IETF Logo Mail Archive

Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt

Brian E Carpenter <brian.e.carpenter@gmail.com> Sun, 06 August 2017 03:22 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B7E2129AA0 for <v6ops@ietfa.amsl.com>; Sat, 5 Aug 2017 20:22:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id goYxbCw1dW_Z for <v6ops@ietfa.amsl.com>; Sat, 5 Aug 2017 20:21:58 -0700 (PDT)
Received: from mail-pg0-x22a.google.com (mail-pg0-x22a.google.com [IPv6:2607:f8b0:400e:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7CAA4129A96 for <v6ops@ietf.org>; Sat, 5 Aug 2017 20:21:58 -0700 (PDT)
Received: by mail-pg0-x22a.google.com with SMTP id l64so21640053pge.5 for <v6ops@ietf.org>; Sat, 05 Aug 2017 20:21:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:organization:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=hHga28cEVeLZcHZuzZMk6z64zu+3avTdlMsOWHYXlMg=; b=SN8b+U9dAiksIsKz9CV2jns9UvHzfIvE9LJB61Eo0bXoj5e7QO+hOajH32X8Rj/+QD oIF+G6xQkRPHno0tjmosT3QiCtvy9tV2c3w3NCC/D66+/jGLrrfBrevRv6L8LTNGuv/v RHtz7meFsad4Q+yvVnjQc/n9KewezzZ0pf4D73yzxS03moCTluDN/YsCYXHEbwfLdB5u SrqeLvppqe5h7yb2EBTsqE7DgFPy+UAACr50JR+7/qhXk6yLtc9bUaXD/7K4AFxNzBMR orkzvBsH+w40WCEVd06PYC+ep0CAY3aLmuUec0Lja2aw8wgAeHXI/g0O7jxQEoEYxQUV CGnw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:organization :message-id:date:user-agent:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=hHga28cEVeLZcHZuzZMk6z64zu+3avTdlMsOWHYXlMg=; b=P6oUjDWIYEDX7pRKCL7SiwuJY2FNAbbvylIkb3TwLbI9UBHNcR56bVCOrYHdgtn/7H HVTq6UM5aDKe3D5tNOixDiitphkX7Bg5bgA+I7jKlbHN0LZWIUHYmyStOPtZiR7/Ek5t z9deLSjKXmOjOW/0pOYRred9FM9KR19WMOa1xTR44hqD+fGrt5qrBYW+QUjtKMEA75A9 Og2abXolV10kfripOfmmclcNAEFws0xEez6Ri0TO+O2Rq+FqUJj4+h5S0Vk8fJT8L9Mx OiSJAItjUKnVymC2IEdttPaoqgafDrPwbEqkZYakAFgHJg1XvEopPkwYb3NGHLbshkjo r8tg==
X-Gm-Message-State: AIVw1128LdwPEtchVmMgrQFZK1nWiZrcxeoYfmN2nG6LH2ixZhJbTHz1 NL44PptIuQw3/Ceb
X-Received: by 10.99.56.68 with SMTP id h4mr7275537pgn.52.1501989717728; Sat, 05 Aug 2017 20:21:57 -0700 (PDT)
Received: from ?IPv6:2406:e007:521f:1:28cc:dc4c:9703:6781? ([2406:e007:521f:1:28cc:dc4c:9703:6781]) by smtp.gmail.com with ESMTPSA id v78sm10144565pfd.121.2017.08.05.20.21.55 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 05 Aug 2017 20:21:56 -0700 (PDT)
To: Mark Smith <markzzzsmith@gmail.com>
Cc: v6ops list <v6ops@ietf.org>
References: <150148445751.17707.15424999122129322815@ietfa.amsl.com> <E6AC9174-3D6E-4FAD-B84B-B7E58FB149BC@gmail.com> <CAO42Z2xEs6RauD6Oo_NbqOh+FRVAu3NuveewSvRx7g1hS2-ToQ@mail.gmail.com> <94BC4E17-D490-4F50-9E99-2AAA081CD43C@gmail.com> <CAO42Z2zR_bWPqOHM7-RNsPX78np45UV=J67YD5gbpoCPUaLkAQ@mail.gmail.com> <FB14455C-F00E-49A4-936F-03BD44C4D42C@gmail.com> <CAO42Z2zLgw3cYapf=1y9pm4cWMZZ32DT2ryfPb6BGUFjCfmrMg@mail.gmail.com> <4939D55E-D37D-4551-9EB0-916FBACBC2BD@thehobsons.co.uk> <CAO42Z2wJBCo1yjguWSy-jzSvndeZTPgtN71FfdEhvqrVAUhZUA@mail.gmail.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
Message-ID: <9bd9f886-f53b-109f-d998-1d4c7adaf3b1@gmail.com>
Date: Sun, 06 Aug 2017 15:21:53 +1200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <CAO42Z2wJBCo1yjguWSy-jzSvndeZTPgtN71FfdEhvqrVAUhZUA@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/4uom2vZce2HUOtqERgoyt8JNpqk>
Subject: Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Aug 2017 03:22:01 -0000

