IETF Logo Mail Archive

Re: [v6ops] I-D Action: draft-ietf-v6ops-ipv6rtr-reqs-02.txt

Mark Andrews <marka@isc.org> Mon, 05 March 2018 06:35 UTC

Return-Path: <marka@isc.org>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2EEFC126FB3; Sun, 4 Mar 2018 22:35:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.91
X-Spam-Level:
X-Spam-Status: No, score=-6.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4gg89qocY8Uq; Sun, 4 Mar 2018 22:35:28 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9CECE126D0C; Sun, 4 Mar 2018 22:35:28 -0800 (PST)
Received: from zmx1.isc.org (zmx1.isc.org [149.20.0.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.pao1.isc.org (Postfix) with ESMTPS id DF4C23AB03F; Mon, 5 Mar 2018 06:35:25 +0000 (UTC)
Received: from zmx1.isc.org (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTPS id CA7DA160069; Mon, 5 Mar 2018 06:35:25 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1]) by zmx1.isc.org (Postfix) with ESMTP id B153A160068; Mon, 5 Mar 2018 06:35:25 +0000 (UTC)
Received: from zmx1.isc.org ([127.0.0.1]) by localhost (zmx1.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id aDBJp1hfYZ7L; Mon, 5 Mar 2018 06:35:25 +0000 (UTC)
Received: from [172.30.42.66] (c27-253-115-14.carlnfd2.nsw.optusnet.com.au [27.253.115.14]) by zmx1.isc.org (Postfix) with ESMTPSA id AF315160064; Mon, 5 Mar 2018 06:35:24 +0000 (UTC)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
From: Mark Andrews <marka@isc.org>
In-Reply-To: <CAKD1Yr00qjz7z8VF5=WeZ+baBPxJfmnYVhvNqKn_m7gu9H2GTA@mail.gmail.com>
Date: Mon, 05 Mar 2018 17:35:22 +1100
Cc: internet-drafts <internet-drafts@ietf.org>, "v6ops@ietf.org WG" <v6ops@ietf.org>, i-d-announce@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <0E0957B6-FA65-4CB0-965F-832699118204@isc.org>
References: <152021615239.27925.6946415833371012617@ietfa.amsl.com> <CAKD1Yr00qjz7z8VF5=WeZ+baBPxJfmnYVhvNqKn_m7gu9H2GTA@mail.gmail.com>
To: Lorenzo Colitti <lorenzo@google.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/dLL3FSLS7QYNI4cPPdApJG2L5TE>
Subject: Re: [v6ops] I-D Action: draft-ietf-v6ops-ipv6rtr-reqs-02.txt
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Mar 2018 06:35:30 -0000

> On 5 Mar 2018, at 4:08 pm, Lorenzo Colitti <lorenzo@google.com> wrote:
> 
> On Mon, Mar 5, 2018 at 11:15 AM, <internet-drafts@ietf.org> wrote:
>         Title           : Requirements for IPv6 Routers
>         Authors         : Zaid Ali Kahn
>                           John Brzozowski
>                           Russ White
>         Filename        : draft-ietf-v6ops-ipv6rtr-reqs-02.txt
> 
> I continue to object to the one-size-fits all approach taken in the document. Here are two examples of how that leads to harmful outcomes.
> 
> Saying that mobile phones (which forward IPv6 packets when the user desires them to) should support YANG, SNMP, and syslog would just be ridiculous if it wasn't harmful (because it creates the potential for a security vulnerability - the more remote management code running on the device, the greater the risk of vulnerability).
> 
> Saying that mobile phones must support DHCPv6 is harmful, because:
> 	• If DHCPv6 is enabled, it's harmful to users for the reasons explained in https://www.ietf.org/mail-archive/web/v6ops/current/msg26286.html .

The phone can advertise itself as a DNS server.  It needs to do this anyway to properly service reverse DNS for the address ranges it is adverting in the RA.

> 	• If DHCPv6 is disabled, it's harmful to users because somebody wrote code for something that's never enabled.
> 	• I don't think there will ever be any other choices than the above two, since no popular OS will provide a configuration mechanism for the user to enable/disable DHCPv6 on the mobile hotspot. (If you don't agree with that assertion then consider: those OSes don't even allow the user to enable/disable IPv6. Why would they allow the user to enable/disable DHCPv6?)

Well most home routers for last 10 years didn’t have a option to disable IPv4 but had options to enable/disable DHCP.

> Authors: the last time v6ops dealt with a "kitchen sink shopping list" document of this sort was RFC 7849. That document generated a lot of noise on the mailing lists, went back and forth for many months, and ended up being withdrawn as a WG document and published as individual submission which has zero normative value. I assume that's not your desired goal for this document? If so, I would suggest adding an applicability statement that clarifies that not every piece of equipment under the sun that ever happens to forward an IPv6 packet must meet these requirements.
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742              INTERNET: marka@isc.org

v2.23.0 | Report a Bug | By Email