Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Enabling DHCPv6 in the enterprise networks by default, if DHCPv6 is supported on the router
Timothy Winters <twinters@iol.unh.edu> Wed, 05 September 2018 14:14 UTC
Return-Path: <twinters@iol.unh.edu>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2591A130E6E for <v6ops@ietfa.amsl.com>; Wed, 5 Sep 2018 07:14:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iol.unh.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fw3MdCv2rmyV for <v6ops@ietfa.amsl.com>; Wed, 5 Sep 2018 07:14:15 -0700 (PDT)
Received: from mail-wr1-x42c.google.com (mail-wr1-x42c.google.com [IPv6:2a00:1450:4864:20::42c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3301130E85 for <v6ops@ietf.org>; Wed, 5 Sep 2018 07:14:14 -0700 (PDT)
Received: by mail-wr1-x42c.google.com with SMTP id v90-v6so7889004wrc.0 for <v6ops@ietf.org>; Wed, 05 Sep 2018 07:14:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iol.unh.edu; s=unh-iol; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=19YmBzCj+4dl9kKVsTBQzlw29TogzjjSYvSzgs1H8KQ=; b=KiJf2oChGFrsBY2cA6rpzGo6WNqUY0RzP/6OlimfpHK+uJPQ/K2jZ3JcVq90Pl5m3E 5vQ8/hd9/IIigYMqSI0VSWW/CzcfcNDnDKaFL8DqniVnBEp5+W0s+zzeTwK636jbc2mQ 2Gb8AJzFK2ceydxakSmrmMMYlBB9JCiMVqA5M=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=19YmBzCj+4dl9kKVsTBQzlw29TogzjjSYvSzgs1H8KQ=; b=aynak9iO4rioy4tXaPBTxAuh7v5D5XCygpp+SFgt9kbPJ8dDtIATOtgaTBszDfPafm CjzUoGboiZUibqIhigMu2sSTg5wWlcdyzZaqpIvaCS6odBVD9B2BaEmyl65fk9Qr/lpL q1Mv5jK3nEPttWHtD6zy57E4CL9VxH+zadlajYMcMGomMG5mzowVaOdopJwyBNW2FTdC p79d+bg9v/+xNwbBFo7p3Wp81S3ZTzBviu/gv84h/aMnhEf2FoIy7/xNbZqiiblG+7NY 81abd4Z2IOiB+F5Lrq8FVlB09nVUCOW3IxsLrB1geA2vUepY7WOU6VCJbnVNehGIbbu3 qPOg==
X-Gm-Message-State: APzg51B1MCAUkfyjq0snBaeDRh4bHAiUmGA+mGVfNd2Uzta0rOADpCR7 4geQyMwR5FZy00ooKXD8RyXP5HUuiuOz9xh+R+q7HA==
X-Google-Smtp-Source: ANB0VdYgTbrQEKKWfJwZZkrElpLcJDv1FEFqGgGxRBLJTz1pebmIfJ5FkLDU0qN9O5tSAcBbSn5LKZSHeDHBBOWDR60=
X-Received: by 2002:adf:b2b5:: with SMTP id g50-v6mr25432161wrd.218.1536156853185; Wed, 05 Sep 2018 07:14:13 -0700 (PDT)
MIME-Version: 1.0
References: <9142206A0C5BF24CB22755C8EC422E459CB4C5DB@AZ-US1EXMB03.global.avaya.com> <8DB1AF29-8BBA-4BB1-A039-CCF806B326D2@delong.com>
In-Reply-To: <8DB1AF29-8BBA-4BB1-A039-CCF806B326D2@delong.com>
From: Timothy Winters <twinters@iol.unh.edu>
Date: Wed, 05 Sep 2018 10:14:00 -0400
Message-ID: <CAOSSMjU83++zqMp8bwmoZExKfxn1Eow3-WWkd3E80oToY1cPZQ@mail.gmail.com>
To: owen@delong.com
Cc: dmudric@avaya.com, Simon Hobson <linux@thehobsons.co.uk>, IPv6 Operations <v6ops@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008dde6805752063e6"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/PQznjUXc0HJUsNPVZUzAj9jt5uc>
Subject: Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Enabling DHCPv6 in the enterprise networks by default, if DHCPv6 is supported on the router
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Sep 2018 14:14:27 -0000
I would also mention that IPv6 nodes requirements ( https://tools.ietf.org/html/draft-ietf-6man-rfc6434-bis-09) updates have DHCPv6 is a SHOULD in all IPv6 nodes. ~Tim On Wed, Sep 5, 2018 at 10:09 AM Owen DeLong <owen@delong.com> wrote: > You are continuing to confuse implementation and operation requirements. > You are also ignoring reality... > > There’s no way for a router to know whether it is deployed in an > enterprise environment or not at time of manufacture. > > Further, I don’t believe for one second that ALL enterprises will require > or use DHCPv6. Perhaps most, but certainly not all. > > The current situation is that implementation of DHCPv6 in the protocol > stack on ANY device is optional. There is a proposal to make it mandatory > on routers only. There is no proposal that I know of to make it mandatory > on hosts. Any such proposal would be a major change to IPv6 architecture > that I am certain would face substantial opposition. > > Therefore there is no conflict between the ID you referenced and the RFC > you referenced. Your proposed change to the RFC would be nonsensical absent > an across the board requirement for DHCPv6 implementation in all protocol > stacks. That’s not likely to happen, nor is DHCPv6 support in Android based > phones. > > Since a router can’t know at manufacture time whether it is deployed in an > enterprise or not, and since it is not universally true that enterprises > will want DHCPv6, it is impossible to set M and O defaults in the manner > you propose. > > The good news is that it’s also utterly unnecessary to do so. > > Owen > > > > On Sep 5, 2018, at 06:36, Mudric, Dusan (Dusan) <dmudric@avaya.com> > wrote: > > > > Hi Barbara, > > > >> As for the millions of IPv4 phones -- these millions of phones are not > >> connecting directly to DSL/DOCSIS/PON/3GPP access networks. They are not > >> connecting to (unmanaged) home networks and getting configuration by > >> DHCPv4. They are not connecting directly to data center networks. > They're > >> definitely not connecting directly to core network routers. They *are* > >> connecting to enterprise networks. Suggesting that all routers, in > every use > >> case and every scenario, must always support DHCPv6 server and provide > >> stateless configuration, just because there exist some devices in > specific use > >> cases that require configuration info from DHCP, isn't reasonable. > >> > >> If you want this specifically for enterprise routers, then perhaps you > should > >> be commenting on draft-ietf-v6ops-ipv6rtr-reqs. Note that this draft > does > >> require DHCPv6 support (Section 3.3, first bullet) for the routers it > describes > >> (see Section 1.3 on Use and Applicability). > > > > Good point. I am talking about the phones in enterprise environments. > > > > It is not clear what the current consensus is: > > https://tools.ietf.org/html/draft-ietf-v6ops-ipv6rtr-reqs-04#section-3.3 > : > > > > DHCPv6 is mandatory: > > o [I-D.ietf-dhc-rfc3315bis]: Dynamic Configuration Protocol for IPv6 > > must be supported. > > > > or DHCPv6 is optional: > > o [RFC3646]: DNS Configuration options for Dynamic Host > > Configuration Protocol for IPv6 (DHCPv6) if DHCPv6 is supported. > > Should the last sentence be 'if DHCPv6 is enabled'? > > > > May be 'M' and 'O' can be TRUE by default in the enterprise networks, if > DHCPv6 is enabled. That way the scope of enabled 'M' and 'O' is limited to > the enterprises that configure their phones using DHCPv6. Since SLAAC must > be enabled and the phones can create global SLAAC addresses, the phone > applications can be autoconfigured by enabling 'O' bit only (default for > 'M' stays FALSE). If enterprises don't use DHCPv6 for autoconfiguration > (DHCPv6 is disabled), 'O' bit should be set to FALSE. > > > > Thanks, > > Dusan. > > > >> -----Original Message----- > >> From: STARK, BARBARA H <bs7652@att.com> > >> Sent: Tuesday, September 04, 2018 4:35 PM > >> To: Mudric, Dusan (Dusan) <dmudric@avaya.com>; Simon Hobson > >> <linux@thehobsons.co.uk>; v6ops@ietf.org > >> Subject: RE: [v6ops] Thinking about problems in IPv6-only networks > >> > >>>> It's arguable that a host using DHCP when the RAs say not to is in the > >>> wrong. > >>> > >>> Agree. But if 'O' bit is not supported on hosts, hosts should have > DHCPv6 > >>> enabled by default. There are millions of IPv4 phones that use DHCPv4 > for > >>> autoconfiguration (for phone applications), for example. When they > >> migrate > >>> to IPv6, they should get the configuration from DHCPv6 server. DHCPv6 > >>> should not be disabled by default when migrating those phone to IPv6. > >> That > >>> is why I think 'O' should be TRUE by default, so the phone > applications can > >> be > >>> automatically configured by DHCPv6 server. By default, phones can use > >>> SLAAC to get the addresses. > >> > >> Hi Dusan, > >> > >> There are millions of hosts with no DHCPv6 support. This is the case > and will > >> continue to be the case. Hosts that do not support DHCPv6 client will > >> *never* have DHCPv6 enabled by default, or otherwise. Networks that are > >> primarily intended for these sorts of devices will rarely (if ever) > have DHCPv6 > >> enabled. > >> > >> As for the millions of IPv4 phones -- these millions of phones are not > >> connecting directly to DSL/DOCSIS/PON/3GPP access networks. They are not > >> connecting to (unmanaged) home networks and getting configuration by > >> DHCPv4. They are not connecting directly to data center networks. > They're > >> definitely not connecting directly to core network routers. They *are* > >> connecting to enterprise networks. Suggesting that all routers, in > every use > >> case and every scenario, must always support DHCPv6 server and provide > >> stateless configuration, just because there exist some devices in > specific use > >> cases that require configuration info from DHCP, isn't reasonable. > >> > >> If you want this specifically for enterprise routers, then perhaps you > should > >> be commenting on draft-ietf-v6ops-ipv6rtr-reqs. Note that this draft > does > >> require DHCPv6 support (Section 3.3, first bullet) for the routers it > describes > >> (see Section 1.3 on Use and Applicability). > >> Barbara > >> > >> I > > _______________________________________________ > > v6ops mailing list > > v6ops@ietf.org > > https://www.ietf.org/mailman/listinfo/v6ops > > _______________________________________________ > v6ops mailing list > v6ops@ietf.org > https://www.ietf.org/mailman/listinfo/v6ops >
- [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Enablin… Mudric, Dusan (Dusan)
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… Owen DeLong
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… Timothy Winters
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… STARK, BARBARA H
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… Lorenzo Colitti
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… Tim Chown
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… Brian E Carpenter
- Re: [v6ops] draft-ietf-v6ops-ipv6rtr-reqs-04: Ena… David Farmer