IETF Logo Mail Archive

Re: [v6ops] RFC7084 - absence of req of prefix presence in PIO on LAN?

Mark Smith <markzzzsmith@gmail.com> Wed, 13 November 2019 20:58 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3362F12004D for <v6ops@ietfa.amsl.com>; Wed, 13 Nov 2019 12:58:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.504
X-Spam-Level:
X-Spam-Status: No, score=0.504 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uG3-zzfdO738 for <v6ops@ietfa.amsl.com>; Wed, 13 Nov 2019 12:57:59 -0800 (PST)
Received: from mail-oi1-x22e.google.com (mail-oi1-x22e.google.com [IPv6:2607:f8b0:4864:20::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 120AA120046 for <v6ops@ietf.org>; Wed, 13 Nov 2019 12:57:59 -0800 (PST)
Received: by mail-oi1-x22e.google.com with SMTP id 14so3106122oir.12 for <v6ops@ietf.org>; Wed, 13 Nov 2019 12:57:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=78qd0txAaic5QEbABdC3NY83YamCDWLHH7+I14bj0Ss=; b=HJNqq7ACbvgMKVdHoHzF6S3PocLzqiAWKtTyBHLd814c9gf7vaju7KfbjD4bSnbmdU 3Y20gsrJSlgQaIFWrgq6ec2EpdWQBqC5/0Vzpf22Ggwkx5vM8xXqmDFWIFzTaw0F2Z5q c1KxTu3fV2H65hKnmkDW22poBubtxsmJ0d/jcqHAdRo8MvMli0JXgjziNlJ45uA+2z1P P6I53w5wajeSjQ16YFknvBQx2J3hkdc2Xm1AmmZyXb6sQQMzYvoH6tdDb6KZ2S0KfGcQ PKchI5T+hWDMbIViEksjE7Qcp+UQdFq9NFuNqkdx+bMyfR3l+M3mg5f1O6i+wvTJoaur Gshw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=78qd0txAaic5QEbABdC3NY83YamCDWLHH7+I14bj0Ss=; b=rkT47VISWul+tW0JRsQrRXr6ulbI+0vKG3rgSpaLNHA2+Cguaq74+QR120BJ5a2inZ utoOW8f9IcuO/EA4AZjHFwolBsLJwx2eJRty3c1BWKVIKeUeLD2Wu5k/vnoMY/ZQ/Y/f /PSjLohQtG9ufo5MOgxjuWSY7QUnXEZGuJ6x8aC3bQoN+E4mpJv3SnQ/Ve6sIf46Mfm2 C630LOPw7PDiBbMiMYMZpwxWzPdORZkFSg/6LAVscKFm3OlGJS913qNDfBPxbW+PB1GO uV6e9vsNOwQ0uA6J7B0FXD08FT0XcS0XSTVb/PUCCq9lMv7uF1/g6ZZNdFzMlXxYE6yt TUdg==
X-Gm-Message-State: APjAAAWDXjJ1m79BSmRvzQ4i2X8Pcysk7yoyZTE8nY9ZDs3ItZtAVi/7 IlXDCzxgl7iXCFAaEbjQhF29SWGVEByZ0CNW04w=
X-Google-Smtp-Source: APXvYqxecvzgwe361QExkLyBkHXANMUXsPQD4m0dFNIX1pyW5WKSvArxHxbKS58LsWtOyQPdBuRDI5qwLMh1ZYCuWlU=
X-Received: by 2002:aca:af95:: with SMTP id y143mr575828oie.38.1573678678303; Wed, 13 Nov 2019 12:57:58 -0800 (PST)
MIME-Version: 1.0
References: <c4791cdd-6021-de83-6863-4d77ef1d1694@gmail.com> <CAOSSMjWu7C9jmG+8Yg7V++3GWzG+BSzFu0o0nHHYJY60P2T2oA@mail.gmail.com> <835b8b49-b00a-6fe3-1f47-7db7d5a76b92@gmail.com>
In-Reply-To: <835b8b49-b00a-6fe3-1f47-7db7d5a76b92@gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Thu, 14 Nov 2019 07:57:46 +1100
Message-ID: <CAO42Z2xY3739DuL8ObnmKSf-MfH5QPN3j01N_Ok0R06LEaUtLQ@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Cc: Timothy Winters <twinters@iol.unh.edu>, Alexandre Petrescu <alexandre.petrescu@gmail.com>, "v6ops@ietf.org" <v6ops@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000009c68300597409e03"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/4LrFR9RObDOJivmleHFzUeT3o4A>
Subject: Re: [v6ops] RFC7084 - absence of req of prefix presence in PIO on LAN?
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2019 20:58:01 -0000

