IETF Logo Mail Archive

Re: [v6ops] Implementation Status of PREF64

David Farmer <farmer@umn.edu> Mon, 11 October 2021 16:38 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51AAB3A0CAB for <v6ops@ietfa.amsl.com>; Mon, 11 Oct 2021 09:38:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iMGJWAz-hsLs for <v6ops@ietfa.amsl.com>; Mon, 11 Oct 2021 09:38:08 -0700 (PDT)
Received: from mta-p8.oit.umn.edu (mta-p8.oit.umn.edu [134.84.196.208]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 16E5D3A0CA6 for <v6ops@ietf.org>; Mon, 11 Oct 2021 09:38:07 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mta-p8.oit.umn.edu (Postfix) with ESMTP id 4HSkxV3Cb2z9vjJG for <v6ops@ietf.org>; Mon, 11 Oct 2021 16:38:06 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p8.oit.umn.edu ([127.0.0.1]) by localhost (mta-p8.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3qFfZOpAC06M for <v6ops@ietf.org>; Mon, 11 Oct 2021 11:38:06 -0500 (CDT)
Received: from mail-yb1-f197.google.com (mail-yb1-f197.google.com [209.85.219.197]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p8.oit.umn.edu (Postfix) with ESMTPS id 4HSkxV13Qfz9vjJ7 for <v6ops@ietf.org>; Mon, 11 Oct 2021 11:38:05 -0500 (CDT)
DMARC-Filter: OpenDMARC Filter v1.3.2 mta-p8.oit.umn.edu 4HSkxV13Qfz9vjJ7
DKIM-Filter: OpenDKIM Filter v2.11.0 mta-p8.oit.umn.edu 4HSkxV13Qfz9vjJ7
Received: by mail-yb1-f197.google.com with SMTP id x15-20020a056902102f00b005ba71cd7dbfso13760059ybt.8 for <v6ops@ietf.org>; Mon, 11 Oct 2021 09:38:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=y+95nv6gY0Sttme4uGUpN2ptP46y2cBqirSgqk9nVh8=; b=NtjkEwgwCGvhYMvq7qQEKhQSBGD9NSmeMxNqu4yML00VXqqCPw/obTFzMiGBIJo6Gi brLwHQTkCohR5oR3zLEY1uJaUKp+b3CVEAUeYb9mxnOVy4Z+LNF+54x82Xv5v7SI599y XPDNNkYuZqARNDyuYg3dnHPYf4+/5HmIV+WJEjbFZeHEljFoDn0hO4J2fa3jjxyz7EHL 3k39hinyHG3AiFQ8woZz5G+R7vB8/9b7KRBMJ7mR9lAUkpEnx5iiXcyw6tRSYc4JPdnG x6bH1LkV9Bh4JJDpG7scCn8f/yQFf5xgSSdK5/JbLYvqZQ7MbDwzh2L4QsAZZFYM6/a4 bpAw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=y+95nv6gY0Sttme4uGUpN2ptP46y2cBqirSgqk9nVh8=; b=utw6eVs6QQ/jelrFnnDGwgnZhOuSIYK4Tq4J9HWfaJkU0RKqHyzB7Sq+CZ8LwCZrqB C9xnzF/GeDO/UGERdFtQ32loVAtZLVG4RKmniOb4mTW+QjiTtzcyIOywTI4q1z8b33p2 zhQY36Q2cmdtAGLkg4MLMVvvgG1zQHwAI4i3Ma7ioyYMTQTWTmxrR5sk7A2bsU0RPHg+ f4EoamF0ktVTHMPYKR6mV1hglcCVS4J9U7N9qZsVW3pdYMV8gjkp0pPYiiv3mkFZ7rDl Dor3lnwoedYZPTVhRfKUpQNvBeirDypq/CEKruQqI5tqtvGeRh9YrwjttEB5JnhFtb6D rTfA==
X-Gm-Message-State: AOAM533abeS26b7uZlFZJYzSn+dgBpW8HBZKZdGy3aarOcO2B2zySZGJ xUKzbhLcexLSqVWz0Ury0pRX1SdnSkcFVcGg5lzeb/F6mypyqKB2gj+/Y9myc1FOZXDSsH54Ox1 aMjoYgZfdcYshBcHLR4GCAZQl6Q==
X-Received: by 2002:a25:cdc7:: with SMTP id d190mr21124576ybf.53.1633970284551; Mon, 11 Oct 2021 09:38:04 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJzSweqHKcCvEmFE7xBaQtyPEW5ICX9rqKaPEXTviu/dHwqVPuxEulXh/YZpescV27Xi15PBLWSBowIKOSt4HeE=
X-Received: by 2002:a25:cdc7:: with SMTP id d190mr21124536ybf.53.1633970284076; Mon, 11 Oct 2021 09:38:04 -0700 (PDT)
MIME-Version: 1.0
References: <DDA36020-90CC-471B-83AD-3D98950F1164@delong.com> <CAKD1Yr0T-7t-UHbsJBMLpTjKhPAV5uUQkux6oby89TVUue7PyA@mail.gmail.com> <CO1PR11MB4881D400EA4681F1505040D2D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <CAKD1Yr3TmqFxjKuZ57wS7VuPOf6rJvOwnvnQdFrRLQ=DkZ+CCw@mail.gmail.com> <CO1PR11MB4881F411A4D5BEA7A8479726D8AA9@CO1PR11MB4881.namprd11.prod.outlook.com> <D8AEA194-293B-43E4-BCAE-33CD81FB7D8C@delong.com> <CAKD1Yr2Tug-PFV7wAh0s6-gw8W3LcLG7wC1fD7Lu_hMZQYKdtw@mail.gmail.com> <08D2885E-B824-48E8-9703-DCA98771FA37@delong.com> <CAKD1Yr2EVsY3tYUf56R0Q1+KVrowtqh-HgwXj5vxzy4wd-vkTg@mail.gmail.com> <1A6ED87B-666E-439C-852F-2E5C904C0515@delong.com> <CAKD1Yr23fY2DJDvB-9eVFRsxnBnZQ0kZuZfYUfRUHYW=_D=enA@mail.gmail.com> <CAN-Dau1z0q0R61x7iY+Wg_cFRU0jmqr+fR0y=bSXxj+K-n722w@mail.gmail.com> <CAKD1Yr1T_mXfxJGHOrBfqZfexm6GTrUqnFi57710pTroKQK6uQ@mail.gmail.com> <702CB018-1A02-4B32-B9AA-7C7B31521F12@delong.com> <CAKD1Yr0jZR8Efzr_Y6FeiBvHYS8ATmDupx2ABTXXy-rSA_QjmA@mail.gmail.com> <1adb70a8-db0a-4ea6-f721-c1035343cda3@foobar.org> <DM6PR02MB69249D4F0A8003E77EC9F153C3B19@DM6PR02MB6924.namprd02.prod.outlook.com> <E1FED93B-674C-46DD-8C39-F6C30475C48A@delong.com> <CAKD1Yr34jv_N0jGKdg=sG76oGU7PdRjYFC_-w9Uvzs=7oGm38w@mail.gmail.com> <E6316781-AC7D-438F-B216-75B1DF9217DC@delong.com> <CAKD1Yr10OKMJ1y8bs5xpt6jS8ZWsqs66oFCXmp-QLySS5Yn4hg@mail.gmail.com>
In-Reply-To: <CAKD1Yr10OKMJ1y8bs5xpt6jS8ZWsqs66oFCXmp-QLySS5Yn4hg@mail.gmail.com>
From: David Farmer <farmer@umn.edu>
Date: Mon, 11 Oct 2021 11:37:48 -0500
Message-ID: <CAN-Dau3JxPucFnbwZB-M5UD3KkSV++7u03AMQ7vOZJKqPHpJ3Q@mail.gmail.com>
To: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>
Cc: Owen DeLong <owen=40delong.com@dmarc.ietf.org>, v6ops list <v6ops@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005b3c6905ce165a3d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/n_BSF4TpGswX-KjlyJEHjwMmWBQ>
Subject: Re: [v6ops] Implementation Status of PREF64
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Oct 2021 16:38:14 -0000