On 06/08/2017 14:19, Mark Smith wrote:
> I give up. Do what you like, treat sand like diamonds.

I thought "Mark's exaggerating", but no, he isn't. There's a reasonable
estimate of 5.6x10^21 grains of sand on the Earth's beaches:

http://www.quickanddirtytips.com/education/math/how-many-grains-of-sand-are-on-earth%E2%80%99s-beaches

In the address space already available to IANA, we have 35x10^12 /48s (in 2000::/3)**.

That allows for 2.3x10^18 /64s (in 2000::/3).

To count the available /128s, multiply again by 18x10^18.

Or to put it another way, with only about 2430 addresses per /64 subnet,
and 2.3x10^18 subnets, we could address every grain of sand. With that
degree of sparseness, DAD will hardly blink and the grains of sand can
feel sure of their privacy, if they care to use RFC4941.

If there's a problem, it's not in the area of a shortfall of /128s.
If there's a shortfall of /64s, it's human error.

   Brian

** Powers of 2 are at https://en.wikipedia.org/wiki/Power_of_two#The_0th_through_95th_powers_of_two
> 
> On 5 August 2017 at 19:58, Simon Hobson <linux@thehobsons.co.uk> wrote:
>> Mark Smith <markzzzsmith@gmail.com> wrote:
>>
>>>> Is this prohibited by this document? Or is ‘/64’ mentioned in the document only an example?
>>>
>>> No. /64s as the subnet size as been the common edge subnet/IID
>>> boundary for almost 20 years since RFC2373.
>>
>>> Analysis of the 64-bit Boundary in IPv6 Addressing
>>> https://tools.ietf.org/rfc/rfc7421.txt
>>
>> I'll make an observation that one of the primary reasons given is the now deprecated EUI64 addressing model for SLAAC.
>> Also there is mention of "but there sooooo many addresses, we can't possibly run out". I don't have a crystal ball, in much the same way that all those decades ago, those designing IPv4 didn't have a crystal ball.
> 
> 
>> So it appears to me that the basis of a fixed /64 comes down to :
>>
>> 1) A now deprecated addressing method requires it
>> 2) Based on what we know now we can't see things ever running out
>> 3) If any but /64 is used, then some things (implementations) may break.
>>
>> So isn't the logical route to say that all implementations must support arbitrary prefix lengths - that avoids breakage when (and I suspect in the real world it will be when, rather than if) they meet something other than /64 ?
>> Something that handles arbitrary prefix lengths can handle 64+64, the reverse isn't true if it expects 64+64 and is thrown something else.
>>
>> That and removing references to fixed 64 bit boundaries where they aren't necessary. Noting that allowing plenty of space for randomisation for security by obscurity isn't a technical limitation as such - it's merely a best practice.
>>
>> And finally. There has been mention in here in the past about not preventing flexibility in the future with things no-one has yet thought of. Yes the numbers are huge, but as I said, I don't have a crystal ball.
>>
>> And the argument about not having to work out prefixes/masks/etc is only partly true - and assumes that no-one would ever have to work with anything but /64. It could well lead to people who CANNOT work with anything else, in the same way that many people cannot work with anything but /24 in the IPv4 world.
>>
>> _______________________________________________
>> v6ops mailing list
>> v6ops@ietf.org
>> https://www.ietf.org/mailman/listinfo/v6ops
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email