[v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-pd-03.txt
Brian E Carpenter <brian.e.carpenter@gmail.com> Fri, 09 August 2024 21:00 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13E14C14CE55 for <v6ops@ietfa.amsl.com>; Fri, 9 Aug 2024 14:00:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tvs4pyN2bbjZ for <v6ops@ietfa.amsl.com>; Fri, 9 Aug 2024 14:00:36 -0700 (PDT)
Received: from mail-pf1-x435.google.com (mail-pf1-x435.google.com [IPv6:2607:f8b0:4864:20::435]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 44BD6C14F738 for <v6ops@ietf.org>; Fri, 9 Aug 2024 14:00:36 -0700 (PDT)
Received: by mail-pf1-x435.google.com with SMTP id d2e1a72fcca58-70d1a74a43bso2102995b3a.1 for <v6ops@ietf.org>; Fri, 09 Aug 2024 14:00:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1723237235; x=1723842035; darn=ietf.org; h=content-transfer-encoding:in-reply-to:from:content-language :references:cc:to:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=KV3us7nEsXJEFX43qI7dU3JKnP7F12m1RxCAXO1/qMo=; b=TA3G4Kl4KGjq+InOCQCcPcEi1vyoZVAqFDnFe8GzASILXVK9RlxiS76CjoychZDjdv vqZZyRwSxu3ljBMhhn3x0V0SYwc4JjjM6TmS+zoQhCvK0AZabSPJPWYkpYZj6TawvlbE lCboFqhRf7UNUL5zJKKq/TClX3Go4kUcqBizh6067O74F/+B/X/4CCZIQtKjv/USwQFU RHl0FDH5XmkEhkInkiLCcq5MiSWI76YwMHb+Fyt/RUGgetoAZOo6Vs0VI4LznzYWqgaG mfs/p73N4Az3mvmmKz1pzyGhVMWx6l0AulJbiuxYnyO/6tmCrWtChBGUUA9rh2PWqmye PvJA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1723237235; x=1723842035; h=content-transfer-encoding:in-reply-to:from:content-language :references:cc:to:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=KV3us7nEsXJEFX43qI7dU3JKnP7F12m1RxCAXO1/qMo=; b=NHoAxsSHBEzV/Ta3q+/OhMBro3mpvhY0rx3k7y+NUSinyzGMqGWKZKMnhi9EJA/Z17 mxWA0Y7dLVJMPc70OrzRIieqDaoku9VYiCqOugygwnRCwfj4dUna3FlwB+hgdbgTCRga YhscZtIYeqPtr5F/NskyOhcVxjwU1MZKEH+LiifQK7AetC9THCaj74LkTiLIUk1tP5sd 3Fze1+QcaaakUyEAj+HciugT6VSZaLzVAFoulbY0+EC9cnjzRhhMh4EGpTh2+UXnFzCe nnYs6VycuGAzqiweGBXL2h46XnLHpa8OZBRjsuDMnpUio8qAto0VV33yPwrWVG1lMRUs imcA==
X-Gm-Message-State: AOJu0YwjDaEX49tkTNsZbixcj6s6xsWZyz5Zg0DhQqellzcMpBPbdV+j a2dE3aq72JJopTLlPGOJuAuqQCRjXU96rQh2Ql/dWNXGdURdNDBA9vJbxg==
X-Google-Smtp-Source: AGHT+IGdnKmPkFGY3f7QrYOnu/GgM00LPx3tJ84K920P/jsDa5/DuLCYtHD4DSb62j2YE9cTN30kBg==
X-Received: by 2002:a05:6a21:9101:b0:1bd:2a8d:e25d with SMTP id adf61e73a8af0-1c89feeb691mr3738196637.47.1723237235005; Fri, 09 Aug 2024 14:00:35 -0700 (PDT)
Received: from ?IPV6:2404:4400:541d:a600:44b7:2c2e:2bc6:8707? ([2404:4400:541d:a600:44b7:2c2e:2bc6:8707]) by smtp.gmail.com with ESMTPSA id 41be03b00d2f7-7c3dbe03c4dsm110544a12.3.2024.08.09.14.00.32 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 09 Aug 2024 14:00:34 -0700 (PDT)
Message-ID: <2f483da3-9466-4a00-95a3-7e2a83502d5a@gmail.com>
Date: Sat, 10 Aug 2024 09:00:28 +1200
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: Ted Lemon <mellon@fugue.com>, Timothy Winters <tim@qacafe.com>
