Re: [Dime] Stephen Farrell's No Objection on draft-ietf-dime-congestion-flow-attributes-01: (with COMMENT)
"Bertz, Lyle T [CTO]" <Lyle.T.Bertz@sprint.com> Mon, 15 June 2015 16:34 UTC
Return-Path: <Lyle.T.Bertz@sprint.com>
X-Original-To: dime@ietfa.amsl.com
Delivered-To: dime@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5A96A1A8F36; Mon, 15 Jun 2015 09:34:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.798
X-Spam-Level:
X-Spam-Status: No, score=0.798 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dXuo72C8Chyr; Mon, 15 Jun 2015 09:34:14 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0116.outbound.protection.outlook.com [207.46.100.116]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 298481A8BB7; Mon, 15 Jun 2015 09:34:11 -0700 (PDT)
Received: from BL2FFO11OLC001.protection.gbl (10.173.160.33) by BL2FFO11HUB038.protection.gbl (10.173.160.242) with Microsoft SMTP Server (TLS) id 15.1.190.9; Mon, 15 Jun 2015 16:34:10 +0000
Authentication-Results: spf=permerror (sender IP is 144.230.172.38) smtp.mailfrom=sprint.com; ietf.org; dkim=none (message not signed) header.d=none;
Received-SPF: PermError (protection.outlook.com: domain of sprint.com used an invalid SPF mechanism)
Received: from plsapdm2.corp.sprint.com (144.230.172.38) by BL2FFO11OLC001.mail.protection.outlook.com (10.173.161.185) with Microsoft SMTP Server (TLS) id 15.1.190.9 via Frontend Transport; Mon, 15 Jun 2015 16:34:10 +0000
Received: from pps.filterd (plsapdm2.corp.sprint.com [127.0.0.1]) by plsapdm2.corp.sprint.com (8.15.0.59/8.15.0.59) with SMTP id t5FGBCCm008532; Mon, 15 Jun 2015 11:21:13 -0500
Received: from prewe13m08.ad.sprint.com (prewe13m08.corp.sprint.com [144.226.128.27]) by plsapdm2.corp.sprint.com with ESMTP id 1v0ja146hd-1 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Mon, 15 Jun 2015 11:21:13 -0500
Received: from PLSWE13M07.ad.sprint.com (2002:90e5:d61a::90e5:d61a) by PREWE13M08.ad.sprint.com (2002:90e2:801b::90e2:801b) with Microsoft SMTP Server (TLS) id 15.0.1044.25; Mon, 15 Jun 2015 12:21:12 -0400
Received: from PLSWE13M07.ad.sprint.com ([fe80::b8a7:9769:a6fe:384c]) by PLSWE13M07.ad.sprint.com ([fe80::b8a7:9769:a6fe:384c%15]) with mapi id 15.00.1044.021; Mon, 15 Jun 2015 11:21:12 -0500
From: "Bertz, Lyle T [CTO]" <Lyle.T.Bertz@sprint.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, The IESG <iesg@ietf.org>
Thread-Topic: [Dime] Stephen Farrell's No Objection on draft-ietf-dime-congestion-flow-attributes-01: (with COMMENT)
Thread-Index: AQHQoegaH4e2TeOE+k+EzrS0GsjEV52txLsg
Date: Mon, 15 Jun 2015 16:21:11 +0000
Message-ID: <24d8500889194ef9bce335a76dad537a@PLSWE13M07.ad.sprint.com>
References: <20150608123856.12743.47035.idtracker@ietfa.amsl.com>
In-Reply-To: <20150608123856.12743.47035.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.229.91.95]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11OLC001; 1:mgKJonvS1qF6KQvDMhOMuw/139p6DHS5bFx3dgHFde6mqPcihBNy2jZJmgb4yLyjdgVLCNGz2Yx+m2yrCB4FiLtbaMqLM7oEant0PSMwkPcpwbvltLAWCAuZ1qyV2CM+F1QdQgVEuGQi5ebg2hUzt9UIT/jy9bks1eogg859goVPcuYeODxf3J2KFeOfBgsCaQlkEVKZz55NiHjjwFaQBaOTOWgZUF1vgF5xsa8ogSvO6T6uG1BoVd5BJRf7T8ka5LarHKWGkGMxPJzP5froYbTJGAYej7Xg0mZZqNTIvwlF2KSNBqYfYnaDXSSDuoqzgenPGgMqkomKrkDcsxmDJGjxP6gFvgoJG/6P83T2T2g=
X-Forefront-Antispam-Report: CIP:144.230.172.38; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(448002)(199003)(52044002)(13464003)(377454003)(189002)(33646002)(2900100001)(561944003)(5250100002)(5001960100002)(54356999)(5001770100001)(230783001)(108616004)(76176999)(189998001)(5003600100002)(86362001)(19580405001)(19580395003)(15975445007)(87936001)(2950100001)(92566002)(6806004)(97756001)(85326001)(46406003)(102836002)(106116001)(50986999)(23726002)(46102003)(24736003)(106466001)(77156002)(50466002)(2656002)(47776003)(62966003); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2FFO11HUB038; H:plsapdm2.corp.sprint.com; FPR:; SPF:PermError; MLV:sfv; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB038; 2:h7JM778pidyH9f9C67711MYF+8P8xbuX6GEcBf794T7alBsigKsr+SBY145WoWDU; 2:9jfHmuJd50GOKBA3QTxOW7VhK+R+z3PO045UCpVf2XmNonIagzVFigkILGQ7gDWeeF0easZgiSXv4Vz1cLOoJVtWmvgJEkGsoi1LITm5WALvJvanFuj/bePQfWr9EUOx8XOnTpm9U38aRXenMlzSz8j8weCwJ7+bLoz1XgxeBX8kbej4egNuAL/UmYtFhGkb1tvLn/GNPK4hC9vFAqvaRdGSmPP5y/cRBT8r7I6IpBO9Z8gR1QtwIlj/jUBj0Uc2; 6:SUdpqoEyeOzYiOH9xNkJygL9IvrIQebEz6Vh66LZCk6E2OxpS8+MlLjCmzSIFk8nygh67GRfsF8iBdL1ocungBw7TurkAhjAQgtvX25+vi948vGzyKZKYuIlLc1dXsKbBhft306nrurc5/K1pRbh8cQLWbSvcI9Z0FqzV8aAExrZSJQ0XDXz7c8MOtUAepQo9shPddb+POuVt6xZUxsjrJZv56YawrmtEvXI2dWxvH8AVInzFhu/oIEm0eyL3VHU; 3:Pl3AC6NF3sgRnStGw6IEqOCIKjSWAdK+oBa3Q0Ul27PQgEScReBaYfAJk1bqx+8p3VxyKq+YR/s5/mBxtVkg9o7hzQLfgBPKDXDjXi1xF7GpRwaleappD4T45Myve3GEv/42cbYSpSLdE9m1yqFoayMFxSWXCIwOO+D1hWq5OyS1eiSW+yEQp4+TQC/xupAX7oSZHmuzFWexg1Gc72qUib6EJ4O8z9LN1Lvc5kiTzzobGUFh76HcdA87vDT4gHHW/uOsN1vj48CfSfM9HUAJ/7IvuJ23aEQmfKCPvS27/aZzyYqZX0Z8V1kjugaFNyPD
