IETF Logo Mail Archive

Re: [v6ops] Thoughts on draft-ietf-v6ops-dhcp-pd-per-device

Brian E Carpenter <brian.e.carpenter@gmail.com> Thu, 03 August 2023 20:30 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B35BFC14EB1E for <v6ops@ietfa.amsl.com>; Thu, 3 Aug 2023 13:30:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.197
X-Spam-Level:
X-Spam-Status: No, score=-7.197 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.091, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tLTRDfTugWmB for <v6ops@ietfa.amsl.com>; Thu, 3 Aug 2023 13:30:41 -0700 (PDT)
Received: from mail-pf1-x435.google.com (mail-pf1-x435.google.com [IPv6:2607:f8b0:4864:20::435]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37BA6C151AF8 for <v6ops@ietf.org>; Thu, 3 Aug 2023 13:29:52 -0700 (PDT)
Received: by mail-pf1-x435.google.com with SMTP id d2e1a72fcca58-686f38692b3so1243728b3a.2 for <v6ops@ietf.org>; Thu, 03 Aug 2023 13:29:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1691094591; x=1691699391; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=oDBMr+1qm+bNkWdTi2UWD0NRfeqc8si58uu0Ij71iWM=; b=eDWdU2li73Y0PrIcKAzh1h0OQbsuwHqAXee/ANmQnd5MM0+I5VhEp3Uw3V9B//Fdnf 5hrlwipvlZy+rdG4qfLs2rCEI1kDoJDRh2ddzpgzJ7MORHor6RCJN5XVpnpWvq4Q2aze YT8pAa21oyN5etzYdIzwOaDL8DnAsMB/VR5QIk0+JPMSyLvX68CdFAp4z6aXZJCgNORA JQRJukkdvYABCiyDL1fzj7nSTvevOsD+xNJI8f0YX/2QJUyoyQ0vDvjzCVzcNOwMJQPy 9EBvQHo8ChDUCN+QLoryZ+LAN/Mxgb8BO6jOsGaZYGlmTc7V8dCAQhLvGM2ENebYCaOO 253g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1691094591; x=1691699391; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=oDBMr+1qm+bNkWdTi2UWD0NRfeqc8si58uu0Ij71iWM=; b=HtKWFGZArTjiwqrXCx9+yRDO97PjIGy2P5ztbM/YFvR1bknhPFNVeokxyiYo3XcJpG vUcqhNE5yQ9w9wsCPD65XbLGxGaNdXB6qQ7Zbvg+/uUMznty4eMStgid8RAejmFOrCvj Nr2QBCvyAshfhFird313xaANzqbcNlmn+yx5C+ISAFpeFQNaoNmqvkYNEQ+LEA+lJPWr GT1V3OiSxmu09AG5gGO1QlV37SbO8ATK+1jjPJR2xDoB7H62Vj/koQ76pLmnIFa0Ra3/ rJHZ2x5hU2YsvAzsn+BX+N+R+KvXfmWvpVQw/2wjQy0STVxvM29L/F/+QRLpycM4tYUq QkyA==
X-Gm-Message-State: ABy/qLaF8Qmlhu59wmT+jugJuoRn+W4/RWS1X4iXE/obJMBX2oJpbINN mS7/ZF1EjtmoXMmlDKRbI20ZCeQtGAbANg==
X-Google-Smtp-Source: APBJJlG/awr2QJIutmOb5iIdqtmriyKs8pPn90hsTGXrxyQSItU0IOPQN+TYXXgbLo4ETF4uSpS9zw==
X-Received: by 2002:a05:6a00:2e98:b0:67b:8602:aa1e with SMTP id fd24-20020a056a002e9800b0067b8602aa1emr26102253pfb.28.1691094591316; Thu, 03 Aug 2023 13:29:51 -0700 (PDT)
Received: from ?IPV6:2406:e003:10cc:9901:b2e1:1101:7ba7:19fd? ([2406:e003:10cc:9901:b2e1:1101:7ba7:19fd]) by smtp.gmail.com with ESMTPSA id y9-20020aa78049000000b00640dbbd7830sm260608pfm.18.2023.08.03.13.29.49 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 03 Aug 2023 13:29:50 -0700 (PDT)
Message-ID: <935b380f-157b-74c1-5844-d73eab2e9d81@gmail.com>
Date: Fri, 04 Aug 2023 08:29:45 +1200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.10.0
Content-Language: en-US
To: Owen DeLong <owen@delong.com>, "Pascal Thubert (pthubert)" <pthubert=40cisco.com@dmarc.ietf.org>
Cc: Ole Trøan <otroan@employees.org>, "v6ops@ietf.org list" <v6ops@ietf.org>
References: <CO1PR11MB4881747D07D7F1DED14C65E4D808A@CO1PR11MB4881.namprd11.prod.outlook.com> <F035E47E-56A4-46C1-B24B-FC19BF40774D@delong.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
In-Reply-To: <F035E47E-56A4-46C1-B24B-FC19BF40774D@delong.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: base64
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/s3AzOcmOsk8wnRBfsqcGk4mwQA0>
Subject: Re: [v6ops] Thoughts on draft-ietf-v6ops-dhcp-pd-per-device
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Aug 2023 20:30:45 -0000

On 04-Aug-23 05:25, Owen DeLong wrote:
> /64 also provides a sufficiently large space that the odds of a collision among randomly generated addresses are sufficiently small as to allow address autoconf to have a high success rate on the first attempt.

