Re: [Snac] draft-ietf-snac-simple-01 review comments
Ted Lemon <mellon@fugue.com> Mon, 24 July 2023 16:14 UTC
Return-Path: <mellon@fugue.com>
X-Original-To: snac@ietfa.amsl.com
Delivered-To: snac@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99AC2C14F726 for <snac@ietfa.amsl.com>; Mon, 24 Jul 2023 09:14:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20221208.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X1dpnG-YSiss for <snac@ietfa.amsl.com>; Mon, 24 Jul 2023 09:14:28 -0700 (PDT)
Received: from mail-qv1-xf2c.google.com (mail-qv1-xf2c.google.com [IPv6:2607:f8b0:4864:20::f2c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5D87C14CE2F for <snac@ietf.org>; Mon, 24 Jul 2023 09:14:22 -0700 (PDT)
Received: by mail-qv1-xf2c.google.com with SMTP id 6a1803df08f44-63cfd68086dso6853646d6.1 for <snac@ietf.org>; Mon, 24 Jul 2023 09:14:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20221208.gappssmtp.com; s=20221208; t=1690215262; x=1690820062; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=TvQ1YPs3FKknzy4C+Ea169AIl07z6zNUAznGio938Gk=; b=SM6LCwRc9iAtrUAAcrvfbpMk5JMe51oD1LgrQY2HSo9IKpSXxeaZF+mg7TtAv6IG5u SulJmjboRGlG+uBz2GjQFZm+L0b9M6nge7P37NBKoto9CpDaxbMFthmUad3/WkPdIdza U+/LkGOsyWACD9gwCVDOVApGeuWUCggW8r+SQiM7cNmFaJhroWZaA/0HxaFGMEmC4GCm TfWJp7qT3u3P/SDtFkTHvOLDrhiw94/RcLxT46HTpbYrnvD4PaZd1hgEgICgUIDHeKn7 ohwcS1XbXQ528IYtq2yJMCJEsINMjsQamzokb6gzUtXyxBGCyZKjlVYvAUlMmdzPaLOq swJQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1690215262; x=1690820062; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=TvQ1YPs3FKknzy4C+Ea169AIl07z6zNUAznGio938Gk=; b=FvAPsMXzVvuM5keY0C+kcb/WuGCOK/SSqVL6EzTHigHHR070IsxP9FiRxbGNSISRi0 lbm4Qto6+PmGJ81qVt6MOkWB7mbF+eyZnSBST+7N52+MlMSiPvaRM2wJV/vuKYqxWo7a l3YHsm7IBk0fz5oyu5uMefl0MK/90O+ldkd0cZG2QI3lAvSdDUF7rpZRPMPQ3vvvNZ2U begdFO05hi5fFQ6HQ7RM0P0zKNWM//XPsZCE5cn330YLa8DbtRufvOZg5LFPTxO+To7A wbmetgMdLy55K7RU99bntHDDQZ5K493rPVn/ZOcvPXHgVMzo1jcsqBkmpEZDL5n5oGB/ 9G9w==
X-Gm-Message-State: ABy/qLal7Cs//QcRm8aAayOe6yNhUo+Y+/LxP2IRpr7vSL+zufV20M14 8TG+7Xotq/YYXY/bRqcKia4nCAirY69hQGk/tp+Gc13qgZSRNaMvOeI=
X-Google-Smtp-Source: APBJJlH+a+z5u+SgojRtd1fCy5NVMgElYqXPC27edL7SHec99AR0X8dVp/g6xiDhOAT/Ix5bgZY6W3gcKVkdwD6weG4=
X-Received: by 2002:a0c:df0a:0:b0:635:e680:99b with SMTP id g10-20020a0cdf0a000000b00635e680099bmr228771qvl.36.1690215261710; Mon, 24 Jul 2023 09:14:21 -0700 (PDT)
MIME-Version: 1.0
References: <BL1PR11MB5366C82D3ECC50F851E4EC9DC87F9@BL1PR11MB5366.namprd11.prod.outlook.com> <19968.1684504919@localhost> <CAPt1N1kMOsSj_NYDF=Kigjm51GMZ7YzVVdxiwkva4vABmv1dOw@mail.gmail.com>
In-Reply-To: <CAPt1N1kMOsSj_NYDF=Kigjm51GMZ7YzVVdxiwkva4vABmv1dOw@mail.gmail.com>
From: Ted Lemon <mellon@fugue.com>
Date: Mon, 24 Jul 2023 09:13:46 -0700
Message-ID: <CAPt1N1nNXrCK_E9DgH9NyjMEu4_ROAcWS3iO6-oPF7LVkrLFyQ@mail.gmail.com>
To: "Darren Dukes (ddukes)" <ddukes=40cisco.com@dmarc.ietf.org>
Cc: "snac@ietf.org" <snac@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000044d27406013de816"
Archived-At: <https://mailarchive.ietf.org/arch/msg/snac/35Ab-LOEuLBd2mEhpZTZ6QBHcVQ>
Subject: Re: [Snac] draft-ietf-snac-simple-01 review comments
X-BeenThere: snac@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Mailing list for discussing problems relating to the automatic connection of stub networks to existing infrastructure networks. " <snac.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/snac>, <mailto:snac-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/snac/>
List-Post: <mailto:snac@ietf.org>
List-Help: <mailto:snac-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/snac>, <mailto:snac-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Jul 2023 16:14:34 -0000
