User Tools

Site Tools


ipv6_opnfv_project:minutes_20150410

Minutes of IPv6 Project Meeting on April 10, 2015

  • Date and Time: UTC 15:00, Friday April 10, 2015
  • Convenor: Bin Hu (AT&T)
  • Participants:
    • Bryan Sullivan (AT&T)
    • Fahd Abidi (EZchip)
    • Iben Rodriguez (Spirent)
    • Jonne Soininen (Nokia)
    • Larry Lamers (VMWare)
    • Manuel Rebellon (Sandvine)
    • Mark Medina (ClearPath)
    • Prakash Ramchandran (Huawei)
    • Sridhar Gaddam (RedHat)
  • Roll call
  • Admin Update
    • Gerrit and Jira tool

Bin suggested to start using Jira for project management and issue tracking. Bin also suggested to start using Gerrit repo for archiving documentation etc.

Bin already pushed Gap Analysis document in text format to Gerrit as a starting point.

  • Meeting schedules

Considering everyone's busy schedule, and the number of projects v.s. limited time slots, Bin suggested to change our meeting schedule to be biweekly, starting from next meeting. All agreed.

Bin also indicated that audio meetings do help clarify points and benefit discussion, so we will keep it.

Additional meetings will be added whenever needed.

  • Status Update and Next Step
    • Looking into IPv6 First-Hop Security, and use cases of Static IPv6 and Sub-delegation
      • Update from Jonne about BP draft
      • Update from Sridhar about the findings of how well IPv6 First-Hop Security can be addressed in patches, and if there is any gaps

Jonne shared his discovery on the mailing list: http://lists.opnfv.org/pipermail/opnfv-tech-discuss/2015-April/002139.html. Jonne also introduced his opinion at the meeting.

Sridhar shared his discovery that the patches can address the issue, although those patches won't be merged until Liberty release.

For details of discussion, see IRC log: http://meetbot.opnfv.org/meetings/opnfv-meeting/2015/opnfv-meeting.2015-04-10-15.06.html.

In conclusion:
- IPv6 First-Hop Security issue is addressed in OpenStack sufficiently given the way how Neutron is designed to work, and by several BPs and patches that will be merged and available in Liberty release.
- In terms of disabling anti-spoofing rule to support configuring VM as an IPv6 router, Sridhar had a patch to disable anti-spoofing rule when we use Juno. And when we use Kilo in the future, the BP Port Security Extension will be available and merged into Kilo release. And it will address the challenge of anti-spoofing rule sufficiently.

  • Revision of PoC 1 design - dual stack, terminology change and 2 diagrams
    • Progress Update from Mark

Mark is focusing on another internal priority, so he still hasn't had time to verify the patch and modify the design diagram. We will check at next meeting.

  • Applying Sridhar's Anti-spoofing patch to disable anti-spoofing rule in Neutron of Juno
    • Progress Update from Mark

Mark is focusing on another internal priority, so he still hasn't had time to verify the patch and modify the design diagram. We will check at next meeting.

  • AOB

None.

Meeting adjourned

ipv6_opnfv_project/minutes_20150410.txt · Last modified: 2015/04/10 23:40 by Bin Hu