IETF Logo Mail Archive

Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)

Ted Lemon <mellon@fugue.com> Sat, 13 February 2021 21:52 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13C503A0FE5 for <v6ops@ietfa.amsl.com>; Sat, 13 Feb 2021 13:52:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g7BXGORM_-ag for <v6ops@ietfa.amsl.com>; Sat, 13 Feb 2021 13:52:45 -0800 (PST)
Received: from mail-qt1-x82a.google.com (mail-qt1-x82a.google.com [IPv6:2607:f8b0:4864:20::82a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11D8C3A0FD8 for <v6ops@ietf.org>; Sat, 13 Feb 2021 13:52:44 -0800 (PST)
Received: by mail-qt1-x82a.google.com with SMTP id h16so2334453qth.11 for <v6ops@ietf.org>; Sat, 13 Feb 2021 13:52:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=vO7ow+0sBXnv+7+cHGhuD4n4arMoC7N+w2aKQOsUfYU=; b=B7HuFbJdzGrNw8iJi4lQfE70xf1gU/YDtsr75aND6DgwZ8pW0JIt0FOAEDepV4OVMQ b0Acl/+YKah3HYUUc2xltl46FI/A3DNKzP7k2f6Z9oeJkV7grZRxvK44z7rdJ5aemb+5 KKLjnRidqlAJzkI0VunPtZhkccfbsx221yd1nOI4cz+otfmSmmgbgGRAJbdNVmoC0oFB uAAEKl0XNxoqNbaqfkYzMEEZqVQgtOsDPUa6H3oJQy/YFO3q1P1THPiK8oh3oZsi6Fpu 9/qWOJPWncQtJCCUB/fHwL/A+Gn5C6kuoh2vretSbpk4+8YmIFGA1dFQ0DKmOVRr3SF9 IyWA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=vO7ow+0sBXnv+7+cHGhuD4n4arMoC7N+w2aKQOsUfYU=; b=PpP3X4qJZmAUpSU4LTFJ12M0dMpcBFqIEh4YBYZ+hCLK1t5GksM5uhF+5W2fLYpzpB Uh6cqo3VKd6byKIN3XNs4GztE2lBw85GRzL0VHqhEvtglrE8M4wpPNd5g/A6tFQ5XUyN KeOUQBa8lmyRqO1GJiZsVnliAMc/knvpz2gaON0bh6JXZWaZsgen2FEAaWpLZ3N8Oefn W47LLlNk6z8M1VbvMWAODCNxDzsK90yeIfpzR8ROOZBT3tvR/kqWyGtDQ6LEPKnfeoYC AdF3Z4tfrR+dM3thbBMFEC7FlZxrxbNtCJ9p7NagkDMcEYf5AAcbb/JW5rCkOgE4p4iC Tmyw==
X-Gm-Message-State: AOAM530ypWJQE+zVFFqY19O+nO+NNRlWObiN9cBKqsz9whZo3B31OrvH 4ASFjt9tgWZXvmMCd61Df2eTUA==
X-Google-Smtp-Source: ABdhPJyZ9j3D8kKI1niHG/wdop9nk6ExHp2GzcIKT/dwgyfuwMIjkAfQvufgbT7KJuzLKePi4e6nYw==
X-Received: by 2002:ac8:70d7:: with SMTP id g23mr8381839qtp.25.1613253163929; Sat, 13 Feb 2021 13:52:43 -0800 (PST)
Received: from smtpclient.apple (c-24-91-177-160.hsd1.ma.comcast.net. [24.91.177.160]) by smtp.gmail.com with ESMTPSA id 199sm9268097qkj.9.2021.02.13.13.52.42 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sat, 13 Feb 2021 13:52:43 -0800 (PST)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <4D63780F-0EC5-43A9-BF5E-24081CE91C0E@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_95EA60C9-D00A-46B5-9B7C-56966CF71C4E"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.32\))
Date: Sat, 13 Feb 2021 16:52:42 -0500
In-Reply-To: <c0d928e1-f2be-52be-75a5-e4ba01a15811@si6networks.com>
Cc: David Farmer <farmer@umn.edu>, Fred Baker <fredbaker.ietf@gmail.com>, IPv6 Operations <v6ops@ietf.org>, "6man@ietf.org" <6man@ietf.org>
To: Fernando Gont <fgont@si6networks.com>
References: <160989494094.6024.7402128068704112703@ietfa.amsl.com> <6fe3a45e-de65-9f88-808d-ea7e2abdcd16@si6networks.com> <F4E00812-E366-4520-AE17-7BB46E28D575@gmail.com> <CAN-Dau3iOjjU+FLpdtA7nqfKRX+sjjSanAU8U-O3pH-k5nSoig@mail.gmail.com> <a3fbfb94-90ae-961c-a2ab-33ade27e074e@si6networks.com> <5D1FBC37-1024-4300-AFA5-19F329E9F1D1@fugue.com> <CAN-Dau02FHbrWghcYXEGURFreT0JnY_QpVu2btpj94im3K30PQ@mail.gmail.com> <2DFE5AFF-82AF-4519-93AA-9E78D134AB68@fugue.com> <1213fb18-5e89-1f35-d095-6cc67b5f0102@si6networks.com> <776FA1FA-E0A7-4449-ACAA-ECA0E24D5465@fugue.com> <c0d928e1-f2be-52be-75a5-e4ba01a15811@si6networks.com>
X-Mailer: Apple Mail (2.3654.80.0.2.32)
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/iPBt4lUbDkWLDOtBTidvmYQdqtc>
Subject: Re: [v6ops] Scope of Unique Local IPv6 Unicast Addresses (Fwd: New Version Notification for draft-gont-6man-ipv6-ula-scope-00.txt)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Feb 2021 21:52:47 -0000

