[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DHCP vs. RA... again.

To: <alh-ietf@tndh.net>
Subject: Re: DHCP vs. RA... again.
From: Ralph Droms <rdroms@cisco.com>
Date: Fri, 3 Aug 2007 16:46:02 -0400
Cc: "'james woodyatt'" <jhw@apple.com>, "'IPv6 Operations'" <v6ops@ops.ietf.org>
In-reply-to: <025001c7d60d$e9269fd0$bb73df70$@net>
References: <kGGkfVbBMbsq.qPmmb7gt@87.94.96.42> <EF2F0EC839870F43A6637360BC12ABD402C3AFAB@PACDCEXCMB05.cable.comcast.com> <001401c7d550$2da35f90$88ea1eb0$@net> <144A7759-8E61-45C2-A6D8-587F5E01B939@cisco.com> <1332B58A-D8BC-408E-955C-7DB853E3EE1D@apple.com> <E2A6E7D7-6B02-44AE-A315-8C5575CC1FB1@cisco.com> <CAB62842-A568-4335-9552-867D5D922E30@apple.com> <025001c7d60d$e9269fd0$bb73df70$@net>

Tony - the network operators I was referring to are interested inDHCP-only operation because, in their deployment experience, RAs haveproven problematic. I understand the model you are referring to, butthat model comes from a different set of network operators.

We can certainly argue about whether RAs are fundamentally moreproblematic than DHCP and whether what we need to do is fix ND orextend DHCP; what I am reporting is what these operators have told mebased on hands-on experience with deployed networks.


- Ralph

On Aug 3, 2007, at Aug 3, 2007,4:36 PM, Tony Hain wrote:

james woodyatt wrote:
...
Are the network operators who are expressing "the specific
requirement" that their network not "depend on RA" willing to accept
that they still need RA to signal nodes that DHCP is required for
obtaining prefix information and default router addresses?

Or, do they want RA deprecated completely?  If they do, then I
wouldn't like that.
To shorten a long debate, the deployment models for not using RA are
fundamentally broken to start with. They are based on the conceptthat an RAwould result in a shared prefix between customers, because they arenottaking the step to do L2 isolation between the aggregation pointand thecustomer base. On top of that the security model is wrapped up inusing DHCPas their trust anchor (never mind that spoofing a mac blows thisaway).
It is perfectly fine for the DHC wg to provide the tools for theseoperatorsto deploy the way they want to. It is not reasonable for thoseoperators todrive their broken deployment model on the rest of the world byinsistingthat DHCP is 'the only tool'. For them the RA should indicate 'useDHCP',while for the rest of the world the RA should indicate the DNSserver so
that DHCP is not required.

Tony

Follow-Ups:
- Re: DHCP vs. RA... again.
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- RE: DHCP vs. RA... again.
  - From: "Tony Hain" <alh-ietf@tndh.net>

References:
- RE: DHCP failures (was RE: Do you want to have more meetings outsi de US ?)
  - From: "Jari Arkko" <jari.arkko@piuha.net>
- RE: DHCP failures (was RE: Do you want to have more meetings outsi de US ?)
  - From: "Durand, Alain" <Alain_Durand@cable.comcast.com>
- RE: DHCP failures (was RE: Do you want to have more meetings outsi de US ?)
  - From: "Tony Hain" <alh-ietf@tndh.net>
- Re: DHCP failures (was RE: Do you want to have more meetings outsi de US ?)
  - From: Ralph Droms <rdroms@cisco.com>
- Re: DHCP vs. RA... again.
  - From: james woodyatt <jhw@apple.com>
- Re: DHCP vs. RA... again.
  - From: Ralph Droms <rdroms@cisco.com>
- Re: DHCP vs. RA... again.
  - From: james woodyatt <jhw@apple.com>
- RE: DHCP vs. RA... again.
  - From: "Tony Hain" <alh-ietf@tndh.net>

Prev by Date: RE: DHCP vs. RA... again.
Next by Date: RE: DHCP failures (was RE: Do you want to have more meetings outsi de US ?)
Previous by thread: RE: DHCP vs. RA... again.
Next by thread: RE: DHCP vs. RA... again.
Index(es):
- Date
- Thread