IETF Logo Mail Archive

Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-06.txt

Tim Chown <Tim.Chown@jisc.ac.uk> Tue, 09 January 2024 15:03 UTC

Return-Path: <Tim.Chown@jisc.ac.uk>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DDBDC2D5819 for <ipv6@ietfa.amsl.com>; Tue, 9 Jan 2024 07:03:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=jisc.ac.uk
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GxopcVKHieNk for <ipv6@ietfa.amsl.com>; Tue, 9 Jan 2024 07:03:47 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-ve1eur01on2041.outbound.protection.outlook.com [40.107.14.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 178D7C14F6FF for <ipv6@ietf.org>; Tue, 9 Jan 2024 07:03:46 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=lS9VpYBNFYvHJQjMl0z7Nu+JQ1+EOoaRFr0zKQSZhVVlxuGixN+iDn2/S9DKDw+i/bgoEnnnzuYI4KzjFVsdf7ZanxXq2TnWIDn346yC01xGjpXY4+AdiQ+QnehHXQ0viC3SB6MpE152z6S2eq5Enq070o2reyWxZnZudeW+LH8s8Nnz8aTiywc5bcnSW7N7FYuOeWfA3AzuXiqJaHB1/cgFhrDshmMpZ68pRV2OPc1oHRk+eTi8cgkaP1u1R6w1NnTA8BFn9QKTYzRDPeIL6sZr/Jc841yf2I57N94Wn+ZCVkhp9rnwFFaljDS/PJQMKJJYqIzDH7y4sD1Q9FmhLg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0ql2oz/srifGvW5uEwHV9sx80mZzBUoVcmyot9o9bfc=; b=TjSiuAt+5cohG10+uN2c+BZXr/IO8JC3P0Ztosv/zOxGayeyNcyKb/suz4m1d987CBNurxWsQxH6sPJZ6nnkWCBbNuvd6AP21SPcVRnuf4OAYaBvnEBoyHFVAdHjrTq67ibQV3H5YZOxIGPTF0OS1TG69uvywMwCB1nVb23Mfz/ld20lP3bvv3NkBXBHNKIjVBQs2GBzN5GyabGH8MkZmHyxy80oMdZyb4p/wIv0IBZyLab9UKR11QrmaMVWBL43+I7p79xgBB/8q2813ho6dv+hlXs0llBjhCYeW0fd1scl/qms7bCcPxwg7fx8FB/028Agc3np4T4Nt1Lvzx9jEA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jisc.ac.uk; dmarc=pass action=none header.from=jisc.ac.uk; dkim=pass header.d=jisc.ac.uk; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jisc.ac.uk; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0ql2oz/srifGvW5uEwHV9sx80mZzBUoVcmyot9o9bfc=; b=Znz76Aqrk8J5g73H9VVIw0R2f3TA3cOv3hCRxJTpJClff+2YifZAGp6e+E2xMAtPbm6ZFRD2tEf5IPTsd6JbUTnIiIwnPh5kPmdHbv5CMXn4Ntsl+2CaC1r8PzC8TRGBaqf/n8ETSyTXSUGscyyelwtyawdAiHoo4whIR/Ab7Dda9LCQ7U9rlLZBMGAy/DdawU4izGciAGBpt7GUuN7MrUznieog/ixP5Z6Md5okVt1X/fN92MZ99vmkKQ9sWpKy5xaBnw8HVKKyjv/QZkplnjrS9vmHLSz4Z2Ar3lCp6BZ7X6F4HxrribxBvcodmTJ4DGoBe2CdXs1GgNInqvfqtw==
Received: from DB9PR07MB7771.eurprd07.prod.outlook.com (2603:10a6:10:2a6::15) by DB8PR07MB6361.eurprd07.prod.outlook.com (2603:10a6:10:13e::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7159.23; Tue, 9 Jan 2024 15:03:43 +0000
Received: from DB9PR07MB7771.eurprd07.prod.outlook.com ([fe80::cfa8:4238:6b63:2c2c]) by DB9PR07MB7771.eurprd07.prod.outlook.com ([fe80::cfa8:4238:6b63:2c2c%5]) with mapi id 15.20.7159.020; Tue, 9 Jan 2024 15:03:43 +0000
From: Tim Chown <Tim.Chown@jisc.ac.uk>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: 6man <ipv6@ietf.org>
Thread-Topic: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-06.txt
Thread-Index: AQHaPZrjbFwiHWK/30OipcAPKV8h8rDG8EuAgAQWugCAALULgIAF4r8A
Date: Tue, 09 Jan 2024 15:03:43 +0000
Message-ID: <63427AC6-84CA-449F-8C1C-412DCCA349D9@jisc.ac.uk>
References: <170421373441.53583.9251291098142233899@ietfa.amsl.com> <d9cde797-d341-33fa-7ad4-af8c06e5b6a5@gmail.com> <F3F81CAA-890C-4E74-8EB7-AC302E41021A@jisc.ac.uk> <899be48c-4d13-5809-43fe-ab6d6150f56d@gmail.com>
In-Reply-To: <899be48c-4d13-5809-43fe-ab6d6150f56d@gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3774.300.61.1.2)
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=jisc.ac.uk;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DB9PR07MB7771:EE_|DB8PR07MB6361:EE_
x-ms-office365-filtering-correlation-id: b4dd2113-d17a-4311-b532-08dc11242bc2
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9PR07MB7771.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(366004)(39860400002)(376002)(346002)(396003)(136003)(230922051799003)(186009)(64100799003)(1800799012)(451199024)(83380400001)(966005)(41300700001)(33656002)(36756003)(86362001)(38070700009)(38100700002)(122000001)(71200400001)(2616005)(66574015)(4326008)(478600001)(66946007)(66556008)(91956017)(76116006)(6916009)(786003)(316002)(66446008)(6512007)(53546011)(66476007)(6506007)(6486002)(166002)(64756008)(15650500001)(5660300002)(8936002)(8676002)(2906002)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_63427AC684CA449F8C1C412DCCA349D9jiscacuk_"
MIME-Version: 1.0
X-OriginatorOrg: jisc.ac.uk
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DB9PR07MB7771.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b4dd2113-d17a-4311-b532-08dc11242bc2
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Jan 2024 15:03:43.0142 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 48f9394d-8a14-4d27-82a6-f35f12361205
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: M31rChJ6nxpeu9JsdYzFHtxysAM60XpHJgVoogM3+fsVbNztPneU0Zi9W+Xy4TyKtr8yZ+/rO4Hkhca8PuVgow==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR07MB6361
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/xQGy-GdWqH5Gh4AIK8CIc5K8W-o>
Subject: Re: [IPv6] I-D Action: draft-ietf-6man-rfc6724-update-06.txt
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Jan 2024 15:03:51 -0000

