|Working Group:||Address Policy|
- content to the Chair of the working group.
- format to webmaster _at_ ripe _dot_ net.
WG: Address Policy
Meeting: RIPE 55, Amsterdam
Chair: Gert Doering
Minutes: Scott Donald (RIPE NCC)
Jabber: Laura Cobley (RIPE NCC)
Wednesday, 24th October 2007 11-12:30
1. Administrative Matters
- Select a scribe - Scott Donald (RIPE NCC)
- Finalise agenda
- Minutes from RIPE 54 were approved
- Co-chair changes
Andrea Borgato stepped down as co-chair of this working group. Gert Doering and Sander Steffann remain as the two co-chairs. Speak to one of the co-chairs if you are interested in becoming a co-chair.
2. Overview of Concluded Policy Proposals
Proposal 2006-02 "IPv6 Address Allocation and Assignment Policy" - was accepted and implemented
Proposal 2006-04 "Contact E-Mail Address Requirements" - was withdrawn Proposal 2006-06 "IPv4 Maximum Allocation Period" - was accepted and implemented
Proposal 2006-07 "First Raise in IPv4 Assignment Window Size" - was accepted and implemented
Proposal 2007-02 "Change in IP Assignments for Anycasting DNS Policy" - was withdrawn Proposal 2007-03 "IPv4 Countdown Policy" - was withdrawn Proposal 2007-04 "IANA Policy for Allocation of ASN Blocks to RIRs" - was accepted by RIPE, and is awaiting other RIRs acceptance
3. Generic Discussion on PI Session
There were no questions
Presentation: Proposal 2007-01 "What do we do next?" - Nick Hilliard (INEX)
Gert Doering: commented yearly price of a PI assignment could be 100-300 Euros per year. More than that and the RIPE NCC would make a surplus. The Board would decide the cost.
Wilfrid Woeber (ACONET): said that Axel gave us some alternative proposals but asked if this proposal was talked about/agreed by the Board?
Axel Pawlik (RIPE NCC): said this proposal would make things easier for us. It puts some responsibility on members to help maintain the link with the PI holders. He thought the board would be more positive about this than the previous suggestions. The general meeting, perhaps in May, can discuss changes to the charging scheme.
Wilfrid Woeber: asked from the data privacy point of view, what would happen if an end user asks for his information to be removed. From this proposal the resources would eventually be reclaimed. We would need to think about solutions to that.
Nick Hilliard: said the RIPE NCC may be breaking data privacy laws for NOT maintaining accurate information on the RIPE database at the moment.
Daniel Karrenberg (RIPE NCC): thanked Nick for trying to fix a problem that other people saw, and to put things right again. We tried to encourage PA and not PI in the past (since RIPE 127) but somehow PI became free of charge. So we need to correct this situation. We need to do a lot of clearing up of the old data.
Todd Underwood (renesys/babbledog): said that with the DNS system if you stop paying your domain name stops resolving. But with Whois information, nothing would happen if you stopped paying and your details were removed.
Nick Hilliard: said RIPE are not the police, they are clearing house and numbers registry. RIPE guarantees uniqueness of the internet resources it issues. If someone hijacks your IP space you need to take it up with the ISP and solve it yourself.
Todd Underwood: said the only thing RIPE can do with an expired registration is give it to someone else, or leave it unused in this proposal. So the analogy with the DNS system is flawed.
Ruedi Volk (Deutsche Telekom): said clearing up the Whois would also clean out old route objects which are referencing the IP space.
Nick Hilliard: said if you stop paying you will lose the entitlement to use it. So you would lose the unique access to this space.
Leo Vegoda (IANA): Supported the proposal and wanted implementation speeded up as there are thousands of entries to contact and we want to encourage light regulation of the industry (not heavy regulation).
Nick Hilliard: said if consensus is reached we can start quickly. The next opportunity to implement it is May 2008 due to the budgetary impact.
Leo Vegoda: agreed it must be approved by the RIPE community. Asked to keep it as simple as possible, and refinements can be made later if required.
Nick Hilliard: proposed to put 2007-01 back on the address policy working group for further discussions.
Daniel Karrenberg: said he saw no one against the proposal. People not updating their contact details would not be cut off if they are using the IP space. The RIPE NCC has tools (like RIS) that can see if IP space is being used. Perhaps we should add something to the policy saying that LIRs should hold information on the organisations they are routing in case we need to contact them.
