IETF Logo Mail Archive

Re: [v6ops] Implementation Status of PREF64

Owen DeLong <owen@delong.com> Fri, 01 October 2021 00:35 UTC

Return-Path: <owen@delong.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCF213A0A0C; Thu, 30 Sep 2021 17:35:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=delong.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4i7iSWdJjkGi; Thu, 30 Sep 2021 17:35:25 -0700 (PDT)
Received: from owen.delong.com (owen.delong.com [IPv6:2620:0:930::200:2]) by ietfa.amsl.com (Postfix) with ESMTP id 7D5193A09FB; Thu, 30 Sep 2021 17:35:24 -0700 (PDT)
Received: from smtpclient.apple ([IPv6:2620:0:930:0:d12c:2b24:7049:d8a]) (authenticated bits=0) by owen.delong.com (8.16.1/8.15.2) with ESMTPSA id 1910ZL8F3733590 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 30 Sep 2021 17:35:21 -0700
DKIM-Filter: OpenDKIM Filter v2.11.0 owen.delong.com 1910ZL8F3733590
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=delong.com; s=mail; t=1633048521; bh=VpuQdCjT3Q+60FnlrsWHVnH/3q6m+t8PN7hhwyMTqW4=; h=From:Subject:Date:In-Reply-To:Cc:To:References:From; b=LaPCA464iHUgPHk1O8CLUZU7xXk3APXhjo0jvsjJ6E8pWF1ZVQoLUyUlhD+7gOMBW Q4ByRqAJcYEk6DgmLPRzLfQa33yFquMGMYzIIVMV31hq94RNqXhzXU6yDoJM6qpA4p 8yROjENmf86/5TGat56T4fYYNhzcWC9TFvCMMHzw=
From: Owen DeLong <owen@delong.com>
Message-Id: <08D2885E-B824-48E8-9703-DCA98771FA37@delong.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_59E36323-F0FF-47A7-8703-4A17014EF8EE"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\))
Date: Thu, 30 Sep 2021 17:35:21 -0700
In-Reply-To: <CAKD1Yr2Tug-PFV7wAh0s6-gw8W3LcLG7wC1fD7Lu_hMZQYKdtw@mail.gmail.com>
Cc: Owen DeLong <owen=40delong.com@dmarc.ietf.org>, v6ops list <v6ops@ietf.org>
To: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>
References: <DDA36020-90CC-471B-83AD-3D98950F1164@delong.com> <CAO42Z2wdoSdJDOB2Zo0=ZK0ecOARRsdg2nbHZGSDOhryPbLfDw@mail.gmail.com> <F2BD0A42-E9AD-45DD-999A-638E73BE1177@delong.com> <CAKD1Yr2K3Gd3JD=NJFOoH6GYgs-8ACxRQB9-sKJ7cbF4_hxsow@mail.gmail.com> <0B533C71-5DB0-410D-A5A3-7E8FD559F214@delong.com> <CAKD1Yr3NoYfNT7+OVJoCCdgdif6AHHw29tNCPttS=-NuRZKv3w@mail.gmail.com> <5FAD5290-3616-4194-B783-D473DB38A89A@delong.com> <m1mVGC6-0000HSC@stereo.hq.phicoh.net> <D6620D7C-8FE8-4294-8014-AB18A230C9C7@delong.com> <m1mVItl-0000GuC@stereo.hq.phicoh.net> <YVN6/cA6Ob3vLJQH@Space.Net> <m1mVK32-0000HpC@stereo.hq.phicoh.net> <CAO42Z2zQys6o41+m1iX1Mm88M7CaUdQa1C+uuYqxz2STfcwt_Q@mail.gmail.com> <d2887464-19d7-da09-d6f6-51ddc0e9ca45@foobar.org> <CAO42Z2w=BVoy-EmkM+x=8bVJc8WAcwRyLrdpsOAxu-as3ed6ZQ@mail.gmail.com> <CAN-Dau0v5dS9esEfQk9w0deG-QLpQ6EH9JJBY4JVcUfstFENkQ@mail.gmail.com> <1e9444b30d964a5cb17ff419eca6cc35@huawei.com> <CAKD1Yr0T-7t-UHbsJBMLpTjKhPAV5uUQkux6oby89TVUue7PyA@mail.gmail.com> <CO1PR11MB4881D400EA4681F1505040D2D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <CAKD1Yr3TmqFxjKuZ57wS7VuPOf6rJvOwnvnQdFrRLQ=DkZ+CCw@mail.gmail.com> <CO1PR11MB4881F411A4D5BEA7A8479726D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <D8AEA194-293B-43E4-BCAE-33CD81FB7D8C@delong.com> <CAKD1Yr2Tug-PFV7wAh0s6-gw8W3LcLG7wC1fD7Lu_hMZQYKdtw@mail.gmail.com>
X-Mailer: Apple Mail (2.3654.120.0.1.13)
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.4 (owen.delong.com [IPv6:2620:0:930:0:0:0:200:2]); Thu, 30 Sep 2021 17:35:21 -0700 (PDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/603tc6DRG7e5Dm-OGaT4wfHOpIw>
Subject: Re: [v6ops] Implementation Status of PREF64
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Oct 2021 00:35:32 -0000


