IETF Logo Mail Archive

Re: [Snac] Host Requirements for SNAC Use?

Erik Auerswald <auerswal@unix-ag.uni-kl.de> Fri, 25 August 2023 17:42 UTC

Return-Path: <auerswal@unix-ag.uni-kl.de>
X-Original-To: snac@ietfa.amsl.com
Delivered-To: snac@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CF0DC152573 for <snac@ietfa.amsl.com>; Fri, 25 Aug 2023 10:42:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V33EYTYmu1Tb for <snac@ietfa.amsl.com>; Fri, 25 Aug 2023 10:42:29 -0700 (PDT)
Received: from mailgw1.uni-kl.de (mailgw1.uni-kl.de [IPv6:2001:638:208:120::220]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F3F3CC152561 for <snac@ietf.org>; Fri, 25 Aug 2023 10:42:28 -0700 (PDT)
Received: from sushi.unix-ag.uni-kl.de (sushi.unix-ag.uni-kl.de [IPv6:2001:638:208:ef34:0:ff:fe00:65]) by mailgw1.uni-kl.de (8.14.4/8.14.4/Debian-8+deb8u2) with ESMTP id 37PHgWII184429 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 25 Aug 2023 19:42:32 +0200
Received: from sushi.unix-ag.uni-kl.de (ip6-localhost [IPv6:::1]) by sushi.unix-ag.uni-kl.de (8.14.4/8.14.4/Debian-4+deb7u1) with ESMTP id 37PHgOtb022105 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 25 Aug 2023 19:42:24 +0200
Received: (from auerswal@localhost) by sushi.unix-ag.uni-kl.de (8.14.4/8.14.4/Submit) id 37PHgOfO022104; Fri, 25 Aug 2023 19:42:24 +0200
Date: Fri, 25 Aug 2023 19:42:24 +0200
From: Erik Auerswald <auerswal@unix-ag.uni-kl.de>
To: Esko Dijk <esko.dijk@iotconsultancy.nl>
Cc: SNAC List <snac@ietf.org>
Message-ID: <20230825174224.GA2700@unix-ag.uni-kl.de>
References: <20230820182355.GA4872@unix-ag.uni-kl.de> <DU0P190MB1978ACB9522FD82E21D33619FD1DA@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <20230825145816.GB26200@unix-ag.uni-kl.de> <DU0P190MB1978FACC9B1BBDF7C036029EFDE3A@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <DU0P190MB1978FACC9B1BBDF7C036029EFDE3A@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM>
Author: Erik Auerswald <auerswal@unix-ag.uni-kl.de>
Archived-At: <https://mailarchive.ietf.org/arch/msg/snac/cST1bdMJ7g52nnws0Si71jAF7io>
Subject: Re: [Snac] Host Requirements for SNAC Use?
X-BeenThere: snac@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Mailing list for discussing problems relating to the automatic connection of stub networks to existing infrastructure networks. " <snac.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/snac>, <mailto:snac-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/snac/>
List-Post: <mailto:snac@ietf.org>
List-Help: <mailto:snac-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/snac>, <mailto:snac-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Aug 2023 17:42:33 -0000

Hi,

On Fri, Aug 25, 2023 at 03:33:17PM +0000, Esko Dijk wrote:
> 
> Thanks for the responses. Given the expected behavior of home routers
> you mention it seems wise to specify the scope for SNAC-simple to be
> Type C IPv6 hosts.
> 
> > I would suggest to require a stub router to use a Low Preference in the
> > RA, but a High Preference for its stub network prefix(es).
> 
> By the way, is there any potential issue that the stub-router-provided
> ULA prefix would somehow interfere with IPv4 connectivity? I'm assuming
> here that IPv4 provides a default route (e.g. via the home router/ISP)
> while the stub router does not provide a default route.

That was the case in the past, but RFC 6724 introduced a "label" for ULA
that is distinct from GUA.  Since matching labels are preferred, the match
between two IPv4 addresses (one label for IPv4) is preferred over the
mismatched labels of GUA and ULA.  There is another possible failure case,
when a remote ULA is received via DNS although the traffic would have to
go via Internet.  This case is solved in RFC 6724 by specifying a lower
"precedence" for ULA than for IPv4.  (Not all hosts implement the latter
part, e.g., GNU/Linux has a higher preference for ULA than for IPv4.)

> That way there is no wrongly provided impression that the stub router
> has IPv6 connectivity to the internet. So, the Router Lifetime field
> would be always '0' for the stub router. (Which we may clarify in
> the draft)

That should work, but RFC 4191 states that in section 4:

    "When ceasing to be an advertising interface and sending Router
     Advertisements with a Router Lifetime of zero, the Router
     Advertisement SHOULD also set the Route Lifetime to zero in all
     Route Information Options."

RFC 4861 describes in section 6.2.3:

    "A router might want to send Router Advertisements without advertising
     itself as a default router.  For instance, a router might advertise
     prefixes for stateless address autoconfiguration while not wishing
     to forward packets.  Such a router sets the Router Lifetime field
     in outgoing advertisements to zero."

So using a router lifetime of 0 does not imply that the interface is not
an advertising interface.  This combination does not seem obvious to me,
but it seems valid.

Going back to RFC 4191, section 5.2 mentions the combination of router
lifetime 0 with RIOs with lifetime > 0 as a solution for type C hosts.
The solution for type B hosts for a single isolated network is preference
based, and there is no solution for type A hosts.

I think that Route Information Options should be accepted from RAs with
a Router Lifetime of 0 according to those RFCs.

> There's somewhat related text in the draft:
> 
>     The stub router MAY advertise itself as a default router on the
>     stub network, if it itself has a default route on the AIL. In some
>     cases it may not be desirable to advertise reachability to the
>     Internet as a whole; in this case the stub router is not required
>     to advertise itself as a default router.
> 
> But it doesn't mention the case of itself advertising as default router
> on the AIL. That seems not advisable; e.g. if stub router 1 decides to
> advertise default route then stub router 2 may think there is a default
> route and will follow the above rule, with unwanted consequences ...

Yes, several stub routers each using each others as Internet gateways
would not work.  Thus I think that stub routers must not advertise
themselves as default routers on the AIL.  Perhaps this could be made
explicit?

I would like the draft to be explicit regarding RA contents, preferably
with a rationale.  I would really like to read short explanations for
the specific settings, i.e., how this is supposed to work.

It would be great if draft-ietf-snac-simple could mention section 5.2
of RFC 4191 and that a lifetime of 0 should suffice for type A and B
hosts to ignore the stub router, i.e., do no harm, but a type C host is
required for stub network reachability from the host.

Since supporting a type B host would risk creating problems for a type
A host, I would prefer SNAC to only work for type C hosts.

As soon as more than one stub network is connected to the AIL, only type
C hosts can reliably choose the correct stub router anyway.  The case
of multiple stub networks is more complex than the scenario from RFC
4191 section 5.2.

Best regards,
Erik
-- 
A distributed system is one in which the failure of a computer you didn't
even know existed can render your own computer unusable.
                        -- Leslie Lamport

v2.46.0 | Report a Bug | By Email | System Status