IETF Logo Mail Archive

[v6ops] Re: DHCPv6 PD in a multi-prefix environment

David Farmer <farmer@umn.edu> Thu, 25 July 2024 16:37 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F3D6C1516EB for <v6ops@ietfa.amsl.com>; Thu, 25 Jul 2024 09:37:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.404
X-Spam-Level:
X-Spam-Status: No, score=-4.404 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cYPbiYdZ8Nvu for <v6ops@ietfa.amsl.com>; Thu, 25 Jul 2024 09:37:24 -0700 (PDT)
Received: from mta-p8.oit.umn.edu (mta-p8.oit.umn.edu [134.84.196.208]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 529F4C180B6E for <v6ops@ietf.org>; Thu, 25 Jul 2024 09:37:23 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mta-p8.oit.umn.edu (Postfix) with ESMTP id 4WVGkq2KbXz9vYVq for <v6ops@ietf.org>; Thu, 25 Jul 2024 16:37:23 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p8.oit.umn.edu ([127.0.0.1]) by localhost (mta-p8.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uVIZ1weVgwEM for <v6ops@ietf.org>; Thu, 25 Jul 2024 11:37:23 -0500 (CDT)
Received: from mail-ej1-f69.google.com (mail-ej1-f69.google.com [209.85.218.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p8.oit.umn.edu (Postfix) with ESMTPS id 4WVGkp5hqsz9vYVm for <v6ops@ietf.org>; Thu, 25 Jul 2024 11:37:22 -0500 (CDT)
DMARC-Filter: OpenDMARC Filter v1.3.2 mta-p8.oit.umn.edu 4WVGkp5hqsz9vYVm
DKIM-Filter: OpenDKIM Filter v2.11.0 mta-p8.oit.umn.edu 4WVGkp5hqsz9vYVm
Received: by mail-ej1-f69.google.com with SMTP id a640c23a62f3a-a7a8281dba5so49906866b.3 for <v6ops@ietf.org>; Thu, 25 Jul 2024 09:37:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; t=1721925441; x=1722530241; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Dc667LiU7v72jJXwbWnTTvqueuUkxEqZwHhtKdzQ4kE=; b=atqpLEdvvgqnUtGY58WKIWiKojNf/9M9aelRNHRoELk0EZFXskLAA7BSh2ceZ/MT2c mPb5qsSVE4cUXwhGDOOh/HiDjYZFPRpv2sQdeEEFBNwYAYro4f16L2G8AWvkiVkR7NLZ ShnI3iPPVOMWVfMvkGEf8lFVV0Wtx30jCIc8LOXJWmaDKk+zAbN2OM5v9qRxSWdMyBG/ JLDLJwlD68JtgdCcyJQB6OAPU4ADBw/Wm6QVbRBt4UGFRWTOLN31jPEzWAeQYCubbXyR SbfkoeiI9qXp3imY1XE7GEi09PzVBVuiee4PSc1rX5mQ6K4wNghxtwXx/ZwOZLBcGE5K pSdA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1721925441; x=1722530241; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Dc667LiU7v72jJXwbWnTTvqueuUkxEqZwHhtKdzQ4kE=; b=XbD22ExnjhZFnmnNfkm8JLSPNuYBPbhB+dDr5GUvz2WWZa7dRA6/yXBoHmM773sSFP +BWhLkxV0sSxQ8n+tmWdkpbA8TFT6DTLsvaVA77A7AncJ9XWg1YPLirYmUZaNvpgTo3X QLeMo6mNzv0auMHg+ainhgKiPEPEwzY0joOaT8LSV37DpUUY60DBHqTV8d3iJEny0/+u 21YI6rsQKvUWuEtHKfxrh+tpIp8xBMCDp3g3xE2Jq6dv03LynGALkSk9hTW0o3AbGV+8 HIr/eUuR1GnQiLA6lD4gWNKtdJ2btz10++f1g77AgFPAai1aEqQMKAxYZWfsdSsV1Pun jnZQ==
X-Forwarded-Encrypted: i=1; AJvYcCVuvzBnSLA8BfuP+j8QnMHCmYBhZf14AQrslOcjpFVdCgRQm70SEQ/tA4BDRo+01PXq3eM/hLNcqZtrk7LOnw==
X-Gm-Message-State: AOJu0YwpcXyZUdwzQBIajTONgbhmC4iEaA5FNf1WH+pMlv6M9ByAdh/X YVUmeBdgam/0ylAYg9IuQX+A26vxEIIQS9P8mNTuSE0RcHCon1nWxTfcDWpLqDbbeTqFsUKF/eI U9fVYyKHUfZVr/5ylhpIYvvvnOlNAs8pCcOh1Vsw1bW2Ngg6vg3OyMXjJZ8xyE6iY+7hKafcfFM roTYrOgkRdtP0emtXDwh/ELQ==
X-Received: by 2002:a17:907:94d6:b0:a7a:b43e:86d1 with SMTP id a640c23a62f3a-a7acb9a1537mr213096766b.66.1721925440859; Thu, 25 Jul 2024 09:37:20 -0700 (PDT)
X-Google-Smtp-Source: AGHT+IGgZKQR3EveI5bIya3GeYOwYDnDsD82K1Z53RrwCYuDpblcYhjEb5iocSS+cnsfac+zaWfYwdyOURs1/zw0F4Q=
X-Received: by 2002:a17:907:94d6:b0:a7a:b43e:86d1 with SMTP id a640c23a62f3a-a7acb9a1537mr213094866b.66.1721925440403; Thu, 25 Jul 2024 09:37:20 -0700 (PDT)
MIME-Version: 1.0
References: <CAJgLMKunZmnS6bOsTZrkHY2XAN5n4vRJCDC_SEmprb02Q46BiQ@mail.gmail.com> <F7BAF1E3-8CE1-45B5-AF0D-ACE22F04CCAA@employees.org> <CAJgLMKskKhmNQBzTCksTbd8Az8VjoGtbE+6vESzheE+RxF3U2w@mail.gmail.com> <CAN-Dau25ts3pgcXk0FmAaHg6u3XB+XixLPSDx539NZ-e-x+Tbw@mail.gmail.com> <CAJgLMKv2JHOmx3qWhdHVRFD5Dgafh=KnvfL1fziA5_N5mr5bSQ@mail.gmail.com>
In-Reply-To: <CAJgLMKv2JHOmx3qWhdHVRFD5Dgafh=KnvfL1fziA5_N5mr5bSQ@mail.gmail.com>
From: David Farmer <farmer@umn.edu>
Date: Thu, 25 Jul 2024 11:37:03 -0500
Message-ID: <CAN-Dau0f1MhepfhmvU2B7hEYhZ2zpQggQuN0PR=TPG0naZ8cAg@mail.gmail.com>
To: Timothy Winters <tim@qacafe.com>
Content-Type: multipart/alternative; boundary="000000000000348f3b061e150273"
Message-ID-Hash: XF6V7ULB7STQLMPNH22VNVF32HV4HXZK
X-Message-ID-Hash: XF6V7ULB7STQLMPNH22VNVF32HV4HXZK
X-MailFrom: farmer@umn.edu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: V6 Ops List <v6ops@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: DHCPv6 PD in a multi-prefix environment
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/WoReqYjHU9ZteaCczxgC4VDvY4E>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>

