[v6ops] Re: I-D Action: draft-palet-v6ops-prefix-assignment-00.txt
Daryll Swer <contact@daryllswer.com> Mon, 27 October 2025 05:28 UTC
Return-Path: <contact@daryllswer.com>
X-Original-To: v6ops@mail2.ietf.org
Delivered-To: v6ops@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 380C07CA98E7 for <v6ops@mail2.ietf.org>; Sun, 26 Oct 2025 22:28:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=daryllswer.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xo7x1-Q3RdJn for <v6ops@mail2.ietf.org>; Sun, 26 Oct 2025 22:28:58 -0700 (PDT)
Received: from mail-qv1-xf33.google.com (mail-qv1-xf33.google.com [IPv6:2607:f8b0:4864:20::f33]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 772DE7CA98E0 for <v6ops@ietf.org>; Sun, 26 Oct 2025 22:28:58 -0700 (PDT)
Received: by mail-qv1-xf33.google.com with SMTP id 6a1803df08f44-81fdd5d7b59so42142246d6.3 for <v6ops@ietf.org>; Sun, 26 Oct 2025 22:28:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=daryllswer.com; s=google; t=1761542932; x=1762147732; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=JPMuxpPH20KC29kiKTr/6pOlu9mW/brrUjIWgB8y1ic=; b=WZcFLtTJD8CincUyQLzVoJjKpnqnpVaLtew5zj8XrwhzU7z6whixV56sQjB3Wz77Ps 462S0RanboXWXqECw6wFB9A1HKCQmhilosr8VbRpPIp0RrdA1xr85ksthDQzxtfDWPXg lp1sEzY2a5cLsI/f9fl5qTI7BdsaeJslKIleRwMqSgUCpcMvMd6RsSmKPghvQzqyqjav I+9jZASBlzjAhBtZkKokL/JGgi6NXqjcKFl55bGcNRcEy6vN2PkaddTeqgA+s+47aROa a/fD10CY1xKzuht/NoF69F3T98bwpm4sirtmDGqLVyqFtX0wIh7S7YWLAZ9LeQlqQpna fBEw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1761542932; x=1762147732; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=JPMuxpPH20KC29kiKTr/6pOlu9mW/brrUjIWgB8y1ic=; b=uFG8m1rm0XDlk8IPwAty7+R9MYCIQmH7K3LXzBZwfP2akC7lCLm0CYFnBQtyN6bf2X qjSl9lSD1YcmjMIFarub4LJO+0KXK0lh3I3Vf6IzaOK0oMcEQ2SSn/kJV4sd/laHSwR0 9B1PX631RTSN952DZYf/HcuRb4LJxRh6YLroGhUFXSPN/tJFX7m1Ygx7bfMUSBqzUpif n1Y5QPF7Y3VW0YlAZ6n5Tz02qLf3bwLirjUEExKRpJrTkIM+bSLEjr+ylBoUP+Qf3nFe CLPzeuVR9hi+OJaHTH5PipOm6RYHuaOZ/A17qg7fViWNPOrNjUtq7P1iy88v8YaEGy7C 0cXg==
X-Gm-Message-State: AOJu0YyVJvi64RHmJTY/1Gs2LDzDqgYjWfU+wvWRbjzGm7BJMkQ691C1 jD3DM+pRtS63ljTDfl179W8qH6Pb8DABEl/YHRy5sO1bfhmjVjyAAXnAywLckzhPOiPER+S7gYb v+PF2NI4=
X-Gm-Gg: ASbGncv+dCUEwPRBdfwj+rktaFlZOz7KFAYlzjuJtHENzjaJOUZ5uFnlb8s2cja5qph NPNOJygy1tCBXcUm85nJsksxXjBzJAjDe3bUA5jesePqcvJzLO2basUobYvYdnrkwLIvGsg3okX GXfW4Quj3uK4fK6HnOSUP3USaTqqVrmrhfv9Pye2F3xd9eHVKcWsAf8w1OXsajUBh2s42o+WD1g DBl8iqRtf8PwvP7V536m/NAnMPx5Pe1hDxnwX0lixAlxC47UOEaNwlyqSpweV8M/BYfU++CXxpT 9lFwZKbe24jDp6DuIdBb6/1FDJ0Hbu61vpBbebwq0XhWjSoSoZxzTvv9X10ffe8acD5kD3n33PO o7xetI2qb0ifgICSaDh4EqLzK/SlQ9ev1Wn+38YDXhf0okD8ZkNyuBpKG9NLWdRWeikIOsxcSf1 CukSNR+nmYYYBcfNtknLY0XbBIfcCxKpJfeo0MKgvBNWi+e/u3qhY8GGljOe7+fg==
X-Google-Smtp-Source: AGHT+IF4qNY82N16ADfbiLpX83RFhdVMzh0lDHgZbwDTfz8vkOsjosUqVFuJERWD1fd7vk95Wtujfw==
X-Received: by 2002:a05:6214:2a8d:b0:7f7:777e:39c5 with SMTP id 6a1803df08f44-87c2056890amr606436136d6.25.1761542932271; Sun, 26 Oct 2025 22:28:52 -0700 (PDT)
Received: from mail-qv1-f41.google.com (mail-qv1-f41.google.com. [209.85.219.41]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-87fc49dd656sm48464476d6.58.2025.10.26.22.28.51 for <v6ops@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sun, 26 Oct 2025 22:28:52 -0700 (PDT)
Received: by mail-qv1-f41.google.com with SMTP id 6a1803df08f44-87c148fb575so45273926d6.2 for <v6ops@ietf.org>; Sun, 26 Oct 2025 22:28:51 -0700 (PDT)
