IETF Logo Mail Archive

Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

David Farmer <farmer@umn.edu> Sun, 14 February 2021 21:00 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F3D33A0AF7 for <v6ops@ietfa.amsl.com>; Sun, 14 Feb 2021 13:00:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.198
X-Spam-Level:
X-Spam-Status: No, score=-0.198 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g-PBSHTgPPxD for <v6ops@ietfa.amsl.com>; Sun, 14 Feb 2021 13:00:50 -0800 (PST)
Received: from mta-p6.oit.umn.edu (mta-p6.oit.umn.edu [134.84.196.206]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A783D3A0AE5 for <v6ops@ietf.org>; Sun, 14 Feb 2021 13:00:50 -0800 (PST)
Received: from localhost (unknown [127.0.0.1]) by mta-p6.oit.umn.edu (Postfix) with ESMTP id 4Df04x49Rjz9vBqm for <v6ops@ietf.org>; Sun, 14 Feb 2021 21:00:49 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p6.oit.umn.edu ([127.0.0.1]) by localhost (mta-p6.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yyFzwbMYqSiz for <v6ops@ietf.org>; Sun, 14 Feb 2021 15:00:49 -0600 (CST)
Received: from mail-ed1-f72.google.com (mail-ed1-f72.google.com [209.85.208.72]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p6.oit.umn.edu (Postfix) with ESMTPS id 4Df04x0dByz9vBsp for <v6ops@ietf.org>; Sun, 14 Feb 2021 15:00:48 -0600 (CST)
DMARC-Filter: OpenDMARC Filter v1.3.2 mta-p6.oit.umn.edu 4Df04x0dByz9vBsp
DKIM-Filter: OpenDKIM Filter v2.11.0 mta-p6.oit.umn.edu 4Df04x0dByz9vBsp
Received: by mail-ed1-f72.google.com with SMTP id x18so1618825edq.19 for <v6ops@ietf.org>; Sun, 14 Feb 2021 13:00:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=dfL0eX+9r5LMGl0ZImv9s/JemY+4pmglZKr0D1sBBRc=; b=Bn/PeYWHVRSDxWRhcOixrtx7m2V4OI2q5DriZmubax2U2EYuItE54s/SF/j4uVy3v0 zZJgr2Ba1birPJFKqmMr/bV60Xss7O8JmlzlNyMDYF0KqKiVu7a2EKRJJP2iJPNLDjRn zv0pugcrO/IZAp/0HXOFyFL4pRk0rw2qGosQqdI1wDep9KjySazTNzWjHeNt/dnqtZkN 5i8bntQeGznrhde9NXcc1CQF2YE2UDV3IAiUzHYfWlKDyEl/sloIiGY+6Zi4XSA6ov7A xc1ufqI9kMIq/XGdntCX0sFHayAMNFPhlIbGqaPnhT0BIn9lb6+EQKk/eqwmfddkOviv PQsQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=dfL0eX+9r5LMGl0ZImv9s/JemY+4pmglZKr0D1sBBRc=; b=IcZcx9/2uYnV4SCZF+dLsVRXKBBZe9tBMxyEuUSGqqD9jlDROesh4HewEDHlp0l20X lTZlV7dwBAba+88wtSBSjHNagzbXDo+G1Sosq0RZC7V1eCPGxG48f9OMbfDeM1/Uq91U BNuwvtTHSxkiMIuFeZC7qnhltYEr9ynQKTohWmAU0R2h33mMbOpwgj2TbDYeBTzy1Wxl 0+7AgbO7l1MuyZ01VCcALIWisrEt0DydYfRSkUgsxG+e6KWMhWF5C5PNPJhJ/DOqiWL4 8iWgBXjcKVKp+RqFSPAvuxXducYAfF9WsCqZ+9rkwEhsB+u26IPi+a5ZdfYEFjHG0Qsc yZFQ==
X-Gm-Message-State: AOAM530uVfFYnB/Y6hwJ0skh4jUs4bjHus0c+mitw8cm/dBfhRGOg9rJ nRudB3h2Sk597byeQWDTJeIWlq83WlnOquWLvdz9lENCPIlu4XTSqjKGT7UmwVemduA//neLDTk 7lB9EI6BXoZBWote1I5dzO3eztw==
X-Received: by 2002:a05:6402:5211:: with SMTP id s17mr12839824edd.312.1613336446371; Sun, 14 Feb 2021 13:00:46 -0800 (PST)
X-Google-Smtp-Source: ABdhPJz6hJMajceZlFSkSlnFPdfFt5Ixz52As2d90UnKxpOTcPGbRmJdmhybxe13ABVPFF//+bGS4SxvIMMfvPQLnuM=
X-Received: by 2002:a05:6402:5211:: with SMTP id s17mr12839804edd.312.1613336445981; Sun, 14 Feb 2021 13:00:45 -0800 (PST)
MIME-Version: 1.0
References: <160989494094.6024.7402128068704112703@ietfa.amsl.com> <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com> <F4E00812-E366-4520-AE17-7BB46E28D575@gmail.com> <CAN-Dau3iOjjU+FLpdtA7nqfKRX+sjjSanAU8U-O3pH-k5nSoig@mail.gmail.com> <a3fbfb94-90ae-961c-a2ab-33ade27e074e@si6networks.com> <672bd5e6-bdce-5915-1082-1ed30d3c5980@gmail.com> <CAN-Dau1CvbwZccq2Zyr8xBkiW1z0nKX_YcGW-y3VL7=pm+wA+w@mail.gmail.com> <227CDF8C-E929-4AA5-9D24-733381EB5C69@fugue.com>
In-Reply-To: <227CDF8C-E929-4AA5-9D24-733381EB5C69@fugue.com>
From: David Farmer <farmer@umn.edu>
Date: Sun, 14 Feb 2021 15:00:29 -0600
Message-ID: <CAN-Dau0JsMJ6Ad1pqeEKSKpRiSXDibMG4yKdVOKL4uFoqi5sAQ@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Brian E Carpenter <brian.e.carpenter@gmail.com>, Fernando Gont <fgont@si6networks.com>, IPv6 Operations <v6ops@ietf.org>, "6man@ietf.org" <6man@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c440a305bb522934"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/Akirqj3Tc0GxQI8KHbSTUYjhGLk>
Subject: Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Feb 2021 21:00:53 -0000

