuff makes sense, things don't take that long.
>
>
>
> > In many cases it probably takes less time than
> > it takes to agree on a potential solution in the IETF. For example,
> > security bugs in operating systems can get patched in a matter of
> > weeks or maybe months. Not all devices can be patched quickly, but
> > many can.
>
> Agreed.
>
>
> > As usual, we don't want to see creative solutions popping in
> > different devices. A common standard seems preferable. So, if a
> > subset of the working group wants to work on the solution, we should
> > be happy to let them do that.
>
> Exactly. Some of those solutions have already popped (see the FRITZ
> reference in our I-D). Ignoring the problem is simply asking for more
> (and worse)
>
> --
> Fernando Gont
> e-mail: fernando@gont.com.ar || fgont@si6networks.com
> PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
>
>
>
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email