IETF Logo Mail Archive

Re: [v6ops] draft-troan-v6ops-extending-network-reqs

Ole Troan <otroan@employees.org> Tue, 10 October 2023 06:01 UTC

Return-Path: <otroan@employees.org>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C63EC14F721 for <v6ops@ietfa.amsl.com>; Mon, 9 Oct 2023 23:01:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=employees.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LYbSw4DyM-E5 for <v6ops@ietfa.amsl.com>; Mon, 9 Oct 2023 23:01:02 -0700 (PDT)
Received: from proxmox01.kjsl.com (proxmox01.kjsl.com [IPv6:2607:7c80:54:6::6]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B1468C14CF09 for <v6ops@ietf.org>; Mon, 9 Oct 2023 23:01:02 -0700 (PDT)
Received: from proxmox01.kjsl.com (localhost.localdomain [127.0.0.1]) by proxmox01.kjsl.com (Proxmox) with ESMTP id 10763E3538; Tue, 10 Oct 2023 06:01:02 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=employees.org; h=cc:cc:content-transfer-encoding:content-type:content-type :date:from:from:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to; s=prox2023; bh=jMYnlZgncck3uzzf DZ9RQp7zlUysQwXejV78oCnh3Z4=; b=HOtYEmbWaJ0GWKc0lcXfhJWxh/CV2o9U 6Pbm3V2NXMapaJQnLFpuLjPqxAHjJLTGt7kOTkbKZyd/wTfCW4/qFHn3NdbX5958 EMqM40C5lX0y0C9Yuxg+fi4nCsAXOQz+qNBW0xeFVt2Cq8F0PP/UZco6XCgmzssH DvKovB4XGy5tnzpFf7sWlHqp8pttfYvpvDfB/kNQJVBbd1yEXwtoe9gtHdKzNFMw 9X2TdY5eOj2D2FtUiWA0A9dSScSN/Ur3xWIRFAw9XCEn6+wuOFTQS7CU3F+niULb ljkGOWmG7BeQe7qfuSmf29uEPPMMnQhmlkxzpN+ULfJHEqhZmw97SA==
Received: from clarinet.employees.org (clarinet.employees.org [IPv6:2607:7c80:54:3::74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by proxmox01.kjsl.com (Proxmox) with ESMTPS id E2D01E307F; Tue, 10 Oct 2023 06:01:01 +0000 (UTC)
Received: from smtpclient.apple (unknown [IPv6:2001:4650:c3ed:37a:1107:65f5:fd7e:6b6d]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by clarinet.employees.org (Postfix) with ESMTPSA id 24F954E11D0A; Tue, 10 Oct 2023 06:01:00 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.100.2.1.4\))
From: Ole Troan <otroan@employees.org>
In-Reply-To: <CAKD1Yr1icNF=5j2sebUJFyGV=Mjuh=scLPJ05rL9Mjp_8oFcaA@mail.gmail.com>
Date: Tue, 10 Oct 2023 08:00:46 +0200
Cc: "v6ops@ietf.org list" <v6ops@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <2AAD988F-9F6C-414A-9905-024638BEF018@employees.org>
References: <E22E8DF1-2CDD-4937-B887-9D4C240313B6@employees.org> <CAKD1Yr1icNF=5j2sebUJFyGV=Mjuh=scLPJ05rL9Mjp_8oFcaA@mail.gmail.com>
To: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>
X-Mailer: Apple Mail (2.3774.100.2.1.4)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/TTmGPKY6XVqHOSX8W0gxbCVeH0s>
Subject: Re: [v6ops] draft-troan-v6ops-extending-network-reqs
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Oct 2023 06:01:07 -0000

> The draft completely ignores IPv6's ability to provide global end-to-end connectivity.

The document tries to describe how an extending node can achieve (some level) of connectivity “no matter what”. The intention is to provide an ordered list of mechanisms. Where of course NAPT66 is quite close to the bottom.

> 
> It does not cite it as a goal or, AFACIT, even mention it at all. This is a major problem I think. As an example, this line of thinking leads to the statement that the only mechanism that is guaranteed to work is NAPT66 because it's self-similar, and provides infinite extension. I wouldn't agree that it "works". Yes, it provides infinite extension. But it only provides infinite extension of partial connectivity. There's no advantage to doing that. We might as well provide the extended devices only with IPv4 connectivity. At least IPv4 stacks and applications are used to having to work around NAT, unlike IPv6 applications.

IPv6 applications also need to deal with NAT. That unfortunately happened with NAT64. And there are other use cases in IPv6 where some sort of identifier / locator split is required.

For some use cases NAPT66 is an acceptable tradeoff. It’s an operational choice.
It certainly gives good enough connectivity to set up a tunnel which a more transparent service can be provided over.

> I don't think we should publish anything about mechanisms that don't provide end-to-end connectivity, except maybe to discourage their use. They are great from a network operator perspective, but very painful for application developers.

I’d much rather we described it so we have some hope of deterministic behaviour from extending hosts.

> The draft tries to separate the mechanisms to extend the network from the mechanisms used to assign addresses. But I suspect that once we factor in the need (or even just the desire) to factor in end-to-end connectivity, those two can no longer be separated. For example: does DHCPv6 prefix delegation provide end to end connectivity? There is no way to answer that without knowing how addresses are assigned downstream. Delegating a /126 to a device that wants to share connectivity with two other devices does. Delegating it to a device that wants to share connectivity with 8 devices doesn't.
> 

Yes, we may not quite have found the right way of representing the various dimensions.
Which mechanism is used upstream is to independent of which mechanism is used to assign addresses, and also independent of how the networks is further extended.

That said, if we take a DHCPv6 PD network. There are some benefits of flat delegation. In that each level of extension asks for the individual links it needs numbered from a central DHCPv6 server, instead of a hierarchal delegation. When the flat model “stops”, some of these other mechanisms will have to come into play though.

Cheers,
Ole

v2.46.0 | Report a Bug | By Email | System Status