IETF Logo Mail Archive

Re: [v6ops] Comments on <draft-horley-v6ops-lab>

Mark Smith <markzzzsmith@gmail.com> Sat, 31 July 2021 01:20 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1132D3A1C5C; Fri, 30 Jul 2021 18:20:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.598
X-Spam-Level:
X-Spam-Status: No, score=-0.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SvYfeEMxgx-d; Fri, 30 Jul 2021 18:20:31 -0700 (PDT)
Received: from mail-io1-xd29.google.com (mail-io1-xd29.google.com [IPv6:2607:f8b0:4864:20::d29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5E323A1C5A; Fri, 30 Jul 2021 18:20:25 -0700 (PDT)
Received: by mail-io1-xd29.google.com with SMTP id 185so13568415iou.10; Fri, 30 Jul 2021 18:20:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=EHCW4MjYaNfMMhdiUp3vuqlEyG0BrDiIJorL7hCdhgE=; b=qs4YwUKpILqiEI3crTzw0XXePg6a15BzbJVtW2E/IeWUqjC0qE0KtFD45TlyWdysV2 32GAl75F/tF3pAiN6tCLXmVXVASGKDyb70r/3QdDU1jhRpsNlFcPw9XW08MJlkhSKSfw Qfz/M07XBtogQaKbkLIJJsRbArUG4Ee04Wm7DdfaviEZpQNugnc6mRKU+WGBdPYjzqKc sj53/HQRnSSR8dmsbv+wK51nJ20ykokGxrnbeEDC7rigv0No8i7CzNXx51OYyZptP4pw OAW/+pBzHfpusCu+VlthaTpIYUB9qwFbpgKlnNif4YqbCkZR8SMol+2AJlI1EsblcGHT mzxA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=EHCW4MjYaNfMMhdiUp3vuqlEyG0BrDiIJorL7hCdhgE=; b=YzBfuPspmQpOn9OqRQwUtiDIIB2Yn0brMCE0uyvoTMo/RfyGgwvBBilq4siWW+v7VZ O4OUZ+FnqtDT3kG3nAkdbYBj0CWpIFXLjWB0xR8c55iVHiovMCW7OeDm/gvYSSFw/COi f8uQ/jZ8B2zhcWrpAWD4DZk0XIQI/zjyvRMT4S3FhCu1bWWF1pUTfLT84a83V5omeju0 af3loydO6oib1lH+lohQ/Sj5XJSN8nbFFJAFNfpRqjj1vPI576wWmudoejGgTlNRajjP 7YMOR+XAlNXL2zaX9pM2x6PqpO4/jA17Zys3Ei1AKtesj/gnX4KXygen4nPv5PJ0wgj0 Ouhw==
X-Gm-Message-State: AOAM531QAOl8viceCwJx/0w329MjmBSYPrfJuupvlcr/c83Ye0upQtSa r5C9WIb2kmEpXO/BvC+js1nZxz77fmY3PHG2Vnk=
X-Google-Smtp-Source: ABdhPJxoSjBNrKF3jrqklqBMkAOn10wNHTNEitJZdKJ74R9GW9mEwXh2eaP6CCFDEKdq0RF8rr9SY5LABKYWFnsF2aQ=
X-Received: by 2002:a02:ca58:: with SMTP id i24mr4255310jal.101.1627694424094; Fri, 30 Jul 2021 18:20:24 -0700 (PDT)
MIME-Version: 1.0
References: <A8C22862-FC85-458B-8AF0-4E3A5DA7680F@gmail.com> <CAD6AjGSzxi5dc2opG0krMPYr4JabVD0dGTgYwoeuf2HudSCD5Q@mail.gmail.com> <55e8e97d-1f00-a3d7-8e6d-6723d50cc26e@gmail.com>
In-Reply-To: <55e8e97d-1f00-a3d7-8e6d-6723d50cc26e@gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Sat, 31 Jul 2021 11:19:57 +1000
Message-ID: <CAO42Z2xZFp=eUw6xoxk+bmhBWkkdbc_dc1vEd+u5Mp_p5WUv4g@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Cc: Ca By <cb.list6@gmail.com>, Bob Hinden <bob.hinden@gmail.com>, IPv6 Operations <v6ops@ietf.org>, draft-horley-v6ops-lab@ietf.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/09RHPNaa2XQiYjsPRiZCZyPS_tQ>
Subject: Re: [v6ops] Comments on <draft-horley-v6ops-lab>
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 31 Jul 2021 01:20:36 -0000

On Sat, 31 Jul 2021 at 07:42, Brian E Carpenter
<brian.e.carpenter@gmail.com> wrote:
>
> On 31-Jul-21 05:20, Ca By wrote:
> >
> >     Global Filtering:
> >
> >     The draft says that this prefix should be added the list of non-routable prefixes.  I note that this means that every ISP in the world would need to do this.    That’s a big ask and may not actually happen operationally.
> >
> >
> > I agree with Bob. Don’t do this to us operators.
> >
> > Broadly, i oppose the i-d. It is not needed. Any lab can use gua or ula
> or bogon
>
> I agree. However, I did see one comment earlier: that the RFC6724 precedence table needs to be tweaked in all hosts to avoid special handling for fc00::/7. Is there a good way to do that remotely?
>

I've been wondering if that is really the case, or there is something
else going on in the example that Nick posted to the list.

The only way for IPv4 to be preferred over ULA per the precedence
table is if IPv4 addresses are represented as IPv4-mapped addresses
(per RFC6724, 3.2).

The example we've seen on the list was with SSH under Ubunto, so using
glibc getaddrinfo().

AI_V4MAPPED | AI_ADDRCONFIG are the default flags for getaddrinfo() if
NULL is specified for the 'hints' structure for the getaddrinfo()
call.

However, the call to getaddrinfo() in openssh-portable in the current
github version (ssh.c, resolve_host()) always supplies a 'hints'
structure, and doesn't ever set AI_V4MAPPED.

Here's a getaddrinfo() test using the same flags that SSH uses by default:

    memset(&hints, 0, sizeof(hints));

    hints.ai_family = AF_UNSPEC;        /* Allow IPv4 or IPv6 */
    hints.ai_socktype = SOCK_STREAM;    /* Stream socket */

    s = getaddrinfo(argv[1], NULL, &hints, &result);

looking up a domain name with only IPv4 and IPv6 ULA DNS records. The
output order shown is the order getaddrinfo() supplied:

[mark@opy getaddrinfo]$ ./gai v6opstest.nosense.org

getaddrinfo(v6opstest.nosense.org)

    AF_INET6, fd68:1e02:dc1a:ffff::3, sin6_scope_id = 0
    AF_INET, 10.255.255.3

[mark@opy getaddrinfo]$

So the ULA address should be preferred as a DA over IPv4.

I'm wondering if perhaps the preference of IPv4 over IPv6 ULA was
instead caused by source address selection. Perhaps Nick's test host
only had IPv4 and IPv6 GUA addresses, so IPv4 became the SA choice
when there was only IPv6 ULA and IPv4 DAs. OTOH, if the DA choices
were IPv4 and IPv6 GUA, then IPv6 GUA was the chosen source address.

So perhaps source address selection made it appear that IPv4 was
preferred over ULA for destination address selection.

Regards,
Mark.









> There's also an argument in the draft that RFC4193 specifies pseudo-random bits in the prefix. In the lab context, that's a requirement than can be (and often is) ignored.
>
>     Brian
>
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email