2.3.1 Dynamic Host Configuration (dhc)

In addition to this official charter maintained by the IETF Secretariat, there is additional information about this working group on the Web at:

       Additional DHC Page

Last Modified: 2003-08-11

Chair(s):
Ralph Droms <rdroms@cisco.com>
Internet Area Director(s):
Thomas Narten <narten@us.ibm.com>
Margaret Wasserman <mrw@windriver.com>
Internet Area Advisor:
Margaret Wasserman <mrw@windriver.com>
Mailing Lists:
General Discussion: dhcwg@ietf.org
To Subscribe: http://www1.ietf.org/mailman/listinfo/dhcwg
Archive: http://www1.ietf.org/mailman/listinfo/dhcwg
Description of Working Group:
Other Lists:

The dhc working group (DHC WG) has developed DHCP for automated
allocation, configuration and management of IP addresses and TCP/IP
protocol stack parameters. DHCP is currently a "Draft Standard". The
base protocol is documented in RFC2131 and RFC2132 (DHCP for IPv4) and
RFCxxxx (DHCP for IPv6). Additional options are documented in
subsequent RFCs.

The DHC WG is responsible for reviewing (and sometimes developing)
DHCP options or other extensions (for both IPv4 and IPv6). The DHC WG
is expected to review all proposed extensions to DHCP to ensure that
they are consistent with the DHCP specification and other option
formats, that they do not duplicate existing mechanisms, etc. The DHC
WG will not (generally) be responsible for evaluating the semantic
content of proposed options. The DHC WG will not adopt new proposals
for extensions to DHCP as working group documents without first
coordinating with other relevant working groups and determining who
has the responsibility for reviewing the semantic content of an
option.

The DHC WG has the following main objectives:

The DHC WG will address security in DHCP

o Develop and document security requirements for DHCP. RFC 3118
  defines current security mechanisms for DHCPv4. Unfortunately,
  RFC 3118 has neither been implemented nor deployed to date.
  Specific issues to be considered include:

  - Improved key management and scalability

  - Security for messages passed between relay agents and servers

  - Threats of DoS attacks through FORCERENEW

  - The increased usage of DHC on unsecured (e.g., wireless) and
    public LANs

  - The need for clients to be able to authenticate servers, without
    simultaneously requiring client authentication by the server.

o Develop and document a roadmap of any new documents or protocols
  needed to meet the security requirements for DHCP

Write an analysis of the DHCP specification, including RFC2131,
RFC2132 and other RFCs defining additional options, which identifies
ambiguities, contradictory specifications and other obstacles to
development of interoperable implementations. Recommend a process for
resolving identified problems and incorporating the resolutions
into the DHCP specification.

Complete or abandon work on DHCPv6 options that are currently work
in progress:

o IPv6 Prefix Options for DHCPv6
    (draft-troan-dhcpv6-opt-prefix-delegation-02.txt)

o DNS Configuration options for DHCPv6
  (draft-ietf-dhc-dhcpv6-opt-dnsconfig-01.txt)

o Load Balancing for DHCPv6
  (draft-ietf-dhc-dhcpv6-loadb-02.txt)

o NIS Configuration Options for DHCPv6
    (draft-ietf-dhc-dhcpv6-opt-nisconfig-01.txt)

o Time Configuration Options for DHCPv6
    (draft-ietf-dhc-dhcpv6-opt-timeconfig-01.txt)

o Client Preferred Prefix option for DHCPv6
  (draft-ietf-dhc-dhcpv6-opt-cliprefprefix-00.txt)

o A Guide to Implementing Stateless DHCPv6 Service
  (draft-droms-dhcpv6-stateless-guide-00.txt)

o DSTM Options for DHCPv6
  (draft-ietf-dhc-dhcpv6-opt-dstm-01.txt)

o DSTM Ports Option for DHCPv6
  (draft-ietf-dhc-dhcpv6-opt-dstm-ports-01.txt)

