IETF Logo Mail Archive

Re: [v6ops] PI [ULA draft revision #2 Regarding isolated networks]

joel jaeggli <joelja@bogus.com> Mon, 02 June 2014 15:14 UTC

Return-Path: <joelja@bogus.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB3CF1A0362 for <v6ops@ietfa.amsl.com>; Mon, 2 Jun 2014 08:14:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.551
X-Spam-Level:
X-Spam-Status: No, score=-2.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1lo_DQ3qPwtb for <v6ops@ietfa.amsl.com>; Mon, 2 Jun 2014 08:14:23 -0700 (PDT)
Received: from nagasaki.bogus.com (nagasaki.bogus.com [IPv6:2001:418:1::81]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A2E461A0141 for <v6ops@ietf.org>; Mon, 2 Jun 2014 08:14:22 -0700 (PDT)
Received: from mbp.local ([172.56.41.86]) (authenticated bits=0) by nagasaki.bogus.com (8.14.7/8.14.7) with ESMTP id s52FDOY9090835 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Mon, 2 Jun 2014 15:13:27 GMT (envelope-from joelja@bogus.com)
Message-ID: <538C93E9.7080405@bogus.com>
Date: Mon, 02 Jun 2014 08:10:33 -0700
From: joel jaeggli <joelja@bogus.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:30.0) Gecko/20100101 Thunderbird/30.0
MIME-Version: 1.0
To: Gert Doering <gert@space.net>
References: <23125E9D-85A1-49EB-ACE6-DB5EAC67EE02@nominum.com> <CAKD1Yr0pvet1oOip-Y2Xi_h2mSZfW1R5HtfiAGbDEns0dY-d2A@mail.gmail.com> <2A4B72CD-EDF3-4D11-AC39-B65892F9173F@nominum.com> <CAKD1Yr2NH4Kca4EvhjN2XnDbt8F2eS56ipxu3npH9yOh1bmQaA@mail.gmail.com> <F12F173B-9FF2-4EF8-B11E-33AEDA24961F@nominum.com> <CAKD1Yr1cGx7UfxZaEhm7oHA5PLvghVc52oPVkEQF90_7Vm__vw@mail.gmail.com> <1FDC3A7F-15EC-4397-AF3E-10F86EA04228@nominum.com> <538BDA84.6030800@bogus.com> <37D09BEE-FEDF-4514-8CEB-62959A89C3FF@nominum.com> <538BE13C.7050900@bogus.com> <20140602081743.GP46558@Space.Net>
In-Reply-To: <20140602081743.GP46558@Space.Net>
X-Enigmail-Version: 1.6
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="6a42B977ADTBKBhMAn6FPrXE6JTncCaJg"
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.4.3 (nagasaki.bogus.com [147.28.0.81]); Mon, 02 Jun 2014 15:14:17 +0000 (UTC)
Archived-At: http://mailarchive.ietf.org/arch/msg/v6ops/BAJmcxEDGLTe68Y7c7wQcGT4xRg
Cc: Philip Homburg <pch-v6ops-3a@u-1.phicoh.com>, V6 Ops List <v6ops@ietf.org>
Subject: Re: [v6ops] PI [ULA draft revision #2 Regarding isolated networks]
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jun 2014 15:14:25 -0000

On 6/2/14, 1:17 AM, Gert Doering wrote:
> Hi,
> 
> On Sun, Jun 01, 2014 at 07:28:12PM -0700, joel jaeggli wrote:
>> So don't asssume that every application needs to be aware of and test
>> for which path is working, not only is that needless complexity pushed
>> up into the stack. let your routers do their job and cease routing when
>> their upstream connectivity is lacking.
> 
> Well.  It might not have been your intention, but what you said is very
> clear "we're not going to make multihoming in the homenet case work".

No sorry I did not. What I said is that I believe you're pushing an
expectation of a certain amount of complexity onto hosts in the
interests of measurement and detection of topological corner cases. some
hosts might choose to do that in the interest of improved connectivity,
the expectation that they all should is onerous, you be should have an
expection that devices and applications will work in the absence of HE.

having a router invalidate itself as a nexthop because it has detected
that it's paritioned from a provider or the internet seems like an
incredibly basic concession that you'd want to have happen even were
everything HE enabled.

> In the case
> 
>     host --> router --> ISP A ---->  ISP C --------+
> 	       +------> ISP B ---->  ISP D ------> ISP E --> target
> 
> where "host" has source addresses A and B, and there is a problem at 
> ISP *C*, preventing connectivity via A->C->, how exactly is the homenet
> router "router" supposed to *know* that, or even solve it?

It doesn't.

> Assuming "as long as connectivity to ISP A is there, the whole Internet
> will be reachable via ISP A" is completely ignoring reality.  Blackhole
> issues happen (where even BGP to the customer router won't help you)...

yes, bgp multihoming doesn't solve it either. that has not rendered it
unsuitable for use.

> 
> OTOH, proper source address failover on "host" to source address B would
> very nicely solve this whole category of connectivity issues - and (by
> enforcing halfway symmetric return traffic via ISP B) would actually solve
> it *better* than BGP routing, which might need manual fiddling with the
> router to remove "ISP C" from the path.
> 
> (IETF is complaining about lack of operator input.  Here is operator input.
> Don't ignore it, otherwise operators get bored and find solutions outside
> IETF space, like, with NAT)
> 
> Gert Doering
>         -- NetMaster
>

v2.23.0 | Report a Bug | By Email