IETF Logo Mail Archive

Re: [v6ops] draft-linkova-v6ops-nd-cache-init to working group draft

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Wed, 24 July 2019 11:05 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AF9D120176; Wed, 24 Jul 2019 04:05:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=HIZLBpdF; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=GxfpaTNH
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kNd3eWfOcmH9; Wed, 24 Jul 2019 04:05:42 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B367112016A; Wed, 24 Jul 2019 04:05:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6360; q=dns/txt; s=iport; t=1563966341; x=1565175941; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=UniFUZgG5ZnVquzBIlYgTTP2HmGxJi22uuOSU7KihbM=; b=HIZLBpdF8xDnhdzzWngSK0CFZKBPFgZQWW5JhRUsqnCXGVSjN1e7IpJo 82KQced7c7xepFve3asX4YGprrENpBnIMByCm8++OvjNKfk4fBKKC7I1r Rgx4B10brhiEznFako+/dHEVeJPmZ4o49pqrY3SzV5UrHphpBoyFH4NC4 w=;
IronPort-PHdr: 9a23:5ho+JBQKj3pDlGp389dMAmX89Npsv++ubAcI9poqja5Pea2//pPkeVbS/uhpkESXBNfA8/wRje3QvuigQmEG7Zub+FE6OJ1XH15g640NmhA4RsuMCEn1NvnvOjQmHNlIWUV513q6KkNSXs35Yg6arw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AdAACtOjhd/5FdJa1mGQEBAQEBAQEBAQEBAQcBAQEBAQGBVgEBAQEBAQsBgUMkLANtVSAECyoKhBODRwONQIJbfohWjXyBQoEQA1QJAQEBDAEBGAsKAgEBhEACF4I/IzcGDgEDAQEEAQECAQZthR4MhUoBAQEDAQEBEBERDAEBLAsBBAsCAQgYAgImAgICHwYLFRACBA4FIoMAAYFqAw4PAQIMoUECgTiIYHGBMoJ5AQEFgTIBg1INC4ITAwaBDCgBhHGGbReBQD+BEScfgU5JNT6CGkcBAYElg0cygiaMHIJchyuUB0AJAoIZkBiDdxuYCpZ1jhQCBAIEBQIOAQEFgWYigVhwFTsqAYJBgkKDcYUUhT9yAYEoi1EBgSABAQ
X-IronPort-AV: E=Sophos;i="5.64,302,1559520000"; d="scan'208";a="603347389"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 Jul 2019 11:05:40 +0000
Received: from XCH-RCD-016.cisco.com (xch-rcd-016.cisco.com [173.37.102.26]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id x6OB5enF026732 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 24 Jul 2019 11:05:40 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-RCD-016.cisco.com (173.37.102.26) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 24 Jul 2019 06:05:40 -0500
Received: from xhs-aln-003.cisco.com (173.37.135.120) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 24 Jul 2019 06:05:39 -0500
Received: from NAM01-SN1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Wed, 24 Jul 2019 06:05:39 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XGELiDeHBMsfRnxwZMylXWiMLbm92leDPg4h78W7vFC4sHnH842FuZ8k8T+XIOTz1fbgeDmDI0w3nv19JKIVmYdO7nO3ao4jv5C/SV74DcAl+1Tx5iHE59/zT9kwd0x0N9Exkc70lqx3whKjDcC/uAdzhTMROhJjQjrZc+Ywq4B/dRTyJ+FcolO1te8FnjUR1fdW817tVz+9VUSERtNgxHiy6kUfKMW3U2IkpJaiMo8huOfMSmQmMu++boNZpMPNkBUUxcfSG/ewtzT9S6sEhgSvvmqYETiD12/LSvX6Iozpq2RSpRHGmjo31P9NwQjbMmprR/tzj6Kfb77yNeWmVA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=UniFUZgG5ZnVquzBIlYgTTP2HmGxJi22uuOSU7KihbM=; b=SyNUsizbrY06k03LFwtxRiiIgwnF2Nqr02mDmcLVW9nrvRLPM7xsG+suPQcLUhQfF97gXbo5ZN6akPYUGxi56tIAaFpGRkLMqPJaFdmIkzDij8SPNEn1pSVWikOLX3EF898ql2MO7LTBxIn9Z0DBNfgfTJed8LJA3jhxMF/SQHJqwlcbzcECNkuBCOa1c8Yab8lnDHrIVAQ/AhsYJbpxy33ZICKIdbZbmv9d8lgd7jtnl08u9+momOYuo9KCPMfSjiK3xG/yZX5bYWrebPqRNW2rbjOfMit7YeF1V/4pqa0ZKDD16zhVU/CqkGQ+VdmtQJYi/MJiuxpi+hHTQYUzag==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=cisco.com;dmarc=pass action=none header.from=cisco.com;dkim=pass header.d=cisco.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=UniFUZgG5ZnVquzBIlYgTTP2HmGxJi22uuOSU7KihbM=; b=GxfpaTNHqstDDaFk/Ci3CZiK1MUB6iFnuXJArArg1sFA7Z5BeHFF35x699fbY5F0qGSqT/CMnJCWjakhcTGUiWxxu+++P2Ltfj8YNoy7QAxqiz9Do7vNRiLEWrDTi2o0ilsCzOZCITs0MvKZQPaM0nAJP+IS8g6zlnAA5r3BStI=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (20.178.250.159) by MN2PR11MB3885.namprd11.prod.outlook.com (20.179.150.