IETF Logo Mail Archive

Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

Ted Lemon <mellon@fugue.com> Sat, 13 February 2021 05:47 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0DC163A0E1B for <v6ops@ietfa.amsl.com>; Fri, 12 Feb 2021 21:47:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iCdYJxhxT9YC for <v6ops@ietfa.amsl.com>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
Received: from mail-qv1-xf29.google.com (mail-qv1-xf29.google.com [IPv6:2607:f8b0:4864:20::f29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 236F03A0E1C for <v6ops@ietf.org>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
Received: by mail-qv1-xf29.google.com with SMTP id y10so855374qvo.6 for <v6ops@ietf.org>; Fri, 12 Feb 2021 21:46:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=ces7L/390CjYfLNTs6ISu8K8qdnXbTNYiH0fXZXxH6I=; b=hqqRL3bo4g9hKpjKkyAkJ85+1NYEuZfdda5yzjarYfctgvuXXx9slrAqNB5eqea1R5 rS75NsWDDM2TO6qtkPM9typoUAQmmQ9PDLbyQxP+NqRiUR+kqJhOMABc3Zu4llDklu+2 0hzl7oJ5gOXKGx/8A9Pw4ED9WCakDLhrgkAtK7zBm6UtH0gPAsDHfZ6oZM9PNoigeuHb qGbl5oW7Envy8rM0+dlBzX3vh0Vi9o69BALjqwL3pbw3sSX03SSWk6XQU4XB9oBE4W/Q YnkjjAZIy/rfAYR44prsfs/MXLiZBtKhvxZpPt9wWv4Z8v8JL4VQbQ5UTeW0gpCkDJZP 4/Ig==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=ces7L/390CjYfLNTs6ISu8K8qdnXbTNYiH0fXZXxH6I=; b=jo6mdPALgg/PYIJ139q81U9pgciYJu28jkdgme1WQncU6pJ7ZU/X/kszxjjICl9JiS Gk9+k2pkEp7BViieRz06IOTgdJkthj4C3SSQVhpkyqDoK5ZZCrMj8/EVpE3b+6S0jZyg XSEL/3MJXf6IUagqRGHRbNJXIwEyEC8siyKVKpXWkqToVqiIAn08xZsQKqyEwLviNT3M igNiBYx7kWipTjeS1g8MvgQem3KwJOwx/1RkZLJwlzn93AB0HACcfmyEJoC4B/FGomxm 9jcnuAKpBpAfmCRLeAKRNOi+BlkYK553ETygM1xdDo3hkYoLR/N7aAK0sWhf/zjjLa2L H3xA==
X-Gm-Message-State: AOAM531uks0NmWsgimvW+ZUUhPwE4i/bhWpxO0wXJs21YDSDlh5CMKrj Ak52ze/FBUlfYRzLTc3qdSO27w==
X-Google-Smtp-Source: ABdhPJzEjhncPmGCvtqwNt34cikzv4LqHFFNMwr+s94fcnbEdPYO01WfbCWEpF+fhBCs6E0fEQUi1Q==
X-Received: by 2002:a0c:8304:: with SMTP id j4mr5838904qva.18.1613195216064; Fri, 12 Feb 2021 21:46:56 -0800 (PST)
Received: from smtpclient.apple (c-24-91-177-160.hsd1.ma.comcast.net. [24.91.177.160]) by smtp.gmail.com with ESMTPSA id e1sm4412607qkf.99.2021.02.12.21.46.55 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Feb 2021 21:46:55 -0800 (PST)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <46888959-FE01-49E8-9E54-9A3B1E07B97E@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_E9BF1E27-1CFC-4C3C-A48B-89D02D8F8D57"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.32\))
Date: Sat, 13 Feb 2021 00:46:54 -0500
In-Reply-To: <e2f45fba-dd1e-3cb6-b929-ab03e321020a@si6networks.com>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, Michael Richardson <mcr+ietf@sandelman.ca>, IPv6 Operations <v6ops@ietf.org>, "6man@ietf.org" <6man@ietf.org>
To: Fernando Gont <fgont@si6networks.com>
References: <160989494094.6024.7402128068704112703@ietfa.amsl.com> <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com> <F4E00812-E366-4520-AE17-7BB46E28D575@gmail.com> <b2e51a89-e8a7-9ddb-643d-63a98569b03c@si6networks.com> <CB9EA5F4-A241-46A4-A371-B2A1BFB8C72F@fugue.com> <dff93a2e-f4f8-01c9-ce88-c2dbb20a04f1@si6networks.com> <759637FF-77C7-41EA-8671-73988AD48873@fugue.com> <9877D352-E9BB-453B-A676-D2B5C546C1C2@gmail.com> <11035C3E-BA75-4B9D-A047-B2AA1DE23BEA@fugue.com> <b3f1c53f-c22d-c9fb-6094-9a15d79fcd43@si6networks.com> <b9972eb4-b4db-e82d-12ec-1cfcc75a9e45@gmail.com> <6488.1613188541@localhost> <e0fec02c-a284-fbe1-2067-ca7f59f54853@gmail.com> <e2f45fba-dd1e-3cb6-b929-ab03e321020a@si6networks.com>
X-Mailer: Apple Mail (2.3654.80.0.2.32)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/9Bei4M_IpkxDWzyK6pVImDyZVCk>
Subject: Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Feb 2021 05:47:01 -0000

Okay. Consider the clarifications I suggested a while back:

---
ULA addresses are, in principle, VALID in any scope.

They are not, in principle, UNIQUE to a particular link: it’s entirely possible to have two instances of the same ULA referring to different interfaces connected to different links.

In principle, the set of all networks which can route a packet to a particular instance of a ULA /48 MUST be DISJOINT from the set of all networks which can route a packet to some other instance of that ULA /48.

In practice, the randomness of ULAs gives us some reasonable assurance that the principle will hold.

However, users of ULAs that are routed beyond an individual site had better have some policies and procedures in place to make sure that this is true.

Internet backbone routers should never accept BGP advertisements for ULA prefixes.

Sites connecting to the Internet should never, by default, route ULAs northbound of their connection to their ISP.

The last four lines are points of practice, not points of definition of terms.

But the bottom line is that if the term “global” is confusing as it applies to ULAs, it shouldn’t be that hard to clarify what we mean by global.
---

Do you think anything I’ve said here is wrong, not in the sense of contradicting RFC 4007, but in the sense that it is incorrect?

Is there anything missing?

I’m not trying to win an argument here—the reason I wrote the above is that I think it’s correct, and I was trying to figure out whether it was in any way consistent with the problem you have.

I think Brian has said that the “scoped architecture” is just not how things actually work in real life, with which I agree, so the fact that you can’t explain it to anyone is not a big shock. I think RFC 4007 says some interesting and useful things. It might be worthwhile to write a new document that’s a sort of Talmudic commentary on RFC 4007.

What I do not want to see is some kind of effort to rationalize ULAs into something other than what they are at present, which is quite useful.

v2.23.0 | Report a Bug | By Email