Re: [BEHAVE] nat-mib-06 abbreviations
Simon Perreault <simon.perreault@viagenie.ca> Wed, 26 June 2013 07:51 UTC
Return-Path: <simon.perreault@viagenie.ca>
X-Original-To: behave@ietfa.amsl.com
Delivered-To: behave@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2D7711E80C5 for <behave@ietfa.amsl.com>; Wed, 26 Jun 2013 00:51:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KMlgWuNBBqiJ for <behave@ietfa.amsl.com>; Wed, 26 Jun 2013 00:51:47 -0700 (PDT)
Received: from jazz.viagenie.ca (jazz.viagenie.ca [IPv6:2620:0:230:8000::2]) by ietfa.amsl.com (Postfix) with ESMTP id 2798F21E80D7 for <behave@ietf.org>; Wed, 26 Jun 2013 00:51:46 -0700 (PDT)
Received: from [127.0.0.1] (h228.viagenie.ca [206.123.31.228]) by jazz.viagenie.ca (Postfix) with ESMTPSA id 4CB784043D; Wed, 26 Jun 2013 03:51:45 -0400 (EDT)
Message-ID: <51CA9D92.9050504@viagenie.ca>
Date: Wed, 26 Jun 2013 09:51:46 +0200
From: Simon Perreault <simon.perreault@viagenie.ca>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130509 Thunderbird/17.0.6
MIME-Version: 1.0
To: ietfdbh <ietfdbh@comcast.net>
References: <000001ce6f50$c0427250$40c756f0$@comcast.net> <51C7F652.6080100@viagenie.ca> <00e101ce70e8$b59bc010$20d34030$@comcast.net>
In-Reply-To: <00e101ce70e8$b59bc010$20d34030$@comcast.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 8bit
Cc: behave@ietf.org
Subject: Re: [BEHAVE] nat-mib-06 abbreviations
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jun 2013 07:51:47 -0000
Le 2013-06-24 16:40, ietfdbh a écrit : > That's pretty much impossible given that NAT is underspecified and various > NAT implementations do various things. What we can do is eliminate any > ambiguity, while remaining generic. > [dbh>] But you're NOT eliminating the ambiguity. Right. I did not propose a way to eliminate the ambiguity. I was only suggesting that that is what we should do (as opposed to eliminating generality). > I have a background in NMS development, and know that it is frustrating to > have the same counter name used to count different things on different > implementations. The counter simply becomes useless. Having a "standard" is > pretty useless if I have to code my application to know that the xyzCounter > counts one thing on Cisco NATs, but Juniper NATs count something else, and > Acme NATs some other implementation-dependent stuff, while Foobar NATs > include their implementation-dependent things. And if the standard is > ambiguous, then different models from the same vendors can choose to count > different things as well, making it REALLY useless. > > The problem is that an NMS cannot compare the value of this counter across > different implementations because the meaning of the counter differs across > implementations. I recommend standardizing what can be agreed upon, and let > those things that are implementation-specific (i.e., not agreed upon) be > documented in implementation-specific MIB modules; maybe at some time in the > future, agreement can be reached to extend the standard. > > if the counter goes into an IETF standard MIB, then it should standardize > what gets counted in that counter. That's a fair point. Unless the WG disagrees, the state mismatches counters will be removed from the next revision. >> natCntQuota => natQuotaErrors? natQuotaRejects? natQuotaRefusedPkts? >> Does this only apply to incoming packets? > > The whole MIB assumes that 1 packet in = 1 packet out. If an incoming packet > gets dropped because an outbound quota is reached, then that still > increments the counter. Is that what you meant? > [dbh>] well, yes, that is what I meant, at least to a degree. > Remember that under SMI rules, you cannot go back and change the semantics > of this description later. > As long as there is a 1:1 mapping, it probably doesn't matter whether you > count this as an incoming packets of an outgoing packet issue. However, > given the variety of NAT implementations, as you've mentioned, and I'm not > sure that variability will go away anytime soon, somebody might choose to > implement different quotas for incoming and outgoing. Hence, it could be > better to specify that this counts "the number of incoming packets that did > not get translated ..."; that way if ever implementations allow for a > not-1:1 mapping, they still know which packets to count in this counter. And > if the 1:1 assumption always holds true, it makes no difference. Will do. > I think the naming should change to reflect that this is a drop counter - I > suggest natQuotaDrops. Ok. > In general, counters count behaviors/actions such as drops, rather than > things like quotas, so the behavior/action being counted should be part of > the name. If I am an operator looking at a counter named natCntResource, is > this counting the resources? Or is it counting the drops caused by > inadequate resources? Ideally an operator should not need to go read the MIB > description clause to figure this out, while trying to debug why the > company's shopping cart network connection suddenly isn't working. It helps > a lot to use meaningful object names. Makes total sense. Thanks for the help! Simon
- [BEHAVE] nat-mib-06 abbreviations ietfdbh
- Re: [BEHAVE] nat-mib-06 abbreviations Simon Perreault
- Re: [BEHAVE] nat-mib-06 abbreviations ietfdbh
- Re: [BEHAVE] nat-mib-06 abbreviations Simon Perreault