IETF Logo Mail Archive

Re: [DNSOP] [dns-privacy] FW: New Version Notification for draft-pan-dnsop-edns-isp-location-00

Lanlan Pan <abbypan@gmail.com> Fri, 24 March 2017 02:27 UTC

Return-Path: <abbypan@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EBC71292F4; Thu, 23 Mar 2017 19:27:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FJaQzkcAiz4C; Thu, 23 Mar 2017 19:27:21 -0700 (PDT)
Received: from mail-wr0-x22b.google.com (mail-wr0-x22b.google.com [IPv6:2a00:1450:400c:c0c::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CAE2112940C; Thu, 23 Mar 2017 19:27:20 -0700 (PDT)
Received: by mail-wr0-x22b.google.com with SMTP id u108so885693wrb.3; Thu, 23 Mar 2017 19:27:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=QsbRnc7jaaIG9sq9QUmYjovXz8XX45y5qmON+yy6Hns=; b=m93WeGiwU3SOrvjfOdKh5YIE4SuRFlShPecrUN1ObSnvnixW7nTEeobk7ZQmlilBDL MbbC0hkdvdQSLtHgbT7v6aWclQ0V+80l6tJWN27DIzZxYcYxwp9JFGcEaL5BQv4Fm4zP HqcyIPGJjz19B++bVJG+kvM3asXnLNoYOI7AK1dQph+c1QAbsFADD99KPEJFzevYjbng d6eABEk8JXtI2CrgVDfJ0IC2J0SvNLdxHd960CH3k+63UQ8fkHXCNVBMtD+cxzvxi+B4 KRS3bWyLYiON6SxYoLUQKOPj8Ucg40E4RZzeKafdm2MmYNyOvL9/vA/VE0o/1gcliCOg gsOA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=QsbRnc7jaaIG9sq9QUmYjovXz8XX45y5qmON+yy6Hns=; b=Ij7pcWYGwY477Ymsdn7Eok2xE7+5YWK0tZeq4jmtm7SN7/hhv67RlMH2nXEm8I1IrS eS4a5Jf2mg4bb5Tbn/aONvmuMVvLXl6JTYoOG7/swe849tTKCG8HwsWIr5+rmLjwEpL1 5bfSwMCRkwZALPeh693b/gPUghWQPPMpAG+fRf6NRm2ee7y0QL+YAciBAQBqhEa/TIGX vNFKtXK1L4Iy8cPbfQL3Kg7XvX93TXc5xvHyYJm+lPGJdOxjAMb9MB/SO4Ehke08QC0a 52Ooqz3JhIjBkv11kw5Y1GKO8iv+CPpI1i4/q69o8rKpQTSC8MOg+bg16xEwlsDuLmIO 44Ow==
X-Gm-Message-State: AFeK/H2L6Xle4sLpbxweksYg379hkdpx5nlhc3GokFaEP/vQ/dLHcGMc1Jbegd53HS42KOHbPbySXGwIgTi8EQ==
X-Received: by 10.223.130.214 with SMTP id 80mr5408272wrc.43.1490322439316; Thu, 23 Mar 2017 19:27:19 -0700 (PDT)
MIME-Version: 1.0
References: <000f01d29dfe$50b6b190$f22414b0$@cn> <CANLjSvXGO3rSpqb7hzwmV=vfm=UTHnQYqfBmt=uD9Mi8cL59Jg@mail.gmail.com> <16B293AD-27A2-4A6D-8A96-7CD847B59708@senki.org> <CANLjSvUJfU1cafGXHyg=DuCnhm09mBm5z4ve2_g6j2ONgt2tRQ@mail.gmail.com> <BBCEC002-D8D9-498E-8567-507181F9215E@develooper.com> <CANLjSvXA03qGN9TZ2oON7bJfygU7Uzor6H3ku83E_NhA3FBa7A@mail.gmail.com> <3C0E763C-4C7F-4A63-A178-58F2AD77D3AC@develooper.com> <CANLjSvWMYt1khfETApcW4Wt3aourPmhY-7Kz3Jrxjv4x89=3HA@mail.gmail.com> <3CD9E11E-F2C5-4871-8D6F-019317C8D983@senki.org>
In-Reply-To: <3CD9E11E-F2C5-4871-8D6F-019317C8D983@senki.org>
From: Lanlan Pan <abbypan@gmail.com>
Date: Fri, 24 Mar 2017 02:27:08 +0000
Message-ID: <CANLjSvV1CS+yv0uD=EM66xHUpX8oCzXdxU1X9WqOXEq+adfYEw@mail.gmail.com>
To: Barry Raveendran Greene <bgreene@senki.org>
Cc: Ask Bjørn Hansen <ask@develooper.com>, "fuyu@cnnic.cn" <fuyu@cnnic.cn>, dns-privacy@ietf.org, dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="001a114c1dd698ac25054b70bb60"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/P6VIugSlJhD0tXoIeHvvVEKUycw>
Subject: Re: [DNSOP] [dns-privacy] FW: New Version Notification for draft-pan-dnsop-edns-isp-location-00
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Mar 2017 02:27:23 -0000