References: <172306305735.252.5586801355147827297@dt-datatracker-6df4c9dcf5-t2x2k> <CAO42Z2zXDPNMdgFoT3L+=hfHmXUu6oKNorsE_s_zYdyJ2_=ETA@mail.gmail.com> <CAJgLMKsCPoFbLime_-apaiALZGtvEBcVkm=KV6K_8k+U227zEw@mail.gmail.com> <CAPt1N1mtxq3ARrm3huQR7ZHeHe7OZ7eKaUDA=Hmbj0m-wpX2AA@mail.gmail.com> <CAJgLMKsAUKA6wFMEkOL+fi9OaCkH5wkWbWgwtgGEn9vcuTTyZw@mail.gmail.com> <CAPt1N1=fVPJspkvRPwsctg5=bS_=CHcXKEA9wt7Rm_==9aDUEQ@mail.gmail.com> <CAO42Z2zWL2KzSExrRw14ovz1065cnBG8YEwL4aysNpfTmZqr8g@mail.gmail.com> <CAPt1N1=WJY0wx8Xhfsfvk=YacKYXFcNsgnzHP5Zh-P75e00ezA@mail.gmail.com> <CAJgLMKti6amqyeuK1VbFikHAGS7hp+kiwurnkaBvNNnZ0rg91w@mail.gmail.com> <CAPt1N1nssUP60m+Obv9zprPBZ3qXM0U8VUggitJn+k4Ks9Hw=g@mail.gmail.com>
Content-Language: en-US
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
In-Reply-To: <CAPt1N1nssUP60m+Obv9zprPBZ3qXM0U8VUggitJn+k4Ks9Hw=g@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: base64
Message-ID-Hash: J67STKRKDCIG3VDKRA2ZNBSLZYVCFTME
X-Message-ID-Hash: J67STKRKDCIG3VDKRA2ZNBSLZYVCFTME
X-MailFrom: brian.e.carpenter@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: v6ops list <v6ops@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-pd-03.txt
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/gJamB3y1hoyVxCZFEKHHe0qmQBM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>
I can't help feeling that we are asking a relatively simple transaction (a hierarchical elementary delegation) to be smarter than it can be.
But then, I helped to write RFC 8992.
Regards
Brian
On 10-Aug-24 00:56, Ted Lemon wrote:
> It would also make sense to send a new IAID whenever we get a new pd request and have no remaining prefixes to provide.
>
> Op vr 9 aug 2024 om 08:53 schreef Timothy Winters <tim@qacafe.com <mailto:tim@qacafe.com>>
>
> Hi Mark and Ted,
>
> I'll add a line asking for a second IA_PD with a unique IAID when sending Renew/Rebind messages.
>
> ~Tim
>
> On Fri, Aug 9, 2024 at 7:33 AM Ted Lemon <mellon@fugue.com <mailto:mellon@fugue.com>> wrote:
>
> The point of always asking for a /48 isn’t to signal something to the isp other than “give me the biggest prefix you are willing to provide.” If we don’t ask for a /48, we won’t get one.
>
> If we ask for additional prefixes, the customer may just never see a problem, so I’m not sure how useful a signal this is, but certainly it will tell the isp if there is demand for narrower prefixes, and that isn’t a bad thing.
>
> Op vr 9 aug 2024 om 03:30 schreef Mark Smith <markzzzsmith@gmail.com <mailto:markzzzsmith@gmail.com>>
>
> Hi,
>
> On Fri, 9 Aug 2024, 12:20 Ted Lemon, <mellon@fugue.com <mailto:mellon@fugue.com>> wrote:
>
> What’s the downside? :)
>
>
> The concern I have is that I've seen obscure individual customer faults float around inside residential help desks for a number of weeks being looked at by different people, rather than being escalated to network engineering as soon as they should be. Eventually it might get escalated, or the customer leaves through frustration.