On Thu, 14 Nov 2019, 06:39 Brian E Carpenter, <brian.e.carpenter@gmail.com>
wrote:

> On 14-Nov-19 03:16, Timothy Winters wrote:
> > Hi Alex,
> >
> > On Wed, Nov 13, 2019 at 2:54 AM Alexandre Petrescu <
> alexandre.petrescu@gmail.com <mailto:alexandre.petrescu@gmail.com>> wrote:
> >
> >>     Hi, v6opsers,
> >>
> >>     While reading through RFC7084 I couldnt find a place where the CE
> Router is mandated to put a prefix in the PIO, even though there is a
> (strange?) requirement to use RIO.
> >>
> >>     I would like to ask:
> >>
> >>     - which existing particular requirement the author assumes to be
> putting a derived /64 in the PIO in the RA?
> >
> > The placing of the prefixes in the PIO from the IA_PD was originally
> located in RFC 3633, so it's not covered in 7084.
>
> More to the point of Alex's question, 7084 says:
>
> >>> The IPv6 CE router MUST support router behavior according to
> >>> Neighbor Discovery for IPv6 [RFC4861].
>
> which therefore requires properly formed PIOs.
>
> >>
> >>     - what does it mean 'An IPv6 CE router MUST advertise itself as a
> router for the delegated prefix(es) [...] using the "Route Information
> Option" specified in Section 2.3 of [RFC4191].'?  (I am asking because I
> suspect this requirement is wrong: the CE Router must certainly not use RIO
> with these prefixes).
>
> Why is that wrong? It is under "LAN requirements:" and seems to mean
> exactly what Alex says next:
>

I'm pretty sure using RIOs was to work around this:



   ULA-5:  An IPv6 CE router MUST NOT advertise itself as a default
           router with a Router Lifetime greater than zero whenever all
           of its configured and delegated prefixes are ULA prefixes



If hosts don't have a default router because of that, then they need to
have other sourced knowledge of the site's ULA prefixes reachable via the
router.

I don't agree with that ULA-5 requirement. The router lifetime in an RA is
a statement of the router's default router status on the link the RA is
sent on, not for the whole site.

It would be fine for hosts to default to a CE for a ULA only site. If they
try to send to somewhere else (e.g. a GUA DA they've somehow acquired), the
DA route lookup would fail in the CE's default free route table, and the CE
would generate an ICMPv6 Destination Unreachable.

There was a fault with a CPE I looked at back in 2010 where it wouldn't
send ICMPv6 Destination Unreachables in this scenario. That caused long
IPv6 timeouts. Other CPE would send an ICMPv6 Destination Unreachable, and
the browser would switch to IPv4 almost immediately.

HappyEyeballs was effectively motivated by a bug, although it does cover
off ICMPv6 Destination Unreachables not being sent because of ICMPv6 send
rate limits, per RFC 4443, 2.4, (f).


> >> CE Routers should place the RIO in the RAs on the LAN interface to have
> Host route traffic for those prefixes to that Router if they have
> multi-homed
>
> (Although, not surprisingly, I would like to see RFC8028 mandated too.)
>
> Regards
>     Brian
> >>
> >>     Alex
> >
> > Regards,
> > Tim
>
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email