IETF Logo Mail Archive

Re: [v6ops] IPv6-Only Preferred DHCPv4 option

"Bernie Volz (volz)" <volz@cisco.com> Fri, 06 December 2019 14:45 UTC

Return-Path: <volz@cisco.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A36C1200B1; Fri, 6 Dec 2019 06:45:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=HcLBn+KW; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=v2P3EzUc
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EYZjiN_emBPN; Fri, 6 Dec 2019 06:45:32 -0800 (PST)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E40E1120020; Fri, 6 Dec 2019 06:45:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4524; q=dns/txt; s=iport; t=1575643532; x=1576853132; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=8aArEA7MZ4J15OaUyn0Mo7W73GAVKkr4a5o1TllR7aQ=; b=HcLBn+KWyhnTXCjSr4UaVE5kRyqxdF3VlrYD9U3IZ1vPukWPUCbTs0Qe XOxRgKl/RTMqlA03sh0PKFv04FWiv0WCT/eHqycZPYoRZVYtD5+PhqAEy 5WBRDU5QFGfFKiz54A8xYNttjXMIv/TufF/tvWIK1F6XHcem2zxf3LmE+ s=;
IronPort-PHdr: 9a23:5ZQ9qxAPbhWj9OETNNLhUyQJPHJ1sqjoPgMT9pssgq5PdaLm5Zn5IUjD/qgw3kTRU9Dd7PRJw6rNvqbsVHZIwK7JsWtKMdRXUgMdz8AfngguGsmAXFP8KOzCZC0hF8MEX1hgrDm2
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BKAACXaOpd/51dJa1kHAEBAQEBBwEBEQEEBAEBgWoHAQELAYFKUAVsWCAECyoKhCGDRgOEWoYkgl+YBIEugSQDVAkBAQEMAQEYCwoCAQGEQAIXgX4kNAkOAgMNAQEEAQEBAgEFBG2FNwyFUgEBAQECAQEBEBERDAEBLAsBBAcEAgEIDgMEAQEBAgImAgICJQsVCAgCBAENBQgagwGCRgMOIAECDKIMAoE4iGB1gTKCfgEBBYE1AYNaGIIXAwaBDigBjBYaggCBWIJMPoJkAQGBTQIWgw4ygiyNMIJxnT1wCoIulXWaJoxagXCaIwIEAgQFAg4BAQWBUjmBWHAVO4JsUBEUjGaDc4UUhT90gSiNfwEGHwSBBwGBDwEB
X-IronPort-AV: E=Sophos;i="5.69,285,1571702400"; d="scan'208";a="396523510"
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 06 Dec 2019 14:45:30 +0000
Received: from XCH-ALN-013.cisco.com (xch-aln-013.cisco.com [173.36.7.23]) by rcdn-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id xB6EjU8x015479 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 6 Dec 2019 14:45:30 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-013.cisco.com (173.36.7.23) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 6 Dec 2019 08:45:29 -0600
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 6 Dec 2019 08:45:29 -0600
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Fri, 6 Dec 2019 09:45:29 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=njEGjSPdn3Juw8So6Lx2hwt2j+Z+LxT5NRjCS3fOMi9LTpHOdujuZOFej8N+NbhA0NZ5YbmKyJkXk8D3NiLxoKVi7Gf7wxNZe6dBNB+nRvDizrhfQwMJAI4kzb5tG1lRFhhLpP+hm7YSRenRvyWVpMMMS0FaBArstSRt+2LG+Mv4gnl3MEWShg9EacCcZMJVEgHoTRMAvMKwl65ivTg+oDPTkIpzIijIDaDZmXe/rpYfLIT+ZHVrz8hAj8ySjLAZLmWLo2vGZ8j79gTUsyTeSq7HbFHNtTWOa3i4p9YfW+9mVxxkzDupnEPGrbZ0MsSFPjMBhXqo5Zy5KByFoXfdXw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8aArEA7MZ4J15OaUyn0Mo7W73GAVKkr4a5o1TllR7aQ=; b=gfGxt6Vo2LY2y48wpIsLF7sLNF2BMU9au40pNyuDEa2WEr8dZ9fqjJ+IKRDDGnJi9N14V63y3+Fch07lybeAAo7pksFgq8M41+mhLVqc2pM0A3mmZgFdvviq1ieuHDxg+Nea/BRJ5bP2WKKLq1amt4BFRk5kLua+xkgWZVcvF+WhofucBlVCwk9Xyw+w3PIO/iD3UoGP3N5gU16aRdDfC9/od0cCvcnB6txym1O5Tj3ockDjbWQpzEMZqvLjE7iBQCQvUhAay2DdLBFsNhY0cWFraOPPlVlU6hAU5vnVR91ZEDThtqQNPgsHGrse/NMD0+c7qdBoI5ReXBodWaBGrg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8aArEA7MZ4J15OaUyn0Mo7W73GAVKkr4a5o1TllR7aQ=; b=v2P3EzUc0/d93j/efSj+KKr/qCMBrk+jEk7Wzag5gmIeAnwjyDuUpVfOeGR5EPlXS17OGUDFRgUiBFsgo3wFFefQEvXGFoTwc/KLyAsXtwD0HTQllQzgWHkOtMsAIw31TxW4yQhrm3TyCbH30nzNxn7f+EvnjeQtrnv2L6cNoTA=
Received: from DM6PR11MB4137.namprd11.prod.outlook.com (20.176.126.158) by DM6PR11MB4009.namprd11.prod.outlook.com (20.176.125.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2516.13; Fri, 6 Dec 2019 14:45:28 +0000
Received: from DM6PR11MB4137.namprd11.prod.outlook.com ([fe80::4194:dade:1d47:2678]) by DM6PR11MB4137.namprd11.prod.outlook.com ([fe80::4194:dade:1d47:2678%6]) with mapi id 15.20.2516.017; Fri, 6 Dec 2019 14:45:28 +0000
From: "Bernie Volz (volz)" <volz@cisco.com>
To: Ted Lemon <mellon@fugue.com>, Philip Homburg <pch-v6ops-9@u-1.phicoh.com>
CC: "v6ops@ietf.org" <v6ops@ietf.org>, "dhcwg@ietf.org" <dhcwg@ietf.org>
Thread-Topic: [v6ops] IPv6-Only Preferred DHCPv4 option
Thread-Index: AQHVrEHbgQve9DKh2EKQEqgwr7Y10qetK3KQ
Date: Fri, 06 Dec 2019 14:45:28 +0000
Message-ID: <DM6PR11MB413793BCC3AFF44F7B8E101DCF5F0@DM6PR11MB4137.namprd11.prod.outlook.com>
References: <m1idEJQ-0000KPC@stereo.hq.phicoh.net> <EF1F2FB2-4FA0-4BCC-82B8-948EBE7915A6@fugue.com>
In-Reply-To: <EF1F2FB2-4FA0-4BCC-82B8-948EBE7915A6@fugue.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=volz@cisco.com;
x-originating-ip: [173.38.117.78]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: dde8f7d2-5037-41a4-f22e-08d77a5aeffb
x-ms-traffictypediagnostic: DM6PR11MB4009:
x-microsoft-antispam-prvs: <DM6PR11MB400996576344791FCA6EE579CF5F0@DM6PR11MB4009.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6108;
x-forefront-prvs: 0243E5FD68
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(39860400002)(376002)(366004)(136003)(396003)(199004)(13464003)(189003)(4326008)(76176011)(6506007)(478600001)(55016002)(7696005)(99286004)(53546011)(26005)(966005)(66446008)(74316002)(33656002)(305945005)(316002)(186003)(8676002)(54906003)(81156014)(8936002)(86362001)(66946007)(2906002)(71190400001)(110136005)(64756008)(66556008)(66476007)(71200400001)(5660300002)(9686003)(52536014)(102836004)(229853002)(81166006)(76116006); DIR:OUT; SFP:1101; SCL:1; SRVR:DM6PR11MB4009; H:DM6PR11MB4137.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: dde8f7d2-5037-41a4-f22e-08d77a5aeffb
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Dec 2019 14:45:28.7896 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ORxBCL1YBNnHuaLvUTH13crDWiguwI4+8I5WM0E8UlXiK72BCZF3WMowgShkSpie
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB4009
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.23, xch-aln-013.cisco.com
X-Outbound-Node: rcdn-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/w3qJusx5WI5NUxTGFe7gKMaVtQU>
Subject: Re: [v6ops] IPv6-Only Preferred DHCPv4 option
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2019 14:45:35 -0000

