Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt
"ietfdbh" <ietfdbh@comcast.net> Mon, 05 November 2012 18:36 UTC
Return-Path: <ietfdbh@comcast.net>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 510DE21F893B for <cdni@ietfa.amsl.com>; Mon, 5 Nov 2012 10:36:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.437
X-Spam-Level:
X-Spam-Status: No, score=-100.437 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kF8hP1sAvLZn for <cdni@ietfa.amsl.com>; Mon, 5 Nov 2012 10:36:33 -0800 (PST)
Received: from qmta13.westchester.pa.mail.comcast.net (qmta13.westchester.pa.mail.comcast.net [IPv6:2001:558:fe14:44:76:96:59:243]) by ietfa.amsl.com (Postfix) with ESMTP id 0B3C821F8BEE for <cdni@ietf.org>; Mon, 5 Nov 2012 10:36:32 -0800 (PST)
Received: from omta14.westchester.pa.mail.comcast.net ([76.96.62.60]) by qmta13.westchester.pa.mail.comcast.net with comcast id KseQ1k0091HzFnQ5Ducdh9; Mon, 05 Nov 2012 18:36:37 +0000
Received: from JV6RVH1 ([71.233.85.150]) by omta14.westchester.pa.mail.comcast.net with comcast id Kucb1k00q3Ecudz3aucc0A; Mon, 05 Nov 2012 18:36:36 +0000
From: ietfdbh <ietfdbh@comcast.net>
To: cdni@ietf.org
References: <20121022185902.22651.23401.idtracker@ietfa.amsl.com> <021501cdb09a$9da68300$d8f38900$@comcast.net> <6412_1352128926_5097D99E_6412_343_1_2AC63C9F27AF8446B0C064C50FC0A89306DC3608@PEXCVZYM13.corporate.adroot.infra.ftgroup> <bbfaab8704fcb562318a6193e53369c4@mail.gmail.com>
In-Reply-To: <bbfaab8704fcb562318a6193e53369c4@mail.gmail.com>
Date: Mon, 05 Nov 2012 13:36:31 -0500
Message-ID: <00ca01cdbb84$7a347db0$6e9d7910$@comcast.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQKVJ5ZQVWRGZstnq+mhCPHo4nvoqgGnKhbSAow9U/QBgSvQ8JYfAfpw
Content-Language: en-us
X-Mailman-Approved-At: Mon, 05 Nov 2012 13:08:00 -0800
Subject: Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/cdni>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 18:36:34 -0000
Hi, How long are CDNI log messages expected to be? What are the requirements to be met in terms of confidentiality, integrity checking, etc.? RFC5424 syslog deliberately does not hard-code the length. For interoperability, senders MUST support at least 2048, receivers SHOULD support at least 8192 bytes. For usages that need larger message sizes, such as HIPPA audit logs, you can use larger message sizes. However, each syslog sender/receiver/relay/application in the path to deliver that data would need to support these larger sizes to avoid truncation. SNMP is designed to support traps as alerts, and to support trap-directed polling. Traps/Informs are typically small messages to alert the NMS on a timely basis to some condition; small alerts typically better meet operational alerting requirements. You typically do not send lots of data in a trap/inform. If there is a lot of information to be passed, a trap can be used to tell the NMS something is available, and the NMS can then poll for the actual data (or use a different protocol to get the data). So, depending on what you plan to log, and the importance of timely reporting, traps/informs may or may not meet operational requirements. David Harrington ietfdbh@comcast.net +1-603-828-1401 -----Original Message----- From: Gene Golovinsky [mailto:ggolovinsky@qualys.com] Sent: Monday, November 05, 2012 10:34 AM To: gilles.bertrand@orange.com; ietfdbh; cdni@ietf.org Subject: RE: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt Hi. Some questions re usage of Syslog RFC 5424 were asked at the previous meeting. Then, were also raised on the list. I did not see a technical conversation about it. (May be I missed it). The same applies to SNMP Informs. I would too suggest that Syslog may be a better choice since it allows for easier extension and longer massages. The only argument I have heard against these two so far is that CDNi logs may be too long. Cheers. --Gene -----Original Message----- From: cdni-bounces@ietf.org [mailto:cdni-bounces@ietf.org] On Behalf Of gilles.bertrand@orange.com Sent: Monday, November 05, 2012 07:22 AM To: ietfdbh; cdni@ietf.org Subject: Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt David, Thanks for your review of our draft. 1) We want the WG to discuss the choice of a Logging transport protocol for non real-time information. Personally, I do not yet have a clear preference for a given transport protocol. We definitely need to identify the pro / cons of the candidate protocols and I would like to invite the WG contributors to share their technical arguments on the mailing list. 2) Please see 1) :-) 3) Thanks for sharing these arguments. To clarify the scope of the open technical questions: - I think there is consensus on the fact that the logging information required by CDNs in the scope of CDNI in quite specific. So, we need to define a Logging format. - There is no consensus for the moment on the choice of a Logging transport protocol for non real-time information. - The candidate protocols are: SNMPv3, Syslog, SSH File Transport, HTTPS. Did I forget any relevant protocol? - Your point is that SNMPv3 and syslog (and any other candidate protocol) must not be excluded without documenting technical reasons. I definitely agree. Note that we want to have a clear separation between the logging application layer (the format of the information) and the logging transport layer. So, the WG may decide to support more than on logging transport protocol. Best regards, Gilles -----Message d'origine----- De : cdni-bounces@ietf.org [mailto:cdni-bounces@ietf.org] De la part de ietfdbh Envoyé : lundi 22 octobre 2012 23:17 À : cdni@ietf.org Cc : David Harrington Objet : Re: [CDNi] I-D Action: draft-bertrand-cdni-logging-02.txt Hi, I took a quick look at this document. I have a few comments. 