Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

Mark Smith <markzzzsmith@gmail.com> Wed, 06 January 2021 02:01 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 278643A0D2A; Tue, 5 Jan 2021 18:01:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.598
X-Spam-Level:
X-Spam-Status: No, score=-0.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.998, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y16jCpfkva-F; Tue, 5 Jan 2021 18:01:05 -0800 (PST)
Received: from mail-ot1-x329.google.com (mail-ot1-x329.google.com [IPv6:2607:f8b0:4864:20::329]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DF7EC3A0D05; Tue, 5 Jan 2021 18:01:04 -0800 (PST)
Received: by mail-ot1-x329.google.com with SMTP id b24so1736552otj.0; Tue, 05 Jan 2021 18:01:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=e4jNDger57+idXBpKrmMk9dDH+WVc4CyfDfylyy4sug=; b=BQKN9NXIyYRfowfpSyBWnB/ohkc3fPsZ3xjqyDTw683Ihcuveo0SaApAIwCZybUSEw cMbp+oN/k0zP+9aU9WpEJwqXz0i15gWBSWWHwfMk0+/U0mWVgiZPdKm/GwVuVjiAuVIR Z80guenFHgQkEIuu4oB8it3wvGcVtYd36jUhmh5XFXSttTWQ5Iu+CAELoaeH7oCz3xA4 JSUnQQAVR3I2czWH9sDzswuqH/SpEfDc7IJlYBDRp2FYPEao9i1DgRrDLWXXseP4o581 vp7W2zeWCMFZEJn6iyqYNjsoU5kOQaRW7zEKbPWPEGTc5q8ERcFcj8PJyjVWv7LAT5HY 85Sw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=e4jNDger57+idXBpKrmMk9dDH+WVc4CyfDfylyy4sug=; b=Rjt+ThZ2YcYyIcJ+yP39R/exsoNmAa7mGjJG7RolSXQHa3ySDAKDkzO0WTptnumCL8 BTWcUZJjm0LvNMEErRJwM7Fe+D9BRP1ljRwahsnbGNTOuKwek1CEwnyRTN+d9W4sGtJe tUzCKoW54HyGNwE2ktAMjlmpnb8IMVt5mvlFrVvUBQhRF2IN1vnjMX2KmdOuq5mJDwuA LHW0MLTrXwQuj9IWgZJARx6xqUdApKXxe6UlJrsBUdXFu3lyPy9zH1w6oDWSjufO2KWT Oask+2837ssVBVv2gGdaGI2/ahMNkjAuYslGfAzOZDtydJURQpdPnAoAwlqZdLt/pUgD fM0w==
X-Gm-Message-State: AOAM533u6dl1JIKCjZ6+SbL9/XwELyEFqM5NOqt6MwFtxz3qoreheTWP CoR4I/SyvHC9WtZg8vrQd+6W92tstFwYMeMU8BA3ZquqD8c=
X-Google-Smtp-Source: ABdhPJxt0J/YTR1O6MDJhBVf4VyZ1drSlq6xj6jnuf/HH8KCcakN++ZC7ZebtIrOcgALUG24d66cKNQa9j5P6lHlLIM=
X-Received: by 2002:a05:6830:1517:: with SMTP id k23mr1740995otp.348.1609898464162; Tue, 05 Jan 2021 18:01:04 -0800 (PST)
MIME-Version: 1.0
References: <160989494094.6024.7402128068704112703@ietfa.amsl.com> <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com>
In-Reply-To: <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Wed, 6 Jan 2021 13:00:36 +1100
Message-ID: <CAO42Z2wR-3vbHi-NrBBMmCTNDq5fgqvSmBUbYK7P+63QTNfxkg@mail.gmail.com>
Subject: Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)
To: Fernando Gont <fgont@si6networks.com>
Cc: 6MAN <6man@ietf.org>, IPv6 Operations <v6ops@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000014b8c605b831b23b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/zXDNnxYdDL2iOTYdWc3RX_FNscs>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Jan 2021 02:01:09 -0000

On Wed, 6 Jan 2021, 12:21 Fernando Gont, <fgont@si6networks.com> wrote:

> Folks,
>
> Based on the recent discussion on the v6ops list
> (https://mailarchive.ietf.org/arch/msg/v6ops/b7r35HgOb-6dfxsDoW8c4FtGnZo//),
>
> I've posted this new I-D, meant to discuss the scope of ULAs:
>
> Title: "Scope of Unique Local IPv6 Unicast Addresses"
> I-D: https://tools.ietf.org/id/draft-gont-6man-ipv6-ula-scope-00.txt
>
>
> Short version of the story:
>
> ULAs are formally part of the GUA space. However, the characteristics of
> ULAs do not seem to match the definition of global scope from RFC4007
> (IPv6 Scope Addr Architecture). ULA seem to have a scope of
> scope(link-local) < scope(ULA) < scope(GUA).
>
> This is not only a terminology thing (which I think is nevertheless
> important to get right) but also has practical implications. For
> example, there's a python library that considers ULAs as "not global",
> and "private" -- contradicting the current RFC4291/RFC4193 specs.
>
> Prior to posting this document, we had some on-list discussion (on the
> v6ops list) and also some off-list discussion with some of you (bcc'ed).
>
> The opinions have been in one of these camps:
>
> 1) the current specs are coherent and there's no problem
>
> 2) There's a problem with the definition of "global scope" -- so ULAs
> *are* global scope, but global scope does not really stand for the
> definition in RFC4007.


> 3) The definitions in RFC4007 are correct, and thus the scope of ULAs is
> not really global, but scopee(link-local) < scope(ULAs) < scope(global)
>

The thing that is really missing from "global scope" is what scope or
domain is being described? Forwarding scope? Uniqueness scope? Some other
scope (DNS visibility is probably another one). All of them?

ULAs are intended to be globally unique addresses, but not to be globally
(Internet) forwardable. Their forwarding scope is limited to non-global,
either within a single local network, or between a set of local networks
that have agreed to forward their respective ULA /48 prefixes between each
other, overriding the default of local networks only forwarding scope.
(Ethernet addresses are a similar example, globally unique addresses, link
only forwarding scope.)

GUAs also are intended to be globally unique addresses, but are intended to
be globally (Internet) forwardable.

There isn't really a ULA equivalent in IPv4, although I think a lot of the
arguments in RFC1627, "Network 10 Considered Harmful (Some Practices
Shouldn't be Codified)" would have been arguments for one e.g, "The lesson
that we learned was that every IP address ought to be globally unique,
independent of its attachment to the Internet." (There is a statement about
effectively everything attached to the Internet too, however that's 1994
Internet naivety, before DDoSes and Internet wide scanning for and
exploiting of vulnerabilities were much of a thing.)

Regards,
Mark.


>
> While this document does propose a way out (it assumes #3 above, and
> acts accordingly), I believe the first step is to agree on what "global
> scope" means and, subsequently, whether ULAs are really "global scope"
> or not. Since opinions on the topic have vary a lot (as noted above),
> I've posted this I-D and I'm sending this note for further input from
> the WG.
>
> Thanks!
>
> Regards,
> Fernando
>
>
>
>
> -------- Forwarded Message --------
> Subject: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt
> Date: Tue, 05 Jan 2021 17:02:20 -0800
> From: internet-drafts@ietf.org
> To: Fernando Gont <fgont@si6networks.com>
>
>
> A new version of I-D, draft-gont-6man-ipv6-ula-scope-00.txt
> has been successfully submitted by Fernando Gont and posted to the
> IETF repository.
>
> Name:           draft-gont-6man-ipv6-ula-scope
> Revision:       00
> Title:          Scope of Unique Local IPv6 Unicast Addresses
> Document date:  2021-01-05
> Group:          Individual Submission
> Pages:          8
> URL:
> https://www.ietf.org/archive/id/draft-gont-6man-ipv6-ula-scope-00.txt
> Status:
> https://datatracker.ietf.org/doc/draft-gont-6man-ipv6-ula-scope/
> Htmlized:
> https://datatracker.ietf.org/doc/html/draft-gont-6man-ipv6-ula-scope
> Htmlized:
> https://tools.ietf.org/html/draft-gont-6man-ipv6-ula-scope-00
>
>
> Abstract:
>     Unique Local IPv6 Unicast Addresses (ULAs) are formally part of the
>     IPv6 Global Unicast address space.  However, the semantics of ULAs
>     clearly contradict the definition of "global scope".  This document
>     discusses the why the terminology employed for the specification of
>     ULAs is problematic, along with some practical consequences of the
>     current specification of ULAs.  Finally, it formally updates RFC4291
>     and RFC4193 such that the scope of ULAs is defined as "local".
>
>
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> The IETF Secretariat
>
>
>
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>