> On Sep 30, 2021, at 17:10 , Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org> wrote:
> 
> On Fri, Oct 1, 2021 at 12:59 AM Owen DeLong <owen=40delong.com@dmarc.ietf.org <mailto:40delong.com@dmarc.ietf.org>> wrote:
> This is the problem, right here… There are networks where the administrators do NOT WANT this to be up to the user. They want control over certain policy aspects on their network. You are free to call them whatever names you want, but their networks are part of the target audience for IPv6 and they aren’t going to deploy it unless they have at least equivalent policy enforcement tools to what they have in IPv4 and they’re going to have to be implemented in a way that provides at least some familiarity or clear roadmap of the transition.
> 
> I don't think anybody disagrees (well, I certainly don't) that networks should be able to limit what services devices can and cannot access on their network. Let's take that as a given.
> 
> I think that what SLAAC advocates are saying is "IA_NA and one IPv6 address per device" is not the right way to do that. IPv6 addresses are plentiful, and there's no need to force devices to only have one. Just as an example: DHCPv6 PD is strictly superior to DHCPv6 NA in terms of functionality. The tracking and admission control ability are exactly the same, but PD doesn't have the problem of limiting the number of addresses per device.

And what everyone else is saying is “It doesn’t matter what you (collectively) think is or is not the right way to do it, it’s my network and I want to do it my way.” Until you make that possible, I’m not implementing your new protocol.

> Proponents of DHCPv6 can say until the cows come home that "IA_NA and one address per device" is more deployable because people are accustomed to DHCPv4 and one IP address per device. That's true, but it does not make it a superior technical solution. Why can't we do better? More importantly, reading this thread - why aren't we trying to do better? The IETF is a technical forum, not an IPv6 promotion organization. While it might be fun to bash implementations for not implementing particular solutions, what we should be doing here is looking for better technical solutions to this problem that don't have the drawbacks that IA_NA has.

That’s not what is being said. A lot of this has little to do with what they are accustomed to and a lot more to do with a combination of:
	+	Enterprise policies that they cannot conveniently change
	+	Government and other regulations that they cannot avoid
	+	Reporting requirements that they cannot subvert
	+	Limitations of the tools they have available to comply with the above.
etc.

In other words, you keep trying to suggest that there are alternative technical solutions, but you ignore the fact that this is NOT a technical problem.

It’s a political problem and for now, at least, the important thing to them is these politics. IPv6 is something they’re potentially willing to do if it
doesn’t create the above political problems for therm.

On virtually every platform except android, it doesn’t.

Owen

v2.23.0 | Report a Bug | By Email