On Thu, Jul 25, 2024 at 11:16 AM Timothy Winters <tim@qacafe.com> wrote:

> Hi David,
> On Wed, Jul 24, 2024 at 9:38 AM David Farmer <farmer@umn.edu> wrote:
>
>> On Wed, Jul 24, 2024 at 10:23 AM Timothy Winters <tim@qacafe.com> wrote:
>>
>>> Hi Ole,
>>>
>>> I think we could add a Section to the draft for ULAs in particular.   If
>>> you have ULAs enabled on the Customer Edge Router, delegating makes sense.
>>>   It's a use case that I didn't include, but I can't think of a good reason
>>> not too.
>>>
>>> David,
>>>    The draft doesn't exclude ULAs it's just only applied to prefixes
>>> delegated on the WAN.
>>>
>>
>> Ok, now I need clarification.
>>
>> LPD-2 concerns the prefixes assigned to the CE router's local interfaces.
>> Do you expect LPD-2 to override RFC7084: L-2?
>>
> No
>
>> Does that mean that if you implement CPE-lan-pd, you no longer have ULA
>> on even the CE router's local interfaces?
>>
> No, I was poorly trying to communicate that the ULA prefixes aren't
> delegated beyond the LAN interface unless they were provisioned on the WAN
> interface.
>
>>
>> LPD-2:
>> The IPv6 CE Router MUST assign a prefix from the delegated prefix to each
>> of its LAN links. If not enough addresses are available the IPv6 CE Router
>> SHOULD log a system management error.
>>
>>
>> RFC7084: L-2:
>> The IPv6 CE router MUST assign a separate /64 from its delegated
>> prefix(es) (and ULA prefix if configured to provide ULA addressing) for
>> each of its LAN interfaces.
>>
>>
>> It is LPD-4 that speaks to what prefixes are advertised to DHCPv6-PD
>> Clients.
>>
>> LPD-4:
>> After LAN link prefix assignment, the IPv6 CE Router MUST make the
>> remaining IPv6 prefixes available to other routers via Prefix Delegation.
>>
>>
>> So, at the very least, we want a CE Router capable of PD distribution to
>> generate a ULA prefix and assign subnets to each local interface, as
>> RFC7084 does now. I'm with Ole, and if one is generated, the ULA prefix
>> should be advertised to DHCPv6 PD clients, along with the GUA prefix.
>>
> Yes, that isn't supported in the current model.  I will update it to
> support this.
>
>
>> That aligns with the design intent of ULA to be used "inside of a more
>> limited area such as a site." But then we need to include logic that if you
>> receive an upstream ULA prefix, you SHOULD use it and not generate another
>> new ULA prefix if you are cascading CE Routers. If you want to create
>> separate requirements for ULA, that will work.
>>
> This is interesting point that I will need to give some thought too.
>
> My first thought is if a Router is advertising ULAs, say ULA-1. Then gets
> IA_PD for a different ULA, ULA-2 does it invalidate the ULA-1 and disrupt
> any connections between clients?
>

I would wait to invalidate the prefix and treat it as a renumbering event.
You would prefer the new ULA-2 prefix and change ULA-1 to not preferred; it
can remain valid for a few hours and then be invalidated. The downstream CE
Router should treat ULA-2 as its newly configured ULA prefix, remembering
it and using it even if the upstream switch disappears.

I hope that helps!
-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.35.0 | Report a Bug | By Email | System Status