There's that, and a similar argument about privacy/guessability of IIDs. When we looked at this for RFC7421, we concluded that 40 bits was enough, so /80 or even /88 subnets would be reasonable.
(https://www.rfc-editor.org/rfc/rfc7421.html#page-16)

> 
> Walking further right to work around stingy provider’s bad allocation policies is a step in the wrong direction, IMHO.
> 
> That said, I do agree that /64 shouldn’t be hard coded anywhere and that prefix size should be an operator choice. I think it is useful for /64 to remain a strong recommendation.

So perhaps 6man should adopt draft-bourbaki-6man-classless-ipv6?

    Brian

> 
> Owen
> 
> 
>> On Aug 3, 2023, at 08:52, Pascal Thubert (pthubert) <pthubert=40cisco.com@dmarc.ietf.org> wrote:
>>
>> +295147905179352825856
>>
>> I believe that neither any new spec nor any new implementation should have 64 hardcoded in it anymore. There should be a MUST in a BCP for that.
>>
>> There are some chains of inheritance that should be broken before they hurt too much, e.g., https://garethdennis.medium.com/the-not-so-glamourous-origins-of-standard-track-gauge-2b5f1ae7e3bc.
>>
>> Though the horse tall tale might be overrated, I still believe in the one that says that the 64 value was not defined for the best of admins, but to allow SLAAC using the MAC address as IID even in L2 networks using the MAC-of-the-future, of 64 bits. Firewire is dead, and 15.4 is the only major L2 left with 8 bytes MACs. The IETF now discourages MAC for IID anyway.
>>
>> 64 is thus only useful because of some existing SLAAC implementations and should be considered as a special value only in that context, to be provisioned accordingly by the admin that really wants SLAAC and those devices (admittedly, my home gateway is like that).
>>
>> NetOps who are not in that context should be able to build the network they want with minimum constraints. There should not be constraints that are there only to fit the taste or the limitations of the protocol designers. A touch of humility and a good dose of separation of power & responsibility would serve us well here.
>>
>> All the best,
>>
>> Pascal
>>
>>
>>> -----Original Message-----
>>> From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Brian E Carpenter
>>> Sent: Wednesday, August 2, 2023 11:38 PM
>>> To: Ole Trøan <otroan@employees.org>
>>> Cc: v6ops@ietf.org list <v6ops@ietf.org>
>>> Subject: Re: [v6ops] Thoughts on draft-ietf-v6ops-dhcp-pd-per-device
>>>
>>>> On 03-Aug-23 09:20, Ole Trøan wrote:
>>>> Brian,
>>>>
>>>>> On 2 Aug 2023, at 23:10, Brian E Carpenter <brian.e.carpenter@gmail.com>
>>> wrote:
>>>>>
>>>>> On 02-Aug-23 18:55, Ole Trøan wrote:
>>>>>>> With all due respect, etc. etc., very few people on this list have a
>>> typical home network. If we are talking about customers of an ISP that only
>>> offers a /60, it's a different world to ours. I am *not* defending such ISPs,
>>> far from it, but the CEs that they provide are highly unlikely to enable
>>> dhcp-pd-per-device.
>>>>>> If this proposal results in an address assignment approach that cannot
>>> even number a home network that has been assigned 295147905179352825856
>>> addresses, at least an outsider would start wondering what we were smoking.
>>>>>
>>>>> Well yes, but aren't you agreeing with me? A CE that only has a /60
>>> probably shouldn't support a delegation method that assigns a whole /64 to a
>>> single device. (Unless the CE also knows that the device is capable of
>>> assigning longer prefixes to subsidiary devices, which is essentially what
>>> Pascal was saying.)
>>>>>
>>>>> Or in other words, the dhcp-pd-per-device mechanism is only useful for
>>> networks that know how to use it.
>>>>
>>>> Yes, that we agree on.
>>>> DHCP PD as a delegation method supports any prefix length.
>>>
>>> So does RFC 8992, as it happens. I had fun in my toy implementation
>>> supporting any prefix length.
>>>
>>>> The size of the assigned prefix should be an operational choice. I am not
>>> sure this document needs to say more than if the prefix is longer than 64
>>> then further sub-assignment to other hosts will not support SLAAC. If even
>>> that.
>>>
>>> Yes.
>>>     Brian
>>> _______________________________________________
>>> v6ops mailing list
>>> v6ops@ietf.org
>>> https://www.ietf.org/mailman/listinfo/v6ops
>> _______________________________________________
>> v6ops mailing list
>> v6ops@ietf.org
>> https://www.ietf.org/mailman/listinfo/v6ops
>

v2.23.0 | Report a Bug | By Email