Re: [Detnet] Diffserv concerns wrt: draft-ietf-detnet-ip-01.txt
"Black, David" <David.Black@dell.com> Wed, 17 July 2019 22:17 UTC
Return-Path: <David.Black@dell.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4D9412014E for <detnet@ietfa.amsl.com>; Wed, 17 Jul 2019 15:17:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=dell.com header.b=LFIcgwRt; dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=emc.com header.b=VCyZZdI7
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CkhHvYsGmCyr for <detnet@ietfa.amsl.com>; Wed, 17 Jul 2019 15:17:38 -0700 (PDT)
Received: from mx0a-00154904.pphosted.com (mx0a-00154904.pphosted.com [148.163.133.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A23DC12007C for <detnet@ietf.org>; Wed, 17 Jul 2019 15:17:38 -0700 (PDT)
Received: from pps.filterd (m0170392.ppops.net [127.0.0.1]) by mx0a-00154904.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x6HMFEa0005562; Wed, 17 Jul 2019 18:17:36 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dell.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=smtpout1; bh=0YV3fAhEisxFKj2ibBOdJClA6xYIi6sBbifH977Ccio=; b=LFIcgwRtl2txe2JuY/yfcBf7a3rjZcn5gvIaLB2J8+aQHi6onzck+58kt+Gxh1HvA8Rq K9vidWWi9XsPi+vPEQxrHRckivtV45dHeviHlONdmIaOqLQschsWxkhVdQ4GjQPdEbUD D1MW+TQFVT+drNfFCkDOdafR4SaKBlKhaMhvkl5MhAEvZMsFXBt7DOiEujk2PpzUxSPy gGfnWQ1ApGGIRbzikM6jltXuFOKJfyz/AklvL3afLo7ER6ppccHHvjrdDriDOh1XCVuD FZoNqFm2tPRmYMlyvN2zj8uMQYZotADzniJQDsrTTbcg9PWeHcWjHyGWNSF2mGeoghgO AQ==
Received: from mx0b-00154901.pphosted.com (mx0b-00154901.pphosted.com [67.231.157.37]) by mx0a-00154904.pphosted.com with ESMTP id 2tt114v6ep-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 17 Jul 2019 18:17:36 -0400
Received: from pps.filterd (m0144103.ppops.net [127.0.0.1]) by mx0b-00154901.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x6HMCw1i075884; Wed, 17 Jul 2019 18:17:35 -0400
Received: from mailuogwhop.emc.com (mailuogwhop.emc.com [168.159.213.141]) by mx0b-00154901.pphosted.com with ESMTP id 2tt75emhge-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=FAIL); Wed, 17 Jul 2019 18:17:35 -0400
Received: from maildlpprd04.lss.emc.com (maildlpprd04.lss.emc.com [10.253.24.36]) by mailuogwprd02.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id x6HMHSUm021799 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Wed, 17 Jul 2019 18:17:34 -0400
X-DKIM: OpenDKIM Filter v2.4.3 mailuogwprd02.lss.emc.com x6HMHSUm021799
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=emc.com; s=jan2013; t=1563401854; bh=ak7iOsgcFjHIfJbBwHrQ2kN4Ags=; h=From:To:Subject:Date:Message-ID:References:In-Reply-To: Content-Type:Content-Transfer-Encoding:MIME-Version; b=VCyZZdI7FVqOYCo8r0mcr7cO0ijEhouI793WNzpPm3b6Pwwr9m9HGVM6IKfwDNlCT ae5tQlnPazDXL/+dLh7r+r2s8MhMg8+FTGXINwXeLylpn4aiVkMNjtBl4gXKP/Yne8 n1eJWdUx4TGuUNJTPH+bSH+WKrpeeKx3E1liSXI0=
Received: from mailusrhubprd51.lss.emc.com (mailusrhubprd51.lss.emc.com [10.106.48.24]) by maildlpprd04.lss.emc.com (RSA Interceptor); Wed, 17 Jul 2019 18:17:16 -0400
Received: from MXHUB301.corp.emc.com (MXHUB301.corp.emc.com [10.146.3.27]) by mailusrhubprd51.lss.emc.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.0) with ESMTP id x6HMGVIJ004843 (version=TLSv1.2 cipher=AES128-SHA256 bits=128 verify=FAIL); Wed, 17 Jul 2019 18:17:16 -0400
Received: from MX307CL04.corp.emc.com ([fe80::849f:5da2:11b:4385]) by MXHUB301.corp.emc.com ([10.146.3.27]) with mapi id 14.03.0439.000; Wed, 17 Jul 2019 18:17:12 -0400
From: "Black, David" <David.Black@dell.com>
To: Lou Berger <lberger@labn.net>, "detnet@ietf.org" <detnet@ietf.org>
Thread-Topic: [Detnet] Diffserv concerns wrt: draft-ietf-detnet-ip-01.txt
Thread-Index: AdU82NI0zJogipuDR3CrxrfrYzYiyAALZ/aAAAf0YQA=
Date: Wed, 17 Jul 2019 22:17:11 +0000
Message-ID: <CE03DB3D7B45C245BCA0D243277949363062204F@MX307CL04.corp.emc.com>
References: <CE03DB3D7B45C245BCA0D2432779493630621AD9@MX307CL04.corp.emc.com> <16c01cb4f08.27ce.9b4188e636579690ba6c69f2c8a0f1fd@labn.net>
