IETF Logo Mail Archive

Re: [v6ops] https://datatracker.ietf.org/doc/draft-collink-v6ops-ent64pd/ was: Clarification on draft-linkova-v6ops-ipmaclimi

Jen Linkova <furry13@gmail.com> Fri, 18 November 2022 18:29 UTC

Return-Path: <furry13@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D4793C1524CE for <v6ops@ietfa.amsl.com>; Fri, 18 Nov 2022 10:29:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.846
X-Spam-Level:
X-Spam-Status: No, score=-1.846 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JlFyMUZZ8DOh for <v6ops@ietfa.amsl.com>; Fri, 18 Nov 2022 10:29:17 -0800 (PST)
Received: from mail-lf1-x135.google.com (mail-lf1-x135.google.com [IPv6:2a00:1450:4864:20::135]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24996C14CF08 for <v6ops@ietf.org>; Fri, 18 Nov 2022 10:29:17 -0800 (PST)
Received: by mail-lf1-x135.google.com with SMTP id a29so9500310lfj.9 for <v6ops@ietf.org>; Fri, 18 Nov 2022 10:29:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=42AZSE7Fdo0lxot+F1zMTFRSzdvHoaesDIuqjqDrUYs=; b=BLqcdbWpd8EdgibJAr6TiVRG4hPjXzt/tRffDxi6QecueSHhTyiXgu7m4Stftj48I3 6pDG+RkvJbKxJiNfqhamBVbAuqAJeAm5mF7kHoleBp5Ef1PPQh/dR5b5etnrY2Asp6+m Es0xJSNsEiSwi2DaOgPPBTgvh8EH3EwxwzZEWRTjwMSRAGReSpkaPpHq+VxLBWIVpFsv eltF+0l9C2lTsYf33vcSRM9zFxacILhoiRmRea6fQuRtyWbfXqFLLIMx/qxptPCoUsZw Eg4Jj7erZYhlS+qhKsPpkLRbE/0MAa6RUnzHfDc9Q2VCeEQkFQhIFnM0y6aLBOE/xBFt p0hg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=42AZSE7Fdo0lxot+F1zMTFRSzdvHoaesDIuqjqDrUYs=; b=inPQx8UZCS/qJ4JpvxBqcYaOlFbgjIhHXRR0+QSCeXvlg9Q6aehucngnuuiYqCMY1D rgZsF+fFkO29mmmSY4iWzLJcZcOQw+9GKqwUwrvpxQ2qJfc3uVk3PSnys564j076OvYR 21fBd1MKFodrktyOXaqpXJrC5Ns8IG3/tuZegF/F8M9sUoDMAAr3cdf0/pqME4tNObMe RDxkQVSk1RSz8OrREesCVMGe7vDvyuULak5+sG4C6VU/GqeM7L+u3ctx3nAp0bXp0Nqe FkyrDjRCcx7S+sUlxWCczYcEU/Zhi8LEo6gakPXOiud3CLkc7YUA6CnehIY6YURPy7yy g5sw==
X-Gm-Message-State: ANoB5pl2a2+zY0ua8q9YtOFZ2YBB7hcx2FDmVTc4TTDS6DeoB0/l5J1o F+MIRt9P5zYy8C4Zo8btTaD2FYRfHv91b8PAZQAEjqBP
X-Google-Smtp-Source: AA0mqf6WmWSUJ/Kt/PjteTFjMm76GKrOGsz/0EjRXvWpHFqjKqfSMfAkD1R3pZPXa9nLVdq4blJ+kq0BSbcLDWSWMbM=
X-Received: by 2002:ac2:5f6c:0:b0:4a2:bca5:76bc with SMTP id c12-20020ac25f6c000000b004a2bca576bcmr2663737lfc.123.1668796154565; Fri, 18 Nov 2022 10:29:14 -0800 (PST)
MIME-Version: 1.0
References: <CAFU7BAR8wAq7ukyBEyYCossyEctKpS47SgpQa8CusO9dHv6frQ@mail.gmail.com> <CAFU7BAQqO9+cSSb2jzWhjM_qJf8VRyLw0emfczZQH4nu-0OXsg@mail.gmail.com> <CO1PR11MB488144CA12FEB21B966A497ED8059@CO1PR11MB4881.namprd11.prod.outlook.com>
In-Reply-To: <CO1PR11MB488144CA12FEB21B966A497ED8059@CO1PR11MB4881.namprd11.prod.outlook.com>
From: Jen Linkova <furry13@gmail.com>
Date: Sat, 19 Nov 2022 05:29:03 +1100
Message-ID: <CAFU7BAQVm_NMCor5wb6bbp07X2qkdMTyX15Ha7QCTeXqOQDxjA@mail.gmail.com>
To: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
Cc: V6 Ops List <v6ops@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/HG_ioeuTXfMNabFIznjQDDHCpu8>
Subject: Re: [v6ops] https://datatracker.ietf.org/doc/draft-collink-v6ops-ent64pd/ was: Clarification on draft-linkova-v6ops-ipmaclimi
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Nov 2022 18:29:17 -0000

On Tue, Nov 15, 2022 at 3:03 AM Pascal Thubert (pthubert)
<pthubert@cisco.com> wrote:
> I support the idea of /64 per host and intend to help make this work happen.

