IETF Logo Mail Archive

Re: [v6ops] Chair decision on WGLC for draft-ietf-v6ops-dhcp-pd-per-device-04

Nick Buraglio <buraglio@forwardingplane.net> Thu, 02 November 2023 17:46 UTC

Return-Path: <buraglio@forwardingplane.net>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 62C92C14EB17 for <v6ops@ietfa.amsl.com>; Thu, 2 Nov 2023 10:46:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=forwardingplane.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ObSaEYFe56YJ for <v6ops@ietfa.amsl.com>; Thu, 2 Nov 2023 10:46:44 -0700 (PDT)
Received: from mail-qv1-xf32.google.com (mail-qv1-xf32.google.com [IPv6:2607:f8b0:4864:20::f32]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D617C14F73E for <v6ops@ietf.org>; Thu, 2 Nov 2023 10:45:54 -0700 (PDT)
Received: by mail-qv1-xf32.google.com with SMTP id 6a1803df08f44-66d2f3bb312so7092236d6.0 for <v6ops@ietf.org>; Thu, 02 Nov 2023 10:45:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=forwardingplane.net; s=google; t=1698947153; x=1699551953; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=XbzW6acl8xUcQzJ4hfK3ZrijhDwaT1SnNy6wvfXmikk=; b=CYGzn33HpmQThumFHLlhHyjWJNIJTOIX1LaeRvXw+M8/BsquwfrpYVIgsRzE5m+5x8 eYkBlt0r09fzDe0Nsh2Cn03bZJ5Q19oY0iIujV/04qpc1oODxk26WBHMsqm63EXCaZ2i vQLbkkTT5V76mwl9sCmYFmEkvkkECTJqbwTwQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1698947153; x=1699551953; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=XbzW6acl8xUcQzJ4hfK3ZrijhDwaT1SnNy6wvfXmikk=; b=YexX4FOmxLIF2USsRPsvL95aKqOtzI8Wxmmn/MGd8a6nzr5ccy9gsS4mHQGZKuzZQI akX7xAsXPh8RXLeDS6tk9TC7JYzuB1qizTUDDqC/omO61OB0lTf5EiPg65s1BVQDnyKf z8sbvkyd9F15JhVeJeu+alHzI0YKzvPooSSbGoc55yBN2kpFjvHrBA5wf9fMPEdCsgeS RdNeajFMP3buvPRISuJxYtxwrRpf1qHzqecOjR8N4216VPcQuA4JnlKJ5YJgSNLP1t7f hVSs1cW+/de/XGVCyyniiGAieu/YLNazsbwGHK4omz+UCwtvKPTEiwxEmotwdJ1XQ1He aEsQ==
X-Gm-Message-State: AOJu0YyK566non53b86BGV5wg4UD53dWZlDs6GyJt1V/DKtQEort6LdR LEJAG91pJkLr3dWvr4b/K39G9chYLqQ1VHtdgVgHKoOa1aAvmIi3mQdIpg==
X-Google-Smtp-Source: AGHT+IGd9w7eNTYVLgSLZEPRI2O5ncQwYcPT4Tg8hsj8TT5ysYNy07bhBVZJ+q/f+ydM3CTSXUIjAEOQvdVCLzI9V+8=
X-Received: by 2002:a05:6214:2424:b0:66d:27ac:a595 with SMTP id gy4-20020a056214242400b0066d27aca595mr29731202qvb.23.1698947153159; Thu, 02 Nov 2023 10:45:53 -0700 (PDT)
MIME-Version: 1.0
References: <e078c90495b54390a3fb4c7bae143b05@huawei.com> <ZUKKvprp3HDAvqW1@Space.Net> <CAKD1Yr2hjEUgzKwX8zDN6HDmxU2rYJOebR0NmXPx-iPYpy=ZMA@mail.gmail.com> <A4B3FF49-899E-4A01-A8EA-FAB6A3C990AD@delong.com> <cf951b40-ca25-d028-04c4-bff2b1235c69@gmail.com>
In-Reply-To: <cf951b40-ca25-d028-04c4-bff2b1235c69@gmail.com>
From: Nick Buraglio <buraglio@forwardingplane.net>
Date: Thu, 02 Nov 2023 12:45:42 -0500
Message-ID: <CACMsEX-0Q831kJLp=LjmU4Z5ttEC1O88sqYEQBxxeZPs0FoBpQ@mail.gmail.com>
To: v6ops@ietf.org, Brian E Carpenter <brian.e.carpenter@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000008e7b9f06092ef5ee"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/mGHHGvjT2BtyF4_dXTRpQhuBSQs>
Subject: Re: [v6ops] Chair decision on WGLC for draft-ietf-v6ops-dhcp-pd-per-device-04
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Nov 2023 17:46:50 -0000

I know a lot of this discussion has been about the prefix length detail,
and while I am personally of the opinion that a /64 is reasonable, my
opinion is based on what is available, required to be supportable across
all platforms, and most importantly operationally viable in a way that can
be deployed and handed off to operations *today*.
That said, Jeremy Duncan (on the list; one of the co-authors of the 6724
update) and myself have been working on a large conference IPv6-mostly
wireless deployment and during the initial testing, we found some odd
issues that the solution provided here would have largely solved had there
been client support. We were able to work around the issue, but had this
been an available option, I suspect we would have never even seen the issue
(and had less go-around with security about device tracking).