In-Reply-To: <16c01cb4f08.27ce.9b4188e636579690ba6c69f2c8a0f1fd@labn.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_Enabled=True; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_SiteId=945c199a-83a2-4e80-9f8c-5a91be5752dd; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_Owner=david.black@emc.com; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_SetDate=2019-07-17T21:58:53.8744630Z; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_Name=External Public; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_Application=Microsoft Azure Information Protection; MSIP_Label_17cb76b2-10b8-4fe1-93d4-2202842406cd_Extended_MSFT_Method=Manual; aiplabel=External Public
x-originating-ip: [10.238.21.131]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Sentrion-Hostname: mailusrhubprd51.lss.emc.com
X-RSA-Classifications: public, GIS Solicitation
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-07-17_10:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1907170248
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1907170248
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/qvs-S0Nrm1B8w8JYO7zDLFwpTFQ>
Subject: Re: [Detnet] Diffserv concerns wrt: draft-ietf-detnet-ip-01.txt
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2019 22:17:41 -0000
Hi Lou, Thanks for the quick response. On [1], it looks like there's an understanding of what needs to be done. On [2], I concur with the suggestion to talk further in Montreal, as I'm not completely clear on the intended purpose/use of the list of control and management items in Section 6, which will affect what ought to be said about the ECN subfield On [3]b) , we agree on the "Don't Do That!!" approach to multiple DSCPs in a single DetNet flow - I'll try to draft some text to express that in my "copious spare time." That leaves [3]a) - here's an attempt at further explanation ... > > a) Each 5-tuple (i.e., 6-tuple without DSCP) can be used for at most one > > DetNet flow, i.e., the flow identifications of any two separate DetNet > > flows MUST differ in at least one component of the 5-tuple (or MUST > > NOT differ only in the DSCP). > > > > I think you're implying something [subtle] here that I'm not following. If we > can qualify this statement to the case that doesn't include the DSCP in > flow identification. Sure ... DetNet uses 6-tuples (2 IP addresses, transport protocol, 2 ports, DSCP) for flow identification. The first 5 components of a 6-tuple (2 IP addresses, transport, 2 ports) constitute a 5-tuple, which has to suffice for flow identification, even if DetNet implementations actually use 6-tuples for that purpose. Here are a couple of attempts to further explain from different aspects: i) It's ok for an network node to use 6-tuples (with DSCP) for flow identification long as 5-tuples would have sufficed if they had been used. Attempting a more concrete example, if the zero (best effort) DSCP is never used for DetNet traffic, there may be network node implementation benefits to quickly kicking best effort traffic into the non-DetNet forwarding plane based on DSCP alone. An implementation might realize this by initially run all traffic through a filter that uses a few DSCPs (e.g., the default DSCPs for EF and AF41) to separate out a small "might be DetNet" traffic fraction from a much larger "is definitely not DetNet" traffic fraction, and then send all "might be DetNet" traffic through full 5-tuple (or 6-tuple) match to determine which traffic is actually DetNet, passing traffic that is not DetNet to the non-DetNet forwarding plane. ii) If one starts with a DetNet flow identified by a 6-tuple and changes any of the first 5 components of the tuple, the resulting 6-tuple MAY identify another DetNet flow ... or may not identify anything useful. In contrast, if one takes a DetNet flow identified by a 6-tuple and changes only the DSCP, the resulting 6-tuple MUST NOT identify