IETF Logo Mail Archive

Re: [v6ops] [dhcwg] IPv6-Only Preferred DHCPv4 option

Jen Linkova <furry13@gmail.com> Mon, 09 December 2019 00:54 UTC

Return-Path: <furry13@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E7F01200FD; Sun, 8 Dec 2019 16:54:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.749
X-Spam-Level:
X-Spam-Status: No, score=-1.749 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V-MD8axplnnz; Sun, 8 Dec 2019 16:54:10 -0800 (PST)
Received: from mail-qt1-x82d.google.com (mail-qt1-x82d.google.com [IPv6:2607:f8b0:4864:20::82d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6EA4612007C; Sun, 8 Dec 2019 16:54:10 -0800 (PST)
Received: by mail-qt1-x82d.google.com with SMTP id t17so7253484qtr.7; Sun, 08 Dec 2019 16:54:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=unmnH3dZDJPTWO/R7OQTMWW+3RUzttXb0qIPi5xlNvA=; b=bG8AZtsgZq0WJcH9zMGLvYV3zcccnZspH4Mi/o/KME4DRUAeRXY+CTJyFIAXFOkMwR ndXBfUOLlLp9LHFxoHw+K08A30uAj+mRvtRa5jl8fPSwJWOJZYhksKlQ2a3xvxfsJKHD 4AFhWFFpMSQ6hvJ3Z3Tfn4RULeI8kR5Hy8YtbikL9hJRRjn69EJ/cFbIOs3dPBk5h5LF 9i07ysZnJsq7jL5FBMmcirkGSNYvebvi+cdQsciXGtnAhRz6H0fG9KjzjJ6os1kNiJI0 yUMwuGrHUj2fU4NKvyMsko4GT0vpD6cVzatcBil9SZyzA8gfaF1ZnshxUA30XMNG3YLR Pgig==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=unmnH3dZDJPTWO/R7OQTMWW+3RUzttXb0qIPi5xlNvA=; b=jMwOLcATIH8gX75HIQ2Bey5Hi3xm2r4GKeEh3fWOaCIQcNJHDxxtOTvL/lcoFZ2Qji 3lbmRYJCrm7kWDzaO8jjCuMv4aEg1hoeF3CcTsv4epOvpdml7euuhxK2jn3PN/ZM7j2H wW+rMQfIzKTDNt/LBm84UOxm5edzCct/WXbprqybJoLMCrnbLJTzpGM0a6xny6h5E1T7 X5YAF3qzBw0B0HRtTupkJDJnRl+KVlBu+KM/7zfEl3PwbKkBAqLOCPkSW1+W78DU/fDb RJLtMVyI16XS618S6qScfxikNLMKcgikbQ/SvtS6Sf6UitXsX1h2kejUneXctyJS21Ra phdw==
X-Gm-Message-State: APjAAAX6GchiTezkQCyfR1IYxcPcsKyDX2GFSX8EunJtJnzadbmrdy8M HzPSWEV9MtaSgkobSmd8SXHkJa7bmSmuFP/IVws=
X-Google-Smtp-Source: APXvYqw6it9paIDEp2j2wRqiX9/xCGAwYMlzRdX6vutQKmd66A8mC0UuPIxN0SSCe6FVt+ez1r5EDpmgyEIfiG0faSo=
X-Received: by 2002:ac8:6f75:: with SMTP id u21mr23492983qtv.52.1575852849138; Sun, 08 Dec 2019 16:54:09 -0800 (PST)
MIME-Version: 1.0
References: <CAFU7BAR1JLUZps=CAqJfeQtUf-xQ88RYvgYrPCP+QP0Ter7YFg@mail.gmail.com> <E03BBE6C-3BED-4D49-8F79-0A1B313EFD9D@apple.com> <28594.1575483729@localhost> <CAFU7BAQp2-4EwntFj6Nx+be54-fi+gnQmRgT6yS22p=vYugpzA@mail.gmail.com> <CAN-Dau1L_hdRMiGApa7VKuZ0_f5q1NJ-5sHMeg-dtTWa=Tq6bQ@mail.gmail.com> <CAFU7BAS9iMBWkdQF_hwK7squvG9A5f38miS=sWLNns=ZxK4GCg@mail.gmail.com> <CAN-Dau3WswixgY=B9dPwL-hTtxsjm-X-sJ6iXMtpifUAHF12DQ@mail.gmail.com> <CAFU7BASYFEcUgJZUvxi+m4s_GELUQV-2C=UaJ35pBz+zpG1XzA@mail.gmail.com> <CAKD1Yr3OjCsMNM+P2tt9EPrkXDhP+yMptKg-AG3OA1KNbsrqhQ@mail.gmail.com> <DM6PR11MB4137A537075D4D90732F7EB4CF5F0@DM6PR11MB4137.namprd11.prod.outlook.com>
In-Reply-To: <DM6PR11MB4137A537075D4D90732F7EB4CF5F0@DM6PR11MB4137.namprd11.prod.outlook.com>
From: Jen Linkova <furry13@gmail.com>
Date: Mon, 09 Dec 2019 11:53:57 +1100
Message-ID: <CAFU7BAQXZ40t6w+6WLfqww8wG2Wkke2JGM4P=YnX1HiHAjWksQ@mail.gmail.com>
To: "Bernie Volz (volz)" <volz@cisco.com>
Cc: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>, Tomek Mrugalski <tomasz.mrugalski@gmail.com>, V6 Ops List <v6ops@ietf.org>, "draft-link-dhc-v6only@ietf.org" <draft-link-dhc-v6only@ietf.org>, "dhcwg@ietf.org" <dhcwg@ietf.org>, Michael Richardson <mcr+ietf@sandelman.ca>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/mDrSlTmEMfnwTAUeygJvDPhGB1A>
Subject: Re: [v6ops] [dhcwg] IPv6-Only Preferred DHCPv4 option
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Dec 2019 00:54:12 -0000