There are real-world problems - especially at scale - that this solves, not
the least of which is neighbor scale and discovery throttling. I don't
*think* that anyone disagrees with that part, but instead have issues with
the prefix length. Given the ubiquitous nature of slaac, I see why it is
written the way it is.

Section 8 reads:






*At the time of writing the only prefix size that will allow devices   to
use SLAAC is 64 bits (see also [RFC7421]).  Choosing longer   prefixes
would require the client and any connected system to use   some other form
of address assignment, which many hosts do not   support, and therefore
limits the applicability of the proposed   solution.*

Limits, but does not preclude. If someone were to code their own solution,
this could be completely applicable. Out of the box, however, there exists
a significant impediment to deploying this operationally. Perhaps extremely
large organizations may have the developers to make it happen, but 99% do
not, and desire an out of the box solution, which is what I read this to
be.




*   For the same reasons, a prefix length of /64 or shorter is required
 to extend the network using [RFC7084] (see requirement L-2), and a
 prefix length of /64 is required to provide global connectivity for   stub
networks as per [I-D.ietf-snac-simple].*

Other examples of similar requirements. to me, this is a "solve a problem
we have right now, with current technology, and referencing current
standards requirements"  as stated in "*At the time of writing..."*



nb


On Wed, Nov 1, 2023 at 8:58 PM Brian E Carpenter <
brian.e.carpenter@gmail.com> wrote:

> Hi Owen,
>
> > So, in fact, the point of having 128 bit addresses (at least in the
> initial engineering of same) was, in fact, to use the lower 64 bits as IID
> and leave the upper 64 bits for locator/network ID.
>
> Not quite. The original expectation was to leave the upper 80 bits for
> routing and have a 48 bit IID. We only moved from /80 to /64 because we
> were effectively copying the XNS/Netware model and there was a theory that
> 64-bit Firewire MAC addresses would take over the universe.
>
> draft-odell-8+8-00.txt (October 1996) did propose a rigid /64 boundary.
>
> Regards
>     Brian Carpenter
>
> On 02-Nov-23 10:44, Delong.com wrote:
> >
> >
> >> On Nov 1, 2023, at 12:05, Lorenzo Colitti <lorenzo=
> 40google.com@dmarc.ietf.org> wrote:
> >>
> >> On Wed, Nov 1, 2023 at 5:28 PM Gert Doering <gert@space.net <mailto:
> gert@space.net>> wrote:
> >>
> >>     The point of having 128 bit is not to throw half of it away.
> >>
> >>
> >> Maybe we should start working on running SLAAC on IIDs shorter than 64
> bits then?
> >
> > Or maybe not…
> >
> > ISTR that the early discussion was for a 64-bit address space up to the
> point where someone pointed out the utility of 64-bit IIDs in an EUI-64
> world (which was, at the time, expected for future IEEE802 work and had
> > already hit a couple of media types such as FDDI (yes, FDDI meant
> something back then)).
> >
> > So, in fact, the point of having 128 bit addresses (at least in the
> initial engineering of same) was, in fact, to use the lower 64 bits as IID
> and leave the upper 64 bits for locator/network ID.
>
> Not quite. The original expectation was to leave the upper 80 bits for
> routing and have a 48 bit IID. We only moved from /80 to /64 because we
> were effectively copying the XNS/Netware model and there was a theory that
> 64-bit Firewire MAC addresses would take over the universe.
>
> draft-odell-8+8-00.txt (October 1996) did propose a rigid /64 boundary.
>
> > I’m sure opinions vary on this today, but is there a genuine belief that
> we need more than 2 quintillion subnets? (An admittedly rough approximation
> of 2^61 which is the number of /64s available in 2000::/3).
>
> No. The argument is different: route aggregation must be possible at all
> levels.
>
> > Unless there’s some compelling reason that’s necessary, I remain
> unconvinced that killing the /64 concept is such a good idea.
>
> That isn't the goal. The goal is to ensure that *architecturally* all our
> specifications allow for route aggregation at all levels; /64 is just a
> setting. And as we know, mobile operators have turned /64 into an axiom,
> which is quite wrong architecturally. But its direct consequence is that we
> *will* need longer prefixes downstream from this /64 bottleneck. Or
> NPTv6/NAT66.
>
> draft-bourbaki-6man-classless-ipv6 says more.
>
> (The authors of rfc6296-bis might consider whether NPTv6 will also work
> for prefixes as long as /80. I think so, there is still space for the
> checksum-neutral computation.)
>
>     Brian
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email