IETF Logo Mail Archive

Re: [v6ops] A brief intro-//RE: new draft: draft-ietf-v6ops-ula-usage-recommendations

Brian E Carpenter <brian.e.carpenter@gmail.com> Tue, 21 May 2013 20:21 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37EE911E80B8 for <v6ops@ietfa.amsl.com>; Tue, 21 May 2013 13:21:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.185
X-Spam-Level:
X-Spam-Status: No, score=-102.185 tagged_above=-999 required=5 tests=[AWL=-0.786, BAYES_00=-2.599, J_CHICKENPOX_13=0.6, J_CHICKENPOX_32=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lx1t24cs2ro4 for <v6ops@ietfa.amsl.com>; Tue, 21 May 2013 13:21:17 -0700 (PDT)
Received: from mail-pd0-f176.google.com (mail-pd0-f176.google.com [209.85.192.176]) by ietfa.amsl.com (Postfix) with ESMTP id 4250F21F95EF for <v6ops@ietf.org>; Tue, 21 May 2013 13:21:17 -0700 (PDT)
Received: by mail-pd0-f176.google.com with SMTP id r11so980753pdi.35 for <v6ops@ietf.org>; Tue, 21 May 2013 13:21:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=AeNeb0pZlO1UrjN/rVi/30vmHi6dGHah93OQ+/Xz8xY=; b=m2rmxAabIpfzQvwhJ2C95flzYSdbm0K+OpRMnn2Q7d0K/RnyeKnhiXE/gkNYWwtSPZ usyLGNJcnyKEm84ViZefeuVBdllw2i+yBzmLrrLUyXsxxL9txG+Fqlxl9ENfP83dJK6D Aeyk3DadCDb5QW9RgCPVSQf5x7Ni2k64+SXn4D5dXEbNJ6OdbJBZydJiLmgGyOQBLYta uz8n6IBebWj4UAv6YK7ELFpjsJ/6DFYzjPUxDDwvmTg+JyUHwYMpEgsBt135eoDAhUCD VTdFldWidQaZP9nJPSJWLJ3GTvaN8j0Qfj+EtVQbxmNRJ3WLCXfI39v+qk8OWIn0o3D7 ZqNg==
X-Received: by 10.66.20.234 with SMTP id q10mr4942081pae.201.1369167677006; Tue, 21 May 2013 13:21:17 -0700 (PDT)
Received: from [192.168.1.4] (103.201.252.27.dyn.cust.vf.net.nz. [27.252.201.103]) by mx.google.com with ESMTPSA id j10sm3964013pbh.23.2013.05.21.13.21.12 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 21 May 2013 13:21:15 -0700 (PDT)
Message-ID: <519BD73B.50200@gmail.com>
Date: Wed, 22 May 2013 08:21:15 +1200
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Owen DeLong <owen@delong.com>
References: <201305181245.r4ICj0i04824@ftpeng-update.cisco.com> <8AE0F17B87264D4CAC7DE0AA6C406F453D722B0E@nkgeml506-mbx.china.huawei.com> <CAKD1Yr1UPt6WcAeDbuZzP6Cf5EThy7pGWuu8i6WsJXMNoaCAgQ@mail.gmail.com> <8AE0F17B87264D4CAC7DE0AA6C406F453D726A66@nkgeml506-mbx.china.huawei.com> <719D38CF-F3CD-4BB3-85DC-B7811AC81891@delong.com>
In-Reply-To: <719D38CF-F3CD-4BB3-85DC-B7811AC81891@delong.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Cc: "v6ops@ietf.org" <v6ops@ietf.org>, "draft-ietf-v6ops-ula-usage-recommendations@tools.ietf.org" <draft-ietf-v6ops-ula-usage-recommendations@tools.ietf.org>
Subject: Re: [v6ops] A brief intro-//RE: new draft: draft-ietf-v6ops-ula-usage-recommendations
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 May 2013 20:21:22 -0000

On 21/05/2013 23:33, Owen DeLong wrote:
> On May 21, 2013, at 12:13 AM, Liubing (Leo) <leo.liubing@huawei.com> wrote:
> 
>> Hi, Lorenzo
>>  
>> Thanks for your careful review and comments. Please see replies inline.
>>  
>> From: Lorenzo Colitti [mailto:lorenzo@google.com] 
>> Sent: Monday, May 20, 2013 3:50 PM
>> To: Liubing (Leo)
>> Cc: v6ops@ietf.org; draft-ietf-v6ops-ula-usage-recommendations@tools.ietf.org
>> Subject: Re: [v6ops] A brief intro-//RE: new draft: draft-ietf-v6ops-ula-usage-recommendations
>>  
>> Bing,
>>  
>> a few comments:
>>  
>> I. "Notice that, as described in [RFC4864], in practice, applications may treat ULAs like global-scope addresses, but address selection algorithms may need to distinguish between ULAs and ordinary GUA Global-scope Unicast Address) to ensure bidirectional communications."
>>  
>> 1. "In practice, applications may treat ULAs like global-scope addresses" is incorrect. ULAs are global-scope addresses, and we should state that they are. 
>> [Bing] They are designed intended to be globally unique, but they are clearly defined as “local IPv6 addresses”. And the sentence actually comes from RFC4193, see section 1.
>>  
> 
> There is a subtlety to the language here that is important.
> 
> SCOPE has a specific meaning WRT IPv6 addresses. While ULAs are "Local" USE addresses, they are not Local SCOPE addresses. They are most definitely global scope addresses as that is meant in IPv6.

