Internet DRAFT - draft-fujiwara-smallest-homenet

draft-fujiwara-smallest-homenet






Homenet                                                      K. Fujiwara
Internet-Draft                                                      JPRS
Intended status: Informational                              Oct 22, 2012
Expires: April 25, 2013


                         Smallest home network
                 draft-fujiwara-smallest-homenet-01.txt

Abstract

   Although access control for home servers is very important,
   managements and setups of access controls are difficult for most of
   users.  "Connecting a new node to the same link" is easiest way of
   access control.  One of solutions is to use link-local addresses for
   communications of clients and servers.

Status of This Memo

   This Internet-Draft is submitted in full conformance with the
   provisions of BCP 78 and BCP 79.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF).  Note that other groups may also distribute
   working documents as Internet-Drafts.  The list of current Internet-
   Drafts is at http://datatracker.ietf.org/drafts/current/.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet-Drafts as reference
   material or to cite them other than as "work in progress."

   This Internet-Draft will expire on April 25, 2013.

Copyright Notice

   Copyright (c) 2012 IETF Trust and the persons identified as the
   document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal
   Provisions Relating to IETF Documents
   (http://trustee.ietf.org/license-info) in effect on the date of
   publication of this document.  Please review these documents
   carefully, as they describe your rights and restrictions with respect
   to this document.  Code Components extracted from this document must
   include Simplified BSD License text as described in Section 4.e of
   the Trust Legal Provisions and are provided without warranty as
   described in the Simplified BSD License.



Fujiwara                 Expires April 25, 2013                 [Page 1]

Internet-Draft              smallest homenet                    Oct 2012


Table of Contents

   1.  Introduction  . . . . . . . . . . . . . . . . . . . . . . . . . 3
     1.1.  Problem statement . . . . . . . . . . . . . . . . . . . . . 3
     1.2.  Possible solution . . . . . . . . . . . . . . . . . . . . . 3
   2.  Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . 3
   3.  Homenet using Link-Local address  . . . . . . . . . . . . . . . 3
   4.  Homenet using ULA . . . . . . . . . . . . . . . . . . . . . . . 4
   5.  Homenet using global addresses  . . . . . . . . . . . . . . . . 5
   6.  Security Considerations . . . . . . . . . . . . . . . . . . . . 5
   7.  IANA considerations . . . . . . . . . . . . . . . . . . . . . . 5
   8.  Normative References  . . . . . . . . . . . . . . . . . . . . . 5
   Appendix A.  Link-local Examples  . . . . . . . . . . . . . . . . . 5
     A.1.  Example 1: 1 local net + 1 guest net  . . . . . . . . . . . 5
     A.2.  Example 2: 2 local net + 1 guest net  . . . . . . . . . . . 6




































Fujiwara                 Expires April 25, 2013                 [Page 2]

Internet-Draft              smallest homenet                    Oct 2012


1.  Introduction

   The homenet architecture [I-D.ietf-homenet-arch] treats large,
   complex home networks.  There may not be network experts to manage
   home networks.  Considering simple and small home network is useful.

1.1.  Problem statement

   Homenet may have local networks and guest networks.  The access
   control to home network servers is very important because some
   servers should not be accessed from guest networks.

   Initial setups and operations of access controls are difficult for
   most of users.  WiFi and Bluetooth support easy configuration
   mechanism.  "Connecting a new node to the same link", or "connecting
   a new node and push a button/pin" are easiest way to configure the
   new node that can relate with a home server.

1.2.  Possible solution

   There are some solutions.  Using link-local address between clients
   and servers restricts access to servers.  "Connecting a new node to
   the same link" is usable as an access control.  It is described in
   Section 3.

   Using Unique Local Address (ULA) address between clients and servers
   limits access to servers.  It is described in Section 4.

   Otherwise, we need another solutions.

2.  Terminology

   A guest network is a network which can access the Internet and cannot
   access home servers.  A local network is a network which can access
   the Internet and home servers.

3.  Homenet using Link-Local address

   Suppose there is only a local network in a home and there may be a
   guest network.  Two types of networks are common because recent CPEs
   have multiple SSID function which separates internal network and
   guest network.  Link-Local addresses are able to point entities in
   the local network.  Link-local servers within the local network serve
   services to clients using link-local address only.  Link-local
   servers will accept requests from link-local addresses.  Link-local
   servers should reject requests from another addresses.  Link-local
   servers may act as a normal IPv6 client (for its internal use: They
   can get IPv6 prefixes from CPEs and can connect to the internet via



Fujiwara                 Expires April 25, 2013                 [Page 3]

Internet-Draft              smallest homenet                    Oct 2012


   CPEs).

