[v6ops] Re: Dynamic addresses
Marco Moock <mm@dorfdsl.de> Tue, 13 August 2024 15:16 UTC
Return-Path: <mm@dorfdsl.de>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9CB7C14F609 for <v6ops@ietfa.amsl.com>; Tue, 13 Aug 2024 08:16:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=dorfdsl.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4h8nZWhYsc-w for <v6ops@ietfa.amsl.com>; Tue, 13 Aug 2024 08:16:44 -0700 (PDT)
Received: from srv1.dorfdsl.de (srv1.dorfdsl.de [IPv6:2a01:170:118f:3::22]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC41CC14F5F6 for <v6ops@ietf.org>; Tue, 13 Aug 2024 08:16:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=dorfdsl.de; s=default; t=1723562198; bh=ml1qroRJs+HOodHQXR1z5vG+zQFHckQo58CqvqmUmEo=; h=Date:From:To:Subject:In-Reply-To:References:From; b=tXQlzbejSOIKuw18NbLJ3QKNhGV2U76mEYceDNjL7kT3jVVPwGMx23YRZ9E7LpBdk EWnEupEcTWqjeenYwE8aXm7Aqh5p5aGFzUSTJOjmk5Ncat9yruTfmKVyZJFchJsQKg kjZgvT8dNQNMrDkcAPoi9hSdVj+L6j8mwSyiiGphbP9gLlaKllH792u1t6hWxPf8uC j40mkei/5bX3Cbzs5g2X6RJj4sPGivnWhIEliA3w6NeM2ssQJoxAqlDtol20IpREr2 kPxuPw6lglRtdgMQzcSEDPLHdG6nolWqP23+X49EHcjmHeH6Zh36JHmU2yLpwaFTxU w8rHFgI3wla2A==
Received: from zbook ([IPv6:2a01:170:118f:1:70fc:b326:37e4:9919]) (authenticated bits=0) by srv1.dorfdsl.de (8.17.1.9/8.17.1.9/Debian-2+deb12u2) with ESMTPSA id 47DFGc2O068887 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT) for <v6ops@ietf.org>; Tue, 13 Aug 2024 17:16:38 +0200
Date: Tue, 13 Aug 2024 17:16:37 +0200
From: Marco Moock <mm@dorfdsl.de>
To: "v6ops@ietf.org" <v6ops@ietf.org>
Message-ID: <20240813171637.48ce7cfe@zbook>
In-Reply-To: <CACyFTPH+dA9xkCUT98zHr7AYpGyYFuOgOaynhsPjz3iKEuseog@mail.gmail.com>
References: <df01e0f8-1b0d-4792-be2c-89a59da7de49.ref@swbell.net> <df01e0f8-1b0d-4792-be2c-89a59da7de49@swbell.net> <CAJgLMKte1H3FaoQOhc7_No=SNdczQFo2_mp2c1FvTOqLCRFm2g@mail.gmail.com> <6e70bed7-6f84-4a4a-90f8-fec1d10a599b@swbell.net> <CAJgLMKsXHcxzu8Kbrg1pu9SDkGDH0b1bWzW__CrfpDaSv3Joog@mail.gmail.com> <CACyFTPFakaDLdTJVc6d1HiR_oaedNOV76MRQxJp=+z95uQFVZQ@mail.gmail.com> <CAPt1N1=rQp5U4_X=2WvCV358S9Qm+E+_+gs_mgUJHP_68dYLmg@mail.gmail.com> <d16406c6-e5d9-4aa4-a16e-7513d04d6b07@gmail.com> <DB9PR07MB777164E663505AA86537EB1DD6852@DB9PR07MB7771.eurprd07.prod.outlook.com> <20240812142831.22a4f28e@zbook> <DB9PR07MB7771D93917C01A028E30FDEED6852@DB9PR07MB7771.eurprd07.prod.outlook.com> <0d0f35a3-1493-4e4e-8b4a-08f41fac2b2c@gmail.com> <CACyFTPFPRrW5MxZ8yoNPKYWxzaGQO-HnMNpEKR3TCbVpK6hgWg@mail.gmail.com> <20240813065439.061ef59a@zbook> <CACyFTPH+dA9xkCUT98zHr7AYpGyYFuOgOaynhsPjz3iKEuseog@mail.gmail.com>
X-Mailer: Claws Mail 4.3.0 (GTK 3.24.43; x86_64-redhat-linux-gnu)
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Message-ID-Hash: 6J44GHVD76U77WASETFELPO2SDII6MFA
X-Message-ID-Hash: 6J44GHVD76U77WASETFELPO2SDII6MFA
X-MailFrom: mm@dorfdsl.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-v6ops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [v6ops] Re: Dynamic addresses
List-Id: v6ops discussion list <v6ops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/z5MaP7gPVzQVpqy43-7jJLcYhAo>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Owner: <mailto:v6ops-owner@ietf.org>
List-Post: <mailto:v6ops@ietf.org>
List-Subscribe: <mailto:v6ops-join@ietf.org>
List-Unsubscribe: <mailto:v6ops-leave@ietf.org>
Am Tue, 13 Aug 2024 12:15:06 +0530 schrieb Daryll Swer <contact@daryllswer.com>: > What do you mean by RA prefix lifetime matching PD lease time = no > problems? If implemented correctly, there shouldn't be any problems. > If ISP-side, PD lease time = 24 hours, and RA prefix lifetime = 24 > hours on CE side, and the genius ISP does what it does best, and > flips the prefixes within <24 hours of elapsed time for the session, > either due to scripting on their systems that does PPPoE or DHCP > disconnect per 6-12 hours (yes, there are many ISPs doing this > globally), or as we discussed on this thread, power issues (varies > wildly by environments and economies), the hosts on the LAN side of > the CE will still have old prefixes with original 24 hour pref. > lifetime value. They the ISP is the problem because the prefix doesn't have the lifetime they specify. > > A router can also extend that to avoid connection interrupts. > > What do you mean by this? According to the DHCPv6 RFC, it is