On Sun, Feb 14, 2021 at 1:57 PM Ted Lemon <mellon@fugue.com> wrote:

> On Feb 13, 2021, at 7:45 PM, David Farmer <farmer=40umn.edu@dmarc.ietf.org>
> wrote:
>
> I think I'm hearing,
>
> 1. Rewrite RFC4007 to only discuss zone indexes for the Link-Local address
> on an interface, maybe rename then too. Junk the rest, it only confuses
> things.
>
> 2. Rewrite RFC4291 to only refer to Link Scope (for Link-Local Addresses
> and the Loop-Back Address) and Global Scope for all other Unicast addresses
> except the unspecified address, eliminate all inference to other unicast
> scopes and the size of scopes. All uniqueness for Link-Local address comes
> from IID uniqueness provided by DAD, and there should be no discussion of
> uniqueness regarding Global Scope in RFC4291, it is only discussed in
> RFC4007. Also, eliminate the discussion of IID scope. Leaving Multicast
> scope alone.
>
> However, unless we can agree on how to deal with the 64-bit boundary, or
> not to touch it, touching RFC4291 will only end in flames.
>
> Is it possible to do anything with RFC4007 without ending in flames?
>
>
> From my perspective at least, this conversation has been really useful,
> but I don’t see a cause to rewrite any documents. Being forced to confront
> my assumptions as a result of Fernando’s questions resulted in me
> discovering that a lot of things I hadn’t realized were clearly specified
> are actually clearly specified. The dissonance between RFC 4193 and RFC
> 4007 is interesting, but RFC 6724 addresses this dissonance quite
> satisfactorily. It’s possible that there’s an opportunity to write a small
> ops document here to make clear how to populate the policy table
> automatically based on prefixes seen on an interface, but I don’t think we
> have a Really Big Problem to solve here.
>
> If people are confused, it’s probably because they haven’t read these
> documents.
>

Actually, I think you are correct, complete rewrites are unnecessary.

I still would like to suggest we tighten up the language regarding scope in
RFC4291 once it eventually gets rewritten. As for RFC4007 a minor update
clearing up one point I think would really help. But, let me summarize from
the beginning first;

Prior to RFC3979, there with three (3) IPv6 Address Scopes, Link, Site, and
Global (AKA Internet). The Link and Site Scopes require Zone Indexes or
Zone Identifiers to distinguish an address between Zones of the same Scope
because the same address can exist in each of Zone of a Scopes. For the
Global Scope, Zone Indexes or Zone Identifiers are unnecessary as there is
only one instance or Zone of the Global Scope by definition.

RFC3979 deprecated Site-Local addresses and effectively deprecating the
Site Scope too.

RFC4193 created ULA and specified them as part of the Global Scope, meaning
that Zone Indexes or Zone Identifiers are not associated with ULA addresses
like other addresses within the Global Scope, and nothing more than that.

However, as Fernando points out, ULA cannot be unique across the
entirety of the Internet, and they are only unique within a local domain of
coordination, coordinated by or among local administrator(s). Furthermore,
the reachability of ULA, and other special-use IPv6 addresses intended for
local-use, SHOULD be restricted to this local domain of coordination only.

Whereas, GUA is unique across the entirety of the Internet and is
coordinated by the Internet Registry System, as described in RFC7020.
The reachability of GUA is unrestricted, however, it is subject to the
routing policies of ISPs and other network operators.

As the Internet does not guarantee universal reachability for GUA and only
local reachability is intended for ULA, and other special-use IPv6
addresses intended for local-use, therefore, there is no universal view or
understanding of what is included or contained within the Global Scope.

So I recommend a small update to RFC4007, further quantify the necessary
uniqueness;

Global scope, for uniquely identifying interfaces anywhere in the Internet
*or within the span of reachability for local-use addresses.*

Thanks
-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email