Complete or abandon work on DHCP extensions and options that are
currently work in progress:

o Failover protocol
    (draft-ietf-dhc-failover-11.txt)

o The DHCP Client FQDN Option
    (draft-ietf-dhc-fqdn-option-04.txt)
 
o Resolution of DNS Name Conflicts Among DHCP Clients
    (draft-ietf-dhc-ddns-resolution-04.txt)

o DHCP Server MIB
  (draft-ietf-dhc-server-mib-07.txt)

o Considerations for the use of the Host Name option
  (draft-ietf-dhc-host-option-considerations-01.txt)

o DHCP Lease Query
  (draft-ietf-dhc-leasequery-04.txt)

o DHCP Options for Internet Storage Name Service
  (draft-ietf-dhc-isnsoption-03.txt)

o Dynamic Host Configuration Protocol (DHCP) Server MIB
    (draft-ietf-dhc-server-mib-07.txt)

o DHCP Option for Mobile IP Mobility Agents
  (draft-ietf-dhc-mipadvert-opt-00.txt)

o DHCP VPN Information Option
  (draft-ietf-dhc-vpn-option-02.txt)

o KDC Server Address Sub-option
  (draft-ietf-dhc-suboptions-kdc-serveraddress-00.txt)

o The Authentication Suboption for the DHCP Relay Agent Option
  (draft-ietf-dhc-auth-suboption-00.txt)

o Link Selection sub-option for the Relay Agent Information Option
  (draft-ietf-dhc-agent-subnet-selection-03.txt)

o VPN Identifier sub-option for the Relay Agent Information Option
    (draft-ietf-dhc-agent-vpn-id-02.txt)

o RADIUS Attributes Sub-option for the DHCP Relay Agent Information
  Option
  (draft-ietf-dhc-agentopt-radius-02.txt)