The question of how to manage changes in the stub-router-advertised AIL prefix turns out to be a real can of worms. As I mentioned in my previous note, we wound up punting on this for Thread by using the Thread Extended PAN ID (xpanid) to generate the AIL prefix. Since this is constant for all BRs that are on the same Thread mesh, it eliminates the need to remember what was advertised previously. This would not work for WiFi networks, but possibly we could use the SSID for this case? Maybe there's not enough randomness in it, but since it only has to be unique to the AIL, and can't be routed, perhaps that's okay. Is there any other equivalent thing we could do? I'm highly inclined to just get rid of the "try to remember old prefixes" text, because our experience is that this approach failed pretty often, resulting in reachability problems that took significant time to resolve. Of course we still have to handle the case where there are two stub networks on the wire, but the document already handles that. I think the document should say that even if a particular stub router doesn't actually publish the AIL prefix, because a usable prefix or a winning stub router prefix was present, we should always configure it to be on-link. There could still be edge cases here when there are /three or more/ stub routers on the same AIL, but I think that's a sufficiently weird that we don't need to care about it. The whole point of this is to create a stable configuration, and the simple fact that more than one router is advertising the same prefix based on its stub network should minimize the number of times we have an AIL prefix renumbering. On Mon, Jul 24, 2023 at 8:48 AM Ted Lemon <mellon@fugue.com> wrote: > On Fri, May 19, 2023 at 7:02 AM Michael Richardson <mcr+ietf@sandelman.ca> > wrote: > >> Darren Dukes \(ddukes\) <ddukes=40cisco.com@dmarc.ietf.org> wrote: >> > 2 – Section 5.1.2.4 – doesn’t account for receipt of multiple >> prefixes, >> > is there a reason for that? It seems to say any prefix received >> that is >> > not equal to the currently advertised prefix results in >> > STATE-DEPRICATING or changes in the advertising on the stub network. >> >> Also I just thought as I read this, what if the prefix length on a prefix >> changes? >> I am thinking of a situation where a process and/or human inadvertedly >> advertises the entire /56 that they got from upstream, and then changes >> their >> mind, fixes things and advertises only the :0::/64 of it. >> > > This is a good point—thanks for raising it. I will add text. I didn't find > the text in this section to b exclusive of multiple prefixes, but modified > it a bit to make it clear that there could be multiple prefixes. > > - The stub router may receive a router advertisement > containing a usable on-link prefix on the AIL. > - If the advertised prefix is different than the prefix the > stub router is advertising as the on-link usable > - prefix, and the Stub Router bit is not set in the prefix > option for the prefix, the stub router moves the interface to > + The stub router may receive a router advertisement > containing one or more usable on-link prefixes on the AIL. > + If any of these prefixes are different than the prefix the > stub router is advertising as the on-link usable > + prefix, and the Stub Router bit is not set in the prefix > option for that prefix, the stub router moves the interface to > > >> > 4 – Section 5.2.3 mentions “cloud services will not be reachable via >> > IPv6”. How is this relevant to DHCPv6 PD? Is it more accurate to >> say >> > “any address outside the stub network will not be reachable via >> IPv6”? >> >> Both are accurate, but the former is more clearly a reminder to IoT >> device people. >> > > I added this sentence, which I think connects the dots a bit more clearly: > > The OSNR prefix in this case is not known to the infrastructure network > routing fabric, so even though packets might be able to be forwarded to > the intended destination, there would be no > return path. > >
- [Snac] draft-ietf-snac-simple-01 review comments Darren Dukes (ddukes)
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Ted Lemon
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Ted Lemon
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Darren Dukes (ddukes)
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Michael Richardson
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Ted Lemon
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Ted Lemon
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Michael Richardson
- Re: [Snac] draft-ietf-snac-simple-01 review comme… Ted Lemon