[bmwg] Pasted review answers - RE: WGLC: draft-ietf-bmwg-ipflow-meth-04

["Jan Novak (janovak)" <janovak@cisco.com>]

Just pasted answers to the draft-03 review:

 

http://www.ietf.org/mail-archive/web/bmwg/current/msg02413.html

 

==========PJ ===============

OK, I'm happy with that. Please clarify this in section 4.3.3, eg:

 

      Various Flow monitoring implementations might use different

      default values regarding the export of Control Information

      [RFC5470]. Note that Control Information includes IPFIX Options
and Templates [RFC5101].

      The Flow Export corresponding to Control Information ...

==========PJ ===============

 

Clarified - see the text please

 

 

==========PJ ===============

Note that Control Information includes IPFIX Options and Templates
[RFC5101].

==========PJ ===============

 

Yes, I know that - what is your point here please ??

 

 

==========PJ ===============

Per Brian's feedback, please add to section 4.5:

 

    Packet sampling and flow sampling is out of scope of this document.

    This document applies to situations without packet or flow sampling.

==========PJ ===============

 

Added

 

==========PJ ===============

Section 1: remove "the":

 

    is provided in the section 3.3.

(And many more times, throughout the document - eg, at the end 

of Section 3.1, in Section 3.4.1, at the very end of 3.4.2, ...  Please
search yourself.)

==========PJ ===============

 

Searched and removed or occurences.

 

==========PJ ===============

In section 1, at the bottom of page 2, write "DUT's" and remove
"support":

 

    The only restriction may be the DUT's lack

    of support for Flow monitoring support of the particular traffic

    type.

==========PJ ===============

 

Changed

 

==========PJ ===============

Section 2.2.5:

 

     mention that there SHOULD NOT be any export filtering, so that all
the expired cache entries are exported. If there is export filtering and
it can't be disabled, this needs to be noted. 

==========PJ ===============

 

Added as suggested

 

==========PJ ===============

Also in section 3.1, I had said:

==========PJ ===============

 

I answered this in the previous review already:

http://www.ietf.org/mail-archive/web/bmwg/current/msg02413.html

 

==========PJ ===============

Section 3.4.1:

 

   In this scenario every packet seen by the DUT creates a

   new Cache entry and forces the DUT to the full Cache processing fill
the Cache

   instead of just updating packet and byte counters on of an already

   existing Cache entry.

==========PJ ===============

 

Changed

 

==========PJ ===============

Section 3.4.2: the indentation of the second line in each point is wrong
- compare with other a/b/c immediately above and below:

==========PJ ===============

 

Changed

 

==========PJ ===============

Section 4.1:

 

s/if/whether/

 

   The ideal way to implement the measurement is by using a single

   device to provide the sender and receiver capabilities with a sending

   port and a receiving port. This allows for an easy check if whether
all the

   traffic sent by the sender was re-transmitted by the DUT and received

   at the receiver.

 

PJ: If the sender and receiver are independent (ie, two devices), then
there needs to be another link directly from the sender to the receiver
(ie, not through the DUT), so the receiver can make that comparison.

 

- how can the comparison be made if the tester is unable to implement
your suggestion of a single device?

==========PJ ===============

 

Changed. In our tests we don't have one device but we still know

what was sent by configuration of the sender and receiver. It is

not ideal as stated in the draft but still not very difficult to

figure out. I don't see any importance/relevance of this - it is

a standard function of any commercial traffic generator.

 

==========PJ ===============

Section 4.1:

    In all measurements, the export

    interface MUST have enough bandwidth to transmit Flow Export data

    without congestion. In other words, the export interface MUST NOT be

    a bottleneck during the measurement.

 

PJ: What if the receiving interface, or the collector itself, is a
bottleneck? Previously you said it doesn't matter, and I disagreed.

 

- data could be lost at the receiving end, making the DUT look worse
than it really is.

==========PJ ===============

 

I answered this in the previous review already:

http://www.ietf.org/mail-archive/web/bmwg/current/msg02413.html

 

I believe this is all covered in the section 4.4 already

 

==========PJ ===============

Section 4.2:

 

    The DUT export interface (see Figure 2) MUST be configured with

    sufficient output buffers to avoid dropping the Flow Export data due

    to a simple lack of resources in the interface hardware. 