Hi,

On 5 Jan 2024, at 21:10, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote:

On 05-Jan-24 23:22, Tim Chown wrote:
Hi Brian,
On 2 Jan 2024, at 19:56, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote:

Hi,

Now that the slip has been corrected, we have:

7.2.  GUA-GUA preferred over ULA-ULA

as the default behaviour.
Yes, sorry about that, I think we muddled the text over known-locals.

I suggest adding a note that to reverse this preference, an operator MAY change to fc00::/7 45 13 (but that the method in section 5.3 is better).
That’s a good suggestion, thank you.
But this then does beg the question - as per 5.3, 6724 says a host MAY add an entry for a locally observed prefix, which would provide ULA preference in a (simple) site over GUAs and avoid remote ULAs (which might happen to be in the global DNS) being preferred.  In previous discussion the group seems quite split, or at least I’d struggle to see a clear consensus, on whether “known-local” insertion might be the norm, or at least promoted to a SHOULD.  I think that’s something we need to thrash out, else we won’t have consensus to publish.

It's not a trivial thing to add, so it probably couldn't be stronger than SHOULD. I personally think it should be the norm - if an operator enables a ULA prefix, it's presumably because they want hosts to use it!

Personally, I’d like to see this elevated to at least SHOULD. And I agree, without elevating all ULAs above GUAs, the only option seems to be smart insertion of known-local ULA prefixes in the policy table with a precedence higher than GUA, and if the available source and destination addresses include such known-local ULAs those should be used.

Alternatively, and this would be a separate effort, we'd need to standardise a way to update the RFC6724 tables remotely. Maybe we need that anyway.

We have RFC 7078 for DHCPv6, but that’s pretty much not implemented anywhere. I don’t recall anyone proposing an RA-based approach.  There was some discussion about the need for configuration and potential approaches in the (very old!) WG draft that the chairs spotted and since removed from the WG draft list (quite rightly).  It’s https://www.ietf.org/archive/id/draft-chown-addr-select-considerations-03.txt; it was considered a useful thing 10+ years ago to have as a WG item, maybe the topics in here need to be considered again.  Certainly the thinking has evolved, e.g., we now view Rule 5.5 as being rather important.

Tim

  Brian

Re-reading 5.3 I see another “holiday” mistake - fc07::/7, we’ll fix that too, apologies.
Tim

Regards
  Brian Carpenter

On 03-Jan-24 05:42,internet-drafts@ietf.org <mailto:internet-drafts@ietf.org>wrote:
Internet-Draft draft-ietf-6man-rfc6724-update-06.txt is now available. It is a
work item of the IPv6 Maintenance (6MAN) WG of the IETF.
   Title:   Preference for IPv6 ULAs over IPv4 addresses in RFC6724
   Authors: Nick Buraglio
            Tim Chown
            Jeremy Duncan
   Name:    draft-ietf-6man-rfc6724-update-06.txt
   Pages:   14
   Dates:   2024-01-02
Abstract:
   When [RFC6724] was published it defined an address selection
   algorithm along with a default policy table, and noted a number of
   examples where that policy table might benefit from adjustment for
   specific scenarios.  It also noted that it is important for
   implementations to provide a way to change the default policies as
   more experience is gained.  This update draws on several years of
   operational experience to refine RFC 6724 further, with particular
   emphasis on preference for the use of ULA addresses over IPv4
   addresses and the addition of mandatory support for Rule 5.5.  The
   update also demotes the preference for 6to4 addresses.  The changes
   to default behavior improve supportability of common use cases,
   including automatic / unmanaged scenarios.  It is recognized that
   some less common deployment scenarios may require explicit
   configuration or custom changes to achieve desired operational
   parameters.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-6man-rfc6724-update/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-6man-rfc6724-update-06
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-6man-rfc6724-update-06
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org <mailto:I-D-Announce@ietf.org>
https://www.ietf.org/mailman/listinfo/i-d-announce <https://www.ietf.org/mailman/listinfo/i-d-announce>

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org <mailto:ipv6@ietf.org>
Administrative Requests:https://www.ietf.org/mailman/listinfo/ipv6 <https://www.ietf.org/mailman/listinfo/ipv6>
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email