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BL2FFO11HUB038;
X-Microsoft-Antispam-PRVS: <BL2FFO11HUB0382F6DAECE29036AC63EC0A4B80@BL2FFO11HUB038.protection.gbl>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(520003)(5005006)(3002001); SRVR:BL2FFO11HUB038; BCL:0; PCL:0; RULEID:; SRVR:BL2FFO11HUB038;
X-Forefront-PRVS: 0608DEDB67
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB038; 9: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
X-Microsoft-Exchange-Diagnostics: 1; BL2FFO11HUB038; 3:Rb6lSkZ7xeqQl1+J0y97eI/6BiMeolqMkFCJzrcqGGJ4dRc8iDBS5P9r8DvYNZK6aSOnT4VUPk9KPpXe//g59amywzae88o+OlRv0yduNq8Gb9RkJkWrh8SLuqUGDST9LGsHvRWkRvZ0EAb6UEq+Dw==; 10:2WemLyGQQxwPgyLRsFo1zQ9sdwvrzSKjYyZD2t8zL7+aqofu4ReRBXoNr7eUtDylHRi7wOFAQj7FtC2F1oLegEzPX7yz4J0wQu1/Bu943Oc=
X-OriginatorOrg: sprint.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 15 Jun 2015 16:34:10.2799 (UTC)
X-MS-Exchange-CrossTenant-Id: 4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf; Ip=[144.230.172.38]; Helo=[plsapdm2.corp.sprint.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2FFO11HUB038
Archived-At: <http://mailarchive.ietf.org/arch/msg/dime/-uswVN4yyHTrF-SD28H5aNaUJos>
Cc: "dime-chairs@ietf.org" <dime-chairs@ietf.org>, "dime@ietf.org" <dime@ietf.org>
Subject: Re: [Dime] Stephen Farrell's No Objection on draft-ietf-dime-congestion-flow-attributes-01: (with COMMENT)
X-BeenThere: dime@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dime/>
List-Post: <mailto:dime@ietf.org>
List-Help: <mailto:dime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Jun 2015 16:34:17 -0000
Stephen, Thank you for the review. Our comments and suggested changes are below. -----Original Message----- From: DiME [mailto:dime-bounces@ietf.org] On Behalf Of Stephen Farrell Sent: Monday, June 08, 2015 7:39 AM To: The IESG Cc: dime-chairs@ietf.org; dime@ietf.org Subject: [Dime] Stephen Farrell's No Objection on draft-ietf-dime-congestion-flow-attributes-01: (with COMMENT) Stephen Farrell has entered the following ballot position for draft-ietf-dime-congestion-flow-attributes-01: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-dime-congestion-flow-attributes/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- - abstract: This isn't clear enough that you're talking about using Diameter to help manage networks in which ECN may be used, as opposed to dealing with Diameter packets with the ECN bit set. While that may be obvious when one reads the text, some people will only see the abstract so I'd say maybe consider clarifying that here too. >>>> Originally a title was suggested that included ECN. An internal reviewer noted that at any one moment an administrator may not have ECN based Filter-Rules in place but could still use the Flow-Count and Packet-Count. We then realized that ECN was not mandatory and therefore was a bit soft in the abstract. In fact that is why we say ' ECN or Diameter traffic', otherwise we would merely state 'ECN related' >>> Another pass has been taken at the Intro, we included a couple of updates from other commenters and I will note that in their responses as well. -------------- New Intro ---------------- This document defines optional Diameter attributes that can be used to help manage networks that use Explicit Congestion Notification (ECN) or Diameter traffic filters. These new attributes allow for improved data traffic identification, support of ECN and minimize Diameter filter administration. RFC 5777 defines a Filter-Rule Attribute Value Pair (AVP) that accommodates extensions for classification, conditions and actions. It however, does not support traffic identification for packets using Explicit Congestion Notification as defined in RFC 3168 and does not provide specific actions when the flow(s) described by the Filter-Rule are congested. Further, a Filter-Rule can describe multiple flows but not the exact number of flows. Flow count and other associated data (e.g. packets) are not captured in Accounting applications, leaving administrators without useful information regarding