On Sat, Dec 7, 2019 at 1:59 AM Bernie Volz (volz) <volz@cisco.com> wrote:
> I agree with Lorenzo. Keep it simple (see previous email that there really should be no work on the DHCP servers to support this capability).
>
> Yes, you could reserve an address, but I don’t see that as required. Note that I had suggested this to the authors before the draft was published as an optimization; I don’t think it should be the norm. And with many servers, you could probably just do this via configuration (i.e., if PRL contains “IPv6-Only” option, override the client identity with a fixed unique name, add a fixed address / reservation for that unique name).

I'm fine with it. I'll remove the reference to a dedicated address to return.
So just to summarise the discussion: we have a number of options on the table:
a) let server just return *an* address from the pool, assuming that as
the host would not accept the offer anyway, the address will be made
available again soon;
   pros:
      --- no changes on the server side;
      --- it would look normal to smart middle boxes
   cons:
      --- might lead to higher pool utilisation
b) return some bogus address (0.0.0.0 or smth else)
    pros:
       --- client would not be able to assign it (hmm..theoretically)
      --- optimized pool usage
   cons:
      --- requires changes on the server
      --- might trigger unexpected behaviour on smart middle boxes
(==> slowing down the adoption)

c) do not offer anything, do smth esle instead (what exactly?)

After writing it down like that I do agree that we shall probably choose a) ;)

> From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Lorenzo Colitti
> Sent: Friday, December 6, 2019 2:21 AM
> To: Jen Linkova <furry13@gmail.com>; Tomek Mrugalski <tomasz.mrugalski@gmail.com>
> Cc: V6 Ops List <v6ops@ietf.org>; draft-link-dhc-v6only@ietf.org; dhcwg@ietf.org; Michael Richardson <mcr+ietf@sandelman.ca>
> Subject: Re: [v6ops] [dhcwg] IPv6-Only Preferred DHCPv4 option
>
>
>
> On Fri, Dec 6, 2019 at 4:14 PM Jen Linkova <furry13@gmail.com> wrote:
>
> "If the pool is explicitly configured with a dedicated IPv4
>    address to be returned to IPv6-only capable clients the server MUST
>    specify that address as the client's network address and MUST NOT
>    verify its uniqueness.
>
>
>
> That seems difficult to implement on the server. Why not just return a normal OFFER from the pool? That way, if something unexpected happens and the client sends a DHCPREQUEST for it, the server can hand it out as normal.
>
>
>
> The alternative is risky. If the server uses a bogus OFFER value, and some client requests it and the server hands it out, that creates the possibility for misconfiguration or bugs to create really bad outcomes where multiple hosts have the same IP address, or some things on the network (e.g., snooping switches) think that multiple hosts have the same IP address. +Tomek Mrugalski any thoughts on whether this can be implemented easily and reliably on the server side?



-- 
SY, Jen Linkova aka Furry

v2.23.0 | Report a Bug | By Email