o DHCP Subscriber ID Suboption for the DHCP Relay Agent Option
    (draft-ietf-dhc-subscriber-id-00.txt)
Goals and Milestones:
Done  WG Last Call on DHCP Options for Internet Storage Name Service (draft-ietf-dhc-isnsoption-03.txt)
Done  WG Last Call on Load Balancing for DHCPv6 (draft-ietf-dhc-dhcpv6-loadb-02.txt)
Done  WG Last Call on Time Configuration Options for DHCPv6 (draft-ietf-dhc-dhcpv6-opt-timeconfig-01.txt)
Done  WG Last Call on IPv6 Prefix Options for DHCPv6 (draft-troan-dhcpv6-opt-prefix-delegation-02.txt)
Done  WG Last Call on DNS Configuration options for DHCPv6 (draft-ietf-dhc-dhcpv6-opt-dnsconfig-01.txt)
Done  WG Last Call on NIS Configuration Options for DHCPv6 (draft-ietf-dhc-dhcpv6-opt-nisconfig-01.txt)
Done  Resubmit draft-ietf-dhc-dhcpv6-28.txt to IESG
Done  Identify DHCPv4 authentication design team
Done  Identify DHCPv4 specification review design team
Done  Identify DHCPv4 relay agent message authentication design team
Feb 03  Submit DHCP Options for Internet Storage Name Service to IESG (draft-ietf-dhc-isnsoption-03.txt)
Feb 03  Submit DNS Configuration options for DHCPv6 to IESG (draft-ietf-dhc-dhcpv6-opt-dnsconfig-01.txt)
Feb 03  Submit NIS Configuration Options for DHCPv6 to IESG (draft-ietf-dhc-dhcpv6-opt-nisconfig-01.txt)
Feb 03  Submit Time Configuration Options for DHCPv6 to IESG (draft-ietf-dhc-dhcpv6-opt-timeconfig-01.txt)
Mar 03  Submit IPv6 Prefix Options for DHCPv6 to IESG (draft-troan-dhcpv6-opt-prefix-delegation-02.txt)
Mar 03  Submit Load Balancing for DHCPv6 to IESG (draft-ietf-dhc-dhcpv6-loadb-02.txt)
Apr 03  Update milestones to include all WG documents
Jun 03  DHCPv4 authentication design team report completed
Jun 03  DHCPv4 specification review report completed
Jun 03  Select DHCPv4 relay agent message authentication mechanism
Internet-Drafts:
  • - draft-ietf-dhc-failover-12.txt
  • - draft-ietf-dhc-server-mib-08.txt
  • - draft-ietf-dhc-fqdn-option-05.txt
  • - draft-ietf-dhc-ddns-resolution-05.txt
  • - draft-ietf-dhc-leasequery-05.txt
  • - draft-ietf-dhc-agent-vpn-id-02.txt
  • - draft-ietf-dhc-vpn-option-02.txt
  • - draft-ietf-dhc-dhcpv6-opt-dnsconfig-04.txt
  • - draft-ietf-dhc-agentopt-radius-02.txt
  • - draft-ietf-dhc-dhcpv6-opt-nisconfig-02.txt
  • - draft-ietf-dhc-dhcpv6-opt-timeconfig-02.txt
  • - draft-ietf-dhc-host-option-considerations-02.txt
  • - draft-ietf-dhc-isnsoption-08.txt
  • - draft-ietf-dhc-dhcpv6-opt-cliprefprefix-01.txt
  • - draft-ietf-dhc-auth-suboption-01.txt
  • - draft-ietf-dhc-suboptions-kdc-serveraddress-04.txt
  • - draft-ietf-dhc-dhcpv6-opt-prefix-delegation-04.txt
  • - draft-ietf-dhc-mipadvert-opt-00.txt
  • - draft-ietf-dhc-subscriber-id-01.txt
  • - draft-ietf-dhc-pktc-kerb-tckt-03.txt
  • - draft-ietf-dhc-server-override-00.txt
  • - draft-ietf-dhc-unused-optioncodes-06.txt
  • - draft-ietf-dhc-dhcpv6-interop-01.txt
  • - draft-ietf-dhc-subnet-alloc-00.txt
  • - draft-ietf-dhc-implementation-00.txt
  • - draft-ietf-dhc-dhcpv6-stateless-00.txt
  • - draft-ietf-dhc-relay-agent-auth-01.txt
  • - draft-ietf-dhc-extended-optioncodes-00.txt
  • - draft-ietf-dhc-v4-threat-analysis-00.txt
  • - draft-ietf-dhc-auth-sigzero-00.txt
  • - draft-ietf-dhc-dna-ipv4-00.txt
    • Request For Comments:
    Dynamic Host Configuration Protocol (RFC 1531) (96192 bytes) obsoleted by RFC 1541
    Clarifications and Extensions for the Bootstrap Protocol (RFC 1532) (51545 bytes) obsoleted by RFC 1542
    Interoperation Between DHCP and BOOTP (RFC 1534) (6966 bytes)
    DHCP Options and BOOTP Vendor Extensions (RFC 1533) (50919 bytes) obsoleted by RFC 2131
    DHCP Options and BOOTP Vendor Extensions (RFC 1533) (50919 bytes) obsoleted by RFC 2132
    Clarifications and Extensions for the Bootstrap Protocol (RFC 1542) (52948 bytes)
    Dynamic Host Configuration Protocol (RFC 1541) (96950 bytes) obsoleted by RFC 2131
    Dynamic Host Configuration Protocol (RFC 2131) (113738 bytes)
    DHCP Options and BOOTP Vendor Extensions (RFC 2132) (63670 bytes)
    DHCP Options for Novell Directory Services (RFC 2241) (8419 bytes)
    Netware/IP Domain Name and Information (RFC 2242) (10653 bytes)
    DHCP Option for The Open Group's User Authentication Protocol (RFC 2485) (7205 bytes)
    Procedure for Defining New DHCP Options (RFC 2489) (10484 bytes) obsoleted by RFC 2939
    DHCP Option to Disable Stateless Auto-Configuration in IPv4 Clients (RFC 2563) (17838 bytes)
    DHCP Options for Service Location Protocol (RFC 2610) (10859 bytes)
    Procedure for Defining New DHCP Options and Message Types (RFC 2939) (13631 bytes)
    The Name Service Search Option for DHCP (RFC 2937) (8368 bytes)
    The User Class Option for DHCP (RFC 3004) (10423 bytes)
    The Subnet Selection Option for DHCP (RFC 3011) (13967 bytes)
    DHCP Relay Agent Information Option (RFC 3046) (30633 bytes)
    DHC load balancing algorithm (RFC 3074) (19374 bytes)
    Authentication for DHCP Messages (RFC 3118) (35536 bytes)
    DHCP reconfigure extension (RFC 3203) (11857 bytes)
    The DOCSIS Device Class DHCP Relay Agent Information Sub-option (RFC 3256) (8551 bytes)
    Encoding Long Options in DHCPv4 (RFC 3396) (18779 bytes)
    The Classless Static Route Option for Dynamic Host Configuration Protocol (DHCP) version 4 (RFC 3442) (19370 bytes)
    Dynamic Host Configuration Protocol (DHCP) Option for CableLabs Client Configuration (RFC 3495) (26817 bytes)
    Link Selection sub-option for the Relay Agent Information Option for DHCPv4 (RFC 3527) (16831 bytes)
    Dynamic Host Configuration Protocol for IPv6 (DHCPv6) (RFC 3315) (231402 bytes)

    Current Meeting Report

     
    		       dhc WG minutes, IETF 57
 

DHCP PXE Suboptions                                Ralph Droms
<draft-johnston-pxe-options-00.txt>

   This document was prompted by the review of unused DHCP option codes.  It 
documents the three options Intel defined for use by the "Pre-Boot 
Execution" (PXE) protocols.  The history of these options is that they were 
brought to the dhc WG several years ago, but no specification was ever 
published.