On Mon, Oct 11, 2021 at 1:13 AM Lorenzo Colitti <lorenzo=
40google.com@dmarc.ietf.org> wrote:

> On Mon, Oct 11, 2021 at 1:36 PM Owen DeLong <owen=
> 40delong.com@dmarc.ietf.org> wrote:
>
>> Suppose an OS developer ships a DHCPv6 implementation that requires N
>> addresses and does not enable the IPv6 stack unless it receives all of
>> them. How does that do anything to address statements such as, "my network,
>> my rules" that have been made on this thread? Any operator that wants to
>> assign only one address per device still cannot use such hosts on their
>> network, and can still criticise the implementation for not doing what they
>> want.
>>
>> At least it provides a possible way forward for networks that don’t want
>> to assign addresses outside of IA_NA or IA_PD to provide addressing to
>> android devices.
>>
>> Surely a single IA_NA + a routed IA_PD would meet your requirements,
>> right?
>>
>
> IA_PD, even by itself without IA_NA, has none of the concerns in this
> thread. RFC 7934 explicitly recommends it, actually. Not sure if enterprise
> network operators can or would want to deploy IA_PD though. Is that
> something that we can nudge the industry towards?
>

I think this is a perfectly reasonable option for the general purpose use
case, but I will note there is no clear guidance for the use case of IA_PD
on Hosts, and even the guidance for the use of IA_PD with routers is
somewhat fuzzy or at least incomplete, in my opinion. Nevertheless, this
may or may not be reasonable for special or restricted purpose use cases,
especially when compliance regimes are required, like PCI or NIST-800-171.
I support IA_PA on hosts, but whether or not that is an acceptable
replacement for IA_AN and/or IA_TA for all use cases is very much an open
question, and not entirely a technical question for that matter.

> What I think David was suggesting is: if we reach consensus on some
>> reasonable value of N, then the IETF could write a BCP to that effect. That
>> would help to some extent, because if an operator complains that the
>> implementation does not work on a network that has N=1, the OS developer
>> could point to the BCP as justification for why.
>>
>> I don’t think that’s really necessary. I think there are already adequate
>> documents about single-address is less than ideal in the existing RFCs/BCPs.
>>
>
> The existing BCPs also say that running an IA_NA-only network is not
> recommended, but that doesn't prevent folks from saying it's necessary. I
> think we'd want to make a stronger statement than that.
>

As I said, I'm open to additional BCP, and at a minimum, I think additional
Informational guidance is needed regarding DHCPv6 development.

While that is true for the general purpose use case, there is no guidance
that IA_NA-only is inappropriate for other use cases. And Android is
clearly being used in other use cases. Furthermore, that would seem to mean
a combination of IA_NA and IA_TA is acceptable even for the general purpose
use case.

Thanks.

-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email