Hi Barry,

There are complex factors to optimize the datacenter connection of CDN.
I know every CDN need "Everything is in IP, RIPs, FIBs, AS Patch, system
load, content availability, etc." to measure better path calculations.
I understand that "Knowing that it is in Palo Alto California" is not
something useful for Data Provider path calculation, load balance
optimization, etc.
Note that, I *DON'T* mean that knowing <country, province, isp> is
sufficient for CDN.

But, as you methioned in last mail:
*        >  Once the connection to the client to the CDN is made, the CDN
operator has the full details of the client. *
CDN can known "Everything is in IP, RIPs, FIBs, AS Patch, system load,
content availability, etc." without ECS.
CDN can do the BGP optimization and datacenter load balance without ECS.

*Sperate the consideration of datacenter path calculation (Data Provider)
and dns response (AUTH).*

   - Data provider can make datacenter path calculation without ECS because
   all clients will connect.
   - ECS is help AUTH to return the satisfied dns response to client.

Therefore, the question is, *what can help AUTH to decide the response* ?
I mean that, most of time, knowing <country, province, isp> is sufficient
for AUTH make dns response.

My statement Is, for example:
the subnets (subnet_1 ... subnet_100) in the same <country, province, isp>
geolocation, always visit the same CDN datacenter sets (DC_1 .. DC_2) .
datacenter sets can be changed when network status is varied, network path
connection latency become larger, load balance adjustment, etc...
EIL is sufficient if AUTH make dns decison on <country, province, isp>
geolocation pricise level.

If your operational realities is:
subnet_1 ... subnet_100 in the same <country, province, isp> geolocation,
you apply subnet_1 ... subnet_50 visit DC_1, subnet_51 .. subnet_100 visit
DC_2
ECS is satisfied with your statement, because your AUTH make dns decision
down to subnet pricise level.

Barry Raveendran Greene <bgreene@senki.org>于2017年3月24日周五 上午2:06写道:

>
> > On Mar 21, 2017, at 11:38 PM, Lanlan Pan <abbypan@gmail.com> wrote:
> >
> > However, if you know about the geolocation <COUNTRY, PROVINCE, ISP>,
> you can make a better response, most of time, is the best response too.
>
> Your statement is not matching the operational realities I live in. I
> understand how mapping is done in my current environment. I understand how
> it is done in many of my peer CDNs. I also understand the tools I would
> need to measure better path calculations. Everything is in IP, RIPs, FIBs,
> AS Patch, system load, content availability, etc. Knowing that it is in
> Palo Alto California is not something useful.
>
> What is needed is the allocated IP block to start the mapping
> determination. Then every CDN does their “secret sauce” to delver the best
> customer experience. Geographic location is just not one of those factors.
> ECS delivers this now.
>
>
>
>
>
> --
致礼  Best Regards

潘蓝兰  Pan Lanlan

v2.23.0 | Report a Bug | By Email