X-Received: by 2002:ad4:5cc1:0:b0:70d:6df4:1b21 with SMTP id 6a1803df08f44-87c206475dcmr478668206d6.62.1761542931160; Sun, 26 Oct 2025 22:28:51 -0700 (PDT)
MIME-Version: 1.0
References: <176091053564.1982765.8763055214756116141@dt-datatracker-84f8f646b-tg6mn> <aee85e4d-d5da-4bc7-9a6a-debe6be9db59@gmail.com>
In-Reply-To: <aee85e4d-d5da-4bc7-9a6a-debe6be9db59@gmail.com>
From: Daryll Swer <contact@daryllswer.com>
Date: Mon, 27 Oct 2025 10:58:14 +0530
X-Gmail-Original-Message-ID: <CACyFTPFhsAm-SF_v519SPEPgt7XoNFd-p3E75o=MhT5B+8+g+Q@mail.gmail.com>
X-Gm-Features: AWmQ_blRmKjFw66fDRnM_LEGTwaUOTvpICbrg1p2tv3SWr81VucTbQ_YcW5s-X4
Message-ID: <CACyFTPFhsAm-SF_v519SPEPgt7XoNFd-p3E75o=MhT5B+8+g+Q@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Content-Type: multipart/alternative; boundary="000000000000ab29fc06421d2c62"
Message-ID-Hash: LEDV64UODTEGW5AXIONB6ZTHZFVL2GAW
X-Message-ID-Hash: LEDV64UODTEGW5AXIONB6ZTHZFVL2GAW
X-MailFrom: contact@daryllswer.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: IPv6 Operations <v6ops@ietf.org>, JORDI PALET MARTINEZ <jordi.palet@theipv6company.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [v6ops] Re: I-D Action: draft-palet-v6ops-prefix-assignment-00.txt
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/4EbHrW6ag4RRXPSUVFLUBzDRBkc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>
Brian I haven't read the draft yet, but have a small point to make. I really don't understand why you mention EUI-64 in 2025. Surely we would > now recommend pseudo-random IIDs everywhere per RFC 7217/8064. (I realise > those RFCs assume SLAAC is generating the identifier, but EUI-64 also > assumes SLAAC.) > EUI-64 *should *(MUST even) be discouraged from being used on endpoints (PCs, Phones, IoT devices etc). However, EUI-64 is widely used in DC networks for Out-of-Band IPv6 access over IPMI (or equivalent) where the server box's MGMT port generates an IPv6 address using SLAAC (which in turn runs on a dedicated OOB infra) and finally, we use basic bash/python script to map MAC addresses of the server's MGMT MAC (was in turn was injected into an inventory tracking software of sorts, like Netbox) to our /64 SLAAC prefix, to derive the /128, this /128 is then injected into the company's software pipeline for automation/DNS etc. DHCPv6 ia_na to my knowledge is not widely supported yet for OOB on servers and equivalent devices that have dedicated bypass path to the CPU for management. SLAAC+EUI-64 is preferred for OOB on such devices. *--* Best Regards Daryll Swer Website: daryllswer.com <https://l.mailtrack.com/l/2ecb03219b71ed55fd1847b0e9bdbd8c6fab5e16?u=2153471> On Mon, 27 Oct 2025 at 10:11, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: > Hi Jordi, > > A few initial comments: > > > 3.2. Prefix Size Choices > > > > [RFC7608] already discusses about the IPv6 prefix length recommendations > for forwarding, and the need for routing and forwarding implementations to > ensure that longest-prefix-match works on any prefix length. > > I think it's worth being 100% clear: > > ... ensure that longest-prefix-match works on any prefix length up to /128. > > > > 3.2.1. Rationale for using /64 > > > > The IPv6 Addressing Architecture ([RFC4291]) specifies that all the > Interface Identifiers for all the unicast addresses (except for 000/3) are > required to be 64 bits long and to be constructed in Modified EUI-64 format. > > The IPv6 Addressing Architecture actually consists of RFC 4291 as updated > by RFC 5952, 6052, 7136, 7346, 7371 and 8064. One of those (section 5 of > RFC 7136) removes the EUI-64 requirement, which is only of historical > interest. > > > 3.3.1. GUA (Global Unicast Addresses) > > > > Using GUA is the most common approach. It provides full functionality > for both end-points of the point-to-point link and consequently, > facilitates troubleshooting, so it is the recommended approach. > > Please write it out in full "Globally Reachable Unicast Addresses" to > match the terminology defined in RFC 8190 and used in the IANA registry > [1]. This is important because according to the addressing architecture > ULAs have global scope, but they are not globally reachable. (Yes, it's > bizarre; in effect "global scope" == "routable".) > > In the ULA (and LLA) sections 3.3.2 and 3.3.3, you might mention that > traceroutes with ULA and link-local segments are not unusual, but they are > confusing for the user and might even give out information that is > considered a security risk. > > > 3.4.2.1. Numbering Interfaces > ... > > On the other hand, using the EUI-64, makes it more difficult to remember > and handle the interfaces, but provides an additional degree of protection > against port (actually address) scanning as described at [RFC7707]. > > I really don't understand why you mention EUI-64 in 2025. Surely we would > now recommend pseudo-random IIDs everywhere per RFC 7217/8064. (I realise > those RFCs assume SLAAC is generating the identifier, but EUI-64 also > assumes SLAAC.) > > I'm very sympathetic to the arguments made in sections 4-6, but I suspect > the text will need a lot of editing to make it completely objective and > avoid anything that looks like personal opinion. > > Regards/Ngā mihi > Brian Carpenter > > On 20-Oct-25 10:48, internet-drafts@ietf.org wrote: > > Internet-Draft draft-palet-v6ops-prefix-assignment-00.txt is now > available. > > > > Title: IPv6 Prefix Assignment to end-users > > Author: Jordi Palet Martinez > > Name: draft-palet-v6ops-prefix-assignment-00.txt > > Pages: 27 > > Dates: 2025-10-19 > > > > Abstract: > > > > This document describes different alternatives and best current > > practices for assignment of IPv6 prefixes for end-user broadband > > networks, including considerations about point-to-point links, their > > size, numbering choices, pool choices, customer prefix assignment > > size and persistance of those assignments. > > > > The IETF datatracker status page for this Internet-Draft is: > > https://datatracker.ietf.org/doc/draft-palet-v6ops-prefix-assignment/ > <https://l.mailtrack.com/l/7007dc686944954ecaf34a5f4ade965243c19748?u=2153471> > > > > There is also an HTMLized version available at: > > > https://datatracker.ietf.org/doc/html/draft-palet-v6ops-prefix-assignment-00 > <https://l.mailtrack.com/l/c879bea132506ce15814ed96ccc50aa82ef4dfb4?u=2153471> > > > > Internet-Drafts are also available by rsync at: > > rsync.ietf.org::internet-drafts > > > > > > _______________________________________________ > > I-D-Announce mailing list -- i-d-announce@ietf.org > > To unsubscribe send an email to i-d-announce-leave@ietf.org > _______________________________________________ > v6ops mailing list -- v6ops@ietf.org > To unsubscribe send an email to v6ops-leave@ietf.org >
- [v6ops] Re: I-D Action: draft-palet-v6ops-prefix-… Brian E Carpenter
- [v6ops] Re: I-D Action: draft-palet-v6ops-prefix-… Daryll Swer