another DetNet flow - if it identifies any traffic, that's likely to be an indication that something's wrong. I hope that helps. Thanks, --David > -----Original Message----- > From: Lou Berger <lberger@labn.net> > Sent: Wednesday, July 17, 2019 5:17 PM > To: Black, David; detnet@ietf.org > Subject: Re: [Detnet] Diffserv concerns wrt: draft-ietf-detnet-ip-01.txt > > > [EXTERNAL EMAIL] > > Hi David, > > Thank you for the comment see in line responses below. > > > ---------- > On July 17, 2019 3:51:41 PM "Black, David" <David.Black@dell.com> wrote: > > > Found a few things that need attention in this draft. > > > > [1] First, a "MUST fix" in Section 5.1.1.4: > > > > 5.1.1.4. IPv4 Type of Service and IPv6 Traffic Class Fields > > > > These fields are used to support Differentiated Services [RFC2474] > > and Explicit Congestion Notification [RFC3168]. Implementations of > > this document MUST support DetNet flow identification based on the > > IPv4 Type of Service field when processing IPv4 packets, and the IPv6 > > Traffic Class Field when processing IPv6 packets. Implementations > > MUST support bitmask based matching, where bits set to one (1) in the > > bitmask indicate which subset of the bits in the field are to be used > > in determining a match. Note that all bits set to zero (0) value as > > a bitmask effectively means that these fields are ignored. > > > > That won't fly, as using a DSCP bitmask conflicts with this paragraph in > > Section 3 of RFC 2474 (https://tools.ietf.org/html/rfc2474#section-3): > > > > Implementors should note that the DSCP field is six bits wide. DS- > > compliant nodes MUST select PHBs by matching against the entire 6-bit > > DSCP field, e.g., by treating the value of the field as a table index > > which is used to select a particular packet handling mechanism which > > has been implemented in that device. The value of the CU field MUST > > be ignored by PHB selection. The DSCP field is defined as an > > unstructured field to facilitate the definition of future per-hop > > behaviors. > > > > The draft's text starting from "Implementations MUST" through the > > end of that paragraph needs to be rewritten to align with RFC 2474. > > > > I think you had mentioned this before. I'm sorry I didn't catch that it > hadn't been fixed. believe we also discussed that this is a pretty > straightforward fix and it just needs to be changed to a list of values. > > > [2] Second, a smaller "MUST fix" in Section 6, where this: > > > > o IPv4 Type of Service and IPv6 Traffic Class Fields. > > > > is listed as part of the Management and Control information. That > > item needs to be changed to specify only the 6-bit DSCP portions of > > those fields (see RFC 2474), otherwise the DetNet Management and > > Control functionality may get confused by the ECN info that is in the > > other two bits of those IP header fields. The ECN info should be > > masked off and not visible to DetNet management and control. > > > > I'm not sure I follow this. My understanding was that the use of ecn should > be controllable by the detnet controller plane. I'm sure we can work out > some language that makes it clear that we have two subfields here to be > dealt with. perhaps this is a good conversation for our face-to-face > meeting next week. > > > > [3] Finally, some clarification on 6-tuple is in order, starting from > > this text in Section 3 (DetNet IP Data Plane Overview): > > > > The DetNet IP data plane uses "6-tuple" based flow identification, > > where 6-tuple refers to information carried in IP and higher layer > > protocol headers. The 6-tuple referred to in this document is the > > same as that defined in [RFC3290]. > > > > That text is fine as far as it goes, but I see a couple of additional > > considerations: > > > > a) Each 5-tuple (i.e., 6-tuple without DSCP) can be used for at most one > > DetNet flow, i.e., the flow identifications of any two separate