IETF Logo Mail Archive

Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt

Brian E Carpenter <brian.e.carpenter@gmail.com> Sat, 05 August 2017 20:16 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF247131F13 for <v6ops@ietfa.amsl.com>; Sat, 5 Aug 2017 13:16:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dGQfMNWREUDt for <v6ops@ietfa.amsl.com>; Sat, 5 Aug 2017 13:16:53 -0700 (PDT)
Received: from mail-pf0-x229.google.com (mail-pf0-x229.google.com [IPv6:2607:f8b0:400e:c00::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2AD89131EC1 for <v6ops@ietf.org>; Sat, 5 Aug 2017 13:16:49 -0700 (PDT)
Received: by mail-pf0-x229.google.com with SMTP id h68so5945575pfk.0 for <v6ops@ietf.org>; Sat, 05 Aug 2017 13:16:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:organization:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=VWOC1x6a/ThqzRoOO9Lxz/GEtSmddHnhXjdKEs7Igxo=; b=qmtVrb7eiTDv6g/uxITNv6M9DLMYIw02XPJgSo7JarfXJbmli542hkrsm+wefDSKV9 EpJx51+wxCgNmsXTnDrik7gmsie68zop+2QBct8rpHkWQtpf2EdlqEcl3hPnbu914T2J HvGonpbMFWlnuZMmxpGI5zbcfAqSsRUMN5MAsRLfdgqJe1HO/NHPWes6rlAnzpHYhrZB YPh2momTROzZz501cR5y1Kri6jUxNuwCOgHZPVsxyIldfNRtIKzSlkj6+KtZI66TeZHW nYvUss9MeltlFbvGgxF4YWx50j9F0ydqF/JA9yx+uNzLEqUW/ePQcXtqyAxs6aKRWAV4 mWcw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:organization :message-id:date:user-agent:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=VWOC1x6a/ThqzRoOO9Lxz/GEtSmddHnhXjdKEs7Igxo=; b=d4VXK9St3QUWBqAak8+OqoYC1mor8vFDb08gxNzLcmXAuGUxwsB6sin0WgHjnQoXnr GzIeZaXWPpO1sX2SRwSKnL7wkAdVcZZ+WIsk9sGR7c7olRxUDlZuGEb2I2Hs745Ul4kD +3YlFXkUpnvaEogZheXrJ0nVRyliLPKM8ROeX9DiqW4Ng+xx8ffYPvGn4Vda1EveuQpY o6VzmYazwn9gXQGDGXJcAEZfGm1U/Lkv/KxzcysfFQv/Ccu0SIKr04mlKUT8kxWEhLk7 PKDEQEEnaEt1ZwYvCMJDcsxng2DkMle/NztK6nV8ECpI+umYr9QsYaGxfVxGkShfX985 0/Rg==
X-Gm-Message-State: AIVw110DiUfjVbG9vtU5HzEdwRv28aq75Gl6ZMEhsakWHof9CTl3T65H jSFTK+izwbdW7Lrw
X-Received: by 10.99.180.78 with SMTP id n14mr6359747pgu.3.1501964208456; Sat, 05 Aug 2017 13:16:48 -0700 (PDT)
Received: from ?IPv6:2406:e007:521f:1:28cc:dc4c:9703:6781? ([2406:e007:521f:1:28cc:dc4c:9703:6781]) by smtp.gmail.com with ESMTPSA id y6sm7564978pgq.41.2017.08.05.13.16.45 for <v6ops@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 05 Aug 2017 13:16:47 -0700 (PDT)
To: v6ops list <v6ops@ietf.org>
References: <150148445751.17707.15424999122129322815@ietfa.amsl.com> <E6AC9174-3D6E-4FAD-B84B-B7E58FB149BC@gmail.com> <CAO42Z2xEs6RauD6Oo_NbqOh+FRVAu3NuveewSvRx7g1hS2-ToQ@mail.gmail.com> <94BC4E17-D490-4F50-9E99-2AAA081CD43C@gmail.com> <CAO42Z2zR_bWPqOHM7-RNsPX78np45UV=J67YD5gbpoCPUaLkAQ@mail.gmail.com> <FB14455C-F00E-49A4-936F-03BD44C4D42C@gmail.com> <CAO42Z2zLgw3cYapf=1y9pm4cWMZZ32DT2ryfPb6BGUFjCfmrMg@mail.gmail.com> <4939D55E-D37D-4551-9EB0-916FBACBC2BD@thehobsons.co.uk>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
Message-ID: <52f24bbd-8ac9-33d3-b291-2fdf5b25b95a@gmail.com>
Date: Sun, 06 Aug 2017 08:16:42 +1200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <4939D55E-D37D-4551-9EB0-916FBACBC2BD@thehobsons.co.uk>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/_I4oDWtNI0GVjuxD9GXvhzPS8po>
Subject: Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 05 Aug 2017 20:16:58 -0000

On 05/08/2017 21:58, Simon Hobson wrote:
> Mark Smith <markzzzsmith@gmail.com> wrote:
> 
>>> Is this prohibited by this document? Or is ‘/64’ mentioned in the document only an example?
>>
>> No. /64s as the subnet size as been the common edge subnet/IID
>> boundary for almost 20 years since RFC2373.
> 
>> Analysis of the 64-bit Boundary in IPv6 Addressing
>> https://tools.ietf.org/rfc/rfc7421.txt

Which says:
"The first purpose of this document is to explain the
advantages of the fixed IID length.  Its second purpose is to
analyze, in some detail, the effects of hypothetically varying the
IID length."

I suggest that everybody reads the whole RFC, which does indeed
cover those points. The historical reasons why we chose 64 are
somewhat irrelevant today.

    Brian
 
> 
> I'll make an observation that one of the primary reasons given is the now deprecated EUI64 addressing model for SLAAC.
> Also there is mention of "but there sooooo many addresses, we can't possibly run out". I don't have a crystal ball, in much the same way that all those decades ago, those designing IPv4 didn't have a crystal ball.
> 
> So it appears to me that the basis of a fixed /64 comes down to :
> 
> 1) A now deprecated addressing method requires it
> 2) Based on what we know now we can't see things ever running out
> 3) If any but /64 is used, then some things (implementations) may break.
> 
> So isn't the logical route to say that all implementations must support arbitrary prefix lengths - that avoids breakage when (and I suspect in the real world it will be when, rather than if) they meet something other than /64 ?
> Something that handles arbitrary prefix lengths can handle 64+64, the reverse isn't true if it expects 64+64 and is thrown something else.
> 
> That and removing references to fixed 64 bit boundaries where they aren't necessary. Noting that allowing plenty of space for randomisation for security by obscurity isn't a technical limitation as such - it's merely a best practice.
> 
> And finally. There has been mention in here in the past about not preventing flexibility in the future with things no-one has yet thought of. Yes the numbers are huge, but as I said, I don't have a crystal ball.
> 
> And the argument about not having to work out prefixes/masks/etc is only partly true - and assumes that no-one would ever have to work with anything but /64. It could well lead to people who CANNOT work with anything else, in the same way that many people cannot work with anything but /24 in the IPv4 world.
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email