Nick Hilliard: said that due to data protection, all we can do is ask the LIR to contact the end user for permission to give their contact details to the RIPE NCC. We can't compel LIRs to supply this information.
Daniel Karrenberg: said that end users can be encouraged to supply correct contact information to LIRs so that the LIR can update the RIPE Database. The RIPE NCC needs something in writing to implement this.
Wilfrid Woeber: wanted the community to give the RIPE NCC a mandate in order to give some sticks to motivate people to collaborate. Another stick is certification, or giving the NCC the right to update objects on the RIPE Database. Another point is that PI is not free, it counts towards the billing score of an LIR for the first 12 months only. This was based on RIPE NCC not charging for holding resources. But now we see there is a running cost for holding and tracking resources so the charging scheme needs to be looked at. PI is too cheap but not free.
Hans Petter Holen (Visma IT): thought it was a good proposal. We need a stronger link between the database and who is holding the resources, which is why charging and some kind of certification is needed in the long term. We need to get approval from the community on the proposal and budgetary stuff, then decide how we will police this. LIRs can filter on information on the RIPE Database for example, also black holes could be be used for people who don't pay their bills.
Carsten Schiefner (Deutsche Telekom): liked the proposal. Would like more of the policing function in the proposal. Also would like to see what it would cost to implement what Hans Petter Holen suggested.
Richard Cox (Spamhaus project): has investigated inappropriate bgp announcements- whatever addresses are used by people doing bad things are bogus. The only solution to get any sort of policing is to get the Tier1s on board. LIRs would need to have contractual agreements with end users saying that only they can use the IP space assigned. Have we asked them?
Nick Hilliard: said this is a difficult problem- it involves creating access lists for starters. A lot of Tier1s and Tier2s filter customer announcements already. Inappropriate bgp announcements falls outside the scope of this proposal.
Denis Walker (RIPE NCC): supported this proposal. The RIPE NCC is legally obliged to make sure the data on the RIPE Database is accurate so we want a mandate to clean up the database. We receive complaints sometimes due to problems originating from IP space that has incorrect contact details. But we are unable to do anything about it.
Gert Doering: said he heard only supporting voices and asked for show of hands if anyone opposed this proposal- no hands went up.
Action point on RIPE NCC: prepare for the implementation of Nick Hilliard's proposal if approved by the community in the Address Policy Working Group.
Action point on Nick Hilliard: put proposal forward on the mailing list.
4. Presentation : Proposal for Restructuring the IPv6 Address Allocation and Assignment Policy - Leo Vegoda (personal view)
Gert Doering: said that we got rid of the 200 rule for IPv6 allocations.
George Michaelson (APNIC): said people don't usually come back for more IPv6 space. We are giving out very large amounts of IPv6 space at the moment.
Geoff Huston (APNIC): said the PI/PA distinction is confusing everyone and removing it would be good, because an address is an address. We need to decide what we want to achieve from the proposal and what the industry needs from us. Do we want LIRs to get an IPv6 allocation and never come back, or come back for an allocation after a certain time period (like one year). We don't want to replicate IPv4 policies which ended up in scarcity. However coming back for IPv6 allocations every year is maybe too much.
Gert Doering: said a PI is given for a well defined need for a well defined network. A PA block allows for growth which is difficult to plan. Coming back every year/ 6 months for new allocations for example gives aggregation problems.
Ruedi Volk: said scarcity in IPv6 is no problem, but the routing table size is. The only way to keep control of the number of routes is the PI/PA distinction.
Cathy Aronson (ARIN): said one big distinction between PA and PI is that you can't easily change providers with PA.
Thursday, October 25, 09:00-10:30
5. Discussion of All Other Current Open Policy Proposals
Proposal 2005-08 to Amend the IPv6 Assignment & Utilisation Requirement Policy
Sander Steffann: consensus has been reached on this proposal and it will be going through.
Proposal 2007-05 IPv6 ULA-Central
Gert Doering: this is waiting for the decision by the IETF. We will re-start this proposal if the IETF gives the go-ahead. If not approved by the IETF it will be withdrawn.
