Presentation is loading. Please wait.

Presentation is loading. Please wait.

Current Issues with DNS Configuration Options for SLAAC

Published byDarcy Nicholson Modified over 6 years ago

Similar presentations

Presentation on theme: "Current Issues with DNS Configuration Options for SLAAC"— Presentation transcript:

1 Current Issues with DNS Configuration Options for SLAAC
(draft-gont-6man-slaac-dns-config-issues) Fernando Gont Pavel Simerda SI6 Networks RedHat IETF 84 Vancouver, Canada. July 29-August 3, 2012

2 Background Two ND options convey DNS-related info:
RDNSS: Recursive DNS servers DNSSL: DNS Search List These options include a “lifetime” value: It is the amount of time during which the info is valid It is selected as a function of “MaxRtrAdvInterval”: MaxRtrAdvInterval <= Lifetime <= 2*MaxRtrAdvInterval

3 Problem statement The RDNSS/DNSSL “Lifetime” has been found to be too short Packet loss causes DNS info to be discarded Problem exacerbated in some implementations DNS failures considered a “hard error”, affecting both IPv6 and IPv4 connectivity

4 Potentian config oscillation problem
RFC 6106 mandates that newly received info should replace existing info If more than one router sends RDNSS/DNSSL options, network config would oscillate This does not happen with any other info learned with SLAAC

5 draft-gont-6man-slaac-dns-config-issues
Discusses the problem Describes some alternative workarounds: Change the semantics of the Lifetime field Change the default Lifetime value Use RSes for active probing Sanitize the received Lifetime value We expect 6man to converge to one of them

6 Change the semantics of “Lifetime”
“Lifetime: amount of time during which the corresponding info is expected to be stable” If the lifetime expires: The corresponding info should not be discarded Newly received data should replace expired info Pros: Addresses all potential problems Receiving-side fix! Cons: ?

7 Change the default “Lifetime” value
Change the default “Lifetime” to 5*MaxRtrAdvInterval Pros: ? Cons: Sending-side workaround May still fail with networks with huge multicast packet loss Does not address the config oscillation problem

8 Sanitize the received “Lifetime” values
Enforce a lower limit on the Lifetime value Pros: Receiving-side fix Cons: No hints for a proper limit Does not address the config oscillation problem

9 Use RSes for active probing
Send RSes when Lifetime-expiration is imminent Pros: Receiving-side fix Cons: Leads to increased traffic Does not address the config oscillation problem No other SLAAC info requires this “probing”

10 Moving forward Comments? Adopt this document as a 6man wg item?

11 Feedback? Fernando Gont

Download ppt "Current Issues with DNS Configuration Options for SLAAC"

Similar presentations

73rd IETF meeting, November 16-21, 2008

73rd IETF meeting, November 16-21, 2008
Benoit Lourdelet Wojciech Dec Behcet Sarikaya Glen Zorn July 2009 IPv6 RADIUS attributes for IPv6 access networks IETF-75

Benoit Lourdelet Wojciech Dec Behcet Sarikaya Glen Zorn July 2009 IPv6 RADIUS attributes for IPv6 access networks IETF-75
Design Guidelines for IPv6 Networks draft-matthews-v6ops-design-guidelines-01 Philip Matthews Alcatel-Lucent.

Design Guidelines for IPv6 Networks draft-matthews-v6ops-design-guidelines-01 Philip Matthews Alcatel-Lucent.
Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,

Dynamic Allocation of Shared IPv4 Addresses draft-csf-dhc-dynamic-shared-v4allocation-00 Q. Sun, Y. Cui, I. Farrer, Y. Lee, Q. Sun, M. Boucadair IETF 89,
Deployment Considerations for Dual-stack Lite IETF 80 Prague Yiu Lee, Roberta Magione, Carl Williams, Christian Jacquenet Mohamed Boucadair.

Deployment Considerations for Dual-stack Lite IETF 80 Prague Yiu Lee, Roberta Magione, Carl Williams, Christian Jacquenet Mohamed Boucadair.
Security Assessment of the Internet Protocol version 4 (IPv4) draft-ietf-opsec-ip-security Fernando Gont project carried out on behalf of UK CPNI 76th.

Security Assessment of the Internet Protocol version 4 (IPv4) draft-ietf-opsec-ip-security Fernando Gont project carried out on behalf of UK CPNI 76th.
Progress Report: Metering NSLP (M-NSLP) 66th IETF meeting, NSIS WG.

Progress Report: Metering NSLP (M-NSLP) 66th IETF meeting, NSIS WG.
Mitigating Teredo Routing Loop Attacks (draft-gont-6man-teredo-loops-00 ) Fernando Gont on behalf of UK CPNI IETF 79 November 7-12, 2010. Beijing, China.