possible to extend the lifetime of PD. |Each address or delegated prefix assigned to the client has |associated preferred and valid lifetimes specified by the server. To |request an extension of the lifetimes assigned to an address or |delegated prefix, the client sends a Renew message to the server. If the ISP implements that properly, it should work, but as you said, strange ISPs exist. > As I originally said, this (dynamic prefixes) also makes it virtually > impossible for the home-user to even host basic SSH to their devices > on the LAN or even the router itself. If they are customers of bad ISPs, this is indeed the case. > I thought we are trying to restore the end-to-end/peer-to-peer > principle with IPv6, not further push down NAT66/NPTv6 to combat 24/7 > renumbering of the ISP with ULAs and the like. In IPv4, changing IP > /32 addresses were masked (literally) with masquerade. e2e exists again in most cases. > And surely, I hope, nobody is suggesting the folks who authored > BCOP-690 didn't do their homework. The BCOP clearly explains WHY > dynamic prefixes == harmful: > https://www.ripe.net/publications/docs/ripe-690/#5-2--why-non-persistent-assignments-are-considered-harmful For that case the DHCPv6 PD server could remember that the old prefix is still valid. I dunno if such implementations exist, but technically it would be possible. > Even if we ignore ALL the technical issues with dynamic prefixes, > dynamic prefixes only increases costs and complexity for law > enforcement compliance on the ISP-side anyway. In short, > persistent/static ia_pd is a win-win for both sides (ISP and CE > owner). Of course. But if you provides fixed net per customer, you can't charge an additional fee for fixed net anymore. This is what many ISPs want to do and already exist with IPv4 - often reasoned by questionable arguments.
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 The Multach's
- [v6ops] Re: Dynamic addresses Jatin
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 Timothy Winters
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 The Multach's
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 Timothy Winters
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 Daryll Swer
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 Ted Lemon
- [v6ops] Dynamic addresses Brian E Carpenter
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Brian E Carpenter
- [v6ops] Re: Dynamic addresses The Multach's
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Ted Lemon
- [v6ops] Re: Dynamic addresses Marco Moock
- [v6ops] Re: Dynamic addresses Ted Lemon
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Ted Lemon
- [v6ops] Re: Dynamic addresses Gert Doering
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses David Farmer
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses David Farmer
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Brian E Carpenter
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Brian Candler
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Brian Candler
- [v6ops] Re: Dynamic addresses David Farmer
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Tim Chown
- [v6ops] Re: Dynamic addresses Gert Doering
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Gert Doering
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Erik Auerswald
- [v6ops] Re: Dynamic addresses George Michaelson
- [v6ops] Re: v6ops Digest, Vol 168, Issue 29 Daryll Swer
- [v6ops] Re: Dynamic addresses N.Leymann
- [v6ops] Re: Dynamic addresses Marco Moock
- [v6ops] Re: Dynamic addresses Brian E Carpenter
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Marco Moock
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Marco Moock
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Tim Chown
- [v6ops] Re: Dynamic addresses Gert Doering
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses David Farmer
- [v6ops] Re: Dynamic addresses Marco Moock
- [v6ops] Re: Dynamic addresses David Farmer
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses N.Leymann
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Gert Doering
- [v6ops] Re: Dynamic addresses Brian E Carpenter
- [v6ops] Re: Dynamic addresses Daryll Swer
- [v6ops] Re: Dynamic addresses Ted Lemon
- [v6ops] Re: Dynamic addresses David Farmer