 

PJ: then it might not be configured as it would in real life conditions.
Wouldn't it be better to record the real-life results than to tweak the
settings just for testing purposes?

 

- eg, consider if the DUT operates with insufficient buffers in the
real-world scenario, and therefore drops a lot more data than when
testing under "ideal" conditions in the lab.

==========PJ ===============

 

I would like to disagree here. We are not measuring real life

scenario here. We are trying to measure the maximum what the 

DUT can do. In real life you would also configure the export interface

(if there is one dedicated at all - see the discussion in Appendix

B) not to drop the export packets.

 

==========PJ ===============

Section 4.3:

 

    The DUT SHOULD support IPFIX [RFC5101] 

 

Say why?

==========PJ ===============

 

This has been changed several times as the result of the previous
reviews. I don't

know what text you would like there. Please suggest something.

The previous text was "The DUT SHOULD support IPFIX [RFC5101] to allow
easier

                       results comparison"

 

and your/someone else's question was "What difference it would make ??"
- sorry no idea

what you want from me here, it just feels like common sense to have same
protocol

for testing everywhere if possible ??

 

==========PJ ===============

Section 4.3.1:

 

      In the case when both ingress and egress Flow monitoring is 

      enabled on one DUT the results analysis needs to take into account

      that each Flow will be represented in the DUT Cache by two Flow

      Records (one for each direction) and therefore also the Flow

      Export will contain those two Flow Records.

 

PJ: you assume a single cache. ingress and egress may potentially be
recorded in separate caches. This may, or may not, impact the
performance.

 

- so mention that whether the combined ingress and egress traffic is
measured in one cache or each separately in its own cache, may impact
performance and should be recorded.

==========PJ ===============

 

I have added text in 4.3.2.l If it is not sufficient please suggest

something more appropriate.

 

==========PJ ===============

Section 4.3.2: add "of", remove "the", and move "instantly" :

 

      The Cache's Inactive and Active Timeouts MUST be known and taken

      into account when designing the measurement as specified in

      section 5. If the Flow monitoring implementation allows only

      timeouts of zero (e.g. immediate timeout or non-existent Cache)
then

      the measurement conditions in the section 5 are fulfilled

      inherently without any additional configuration. The DUT simply

      instantly exports instantly information about every single packet.

 

PJ: Assuming that the cache works with timeouts. What if it uses some
other mechanism, eg number of packets in the flow?

 

- state what impact other such mechanisms may have.

==========PJ ===============

 

Changed the text. I don't know about any such impact. Could you
elaborate

please ??

 

==========PJ ===============

Section 4.3.3: add "of" :

 

    Section 10 of [RFC5101] and section 8.1 of [RFC5470] discuss

==========PJ ===============

 

Changed.

 

==========PJ ===============

Section 4.3.3: add "of" :

 

    Section 10 of [RFC5101] and section 8.1 of [RFC5470] discuss

 

==========PJ ===============

 

Added

 

==========PJ ===============

Section 4.3.3:

    The Exporting Process SHOULD be configured with IPFIX [RFC5101] as

    the protocol to use to format the Flow Export data. If the Flow

    monitoring implementation does not support it, proprietary

    protocols MAY be used.

 

PJ: what difference would this make to the testing?

 

Eg, NFv5 is a proprietary protocol which has smaller data records and no
templates - so it requires less export bandwidth. Wouldn't the results
look better if NFv5 was used rather than IPFIX?

 

- at least state that since proprietary protocols may make a
considerable difference to the testing, the exact protocol being tested
(and any related configuration parameters) MUST be recorded and only
similar protocols should be compared.

==========PJ ===============

 

This section has been edited many times to satisfy various reviewers

ideas. I have tried another one. Of it does not suit please provide

some text. This also answers your comment about 4.3.

 

==========PJ ===============

Section 4.3.5, remove "on" :

 

      The test report should therefore contain information

      containing on how many Metering and Exporting processes were

      configured on the DUT for the selected Observation Points.

