IETF Logo Mail Archive

Re: [arch-d] FYI: closure of the IAB Stack Evolution program

Fernando Gont <fgont@si6networks.com> Mon, 26 August 2019 05:48 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DF8D1200FB for <architecture-discuss@ietfa.amsl.com>; Sun, 25 Aug 2019 22:48:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xsoXu_BsTQCW for <architecture-discuss@ietfa.amsl.com>; Sun, 25 Aug 2019 22:48:37 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [91.239.96.14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A4E26120025 for <architecture-discuss@iab.org>; Sun, 25 Aug 2019 22:48:37 -0700 (PDT)
Received: from [192.168.1.2] (ppp-94-69-228-39.home.otenet.gr [94.69.228.39]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id 8988B8624E; Mon, 26 Aug 2019 07:48:32 +0200 (CEST)
To: Joe Touch <touch@strayalpha.com>
Cc: Christian Huitema <huitema@huitema.net>, architecture-discuss@iab.org
References: <B5A0F4E0-D437-4DF9-9918-C35627A8CADC@trammell.ch> <d5009253-4884-9f1f-66e7-1159e85524b9@si6networks.com> <770822F2-688F-44EA-A6A1-7E7EDBFAA989@trammell.ch> <cece8133-6b69-a677-52fc-a7fb4c7d5136@si6networks.com> <64E3A59C-8709-41E0-B74F-C036E4481AE4@apple.com> <f3645e11-d823-4308-3f51-6f2da5e33180@si6networks.com> <87imqnvhui.wl-morrowc@ops-netman.net> <CA+9kkMDWk3kmYOZ8Zz+BjUZG0+sshQJjR9pYt-NgL8umqpMtWQ@mail.gmail.com> <eb2bc35f-ea95-69b9-5163-baded0c47478@si6networks.com> <19058eaf-47e9-7cac-bf34-cfef646a9bd6@huitema.net> <01b1dcd9-1acf-784e-1b71-f6e497a2f472@si6networks.com> <F9D68FFD-9B60-4CAF-A9F6-039B2C957FD2@strayalpha.com> <37056715-b52e-8fbe-ac0c-a2caefdb94bf@si6networks.com> <19B905FF-B09D-4D60-AB93-3D8ACCD7BB04@strayalpha.com>
From: Fernando Gont <fgont@si6networks.com>
Openpgp: preference=signencrypt
Message-ID: <4fbd7366-6dfa-503d-50e0-0a860afa423d@si6networks.com>
Date: Mon, 26 Aug 2019 08:48:26 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <19B905FF-B09D-4D60-AB93-3D8ACCD7BB04@strayalpha.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/mR5CXdWq2hvKkSg642ddt6BUahI>
Subject: Re: [arch-d] FYI: closure of the IAB Stack Evolution program
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Aug 2019 05:48:39 -0000

On 26/8/19 08:24, Joe Touch wrote:
> The only thing QUIC doesn’t do is demux via a single field of the IP
> header called “protocol”.

I go back to my original comment: that you can't deploy new transport
protocols. Yes, you can stack as many layers as you want, but you can't
deploy new transport protocols. You can deploy new transport protocols
as much as you can deploy new internet protocols (you can do overlays as
much as you want). To put it bluntly: you have UDP sitting below QUIC
because you can't deploy new transport protocols on the Internet.

(No need to mention that none of my previous comments was in detriment
of QUIC -- they were very pragmatic, indeed).



> Maybe this is a good thing - maybe it just goes to show middleboxes how
> incapable they are at actually knowing what’s going on.

I'd bet much of the brokenness has nothing to do with middle-boxes that
want to know what's going on (e.g., firewalls enforcing security
policies). A lot has to do with NATs (which need to be aware about the
transport protocol to do the translation), and other boxes that at times
need to drop packets as a side effect of doing something else
(https://tools.ietf.org/html/draft-gont-v6ops-ipv6-ehs-packet-drops).

Let's also not just blame NATs: we were extremely close to ship what
became RFC8200 with no comments about middle-box insertion of EHs, we
also had SRv6 with in-the-network EH-insertion, and Linux currently
ships with in-the-network SRv6 insertion (see man 8 ip-route). At times
we don't seem to be consistent regarding wether we want middleboxes to
fiddle with packets or not....

-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492

v2.23.0 | Report a Bug | By Email