1) While appendix C is yet to be written, the placeholders seem to already poo-poo the candidates that are existing IETF standards, without documenting why they are not viable choices. 2) Appendix C2 references RFC6707, which states some conclusions that have no documentation as to how the conclusions were reached. What are the scalability requirements for the CDNI logging interface? RFC6707 states that there are "scalability concerns", but doesn't specify the requirements or the specific concerns. There may be valid scalability concerns, but this deserves better documentation than mere handwaving. Which scalability requirements are not possible to meet with SNMPv3? 3) RFC6707 states SNMP does not support guaranteed delivery of traps. I am not sure how this conclusion was reached. SNMPv3 has Informs (acknowledged traps), which support application-level acknowledgement of receipt. An SNMPv3 agent could continue to periodically send the Inform until it receives acknowledgement of receipt. This would seem to mitigate the concern that use of SNMP "could result in log records being lost". Note that SNMPv1 has been declared Historic, so shouldn't even be considered a candidate protocol for new usage. Only version 3 of SNMP is recommended. That said, I would think that syslog [RFC5424] might be a better choice for CDNI logging. It uses secure, reliable transport over TLS (RFC5425). Signed syslog messages [RFC5848] can be used by receivers to verify they have received all the messages sent to them. If messages are out-of-order or missing, the receiver can determine which records are missing and request they be resent. In addition, the signing can be applied to stored logs to verify they have not been modified from the original message stream. If you are considering the RECOMMENDED versions of these candidate protocols, they might better meet the requirements. But the main point is that the consideration process should be documented more clearly than this document (or RFC6707) does. David Harrington ietfdbh@comcast.net +1-603-828-1401 -----Original Message----- From: i-d-announce-bounces@ietf.org [mailto:i-d-announce-bounces@ietf.org] On Behalf Of internet-drafts@ietf.org Sent: Monday, October 22, 2012 2:59 PM To: i-d-announce@ietf.org Subject: I-D Action: draft-bertrand-cdni-logging-02.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : CDNI Logging Interface Author(s) : Gilles Bertrand Stephan Emile Roy Peterkofsky Francois Le Faucheur Pawel Grochocki Filename : draft-bertrand-cdni-logging-02.txt Pages : 43 Date : 2012-10-22 Abstract: This memo specifies the Logging interface between a downstream CDN (dCDN) and an upstream CDN (uCDN) that are interconnected as per the CDN Interconnection (CDNI) framework. First, it describes a reference model for CDNI logging. Then, it specifies the actual protocol for CDNI logging information exchange covering the information elements as well as the transport of those. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-bertrand-cdni-logging There's also a htmlized version available at: http://tools.ietf.org/html/draft-bertrand-cdni-logging-02 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-bertrand-cdni-logging-02 Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ I-D-Announce mailing list I-D-Announce@ietf.org https://www.ietf.org/mailman/listinfo/i-d-announce Internet-Draft directories: http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt _______________________________________________ CDNi mailing list CDNi@ietf.org https://www.ietf.org/mailman/listinfo/cdni __________________________________________________________________________ _______________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, France Telecom - Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, France Telecom - Orange is not liable for messages that have been modified, changed or falsified. Thank you. _______________________________________________ CDNi mailing list CDNi@ietf.org https://www.ietf.org/mailman/listinfo/cdni
- [CDNi] New version of the CDNI Logging draft post… gilles.bertrand
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… ietfdbh
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Ben Niven-Jenkins
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… gilles.bertrand
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Gene Golovinsky
- Re: [CDNi] New version of the CDNI Logging draft … Kevin J Ma
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… ietfdbh
- Re: [CDNi] New version of the CDNI Logging draft … Kevin J Ma
- Re: [CDNi] New version of the CDNI Logging draft … Roy Peterkofsky
- Re: [CDNi] New version of the CDNI Logging draft … Kevin J Ma
- Re: [CDNi] New version of the CDNI Logging draft … Ben Niven-Jenkins
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Francois Le Faucheur (flefauch)
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Ben Niven-Jenkins
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Francois Le Faucheur (flefauch)
- Re: [CDNi] I-D Action: draft-bertrand-cdni-loggin… Roy Peterkofsky