   The WG agreed to take the document as a WG work item.  There was some 
discussion about whether to publish the document as standards track or 
informational.  After a review of the history of the document, the 
consensus was to publish the document as informational.

Site Specific Options for DHCP for IPv6            Ralph Droms

<draft-volz-dhc-dhcpv6-site-options-00.txt>

   Droms reviewed this document for the author, Bernie Volz.  The 
document reserves some DHCPv6 option codes for use as 
site-specific options (like option codes 128-254 in DHCPv4).  The WG 
agreed to take the document as a work item, for standards track 
publication.
   
Vendor-Identifying Vendor Options for DHCPv4       Ralph Droms
<draft-littlefield-dhcp-vendor-00.txt>

   Droms reviewed this document for the author, Josh Littlefield.  The 
document defines new vendor-specific options in which the vendor (the 
option namespace) is identified in the option itself, rather than 
implicitly from the vendor class option.  Droms cited DOCSIS devices, 
which need DOCSIS defined options as well as vendor defined options, as a 
use case.  The WG agreed to take the document as a work item, for 
standards track publication.

IPv4 Network Attachment Detection                  Bernard Aboba
<draft-aboba-dhc-nad-ipv4-00.txt>

   Based on research into problems related to recognition of network 
attachment and assignment of IPv4 link-local addresses (IPv4LL), Aboba 
published this document, which summarizes his findings about hints a host 
can use to determine network attachment and problems with current IPv4LL 
assignment mechanisms.  The document also points out some details in RFC 
2131 that need clarification.  This presentation preceded the dna 
("Detecting Network Attachment") BOF, where the document was also 
scheduled to be discussed.  There was consensus to work with the dna BOF 
(and WG, if one is formed) to develop input to the IPv4LL 
specification from the zeroconf WG.

DHCPv4 Threat Analysis                             Carl Smith

<draft-ietf-dhc-v4-threat-analysis-00.txt>

   Smith conducted a final review of this document; ready for WG last 
call.  The following three documents all address the requirements and 
issues from the threat analysis.

RFC3118 Delayed Authentication Using PANA          H. Tschofenig

<draft-tschofenig-pana-bootstrap-rfc3118-00.txt>

   This document describes a mechanism for establishing a DHCP SA 
(between client and server) through PANA (assuming PANA is invoked before 
DHCP).  The scenario is:

      * host establishes SA with PANA
      * PAA does key distribution to host and DHCP server
      * host and server use key for authenticated DHCP

   There was some discussion about the mechanism through which the PAA 
would get keying information to the DHCP participants.  The WG 
requested that the draft be revised to provide additional detail, and will 
reconsider the draft after the revisions are published.

DHCP RSA/DSA Authentication using DNS KEY records  Ted Lemon
<draft-ietf-dhc-auth-sigzero-00.txt>

   This document describes a mechanism for authentication of DHCP 
messages through public keys in SIG(0) RRs.  Olafur Gudmundsson (as chair of 
dnsext WG) opined that use of SIG(0) for DHCP authentication would be an 
acceptable use of the key in a SIG(0) RR.  It was noted that this 
mechanism would require the DHCP servers to have a SIG(0) RR, in 
addition to the hosts (which presumably would have a SIG(0) RR for DDNS).  
There was a request for more detail about the protocol in the 
document, especially a sketch of the participants and message 
exchanges.  Also, this mechanism provides only authentication, not 
authorization.

Flexible Authentication for DHCP Messages          Ralph Droms
<draft-gupta-dhcp-auth-02.txt>

   Very few members of the WG had read this draft.  Discussion will be 
continued on the WG mailing list.

DHCP-DDNS interaction                              Ralph Droms
<draft-ietf-dhc-ddns-resolution-05.txt>
<draft-ietf-dhc-fqdn-option-05.txt>
<draft-ietf-dnsext-dhcid-rr-06.txt>

   The WG came to consensus on the resolutions in the following list of 
issues (which had been discussed in the dhc and dnsext WG mailing 
lists):

   * Reserve DHCID RR for DHCP participants (1, 2): yes, reserve for DHCP 
   * Interaction between DHCPv4 and DHCPv6 needs to be defined (3): 
participant does lookup first to determine type of DHCID RR and then acts on 
that type
   * FQDN should carry 12 bit RCODES (4): RCODES will be dropped from FQDN 
option; RCODE fields in FQDN option will be declared "reserved" to 
preserve backward compatibility with deployed implementations
   * Internationalization (5): no changes to protocol; add references to 
internationalization RFC
   * RR TTLs need careful attention (6): rationale and 
recommendations to be clarified and moved to appendix

    Slides

    None received.