Even if an "assigned" address is sent (which requires fewer changes on the DHCP server implementation), it should only be "associated" with that client for a very short duration (the server I work on limits it to 2 minutes by default and this is not saved to persistent storage). A DHCPACK is what confirms the lease for the returned lease-time and this is never sent (as the client will not send a DHCPREQUEST per the draft).

Existing servers can deploy this without ANY changes (provided you have a means to configure the server with whatever option number is finally assigned).

Personally, I would NOT recommend breaking the semantics of a DHCPOFFER and always include an address because you never know how intermediate devices that may be "snooping" this traffic will handle this; for example, the intermediate device might drop what it feels is an invalid packet.

One change to the server may be to simply not even temporarily associate the 'assigned' address with the client (since the client is not expected to send a DHCPREQUEST). But, again, I doubt this would be necessary.

Even in cases where there are minimal addresses available with a lot of clients coming online at once, the DHCP server would drop DHCPDISCOVERs that it has no available lease for. Thus, the client will just retry for a bit until an address becomes available. But other than generating the excess traffic, the end result is the same eventually - the client will stop DHCP.

This is one nice aspect of this design - there are minimal changes needed to deploy it at servers (and in fact, most servers may need no changes).

- Bernie

-----Original Message-----
From: v6ops <v6ops-bounces@ietf.org> On Behalf Of Ted Lemon
Sent: Friday, December 6, 2019 9:31 AM
To: Philip Homburg <pch-v6ops-9@u-1.phicoh.com>
Cc: v6ops@ietf.org
Subject: Re: [v6ops] IPv6-Only Preferred DHCPv4 option

I really feel like there is some point-missing going on here. It is trivial to make this feature only activate for clients that support it. If that is done, then there is no reason to assign an address at all. The offer doesn’t even need to include that option. So any discussion of what address to send is irrelevant and unnecessary. 

> On Dec 6, 2019, at 06:10, Philip Homburg <pch-v6ops-9@u-1.phicoh.com> wrote:
> 
> 
>> 
>> "number of IPv4 addresses in the pool" comes to mind.
>> 
>> Like, 80% of all hosts are fine with IPv6+NAT64, so why provision a 
>> large enough subnet to cover 100% of all expected hosts if 20% will do?
>> 
>> IPv4 seems to be somewhat in short supply these days.
> 
> With a few exceptions, just about any DHCP pool I come across these 
> days is using RFC 1918.
> 
> Are you running out of RFC 1918 addresses in your pool? Or is the 
> setup that you give publicly routable IPv4 addresses to all dual stack 
> hosts and want to only put hosts that support NAT64 behind NAT?
> 
> In that case, what's the rational for providing dual stack hosts with 
> public
> IPv4 addresses?
> 
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

_______________________________________________
v6ops mailing list
v6ops@ietf.org
https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email