DetNet > > flows MUST differ in at least one component of the 5-tuple (or MUST > > NOT differ only in the DSCP). > > > > I think you're implying something settle here that I'm not following. If we > can qualify this statement to the case that doesn't include the DSCP in > flow identification. > . > > > b) There are Diffserv situations in which a single flow can use multiple > > 6-tuples that differ only in DSCP. Diffserv AF (Assured Forwarding) is > > the important example, see RFC 2597. > > > I think this is the qualification I was referring to above. If not, it > would be helpful if you could clarify. > > > I believe that text needs to be added to make a) clear. Section 4.3.2 > > (Quality of Service) to avoid cluttering up the overview in section 3. > > > > Agreed. > > > The situation in b) is different, and I think b) can be characterized as > > inapplicable to DetNet, as the only important Diffserv example is > > multiple AF drop precedences - multiple drop precedences make no > > sense in a DetNet flow that never experiences drops if the network is > > functioning correctly. It would help to add a sentence somewhere to > > state this and that use of multiple AF drop precedences in a single > > DetNet flow is prohibited. Again, Section 4.3.2 looks like a good place > > to do that. > > > > The possible use of multiple drop precedences gets more "interesting" > > if multiple drop precedences need to be supported end-to-end in > > order to affect drop treatment of a flow in the non-DetNet portion of > > the flow's network path, but I would hope that this idea is simply out > > of scope for DetNet as a "Doctor, it hurts when I do this" topic (i.e., > > the response is "Don't do that!!"). > > > > Agreed. Any specific text suggestions you have would be appreciated > > Thanks again, > Lou > > Thanks, --David > > > >> -----Original Message----- > >> From: detnet <detnet-bounces@ietf.org> On Behalf Of internet- > >> drafts@ietf.org > >> Sent: Monday, July 1, 2019 2:32 PM > >> To: i-d-announce@ietf.org > >> Cc: detnet@ietf.org > >> Subject: [Detnet] I-D Action: draft-ietf-detnet-ip-01.txt > >> > >> > >> [EXTERNAL EMAIL] > >> > >> > >> A New Internet-Draft is available from the on-line Internet-Drafts > directories. > >> This draft is a work item of the Deterministic Networking WG of the IETF. > >> > >> Title : DetNet Data Plane: IP > >> Authors : Balázs Varga > >> János Farkas > >> Lou Berger > >> Don Fedyk > >> Andrew G. Malis > >> Stewart Bryant > >> Jouni Korhonen > >> Filename : draft-ietf-detnet-ip-01.txt > >> Pages : 22 > >> Date : 2019-07-01 > >> > >> Abstract: > >> This document specifies the Deterministic Networking data plane when > >> operating in an IP packet switched network. > >> > >> > >> The IETF datatracker status page for this draft is: > >> https://datatracker.ietf.org/doc/draft-ietf-detnet-ip/ > >> > >> There are also htmlized versions available at: > >> https://tools.ietf.org/html/draft-ietf-detnet-ip-01 > >> https://datatracker.ietf.org/doc/html/draft-ietf-detnet-ip-01 > >> > >> A diff from the previous version is available at: > >> https://www.ietf.org/rfcdiff?url2=draft-ietf-detnet-ip-01 > >> > >> > >> Please note that it may take a couple of minutes from the time of > submission > >> until the htmlized version and diff are available at tools.ietf.org. > >> > >> Internet-Drafts are also available by anonymous FTP at: > >> ftp://ftp.ietf.org/internet-drafts/ > >> > >> _______________________________________________ > >> detnet mailing list > >> detnet@ietf.org > >> https://www.ietf.org/mailman/listinfo/detnet > > _______________________________________________ > > detnet mailing list > > detnet@ietf.org > > https://www.ietf.org/mailman/listinfo/detnet >
- [Detnet] Diffserv concerns wrt: draft-ietf-detnet… Black, David
- Re: [Detnet] Diffserv concerns wrt: draft-ietf-de… Lou Berger
- Re: [Detnet] Diffserv concerns wrt: draft-ietf-de… Black, David