the effectiveness or appropriateness of the filter definition. The optional attributes defined in this document are forward and backwards compatible with RFC 5777. --------------------------------------------- - intro: "the document" in 1st sentence is ambiguous - do you mean 3168 or this document? I assume s/the/this/ would be better. >>>> We will change to "the document" to "this document". - intro: 2nd last para: what is an "ECN application"? Maybe you mean "networks deploying/using ECN" or something? >>>> We propose changing "ECN application" to "congestion management functions". - 3.3: is a 64-bit counter maybe too big for a number of flows? Would it be worth adding guidance to the effect that Diameter nodes ought have some max-believeable-flows setting just to avoid fat-finger or similar errors resulting in someone thinking there are 2^64-1 flows and trying to iterate over that number of things or allocate O(that) much memory? >>>> This depends entirely on the scope of the filter (Classifier) put in the Filter-Rule. There are some Diameter applications that group results and we did not want to force them into a situation where they needed a 64 bit version of a 32 bit AVP. - 3.4: do you need to specify some kind of wrap-around rule for this? What value do I need to use if I've seen 2^64 packets? >>>> There are numerous rules in the IETF and other standards bodies for wrap around in Diameter accounting and we felt that further specification is unnecessary. (In fact, if we could reduce the amount and get to some consistency that would be fantastic but is out of the scope of this discussion.) - 5.2: Please expand CCR on 1st use and provide a reference if one is needed. (Is it "Credit Control Request"?) >>>> Yes it is Credit Control Request. We will expand out the acronym for CCR at its first appearance (first paragraph in the section). - 5.2: 2nd last para, last sentence: Thanks! I think it's good that folks are including this consideration in ongoing work. >>>> You're welcome. This is important to the authors and provides a compromise between what is necessary for congestion management and what is too much. - Section 6: 1st sentence is not needed and is usually a red flag statement (for me, but not only me:-) Actually, you could just lose the first para entirely. >>>> We are going to scratch the first sentence and add a bit more per Ben Campbell 's review. (Two more quite nitty things below, but I'll ask anyway:-) - section 6: does this define any new way in which a bad sending Diameter node could cause bad things to happen elsewhre in the network? (see comment above about section 3.3) >>>> No. Sending more bad information to a Diameter application does not make the situation worse. If the node was poor (and not just a bad actor) then sending more information that conflicts would be easier to detect. However, I would not give credit to this proposal for making the detection of bad Diameter nodes easier. I would presume if someone took the time to create a bad acting node they would have skills or clumsiness (depending upon intent) to report information in such a way that the Diameter application could not detect it regardless of the amount of information it sent. - section 6: When I took a glance at the security considerations in 5777, it doesn't seem to consider that the "treatment" field could cause bad things to happen. Is that worth mentioning here (if real) even if it ought be more properly handled in some kind of update of 5777 sometime in the (probably far;-) future? >>>> Recommendations currently for the document is that it is not an update to 5777 so my concern would be that even if a discussion occurs here it would be missed by the casual reader of 5777. As treatment action occurs based upon the larger Filter-Rule structure so I am reluctant to blame the hammer for hitting my finger but will probably do it anyway :D. A general discussion of classifiers and actions would be good but it is far broader than this proposal (and many more pages imo but I am prone to long responses as well). _______________________________________________ DiME mailing list DiME@ietf.org https://www.ietf.org/mailman/listinfo/dime ________________________________ This e-mail may contain Sprint proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.
- [Dime] Stephen Farrell's No Objection on draft-ie… Stephen Farrell
- Re: [Dime] Stephen Farrell's No Objection on draf… Bertz, Lyle T [CTO]