>
> For ISPs that aren't willing to give out large prefixes e.g., /60s, having the CPE ask for additional PD space when it runs out would at least show up in DHCPv6 PD server logs. That network engineering can directly look for that, and it would be absolute evidence of what problem the individual customer is suffering from. It would also be direct evidence to the ISP that they're not handing out big enough prefixes to customers.
>
> If an ISP isn't going to honor an IA_PD request for a /48, which I think would be unlikely for ISPs who aren't already handing out /48s, then I don't think this ID specifying to always ask for /48s is going to achieve anything. It won't signal to network engineering that customers are running out of address space because it will hide that customers are running out.
>
> Regards,
> Mark.
>
>
>
> Op do 8 aug 2024 om 14:36 schreef Timothy Winters <tim@qacafe.com <mailto:tim@qacafe.com>>
>
> Ted,
>
> On Thu, Aug 8, 2024 at 2:28 PM Ted Lemon <mellon@fugue.com <mailto:mellon@fugue.com>> wrote:
>
> I think it's fine to try to get more prefixes if you don't get the amount you asked for the first time, by adding IA_PDs with different IAIDs to subsequent requests. However, we should always ask for a /48. How does the CPE router know how many prefixes it will be asked to provide? If the ISP doesn't want to provide a /48, it will provide a smaller allocation, and that's perfectly fine.
>
> I was toying with that idea as well. Just asking for /48.
>
>
> On Thu, Aug 8, 2024 at 2:23 PM Timothy Winters <tim@qacafe.com <mailto:tim@qacafe.com>> wrote:
>
> Hi Mark,
>
> On Wed, Aug 7, 2024 at 7:06 PM Mark Smith <markzzzsmith@gmail.com <mailto:markzzzsmith@gmail.com>> wrote:
>
> Hi,
>
> Apologies for the late comments, I seem to be missing IETF ID
> announcements and WGLCs (I think trying to read everything out of my
> Inbox might not be working).
>
> I don't think logging a system management error for the below
> situation is good enough in a residential environment:
>
> "LPD-2:
> The IPv6 CE Router MUST assign a prefix from the delegated prefix as
> specified by L-2 [RFC7084]. If not enough addresses are available the
> IPv6 CE Router SHOULD log a system management error."
>
> Non-technical residential end-users are very unlikely to look up
> system error logs if they have a fault, they'll call their ISP's help
> desk straight away - their ISP is their first port of call for any and
> all faults that look to be Internet faults.
>
> In this case I was thinking for the ISP to know that they have routers that want to give out IA_PD
> on the LAN and they aren't giving a prefix large enough.
>
> In my experience of residential help desk staff looking up or asking
> customers to look up system logs for error messages isn't a practice
> either - and if you look at logs of some of these devices they're very
> chatty so spotting error messages is time consuming, which is counter
> to a common helpdesk KPI of customer calls answered per hour.
>
> I also think in some cases CPE don't expose system logs - from memory,
> Google's Nest CE routers don't have a system log available.
>
> I was thinking about getting system logs from CWMP/USP/NETCONF from the ISP.
>
>
> It would be better if engineering were somehow directly notified of a
> customer running out of prefixes and ideally could provide more
> prefixes automatically. The IA_PD Prefix-Length Hint mechanism would
> do that.
>
> I'd had discussions with many ISPs, and only a handful of environments with the DHCPv6 server
> honor prefix hints. Most ISPs for planning purposes have a number and that's what they send.
>
>
> So I'd suggest updating LPD-2 to:
>
> "LPD-2:
> The IPv6 CE Router MUST assign a prefix from the delegated prefix as
> specified by L-2 [RFC7084]. If not enough prefixes are available the
> IPv6 CE Router MUST request the number of required additional
> prefixes, rounded up to the next shortest prefix length bit boundary,
> via an additional IA_PD option through the Prefix-Length Hint
> mechanism [RFC8168]. The second or subsequent IA_PD options are used
> to avoid a renumbering event where the initial and now too-small
> Prefix-Delegation prefix would be entirely replaced with a new and
> single larger Prefix-Delegation prefix. The IPv6 CE Router SHOULD log
> a system management error."
>
> For this solution, I have some questions.