On Feb 13, 2021, at 4:11 PM, Fernando Gont <fgont@si6networks.com> wrote:
> I think the change you propose makes things way more complicated that simply keeping the scope definitions from RFC4007, and simply reclassifying ULAs et al.

We seem to be talking in circles. There are two scopes: global and link-local. ULAs are currently global. I am not proposing to change this. We can’t reclassify ULAs as link-local—they would no longer work. The problem is that the definition of global doesn’t match the other details of the definition of ULA, despite that ULAs are defined to be global.

>> On Feb 13, 2021, at 3:18 PM, Fernando Gont <fgont@si6networks.com <mailto:fgont@si6networks.com> <mailto:fgont@si6networks.com <mailto:fgont@si6networks.com>>> wrote:
>>> BUt that's again ULAs being special. And they usually have properties of "private" addresses -- e.g., can generally be expected to be valid if your link to your ISP goes down, are more unlikely of being renumbered, etc.
>> If your link is numbered with ULAs, then you’ll choose a ULA whenever you’re communicating with another ULA, because of the longest match rule.
> Scope rule is # 2.Longest match rule is #8.
> So you don't necessarily get the same outcome.

But ULAs are global in scope, so the scope doesn’t come into play if you are choosing between a ULA and a GUA. It only comes into play if your destination is link-local.

> For Dst Addr selection, the scope comparison is, again, rule #2 & rule #8, while longest-matching prefix is rule #9.
> 
> The proper scopes would probably also benefit the other address "types" that David pointed out….

Again, though, ULA is the same scope as GUA, so if there’s a LLA<->LLA choice, you’ll pick that, but otherwise the priority rule (rule 6) prefers a GUA to a ULA as a destination address absent a policy table entry.

This is actually the part that could be problematic, since if we want connections to survive the lost of the ISP uplink, we want to use ULAs for on-network communication (for a single link, LLA will be preferred, so this is only a problem for a multi-subnet home). However, the RFC actually addresses this by suggesting that if a ULA is valid on-link, a policy table entry could be added for that specific ULA /48. The document is not as clear as I’d like about what that policy table entry should look like, and I have to admit that I haven’t thought this through, so I don’t know either.

It’s perhaps worth noticing that in the presence of Happy Eyeballs and gethostbyname(), I don’t know how many applications are actually using the destination address sorting rules.

v2.23.0 | Report a Bug | By Email