IETF Logo Mail Archive

Re: [v6ops] new draft: draft-ietf-v6ops-cidr-prefix

<mohamed.boucadair@orange.com> Fri, 13 February 2015 09:15 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2C0C1A1B74 for <v6ops@ietfa.amsl.com>; Fri, 13 Feb 2015 01:15:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X-KeH7SoqH0z for <v6ops@ietfa.amsl.com>; Fri, 13 Feb 2015 01:15:34 -0800 (PST)
Received: from relais-inet.francetelecom.com (relais-ias245.francetelecom.com [80.12.204.245]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A8031A1BEE for <v6ops@ietf.org>; Fri, 13 Feb 2015 01:15:33 -0800 (PST)
Received: from omfeda05.si.francetelecom.fr (unknown [xx.xx.xx.198]) by omfeda13.si.francetelecom.fr (ESMTP service) with ESMTP id 5F76A190642; Fri, 13 Feb 2015 10:15:31 +0100 (CET)
Received: from Exchangemail-eme2.itn.ftgroup (unknown [10.114.31.5]) by omfeda05.si.francetelecom.fr (ESMTP service) with ESMTP id 32B0F1800CB; Fri, 13 Feb 2015 10:15:31 +0100 (CET)
Received: from OPEXCLILM23.corporate.adroot.infra.ftgroup ([169.254.2.231]) by OPEXCLILH01.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.03.0224.002; Fri, 13 Feb 2015 10:15:28 +0100
From: mohamed.boucadair@orange.com
To: David Farmer <farmer@umn.edu>
Thread-Topic: [v6ops] new draft: draft-ietf-v6ops-cidr-prefix
Thread-Index: AQHQR2mLmlM4gy1d90m2or8sao43r5zuS/Vg
Date: Fri, 13 Feb 2015 09:15:27 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B93300490A89A@OPEXCLILM23.corporate.adroot.infra.ftgroup>
References: <201502111247.t1BCl1Fu003450@irp-lnx1.cisco.com> <5E9ECF06-885F-479A-B76D-2AE6A8B7814D@umn.edu>
In-Reply-To: <5E9ECF06-885F-479A-B76D-2AE6A8B7814D@umn.edu>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.168.234.5]
Content-Type: multipart/alternative; boundary="_000_787AE7BB302AE849A7480A190F8B93300490A89AOPEXCLILM23corp_"
MIME-Version: 1.0
X-PMX-Version: 6.0.3.2322014, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2015.2.13.70318
Archived-At: <http://mailarchive.ietf.org/arch/msg/v6ops/9iXq4Wd024x-5Yhn8w-YWMXWRek>
Cc: "v6ops@ietf.org" <v6ops@ietf.org>
Subject: Re: [v6ops] new draft: draft-ietf-v6ops-cidr-prefix
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Feb 2015 09:15:37 -0000

Dear David,

Thank you for these comments.

I’m OK with almost all your edits.

A new revision with these changes will be available very soon.

Thank you.

Cheers,
Med

De : v6ops [mailto:v6ops-bounces@ietf.org] De la part de David Farmer
Envoyé : vendredi 13 février 2015 09:46
À : v6ops@ietf.org
Objet : Re: [v6ops] new draft: draft-ietf-v6ops-cidr-prefix


On Feb 11, 2015, at 04:47, fred@cisco.com<mailto:fred@cisco.com> wrote:
A new draft has been posted, at http://tools.ietf.org/html/draft-ietf-v6ops-cidr-prefix. Please take a look at it and comment.

I support the draft.  However, I have some suggested improvements for the current text.

1.  I'm worried as phrased, section 1, paragraph 3 could be misinterpreted as implying a /64 is a valid end-site prefix.


    A detailed analysis of the 64-bit boundary in IPv6 addressing

    together with the implication for end-site prefix assignment are

    documented in [RFC7421], but no recommendation is included

    in that document.

Maybe just eliminate "together with the implication for end-site prefix assignment", I'm not sure it's necessary or adds much to this discussion to talk about end-site prefix assignments anyway.  However, then the only thing the paragraph says beyond what is in the first paragraph is "but no recommendation is included in that document."  So, how about just deleting this paragraph altogether and adding a version of that idea to the end of the first paragraph, maybe something like this;


    However, such a recommendation was out of scope for that document.


2.  I'd like to see the evolution of the IPv6 Addressing Architecture discussed and used as part of the argument too.  How about the following added as the second paragraph of section 1;


    As discussed in [RFC7421], "the notion of a /64 boundary in the

    address was introduced after the initial design of IPv6, following a

    period when it was expected to be at /80." This evolution of the IPv6

    Addressing Architecture, resulting in [RFC4921], and followed with the

    addition of /127 prefixes for point-to-point links in [RFC6164], clearly

    demonstrates the intent for future IPv6 protocol developments to have

    the flexibility to change this part of the architecture when necessary

    and justified.


3.  I think the first paragraph of section 2 would be clearer if it said;


    IPv6 implementations MUST...


4.  The last paragraph of section 2 makes me think of the scene from Star Wars where Obi-Wan uses the Jedi mind trick on the storm troopers saying, "these aren't the droids you're looking for."


   This recommendation does not conflict with the 64-bit boundary for

   some IPv6 stateless address autoconfiguration (SLAAC, [RFC4864])

   based schemes such as [RFC2464].


Why doesn't it conflict?  Just because we said so?  How about something like this instead;


   This recommendation might seem to conflict with with the 64-bit

   boundary for some IPv6 stateless address autoconfiguration (SLAAC,

   [RFC4864]) based schemes such as [RFC2464].  However, [RFC7421]

   clarifies this is only a parameter in the SLAAC process and using

   DHCPv6 [RFC3315] or manual configuration other longer prefix lengths

   are in operational use.


But does this paragraph even belong in this section?  Maybe move it up into section 1, as well as providing reasons why it does conflict.  How about making this the second paragraph and #2 above the third paragraph of section 1.


5.  Maybe additional informative references to RFC4942 and draft-ietf-opsec-v6 would in order for the security considerations section.  Only referencing RFC4291's security considerations, which says the following, seems really kind of wimpy by today's standards.


    IPv6 addressing documents do not have any direct impact on Internet

    infrastructure security. Authentication of IPv6 packets is defined

    in [AUTH].


(AUTH = RFC 2402)


How about;


    This document does not introduce security issues in addition to what

    is discussed in [RFC4291<https://tools.ietf.org/html/rfc4291>].  Overall IPv6 security issues are more

    completely discussed in [RFC4942] and [draft-ietf-opsec-v6].


Thanks

--
===============================================
David Farmer                          Email: farmer@umn.edu<mailto:farmer@umn.edu>
Office of Information Technology
University of Minnesota
2218 University Ave SE         Phone: +1-612-626-0815
Minneapolis, MN 55414-3029   Cell: +1-612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email