IETF Logo Mail Archive

Re: [v6ops] WGLC: draft-ietf-v6ops-unique-ipv6-prefix-per-host-02 - multiple prefixes per device

Alexandre Petrescu <alexandre.petrescu@gmail.com> Mon, 20 March 2017 13:01 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAC8413146F for <v6ops@ietfa.amsl.com>; Mon, 20 Mar 2017 06:01:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.333
X-Spam-Level:
X-Spam-Status: No, score=-0.333 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, SPF_SOFTFAIL=0.665] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2hJd-BN_mhKD for <v6ops@ietfa.amsl.com>; Mon, 20 Mar 2017 06:01:16 -0700 (PDT)
Received: from cirse-smtp-out.extra.cea.fr (cirse-smtp-out.extra.cea.fr [132.167.192.148]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 559CB131464 for <v6ops@ietf.org>; Mon, 20 Mar 2017 06:01:15 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by cirse-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id v2KD1DEV046444 for <v6ops@ietf.org>; Mon, 20 Mar 2017 14:01:13 +0100
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 68EAD2048B7 for <v6ops@ietf.org>; Mon, 20 Mar 2017 14:01:13 +0100 (CET)
Received: from muguet2.intra.cea.fr (muguet2.intra.cea.fr [132.166.192.7]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 5E791202F7B for <v6ops@ietf.org>; Mon, 20 Mar 2017 14:01:13 +0100 (CET)
Received: from [10.8.34.184] (is227335.intra.cea.fr [10.8.34.184]) by muguet2.intra.cea.fr (8.15.2/8.15.2/CEAnet-Intranet-out-1.4) with ESMTP id v2KD1CRP012480 for <v6ops@ietf.org>; Mon, 20 Mar 2017 14:01:13 +0100
To: v6ops@ietf.org
References: <BLUPR0501MB2051704E825BCA03EEB09D79AE240@BLUPR0501MB2051.namprd05.prod.outlook.com> <c8c0f5be-28bb-ba31-16da-7fc7e3fccec0@gmail.com> <20170316082639.GF2367@Space.Net> <29F9E911-E637-456D-A930-3316FFD93C41@jisc.ac.uk> <27AE6A05-C742-44BF-98E8-BFCEC72316F2@employees.org> <EF0F4950-F238-4001-BA74-D9440524BEFA@gmail.com> <634a6a12-4d82-da33-6d1d-baae2e5b2891@gmail.com> <13DA8077-91C1-4B3F-9D67-3727F546D202@employees.org> <13194a4f-aeda-63b0-0293-6bc738b068f2@gmail.com> <4D60B43B-24F9-4701-800E-13CF32CD4769@employees.org> <8fc7f3e7-7155-f184-c028-a9f6da7e97db@gmail.com> <CAKD1Yr0DgYyRu_sj05WoX8d5jf3xPwj5neQV1n+vCo02j4UPVw@mail.gmail.com> <EB445B5D-98DC-4C40-90E5-3499E91C49DE@eircom.net>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <c85a1d11-3875-27f0-24d7-650c94c5cc05@gmail.com>
Date: Mon, 20 Mar 2017 14:01:01 +0100
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <EB445B5D-98DC-4C40-90E5-3499E91C49DE@eircom.net>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/N1Yqef6jZ6AxJ5n4yI9TgyECk4Q>
Subject: Re: [v6ops] WGLC: draft-ietf-v6ops-unique-ipv6-prefix-per-host-02 - multiple prefixes per device
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2017 13:01:23 -0000

Le 20/03/2017 à 12:46, Ross Chandler a écrit :
>
>> On 20 Mar 2017, at 09:28, Lorenzo Colitti <lorenzo@google.com>
>> wrote:
>>
>> Given that this is an operational draft, then I would suggest an
>> applicability statement: state that DHCPv6 PD is better, but also
>> state that best *current* practice is to provide a /64 via RA,
>> because currently very few hosts have DHCPv6 PD clients and
>> providing PD on the network side is not going to help the vast
>> majority of clients.
>>
>> Using shared links on public deployments with untrusted hosts has
>> all sorts of security and scalability issues (ND spoofing, DAD
>> spoofing, ND cache exhaustion attacks, etc.) /64 to the host is
>> just a much better solution.
>
>
>
> It might also be worth noting in the draft how 3GPP TS.23401
> 5.3.1.2.6  says prefix shorter than /64 assignment to UEs should
> work.

A-ha!

> "Optionally a single network prefix shorter than the default /64
> prefix may be assigned to a PDN connection. In this case, the /64
> default prefix used for IPv6 stateless autoconfiguration will be
> allocated from this network prefix; the remaining address space from
>  the network prefix can be delegated to the PDN connection using
> prefix delegation after the default bearer establishment and IPv6
> prefix allocation via IPv6 stateless address autoconfiguration as
> defined in clause 5.3.1.2.2.”
>
> “The UE uses DHCPv6 to request additional IPv6 prefixes (i.e.
> prefixes in addition to the default prefix) from the PDN GW after
> completing stateless IPv6 address autoconfiguration procedures.”

This seems to indicate that the PDN GW plays both a role of
DHCPv6-PD Requesting Router aka DHCPv6 Client (when it gets "assigned" a
shorter-than-64 prefix) _and_ the role of
DHCPv6-PD Delegating Router aka DHCPv6 Server (when it delegates
additional IPv6 prefixes to the UE).

This is a little bit awkward for setting up routing.

It would be simpler if the PDN GW were a DHCPv6 Relay.

Has it been considered to make the PDN GW a DHCPv6 Relay?

> Having a single contiguous prefix is allowed for by specifying the
> minor extra detail of prefix length in CDRs.

It makes sense to have a single contiguous prefix, in some cases.

It could also make sense to set an entire /47 to that PDN GW, and run a
DHCPv6 Server on PDN GWs and nowhere else.

It comes down to these two non-awkward options: either set a DHCPv6
Server in each PDN GW, or a single DHCPv6 Server deeper in the core
accompanied by many DHCPv6 Relays in each PDN GW.

Alex

>
> Ross
>
>
>
> _______________________________________________ v6ops mailing list
> v6ops@ietf.org https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email