Mitigating Teredo Routing Loop Attacks (draft-gont-6man-teredo-loops-00 ) Fernando Gont on behalf of UK CPNI IETF 79 November 7-12, Beijing, China.
1 Behcet Sarikaya Frank Xia July 2010 Flexible DHCPv6 Prefix Delegation in Mobile Networks IETF 78

1 Behcet Sarikaya Frank Xia July 2010 Flexible DHCPv6 Prefix Delegation in Mobile Networks IETF 78
Port randomization (draft-ietf-tsvwg-port-randomization) Michael Larsen & Fernando Gont 73rd IETF Meeting, November 16-21, 2008 Minneapolis, MN, USA.

Port randomization (draft-ietf-tsvwg-port-randomization) Michael Larsen & Fernando Gont 73rd IETF Meeting, November 16-21, 2008 Minneapolis, MN, USA.
DHCPv6/SLAAC Interaction Gaps ( draft-liu-6renum-dhcpv6-slaac-switching-01) [Note: the title is different with the original one in the draft] draft-liu-6renum-dhcpv6-slaac-switching-01.

DHCPv6/SLAAC Interaction Gaps ( draft-liu-6renum-dhcpv6-slaac-switching-01) [Note: the title is different with the original one in the draft] draft-liu-6renum-dhcpv6-slaac-switching-01.
IPv6 RADIUS attributes for IPv6 access networks draft-lourdelet-radext-ipv6-access-01 Glen Zorn, Benoit Lourdelet Wojciech Dec, Behcet Sarikaya Radext/dhc.

IPv6 RADIUS attributes for IPv6 access networks draft-lourdelet-radext-ipv6-access-01 Glen Zorn, Benoit Lourdelet Wojciech Dec, Behcet Sarikaya Radext/dhc.
ICMP attacks against TCP draft-ietf-tcpm-icmp-attacks-01.txt Fernando Gont (UTN/FRH) 67 th IETF Meeting, San Diego, California, USA November 5-10, 2006.

ICMP attacks against TCP draft-ietf-tcpm-icmp-attacks-01.txt Fernando Gont (UTN/FRH) 67 th IETF Meeting, San Diego, California, USA November 5-10, 2006.
Draft-ietf-v6ops-scanning-implications-00 IPv6 Implications for Network Scanning Tim Chown University of Southampton (UK) IETF 66,

Draft-ietf-v6ops-scanning-implications-00 IPv6 Implications for Network Scanning Tim Chown University of Southampton (UK) IETF 66,
Prefix Delegation Protocol Selection T.J. Kniveton MEXT Working Group IETF 70 - December ’07 - Vancouver.

Prefix Delegation Protocol Selection T.J. Kniveton MEXT Working Group IETF 70 - December ’07 - Vancouver.
1 Behcet Sarikaya Frank Xia Ted Lemon July 2011 DHCPv6 Prefix Delegation as IPv6 Migration Tool in Mobile Networks IETF 81

1 Behcet Sarikaya Frank Xia Ted Lemon July 2011 DHCPv6 Prefix Delegation as IPv6 Migration Tool in Mobile Networks IETF 81
Draft-chown-v6ops-port-scanning-implications-02 IPv6 Implications for TCP/UDP Port Scanning Tim Chown IETF 65, March 23rd 2006 Dallas,

Draft-chown-v6ops-port-scanning-implications-02 IPv6 Implications for TCP/UDP Port Scanning Tim Chown IETF 65, March 23rd 2006 Dallas,
DHCPv6/SLAAC Address Configuration Interaction Problems and Operational Guidance Bing Liu, Ronald Bonica (Speaker) Sheng Jiang, Xiangyang Gong, Wendong.

DHCPv6/SLAAC Address Configuration Interaction Problems and Operational Guidance Bing Liu, Ronald Bonica (Speaker) Sheng Jiang, Xiangyang Gong, Wendong.
Deterministic Fast Router Advertisement Configuration Update draft-daley-dna-det-fastra-01.txt Presenter: Greg Daley.

Deterministic Fast Router Advertisement Configuration Update draft-daley-dna-det-fastra-01.txt Presenter: Greg Daley.
Managing the Use of Privacy Extensions for SLAAC in IPv6 (draft-gont-6man-managing-privacy- extensions-01.txt) Fernando Gont (UTN/FRH) Ron Broersma (DREN)

Managing the Use of Privacy Extensions for SLAAC in IPv6 (draft-gont-6man-managing-privacy- extensions-01.txt) Fernando Gont (UTN/FRH) Ron Broersma (DREN)

Similar presentations

Ads by Google