IETF Logo Mail Archive

Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt

"ietfdbh" <ietfdbh@comcast.net> Mon, 05 November 2012 18:36 UTC

Return-Path: <ietfdbh@comcast.net>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 510DE21F893B for <cdni@ietfa.amsl.com>; Mon, 5 Nov 2012 10:36:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.437
X-Spam-Level:
X-Spam-Status: No, score=-100.437 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kF8hP1sAvLZn for <cdni@ietfa.amsl.com>; Mon, 5 Nov 2012 10:36:33 -0800 (PST)
Received: from qmta13.westchester.pa.mail.comcast.net (qmta13.westchester.pa.mail.comcast.net [IPv6:2001:558:fe14:44:76:96:59:243]) by ietfa.amsl.com (Postfix) with ESMTP id 0B3C821F8BEE for <cdni@ietf.org>; Mon, 5 Nov 2012 10:36:32 -0800 (PST)
Received: from omta14.westchester.pa.mail.comcast.net ([76.96.62.60]) by qmta13.westchester.pa.mail.comcast.net with comcast id KseQ1k0091HzFnQ5Ducdh9; Mon, 05 Nov 2012 18:36:37 +0000
Received: from JV6RVH1 ([71.233.85.150]) by omta14.westchester.pa.mail.comcast.net with comcast id Kucb1k00q3Ecudz3aucc0A; Mon, 05 Nov 2012 18:36:36 +0000
From: ietfdbh <ietfdbh@comcast.net>
To: cdni@ietf.org
References: <20121022185902.22651.23401.idtracker@ietfa.amsl.com> <021501cdb09a$9da68300$d8f38900$@comcast.net> <6412_1352128926_5097D99E_6412_343_1_2AC63C9F27AF8446B0C064C50FC0A89306DC3608@PEXCVZYM13.corporate.adroot.infra.ftgroup> <bbfaab8704fcb562318a6193e53369c4@mail.gmail.com>
In-Reply-To: <bbfaab8704fcb562318a6193e53369c4@mail.gmail.com>
Date: Mon, 05 Nov 2012 13:36:31 -0500
Message-ID: <00ca01cdbb84$7a347db0$6e9d7910$@comcast.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQKVJ5ZQVWRGZstnq+mhCPHo4nvoqgGnKhbSAow9U/QBgSvQ8JYfAfpw
Content-Language: en-us
X-Mailman-Approved-At: Mon, 05 Nov 2012 13:08:00 -0800
Subject: Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cdni>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 18:36:34 -0000

Hi,

How long are CDNI log messages expected to be?
What are the requirements to be met in terms of confidentiality, integrity
checking, etc.?

RFC5424 syslog deliberately does not hard-code the length.
For interoperability, senders MUST support at least 2048, receivers SHOULD
support at least 8192 bytes.
For usages that need larger message sizes, such as HIPPA audit logs, you can
use larger message sizes.
However, each syslog sender/receiver/relay/application in the path to
deliver that data would need to support these larger sizes to avoid
truncation.

SNMP is designed to support traps as alerts, and to support trap-directed
polling.
Traps/Informs are typically small messages to alert the NMS on a timely
basis to some condition; small alerts typically better meet operational
alerting requirements.
You typically do not send lots of data in a trap/inform.
If there is a lot of information to be passed, a trap can be used to tell
the NMS something is available, and the NMS can then poll for the actual
data (or use a different protocol to get the data).
So, depending on what you plan to log, and the importance of timely
reporting, traps/informs may or may not meet operational requirements.

David Harrington
ietfdbh@comcast.net
+1-603-828-1401
-----Original Message-----
From: Gene Golovinsky [mailto:ggolovinsky@qualys.com] 
Sent: Monday, November 05, 2012 10:34 AM
To: gilles.bertrand@orange.com; ietfdbh; cdni@ietf.org
Subject: RE: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt

Hi.

Some questions re usage of Syslog RFC 5424 were asked at the previous
meeting. Then, were also raised on the list. I did not see a technical
conversation about it. (May be I missed it). The same applies to SNMP
Informs.
I would too suggest that Syslog may be a better choice since it allows for
easier extension and longer massages.

The only argument I have heard against these two so far is that CDNi logs
may be too long.

Cheers.
--Gene


-----Original Message-----
From: cdni-bounces@ietf.org [mailto:cdni-bounces@ietf.org] On Behalf Of
gilles.bertrand@orange.com
Sent: Monday, November 05, 2012 07:22 AM
To: ietfdbh; cdni@ietf.org
Subject: Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt

David,

Thanks for your review of our draft.

1) We want the WG to discuss the choice of a Logging transport protocol for
non real-time information. Personally, I do not yet have a clear preference
for a given transport protocol. We definitely need to identify the pro /
cons of the candidate protocols and I would like to invite the WG
contributors to share their technical arguments on the mailing list.

2) Please see 1)   :-)

3) Thanks for sharing these arguments.