==========PJ ===============

 

Removed

 

==========PJ ===============

Section 4.3.6: insert "The"

 

    The forwarding performance document [RFC5695] specifies

==========PJ ===============

 

==========PJ ===============

Section 4.4:

 

   However if the Collector is also used to decode the Flow Export data

   then it SHOULD support IPFIX [RFC5101] for easier results analysis.

 

PJ: Again, why does IPFIX make it easier?

==========PJ ===============

 

Please suggest some text, this has gone through many variations as well.

It is answered in the discussion above.

 

==========PJ ===============

Section 4.9.1:

 

   A packet with destination IP address equal to A is sent every 10

   seconds, so the Cache entry would be refreshed in the Cache every 10

   seconds. However, the Inactive Timeout is 5 seconds, so the Cache

   entries will expire from the Cache due to the Inactive Timeout and

   when a new packet is sent with the same IP address A it will create a

   new entry in the Cache.

 

PJ: theoretically. In practice... the DUT has to check those 10,000
cache entries within the 10 seconds to ensure that expired cache entries
are exported. If it checks 1,000 cache entries per second, it may only
just be ready to expire the existing cache entry when the new packet
arrives. Therefore the new packet may sometimes be added to the existing
cache entry, giving occasional 2 packet flows!

 

- so note that this behaviour depends upon the design an efficiency of
the cache ager, and incidences of multi-packet flows observed during
this test should be noted.

==========PJ ===============

 

Added text as suggested.

 

 

==========PJ ===============

At the end of section 4.9.1:

 

   with large Cache Sizes and high packet rate where the DUT's actual

==========PJ ===============

 

Changed

 

 

==========PJ ===============

Section 4.9.2:

 

   So each stream has a packet rate of 10 packets per second. The
packets

 

   A packet with destination IP address equal to A is sent every 0.1

   second, so it means that the Cache entry is refreshed in the Cache   

==========PJ ===============

 

Changed

 

==========PJ ===============

I think you could work around all the config issues by simply saying
that the DUT should conform to the IPFIX Config model described in
draft-ietf-ipfix-configuration-model (which is in the RFC Editor's
queue, waiting for the IPFIX MIB).

==========PJ ===============

 

Tried to add some text to 5.1, if it is not suitable please provide

some.

 

==========PJ ===============

Section 5.3: the "Page 19" header/footer is broken - search for [Page
19].

==========PJ ===============

 

Couldn't see it broken, but tried

 

==========PJ ===============

PJ: show that calculation here.

 

- show the exact calculation you have in mind, to ensure that every
reader calculates the same.

==========PJ ===============

 

The formula is just above the text you point to, so it is trivial

to figure out:

 

The measurement time interval is then calculated as the difference 

   (stop time) - (start time) - (Inactive Timeout).

 

==========PJ ===============

PJ: I'm confused by the final part. What are you trying to avoid?

==========PJ ===============

 

I have answered this in the previous review, Please read

http://www.ietf.org/mail-archive/web/bmwg/current/msg02413.html

to progress any further or simply suggest some text

 

==========PJ ===============

Section 7: "The" shouldn't be capitalised:

==========PJ ===============

 

Changed

 

==========PJ ===============

B.1 add "the" and "a":

==========PJ ===============

 

Added

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

The climate of Edinburgh is such that the weak succumb young .... 

and the strong envy them.

                                 Dr. Johnson

 

 

From: Paul Aitken (paitken) 
Sent: 09 September 2011 14:01
To: Jan Novak (janovak)
Cc: Al Morton; bmwg@ietf.org
Subject: Re: WGLC: draft-ietf-bmwg-ipflow-meth-03

 

Jan,

I reviewed the changes from -02 to -03, then the changes from -01 to
-03, and finally I reviewed what you've done in -03 in response to my
previous feedback.

The new version is a big improvement over -01 which I last reviewed - so
I have many minor comments, along with several points you seem to have
missed or overlooked.

Please see my comments inline below.

I look forward to seeing a -04.

P.