6. End of IPv4 Session
Presentation: Proposal 2007-06 "Global Policy for the Allocation of the Remaining IPv4 Address Space" - Roque Gagliano (ANTEL)
Toshiyuki Hosaka (JPNIC): also has proposal 2007-07 which is the same as the proposal above except it says only a single /8 will be given to each RIR at the point when new IANA free pool hits 5 */8
Wilfrid Woeber: said it is good to make things reasonable equal at the end. To avoid RIR shopping the number of allocations (N) should be small (1 or 2).
Nick Hilliard: said fairest way is N=0. Burn rates in each RIR are significantly different, for example AFRINIC and APNIC, which could create political problems and horse trading later. Addresses should be allocated as needed not for any political purpose.
Roque Gagliano: said it is possible that AFRINIC could get the last /8 for example depending on which RIR qualified for an allocation at a particular time.
Jordi Palet (Consulintel): said he was against a policy change. Whatever we try to do to be fair may not work, as the policy could be changed again in a few months anyway. One of the aims of the proposal may be to give developing regions more time to implement IPv6, but this could damage the implementation of IPv6 in these regions.
Ruedi Volk: said that only N=0 or 1 is acceptable. 1 gives a predictable end game. But the period before this will still be unpredictable which cannot be avoided.
Raul Echeberria (LACNIC): said he has a lot of sympathy with the proposal. The current situation is against the conservation of IPs because the more you allocate the more you get. Certainty and predictability is important at the end.
Gert Doering: said this proposal will move the uncertainty phase sooner. Another suggestion is to make IPs more difficult to get- we should never do that because IPs should be issued on the basis of need.
Roque Gagliano: said other RIRs gave feedback saying this proposal will allow more time for planning. If the gentleman's agreement about 2 * /8s at a time is not stuck to, one of the big RIRs could get the last 8 * /8s for example.
Geza Turchanyi (Magyar Telekom): said we should go to IPv6 faster to avoid this solution. The RIR receiving the last /8 will have a lot more IPs than the other RIRs have.
Niall Murphy (Google): said RIR shopping should be considered in the solution.
Roque Gagliano: said we don't know what will happen after exhaustion day. Some large multinational companies can already get addresses from different RIRs around the World.
Niall Murphy: said some large organisations with a presence around the World will be able to RIR shopping, but smaller ones will not. N=1 or 0 looks okay, but 5 is odd.
David Kessens (Nokia Siemens): said we are in the business of giving addresses to people that need it, not to reduce uncertainty for RIRs.
Carsten Schiefner: said certainty argument not so important. The IP needs for larger RIRs are greater than that for smaller RIRs.
Roque Gagliano: said we continue with current policies but we are only talking about the last /8s. Any formula we decide on, someone can consider unfair.
Laura Cobley (RIPE NCC): Jabber comment from Per Heldahl- no matter what we do there will always be someone who gets the last /8. He thinks all the RIRs should run out at approximately the same time. He suggest that IANA could issue single /8s at a time.
Gert Doering: said that was an interesting suggestion. He thought that saying the RIRs would not stick to the gentleman's agreement is somewhat offensive as it shows some mistrust.
Geoff Huston: said the end of the free allocations does not mean the end of IPv4. We should be worrying about what happens next instead of this because there is not much time left.
Gert Doering: summary of discussion- no support for N=5, some support for N=1. A lot of voices for 0. No consensus in the room. If we do it, N=1 is the one to pursue. We will discuss in the working group and the PDP process.
Wilfrid Woeber: asked if N=5 was ratified by APNIC?
Roque Gagliano: said it is waiting for the LACNIC board's decision.
Wilfrid Woeber: said this will need global agreement. N=5 won't be agreed on globally.
Raul Echeberria: said he thinks the board will not approve this so the discussion remains open.
Geoff Huston: asked if there will be any conditions or constraints on the LIR "disposing" of an allocation. In the APNIC proposal the "disposing" LIR can't get another allocation for 2 years. 2 years because it will take 1 year for the proposal to go through and APNIC will probably not be able to issue more allocations 2 years after that. So the selling LIR can't come back and get another allocation to sell.
Remco van Mook: thought restraints like this would decrease liquidity of IP addresses. We would like people to start using this proposal before we run out of addresses.
Geoff Huston: said in the APNIC proposal the acquirer of the allocation would be required to have a 80% usage rate on all its allocations (including acquired ones) before it could qualify for an additional allocation.