Thank you!

>We know for a long time (since John Jason B made it happen at least) that we needed to do this. Like yesterday.

I totally agree.


> I'll be working on parallel on https://datatracker.ietf.org/doc/draft-thubert-6lo-prefix-registration/ which appears to be an excellent companion to control the route injection in and beyond the first hop router(s). The draft allows for that in fashion that is agnostic to the routing protocol.


Yes, I'm aware of your draft but haven't read it yet, it's on my todo
list, stay tuned ;)

> My main concern is the risk that people think it is a replacement to SLAAC and / or a one fits it all. It is neither and the draft should be very clear very soon on this.

I'm planning to add some text to -01.

>There is still a need for (/128) IPv6 addresses and for autoconf, even in large network where SLAAC must be deprecated. We could use an applicability statement on where each of SLAAC, SFAAC, DHCP, and this proposal could be used / preferred.


I see the draft as an attempt to keep SLAAC on the host w/o any cost
for the network. The host is free to use SLAAC for assigning addresses
from the /64 delegated by DHCP server.

> Some random thoughts:
>
> Pros:
> - routing to the host opens for any topology => de-congruence with L2 broadcast domain
> - no SLAAC => better knowledge/control of resources in use, fully functional routing
>
>
> So-So:
> - Limiting to 64. E.g., I see value for at least /96 to carry IPv4 private networks.

Could you please elaborate? If a host is willing to use only 32 bits
instead of 64 - fine (as long as security implications are
understood).

> - carrying 8 bytes of host private information (the IID) in the IPv6 header turns as a waste of expensive space, the only space host and network communicate


> - Privacy: A single /64 per host is as easy to track as an IPv4 address if you know it's done.

First of all, there will be many topologies when this is not needed
and never going to be implemented (like home networks). Therefore it's
impossible to know if it's a /64 assigned to a vlan or to a host.
Secondly, with the short lease time hosts should get new /64s when
they connect to the network.
Also, I'm wondering about mobile networks - they have been doing it
for a while, so I assume this issue has been resolved somehow.

> - DHCP only + one /64 per host would mean IPv4 with 8 byte address. We'd owe apologies to the tenants of 64-bits IP addresses, and would have wasted 20+ years.

It's a shame indeed to reduce the address space but the protocol
features are still here. We still multiple addresses per host etc. If
you don't want to run DHCPv6-PD - SLAAC is available.

>
> > -----Original Message-----
> > From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Jen Linkova
> > Sent: vendredi 11 novembre 2022 1:43
> > To: V6 Ops List <v6ops@ietf.org>
> > Subject: Re: [v6ops] Clarification on draft-linkova-v6ops-ipmaclimi
> >
> > So, here is the second draft I mentioned:
> >  https://datatracker.ietf.org/doc/draft-collink-v6ops-ent64pd/
> >
> > This is a real "-00", not a "-00 ready for the WGLC" - references and typos
> > will be fixed later. The goal of publishing so early draft is to start
> > collecting the feedback as early as possible.
> >
> > On Wed, Nov 9, 2022 at 5:52 AM Jen Linkova <furry13@gmail.com> wrote:
> > >
> > > I think I shall clarify a few things regarding the draft.
> > >
> > > 1. I totally agree that it would be awesome to prevent all those ND
> > > issues, and save memory on devices. Nobody argues with that.
> > > 2. I do love /64 per host idea, but until two hours ago I was under
> > > the impression that there is no way we can get that deployed any time
> > > soon. Well, I was wrong. Please give me ~48 hrs to write down the
> > > idea.
> > > 3 I'd like to ask the reviewers not to focus too much on the address
> > > assignment method and look at the section 3, which contains 4
> > > sentences. Basically what I'm proposing doesn't fundamentally change
> > > anything (see #2 above). What the draft is suggesting is:
> > > - change the *default* value for the limit which exists today.
> > > - make that limit configurable (so operators might even *lower* it if
> > > they are concerned about resources).
> > > - log an error message if it happens (to improve the failure mode - at
> > > least the operator would know!)
> > > - optimize the cache entries rotations.
> > >
> > > I hope there are no objections to at least 3 out of those 4 bullet
> > > points, especially as I promise to work on the strategy to get us out
> > > of this situation long-term ;)
> > >
> > > Thank you!
> > >
> > >
> > > --
> > > SY, Jen Linkova aka Furry
> >
> >
> >
> > --
> > SY, Jen Linkova aka Furry
> >
> > _______________________________________________
> > v6ops mailing list
> > v6ops@ietf.org
> > https://www.ietf.org/mailman/listinfo/v6ops



-- 
SY, Jen Linkova aka Furry

v2.23.0 | Report a Bug | By Email