That's correct, of course. The underlying problem here is that the
notion of concentric circles of scope that was originally described
for IPv6 is simply broken. We can't fix that in the context of
describing ULA usage scenarios, so let's not try.

(For further thoughts on this see draft-carpenter-referral-ps-02
or even draft-carpenter-behave-referral-object-01.)

   Brian
> I don't see a reference to "local scope" in RFC 4193 section 1. However, even if there is, we should not duplicate that error here.
> 
> 
>> Suggested replacement text: "Note that, while ULAs are global-scope addresses, they do not have global reachability. Therefore, address selection algorithms distinguish between ULAs and GUA (Global Unicast Address) [RFC 6724]".
>> [Bing] As said above, I think the sentence would be good if delete “while ULAs are global-scope addresses”.
> 
> Why? ULAs ARE global scope addresses. While they are not globally routed, they are of global scope. Currently there are only two defined scopes in IPv6… { Global , Link-Local }. There was a third scope (Site-Local), but those were deprecated prior to the creation of ULA.
> 
>> IV. "Alternatively, it could be regenerated regularly, if desired for some reason." Can it? How regularly? If it is regenerated your ULA once a second, how soon before collisions become likely? What about 100, 1000 or 1000000 times per second? You probably want to qualify "regularly".
>> [Bing] Generally, “regularly regenerated” on-demand. Say, upper layer wants a new ULA for a new session id. I think maybe we don’t need to worry about the regeneration rate that might increase the collision probability significantly.  That might only concern in a scientific research of collision.
> 
> That really depends on whether or not there is a bound on regeneration rate. I'll leave out the obvious questions about dubious nature of rapid regeneration.
> 
>> V. "the network needs ULA as the on-demand and stable addressing which doesn't need much code to support address assignment mechanisms like DHCP or ND." I don't think this makes sense. Are you saying such nodes only support manual address assignment? How is it possible that a sensor doesn't support automatic address assignment due to lack of resources, but has enough resources to implement a UI for manual address assignment?
>> [Bing] The lack of resources mainly regarding the network environment, there might not be a comprehensive network provisioning environment for the nodes. If they can be pre-configured with ULA, say, hard-coded in the embedded system, like the MAC addresses in every single NIC or self-generating a ULA, then they could make ad-hoc networking without address provisioning procedures.
>> And if they need to connect outside, then just add a NPTv6 gateway and make it as the default gateway. This is to achieve a minimal network environment/management burden.
> 
> I'm sorry, but this is just silly. SLAAC is extremely lightweight in its minimal implementation and if they self-generate a ULA, your "ad-hoc" network is going to need something (probably heavier) to allow the nodes to find each other. Indeed, once you implement enough of the ND process for two nodes to find each other even for link-local addressing, there's really not much left to complete the minimal implementation of SLAAC. I think this is an extremely poor use case and not one which should be deemed acceptable. Sensors are getting smarter and more capable. Existing sensors can and do (in many cases) implement SLAAC.
> 
>> VI. "there always be some argument that in practice the ULA+PA makes terrible operational complexity. But it is not a ULA-specific problem; the multiple- addresses-per-interface is an important feature of IPv6 protocol. Running multiple prefixes in IPv6 might be very common, and we need to adapt this new operational model than that in IPv4." This text does not make sense. Just because having multiple global-scope addresses is a feature of IPv6 doesn't mean that you must have multiple global-scope addresses. For example, you can use only global addresses and have no routing complexity.
>> [Bing] The ULA+PA operational complexity contains two aspect.
>> One is the common issue as described in the texts, running multiple prefixes in a network is new to the traditional IPv4 model, the admins need to be familiar with it in the future.
> 
> This is only a minor complexity and, frankly, is not new. It happens in IPv4. If both prefixes are, in fact, globally routable and/or have similar reachability profiles, then there is usually no issue.
> 
> What is unique to ULA is that it is a globally scoped address without global reachability. Now software must account for the fact that these global scope addresses are special and have an undefined limitation compared to other global scope addresses.
> 
> (One of the many reasons I think ULA is of dubious value at best).
> 
>> The other is about the address selection, without the new rules in RFC6724, it might be problematic to run ULA+PA, when we discuss this in 6renum, Eric Vyncke reported they had a terrible experience of using this mode several years ago. In last IETF, we briefly discussed this issue again,  and we thought it was probably because of the old address selection algorithms that didn’t distinguish ULA from GUA.
> 
> Right… As near as I can tell, this statement pretty much makes Lorenzo's point.
> 
> Owen
> 
> 
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email