IETF Logo Mail Archive

Re: [v6ops] New Version Notification for draft-yourtchenko-ra-dhcpv6-comparison-00.txt (fwd)

Lorenzo Colitti <lorenzo@google.com> Sun, 12 January 2014 01:08 UTC

Return-Path: <lorenzo@google.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76C571AD944 for <v6ops@ietfa.amsl.com>; Sat, 11 Jan 2014 17:08:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.916
X-Spam-Level:
X-Spam-Status: No, score=-1.916 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.538, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UfjW75pGD03g for <v6ops@ietfa.amsl.com>; Sat, 11 Jan 2014 17:07:58 -0800 (PST)
Received: from mail-ie0-x22f.google.com (mail-ie0-x22f.google.com [IPv6:2607:f8b0:4001:c03::22f]) by ietfa.amsl.com (Postfix) with ESMTP id D4FD21A1F7B for <v6ops@ietf.org>; Sat, 11 Jan 2014 17:07:58 -0800 (PST)
Received: by mail-ie0-f175.google.com with SMTP id tp5so836096ieb.20 for <v6ops@ietf.org>; Sat, 11 Jan 2014 17:07:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=0KaGPlFwasqa/k8rrlYVXD3Il8uzx90dLuauySgquKc=; b=DPhavXNcrRphJGRD8h4nk5kIXIJ+jE5IeVHpIL4znry3P6ZtHiJ+DNK9yMRErpQ5aI ajdy6ns9VS3i+nI9cZiGuDkhF+neuQ+XtdpuWnkE4ZbpTQZlCsvjfrWsDFqmkCtDvqpB yAJa+2rx0yLBdMl32tcUzQfDagrtZEh27PMdJ1W/z6SJe7wNzrWnHHPaCUceJZD6JbeF oCE21XV1vgDnduvU3lfZqGDms0khMz3K13o4V559Hqd37YN/9UQ4iDDFuetD+fJH3J0H V9aCUY//YJNuNb916R9Id4LcjOVR3aKcJFfRHvdnzMI3UAhgU2aD07Q+wxL2OPxsN0sS vPdw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=0KaGPlFwasqa/k8rrlYVXD3Il8uzx90dLuauySgquKc=; b=BLgjnXSZekqnKHS+XLX6ltABCKGoZHkF1Q8V/iYJW1tSlOaAqZY0xw3BhJDL9YURFG ar/FeUvSfd1K4RDxIlSicK31OTb/Q9fZc4MUVO7gsul6hE1dvNx5MZ0Mr5iO1A6MWI/R OFVS+ZUBTbpenDbuWNrUnz6yjzKGGTE+BFApv9omHSKBVIuKQeFhq0LhYqtvLv8LL7nb yLX46IU26Ns6Xb81+CTo5psjUAyO1qPUym6cv8SWzzgXeEmWFWxmp8njEcYpmX8nqSue ytkWBobqM3Hb+mQawegOlxdrIosthpfwFttkq3mIORfsCUodtjNTNsIvfhSQ5BKGg6WW Ky2A==
X-Gm-Message-State: ALoCoQlh7TMb+D+j1mhujt8we7bwIItp+llx6/2A2xSMZ1K20PG5FP1KN4EVlszxeRFN/PiC2L1eVb6prwYYM/OfYOjqB4flRgvPqirA9oMOXryzvjzvfY9r2YqPSBjATkSYofcAdlNTFJTDglkoL+Kw5GB/G216SVWhKiGkNx+x5ZF+SXvJPFW+vMwunbV4DJVTNoUDixZH
X-Received: by 10.50.61.101 with SMTP id o5mr11670971igr.31.1389488868105; Sat, 11 Jan 2014 17:07:48 -0800 (PST)
MIME-Version: 1.0
Received: by 10.64.7.36 with HTTP; Sat, 11 Jan 2014 17:07:28 -0800 (PST)
In-Reply-To: <52D193E7.7060403@foobar.org>
References: <CAEmG1=rRYwJaZp3qYF47=263jFp+BLpF3H6PuS8+Fd6qinMT3g@mail.gmail.com> <CAKD1Yr3MQSo62ELPngfVtD0JuLoKeec-yzN55gJc8hiAYifYwg@mail.gmail.com> <52D193E7.7060403@foobar.org>
From: Lorenzo Colitti <lorenzo@google.com>
Date: Sun, 12 Jan 2014 10:07:28 +0900
Message-ID: <CAKD1Yr3TMaFi6ZW+s3uggqpRZDdz=W8_8Hy219mL=1qPDC7dZg@mail.gmail.com>
To: Nick Hilliard <nick@foobar.org>
Content-Type: multipart/alternative; boundary="001a113603506744ef04efbb96f8"
Cc: "v6ops@ietf.org" <v6ops@ietf.org>
Subject: Re: [v6ops] New Version Notification for draft-yourtchenko-ra-dhcpv6-comparison-00.txt (fwd)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 12 Jan 2014 01:08:00 -0000

On Sun, Jan 12, 2014 at 3:56 AM, Nick Hilliard <nick@foobar.org> wrote:

> Matt needs to run DHCPv6 anyway,


Because... ? If Matt works for the same billion-dollar enterprise he worked
for a while ago, then he runs a single-tenant datacenter, where it's
perfectly reasonable to configure the hosts via other protocols than DHCPv6.


> it requires the routers to maintain a pile of RADIUS state


Nope: RS in, RADIUS request out, RADIUS reply in, RA out. No state.


> which they don't need to do, opens them up to DoS attacks (requests from
> multiple v6 addresses),


Which they have to in DHCPv6, too - anyone on the link can send them a
request.


> Whether you want to refer to this as "insane" is of course your own
> choice, but I am glad that you have at least some appreciation that this
> suggestion hails from the Heath Robinson school of network design.
>

I don't know how you can say that, given that the number of packets is the
same:

In DHCPv6, a multicast solicit request gets sent. The router receives it
and sends a request to a server, the server sends an answer back to the
router, and the router relays it to the host.

In this scheme, a multicast RS gets sent. The router receives it and sends
a RADIUS request to the server, the server sends an answer back to the
router, and the router sends an RA to the host.

Regardless of that - it seems to me that in a single-tenant architecture,
ECMP over multiple RAs is a much better solution, and the only reason that
Matt has this design in the first place is that *you can't do that in
DHCPv4*.

v2.23.0 | Report a Bug | By Email