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.16; Wed, 24 Jul 2019 11:05:38 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::1ce9:1582:146c:c50a]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::1ce9:1582:146c:c50a%6]) with mapi id 15.20.2094.013; Wed, 24 Jul 2019 11:05:38 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: David Lamparter <equinox@diac24.net>, Fernando Gont <fernando@gont.com.ar>, IPv6 Operations <v6ops@ietf.org>, 6man Chairs <6man-chairs@ietf.org>
Thread-Topic: [v6ops] draft-linkova-v6ops-nd-cache-init to working group draft
Thread-Index: AQHVQTDJQIJu4w3G6EWWHtrdc581RKbYFBSAgABqQoCAABZcgIAAbdEAgACajYA=
Date: Wed, 24 Jul 2019 11:05:38 +0000
Message-ID: <3074B072-EA8C-427C-8ED1-55C5D5BE9448@cisco.com>
References: <351E8A83-734C-448D-B0C6-212C09D564F4@gmail.com> <ea7438f2-b917-60eb-88bc-a375246a0cf9@gmail.com> <8f1c6206-6057-5ab0-c16c-ad8ff67c9457@gont.com.ar> <20190723191925.GF258193@eidolon.nox.tf> <1b6ce7f8-07d1-bb1e-7533-637cfd4ae85b@gmail.com>
In-Reply-To: <1b6ce7f8-07d1-bb1e-7533-637cfd4ae85b@gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [207.115.96.130]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 3adc07e9-828a-4540-bea4-08d71026dc21
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR11MB3885;
x-ms-traffictypediagnostic: MN2PR11MB3885:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MN2PR11MB3885AFA87670E92019965A72D8C60@MN2PR11MB3885.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0108A997B2
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(39860400002)(346002)(396003)(366004)(136003)(199004)(189003)(966005)(25786009)(446003)(76116006)(66476007)(76176011)(54906003)(11346002)(91956017)(7736002)(2616005)(256004)(476003)(99286004)(66446008)(186003)(316002)(64756008)(53546011)(8676002)(66556008)(66946007)(305945005)(486006)(478600001)(6506007)(6916009)(102836004)(26005)(81156014)(6116002)(6306002)(2906002)(36756003)(81166006)(33656002)(6436002)(6246003)(66066001)(6512007)(86362001)(6486002)(66574012)(71190400001)(14454004)(5660300002)(68736007)(229853002)(8936002)(3846002)(71200400001)(53936002)(4326008); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB3885; H:MN2PR11MB3565.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: OsCXsCLo73ABblP6vndmxFaYk6SC0q7SlK3Ab8PZ+bEzw23a/cdTyWpN0cth0gpq/CyuwHc/27p5ZZLa/36eGzkxlFB8ctQidqIGpXoep0UBSfPwu5WgIVmwHPWm5z+4LyBZVG2Bac6OW16/izG6XPRXnTYPpok77TfjG3fwColk0daOaHwfBmczuSRqlWcafGoKCfohdwy8i5bCvK9f7s+KPPM1b0yoD6A/YMmjH9OW5fmg9yPXxW5LcmltZQbyhUFGp51/Ky/viuALbNcHV97zUynahBgt30AmaPiTFMlYPYy53sVbtK/K2YwIKwprsRSzMf5nUoEFsD+E2CPT+cHWluSZtM7n1DtkBNnfeEiAZn3bqKP3+Q2j/2oecrIalV840b8iVunsng0jyJgqw+nado65DNOtIFWDQV9XiXY=
Content-Type: text/plain; charset="utf-8"
Content-ID: <C392680D85962D439A1558C2AB66A0C2@cisco.onmicrosoft.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 3adc07e9-828a-4540-bea4-08d71026dc21
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jul 2019 11:05:38.2546 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: pthubert@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3885
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.26, xch-rcd-016.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/xG1ImEpGOTL8uLaZmi94I5SnQ84>
Subject: Re: [v6ops] draft-linkova-v6ops-nd-cache-init to working group draft
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jul 2019 11:05:45 -0000