>
> Are you proposing that subsequent DHCPv6 messages (Renew, Rebind) ask
> for additional IA_PDs, beyond what is currently leased?
>
> OR are you proposing that the CE Router change what it's asking DHCPv6 Solicit or Request?
>
>
> I'm not entirely convinced that "request the number of required
> additional prefixes, rounded up to the next shortest prefix length bit
> boundary" is the right amount of address space the CE should request.
> Perhaps a simpler mechanism would be to request an additional PD
> Prefix that is the same size as the initial PD prefix provided by the
> ISP.
>
> I like this idea the best. I think this has the highest chance of success, that the DHCPv6 Server is
> configured to give out one size.
>
>
> (I understand above is complex to provision and manage on the DHCPv6
> server side and IPv6 addressing side, however that's the price of
> treating IPv6 address space as if it was scarce rather than abundant.
> My advice to residential ISPs is to give out /48s. APNIC had no issues
> with giving an ISP I worked for a few years ago enough address space
> for us to give all of our 500K residential customers /48s.)
>
> Regards,
> Mark.
>
>
>
>
>
> On Thu, 8 Aug 2024 at 06:39, <internet-drafts@ietf.org <mailto:internet-drafts@ietf.org>> wrote:
> >
> > Internet-Draft draft-ietf-v6ops-cpe-lan-pd-03.txt is now available. It is a
> > work item of the IPv6 Operations (V6OPS) WG of the IETF.
> >
> > Title: IPv6 CE Routers LAN Prefix Delegation
> > Author: Timothy Winters
> > Name: draft-ietf-v6ops-cpe-lan-pd-03.txt
> > Pages: 7
> > Dates: 2024-08-07
> >
> > Abstract:
> >
> > This document defines requirements for IPv6 CE Routers to support
> > DHCPv6 Prefix Delegation for redistributing any unused prefix(es)
> > that were delegated to the IPv6 CE Router. This document updates RFC
> > 7084.
> >
> > The IETF datatracker status page for this Internet-Draft is:
> > https://datatracker.ietf.org/doc/draft-ietf-v6ops-cpe-lan-pd/ <https://datatracker.ietf.org/doc/draft-ietf-v6ops-cpe-lan-pd/>
> >
> > There is also an HTMLized version available at:
> > https://datatracker.ietf.org/doc/html/draft-ietf-v6ops-cpe-lan-pd-03 <https://datatracker.ietf.org/doc/html/draft-ietf-v6ops-cpe-lan-pd-03>
> >
> > A diff from the previous version is available at:
> > https://author-tools.ietf.org/iddiff?url2=draft-ietf-v6ops-cpe-lan-pd-03 <https://author-tools.ietf.org/iddiff?url2=draft-ietf-v6ops-cpe-lan-pd-03>
> >
> > Internet-Drafts are also available by rsync at:
> > rsync.ietf.org::internet-drafts
> >
> >
> > _______________________________________________
> > v6ops mailing list -- v6ops@ietf.org <mailto:v6ops@ietf.org>
> > To unsubscribe send an email to v6ops-leave@ietf.org <mailto:v6ops-leave@ietf.org>
>
> _______________________________________________
> v6ops mailing list -- v6ops@ietf.org <mailto:v6ops@ietf.org>
> To unsubscribe send an email to v6ops-leave@ietf.org <mailto:v6ops-leave@ietf.org>
>
> _______________________________________________
> v6ops mailing list -- v6ops@ietf.org <mailto:v6ops@ietf.org>
> To unsubscribe send an email to v6ops-leave@ietf.org <mailto:v6ops-leave@ietf.org>
>
>
> _______________________________________________
> v6ops mailing list -- v6ops@ietf.org
> To unsubscribe send an email to v6ops-leave@ietf.org
- [v6ops] I-D Action: draft-ietf-v6ops-cpe-lan-pd-0… internet-drafts
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Timothy Winters
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Mark Smith
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Timothy Winters
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Timothy Winters
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Mark Smith
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Timothy Winters
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Timothy Winters
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Mark Smith
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Mark Smith
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Ted Lemon
- [v6ops] Re: I-D Action: draft-ietf-v6ops-cpe-lan-… Brian E Carpenter