  To clarify the scope of the open technical questions:
        - I think there is consensus on the fact that the logging
information required by CDNs in the scope of CDNI in quite specific. So,
we need to define a   Logging format.
	  - There is no consensus for the moment on the choice of a Logging
transport protocol for non real-time information.
	    - The candidate protocols are: SNMPv3, Syslog, SSH File
Transport, HTTPS. Did I forget any relevant protocol?
          - Your point is that SNMPv3 and syslog (and any other candidate
protocol) must not be excluded without documenting technical reasons. I
definitely agree.

Note that we want to have a clear separation between the logging application
layer (the format of the information) and the logging transport layer. So,
the WG may decide to support more than on logging transport protocol.

Best regards,

Gilles


-----Message d'origine-----
De : cdni-bounces@ietf.org [mailto:cdni-bounces@ietf.org] De la part de
ietfdbh Envoyé : lundi 22 octobre 2012 23:17 À : cdni@ietf.org Cc : David
Harrington Objet : Re: [CDNi] I-D Action:
draft-bertrand-cdni-logging-02.txt

Hi,

I took a quick look at this document.
I have a few comments.

1) While appendix C is yet to be written, the placeholders seem to already
poo-poo the candidates that are existing IETF standards, without documenting
why they are not viable choices.

2) Appendix C2 references RFC6707, which states some conclusions that have
no documentation as to how the conclusions were reached.
What are the scalability requirements for the CDNI logging interface?
RFC6707 states that there are "scalability concerns", but doesn't specify
the requirements or the specific concerns.
There may be valid scalability concerns, but this deserves better
documentation than mere handwaving.
Which scalability requirements are not possible to meet with SNMPv3?

3) RFC6707 states SNMP does not support guaranteed delivery of traps.
I am not sure how this conclusion was reached.
SNMPv3 has Informs (acknowledged traps), which support application-level
acknowledgement of receipt.
An SNMPv3 agent could continue to periodically send the Inform until it
receives acknowledgement of receipt.
This would seem to mitigate the concern that use of SNMP "could result in
log records being lost".
Note that SNMPv1 has been declared Historic, so shouldn't even be considered
a candidate protocol for new usage.
Only version 3 of SNMP is recommended.

That said, I would think that syslog [RFC5424] might be a better choice for
CDNI logging.
It uses secure, reliable transport over TLS (RFC5425).
Signed syslog messages [RFC5848] can be used by receivers to verify they
have received all the messages sent to them.
If messages are out-of-order or missing, the receiver can determine which
records are missing and request they be resent.
In addition, the signing can be applied to stored logs to verify they have
not been modified from the original message stream.

If you are considering the RECOMMENDED versions of these candidate
protocols, they might better meet the requirements.
But the main point is that the consideration process should be documented
more clearly than this document (or RFC6707) does.

David Harrington
ietfdbh@comcast.net
+1-603-828-1401
-----Original Message-----
From: i-d-announce-bounces@ietf.org [mailto:i-d-announce-bounces@ietf.org]
On Behalf Of internet-drafts@ietf.org
Sent: Monday, October 22, 2012 2:59 PM
To: i-d-announce@ietf.org
Subject: I-D Action: draft-bertrand-cdni-logging-02.txt


A New Internet-Draft is available from the on-line Internet-Drafts
directories.


	Title           : CDNI Logging Interface
	Author(s)       : Gilles Bertrand
                          Stephan Emile
                          Roy Peterkofsky
                          Francois Le Faucheur
                          Pawel Grochocki
	Filename        : draft-bertrand-cdni-logging-02.txt
	Pages           : 43
	Date            : 2012-10-22

Abstract:
   This memo specifies the Logging interface between a downstream CDN
   (dCDN) and an upstream CDN (uCDN) that are interconnected as per the
   CDN Interconnection (CDNI) framework.  First, it describes a
   reference model for CDNI logging.  Then, it specifies the actual
   protocol for CDNI logging information exchange covering the
   information elements as well as the transport of those.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-bertrand-cdni-logging

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-bertrand-cdni-logging-02

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-bertrand-cdni-logging-02


Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
I-D-Announce mailing list
I-D-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html or
ftp://ftp.ietf.org/ietf/1shadow-sites.txt

_______________________________________________
CDNi mailing list
CDNi@ietf.org
https://www.ietf.org/mailman/listinfo/cdni

__________________________________________________________________________
_______________________________________________

Ce message et ses pieces jointes peuvent contenir des informations
confidentielles ou privilegiees et ne doivent donc pas etre diffuses,
exploites ou copies sans autorisation. Si vous avez recu ce message par
erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les
pieces jointes. Les messages electroniques etant susceptibles d'alteration,
France Telecom - Orange decline toute responsabilite si ce message a ete
altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged
information that may be protected by law; they should not be distributed,
used or copied without authorisation.
If you have received this email in error, please notify the sender and
delete this message and its attachments.
As emails may be altered, France Telecom - Orange is not liable for messages
that have been modified, changed or falsified.
Thank you.

_______________________________________________
CDNi mailing list
CDNi@ietf.org
https://www.ietf.org/mailman/listinfo/cdni

v2.23.0 | Report a Bug | By Email