   Name resolutions inside the local network may be performed by "ICMPv6
   Node Information Queries" [RFC4620] or another methods (mDNS
   [RFC4795]).  The problem is that [RFC4620] is an EXPERIMENTAL RFC.

   Pros:

      *  It does not need internet connectivity and can work without
         CPEs

      *  Other communications are not affected by this proposal.

      *  Easy to manage by users.

      *  mDNS or IPv6 Node Information Queries are usable for name
         resolutions.

      *  Easy to separate local networks and guest networks

      *  DNS is used for global name resolution only

   Cons:

      *  Existing client applications may not support link-local
         addresses

      *  Link-local client should cache link-local server information
         with symbolic name and link-local addresses.

      *  Existing server software may not support link-local addresses
         correctly.

      *  It does not support multiple links easily.  Link-local servers
         can have multiple network interfaces and they can support
         multiple links.

4.  Homenet using ULA

   ULAs are able to point entities in the network.  Connecting new nodes
   into a homenet gives access to home servers.

   Pros:

      *  It supports multiple links easily

      *  It does not need internet connectivity




Fujiwara                 Expires April 25, 2013                 [Page 4]

Internet-Draft              smallest homenet                    Oct 2012


      *  Easy to manage by users.

   Cons:

      *  Some filtering or access control method is required for
         protecting servers.

      *  CPEs and internal routers need to know ULAs. (need to develop
         ULA configuration methods)

      *  Requires new name resolution mechanism. (site mDNS?)

5.  Homenet using global addresses

   Global addresses are able to point entities in the network.  This
   case is the same as enterprise networks.

6.  Security Considerations

7.  IANA considerations

8.  Normative References

   [RFC4620]                Crawford, M. and B. Haberman, "IPv6 Node
                            Information Queries", RFC 4620, August 2006.

   [RFC4795]                Aboba, B., Thaler, D., and L. Esibov, "Link-
                            local Multicast Name Resolution (LLMNR)",
                            RFC 4795, January 2007.

   [I-D.ietf-homenet-arch]  Chown, T., Arkko, J., Brandt, A., Troan, O.,
                            and J. Weil, "Home Networking Architecture
                            for IPv6", draft-ietf-homenet-arch-06 (work
                            in progress), October 2012.

Appendix A.  Link-local Examples

A.1.  Example 1: 1 local net + 1 guest net

   Figure 1 shows 1 local network and 1 guest network example.  Guest1
   and Guest2 cannot access to Server1 and Server2.  Guest1 and Guest2
   can access the Internet.  Client1 can access Server1, Server2 and the
   Internet.








Fujiwara                 Expires April 25, 2013                 [Page 5]

Internet-Draft              smallest homenet                    Oct 2012


              +---------+   Server1   Server2  Client1
              |         |     |        |         |
              | CPE     +-----+--------+---------+----------------
              |         | local network (may have wireless bridge)
   Internet===+         |
              |         |
              |         +----------------+---------+---
              |         | guest network  |         |
              +---------+              Guest1    Guest2


              Figure 1: Example 1: 1 local net + 1 guest net

A.2.  Example 2: 2 local net + 1 guest net

   Figure 2 shows 2 local network and 1 guest network example.  Client1
   can access Server1, Server2 and SharedServer.  Client2 can access
   SharedServer.  Guest1 and Guest2 cannot access Server1, Server2 and
   SharedServer.


              +---------+   Server1   Server2  Client1
              |         |     |        |         |
              | CPE     +-----+--------+---------+----------------
              |         |              |              local net 1
              |         |            SharedServer
   Internet===+         |              |
              |         +----+---------+--------------------------
              |         |    |                        local net2
              |         |  Client2
              |         |
              |         +----------------+---------+---
              |         | guest network  |         |
              +---------+              Guest1    Guest2


              Figure 2: Example 2: 2 local net + 1 guest net














Fujiwara                 Expires April 25, 2013                 [Page 6]

Internet-Draft              smallest homenet                    Oct 2012


Author's Address

   Kazunori Fujiwara
   Japan Registry Services Co., Ltd.
   Chiyoda First Bldg. East 13F, 3-8-1 Nishi-Kanda
   Chiyoda-ku, Tokyo  101-0065
   Japan

   Phone: +81 3 5215 8451
   EMail: fujiwara@wide.ad.jp, fujiwara@jprs.co.jp









































Fujiwara                 Expires April 25, 2013                 [Page 7]