Hello Brian

I’ve participated to multiple corridor discussions on that topic and seen agreement that NA(O) to ff02::2 that proactively sets the cache in the routers is better than the current state of affairs which is a NS from the router that is broadcasted to all hosts at L2. 

For one thing it is a lot easier for the proxy infra to cancel on wireless interfaces where there is no router than a NS for which the target is unknown.

Another thing that the draft should do imho is a more comprehensive review of the problems that are associated with reactive. Coming from the router side I’m probably more sensitive to that than others and I’d de happy to contribute.

All that can be done in a round or 2, there is no black magic. I wish to prove you right that it can be done in a matter of months.

Note that it will provide little difference to what we currently do with ND snooping, just will improve the chances to create the state in case the dad was lost. Our biggest problems with snooping are elsewhere and the need for the 6lo -type registration and the unicast lookup does not change a bit. 

All the best,

Pascal

> Le 23 juil. 2019 à 21:53, Brian E Carpenter <brian.e.carpenter@gmail.com> a écrit :
> 
> As has been extensively discussed on another thread, we sadly lack a method
> of getting operational notes with *rough* consensus out quickly, because
> our process for BCP, or worse for standards track, can take years instead
> of weeks.
> 
> Y'all can prove me wrong by sending this draft to the IESG in a month
> or so, and then worry about updating RFC4861 at normal IETF speed.
> 
> (After writing that, I am a bit embarassed that RFC6343 took six months.)
> 
> Regards
>   Brian
> 
>> On 24-Jul-19 07:19, David Lamparter wrote:
>>> On Tue, Jul 23, 2019 at 06:59:23PM +0100, Fernando Gont wrote:
>>>> On 23/7/19 12:39, Brian E Carpenter wrote:
>>>> 1) Yes, we should *obviously* do this.
>>>> 2) If the charter prevents that, fix the charter.
>>> 
>>> I'm all for fixing problems and getting stuff done. And, if there's no
>>> other way than fixing the charter, so be it.
>>> 
>>> However, it would seem to me that, the "bug" here is that we're
>>> defaulting to "6man wouldn't get this done, so let's do it elsewhere".
>> 
>> The discussion I see here is that we've located an operational issue
>> with the IPv6 neighbor cache on routers, we have several candidates for
>> fixing it, and each of these may or may not need a protocol change to go
>> through 6man.
>> 
>> Discussing whether any particular working group "gets things done" seems
>> tangential to the question at hand.
>> 
>>> IMO, should be willing to maintain its protocols, improve them, and fix
>>> problems where necessary.
>>> 
>>> If a BCP is to go against the protocol spec recommendation for the
>>> general case, that's an indication that the protocol should be updated.
>> 
>> Although I don't write the neighbour management code, I do write code
>> that operates routers and I have absolutely no concerns in understanding
>> that a particular "SHOULD" statement has turned out to be a bad choice
>> for the specific situation of first-hop routers.
>> 
>> Whether this is a specification change, to me, is decided by the intent.
>> The intent under consideration here is:
>> 
>>   When a valid Neighbor Advertisement is received (either solicited or
>>   unsolicited), the Neighbor Cache is searched for the target's entry.
>>   If no entry exists, the advertisement SHOULD be silently discarded.
>>   There is no need to create an entry if none exists, since the
>>   recipient has apparently not initiated any communication with the
>>   target.
>> 
>> The intent I see is that in most cases there's no point in having
>> devices consume memory, and the "SHOULD" is correct behaviour for hosts.
>> Routers *DO* "need to create an entry if none exists".  I don't see a
>> conflict with 4861's intent, which I take as "don't open yourself to DoS
>> attacks".  The router /will have the neighbor cache entry anyway/, just
>> with a delay, later, and the resulting annoyance.
>> 
>> 4861 just failed to invoke the magic 8-ball correctly to make the
>> authors omniscient and recognize the specific circumstances under which
>> this SHOULD is maybe not the best idea.  This is implementation guidance
>> based on operational experience.  Just write it down and get it out
>> there.
>> 
>> 
>> -David
>> .
>> 
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email