Remco van Mook: said it is not in this proposal, but usage rates will be looked at under current policies.
Gert Doering: said that 80% usage to qualify for an additional allocation should be made clear.
Geoff Huston: said people might acquire IPs to sell them later. An idea he heard might be that allocations can only be transferred once, to try and reduce the number of speculators.
Remco van Mook: said it would be bad for liquidity to only be able to transfer an allocation once.
Leo Vegoda: said the proposal says allocations can only be transferred within the RIPE region. Is it an issue if the physical address of buying organisation is outside the region?
Remco van Mook: said it would not be a problem as long as the address space is registered with the RIPE NCC.
Laura Cobley (RIPE NCC): Jabber comment from Per Heldahl- NRO guidelines say that IPs are not held as property. These guidelines would need to be changed.
Gert Doering: said the guidelines say addresses are not property but companies are being bought with networks and addresses included.
Geza Turchanyi: said we should create a pool for re-using addresses.
Hans Petter Holen: said people are already buying and selling companies which include IPs. Today we assign this commodity based on need. We are creating a market for this commodity. Maybe we need to do some research into what happened in other industries in the past in these situations.
Cathy Aronson (ARIN): said perhaps we should have a restriction such as you are not allowed to sell IPs until 2 years after they were allocated.
Remco van Mook: said that was a good idea.
Mark McFadden (BT): said RIPE already has a policy and mechanism for transferring allocations between LIRs. He is worried about the unintended consequences of this proposal which are that IPs can be seen as assets so people may be taxed on them. The market part is worrying.
Remco van Mook: said we should seek some advice from economic experts outside the community.
Gert Doering: summary of discussion- some support and some words of caution. We need to discuss further on the mailing list.
7. Formulation of an official statement from the RIPE community regarding the end of IPv4, and recommendations for moving towards IPv6. - Sander Steffann
Gert Doering: said external organisations have asked what our official opinion is on IPv6. As the RIPE NCC is a secretariat they can't make political statements which is why we are asking you. It will be finalised in the IPv6 working group.
Jim Reid (RIPE NCC executive board): said point 5 should mention software vendors in addition to equipment vendors.
Rob Blokzijl (RIPE): said this statement is meant for an external audience, like governments and policy makers. It is not a manual about how to implement IPv6. We should focus on the message and not have too much detail, or the intended audience will lose interest.
Sander Steffann: said the idea is to give people a message to move to IPv6.
Geza Turchanyi: said the statement that the internet will continue as normal is too strong.
Jim Reid: said the message should be business as usual even if we run out of IPv4 addresses. Websites and email etc will still work after IPv4 runs out.
Sander Steffann: asked for feedback on point 2.
Ruedi Volk: asked if this statement is saying application providers don't have to do IPv6 until network providers and ISPs do the gateway?
Sander Steffann: said maybe the wording needs to be broadened.
Ruedi Volk: said we should cut down specifics as much as possible.
Sander Steffann: asked for feedback on point 3.
Bernard Tuy: said it is not useful to have this point here. IPv6 has been in operation for years.
Rob Blokzijl: said this point will confuse the audience. It should convey the message that we don't need other organisations involvement to deal with this problem. It needs re-wording.
Sander Steffann: agreed some re-wording is needed. He then asked for feedback on point 4- there were no comments. He then asked for feedback on point 5.
Rob Blokzijl: said drop this as it is covered by point 4.
Niall Murphy: said pressure on vendors comes in tender documents, not here.
Remco van Mook: said keep the message as short as possible, the message is do IPv6 now.
Geza Turchanyi: said IPv6 is running in the backbone but for DSL is poor. Some encouragement for IPv6 in this area should be encouraged.
Jord Palet: said a message to end users to request IPv6 is not here. You could make separate texts for users, vendors, policy makers. The message should be focussed not short.
Rob Blokzijl: said he does not agree with Jordi. The community needs a single short statement for policy makers, governments etc. There is a problem (with IPv4 exhaustion) but not as bad as people think. Sub-sections will not be useful.
David Kessens: said the message needs to be short and simple. This will be discussed in the IPv6 Working Group, where a longer session has been made available.
Gert Doering: summary of discussion- Sander Steffann and I will work with Rob Blokzijl and David Kessens in the working group to try and finalise this.
End of session.