Re: [Dots] Erik Kline's Discuss on draft-ietf-dots-multihoming-11: (with DISCUSS and COMMENT)
mohamed.boucadair@orange.com Thu, 21 April 2022 08:26 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D01C3A10D3; Thu, 21 Apr 2022 01:26:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JcNULUWjj02X; Thu, 21 Apr 2022 01:26:07 -0700 (PDT)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.34]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BD7E3A10CB; Thu, 21 Apr 2022 01:26:07 -0700 (PDT)
Received: from opfednr05.francetelecom.fr (unknown [xx.xx.xx.69]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by opfednr20.francetelecom.fr (ESMTP service) with ESMTPS id 4KkVx94WlQz1yLy; Thu, 21 Apr 2022 10:26:05 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1650529565; bh=onAUgyzjcHralU5DSoOZCdd5HokK9QGiIOe+GmJsXzE=; h=From:To:Subject:Date:Message-ID:Content-Type: Content-Transfer-Encoding:MIME-Version; b=W76x1eFmOmkTkRcBuf5C3NW6RCIz5gu/4/LfsBKmJyJId6nkmwfJMl8R/EYmrx8p9 fbYtG7pCR6QejzvgN6k8eVqmp+MTLMQfPqZJj926Vx0abw43E6Fg4lM2CT/gc5/b0e sMzdsiD8L65gRDyzyNjkcw9VtudqqAVIZUXDxw30TWeGi88q5I6t8S1r/Q6Tzbwy/v 5EdiPGBnnEObotMWElpCEPXN0GkGx1cgyT5coet7bcFUeV3kaRC7/NDxcyxbXqfflX L+jxyCh4hROWaH3qCPYoxcuR7h8B0gVvx8heIJtROKbv0Iq7h/x36Y4PbjHdCUb6ER p0wEXrvsbAUvA==
From: mohamed.boucadair@orange.com
To: Erik Kline <ek.ietf@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-dots-multihoming@ietf.org" <draft-ietf-dots-multihoming@ietf.org>, "dots-chairs@ietf.org" <dots-chairs@ietf.org>, "dots@ietf.org" <dots@ietf.org>, "valery@smyslov.net" <valery@smyslov.net>
Thread-Topic: Erik Kline's Discuss on draft-ietf-dots-multihoming-11: (with DISCUSS and COMMENT)
Thread-Index: AQHYVUPA1qwOdShks0+X+I0gUps1maz5+fGw
Content-Class:
Date: Thu, 21 Apr 2022 08:26:01 +0000
Message-ID: <26209_1650529565_6261151D_26209_121_1_ddc51f1760914ec39e3ba0c51f81c88e@orange.com>
References: <165052024399.9810.10844440640359849392@ietfa.amsl.com>
In-Reply-To: <165052024399.9810.10844440640359849392@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Enabled=true; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SetDate=2022-04-21T07:34:56Z; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Method=Privileged; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Name=unrestricted_parent.2; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ActionId=c17e7365-0588-415e-af92-c8986a6d04c2; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ContentBits=0
x-originating-ip: [10.115.26.50]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/PX5GDOOMv_bIYNvXEuUoJjZvyqg>
Subject: Re: [Dots] Erik Kline's Discuss on draft-ietf-dots-multihoming-11: (with DISCUSS and COMMENT)
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Apr 2022 08:26:13 -0000
Hi Erik, Thanks for the review. Please see inline. Cheers, Med > -----Message d'origine----- > De : Erik Kline via Datatracker <noreply@ietf.org> > Envoyé : jeudi 21 avril 2022 07:51 > À : The IESG <iesg@ietf.org> > Cc : draft-ietf-dots-multihoming@ietf.org; dots-chairs@ietf.org; > dots@ietf.org; valery@smyslov.net; valery@smyslov.net > Objet : Erik Kline's Discuss on draft-ietf-dots-multihoming-11: > (with DISCUSS and COMMENT) > > Erik Kline has entered the following ballot position for > draft-ietf-dots-multihoming-11: Discuss > > When responding, please keep the subject line intact and reply to > all email addresses included in the To and CC lines. (Feel free to > cut this introductory paragraph, however.) > > > Please refer to > https://www.ietf.org/about/groups/iesg/statements/handling-ballot- > positions/ > for more information about how to handle DISCUSS and COMMENT > positions. > > > The document, along with other ballot positions, can be found > here: > https://datatracker.ietf.org/doc/draft-ietf-dots-multihoming/ > > > > ------------------------------------------------------------------ > ---- > DISCUSS: > ------------------------------------------------------------------ > ---- > > ## Discuss > > ### S5.1 [Med] Please remember that this section is about the following scenario: +--+ ----------|S1| / +--+ / DOTS Server Domain #1 / +---+/ | C | +---+\ CPE \ \ \ +--+ ----------|S2| +--+ DOTS Server Domain #2 Figure 5: DOTS Associations for a Multihomed Residential CPE > > * RFC 6724 source address selection is not sufficient. [Med] It is for the scenario discussed here: communications from the multihomed border router itself, not from internal hosts. Many > complexities > are captured in RFC 8678. As RFC 8475 notes, what's really > required to > make this work for some nodes is proper next-hop selection in > conjunction > with source address selection. Either that, or some kind of > source-aware > routing for forwarding nodes. > > For originating packets, depending on the topology, the > following options > can in theory be made to work: > > * implementing RFC 6724 rule 5.5, but it's not currently > mandatory > > * implementing RFC 6724 section 4 recommendation "that the > candidate > source addresses be the set of unicast addresses assigned to > the > interface that will be used to send to the destination (the > "outgoing" > interface)" -- but this is highly dependent upon interface > config > > * use of PVD Options (RFC 8801) throughout the interior (and, > ideally, an > IETF-defined PVD End System model) > > I'm don't think that it's worth going into all this detail in > this document, > necessarily. You might see if a mix of references to and/or > quotations from > 8678, 8475, and/or mention of the issue of next-hop selection in > conjunction > with source address selection yields sufficiently concise text > to warn the > IPv6-multihoming-unfamiliar reader: "here be dragons (hic sunt > dracones)". [Med] I'm familiar with the topic (see, e.g., https://www.rfc-editor.org/rfc/rfc8043.html), but I don't think we need to overload the document with such pointers. Thanks. > > > ------------------------------------------------------------------ > ---- > COMMENT: > ------------------------------------------------------------------ > ---- > > ## Comments > > ### S1 > > * I feel like there's probably a more accurate term than > "forking". > "Replicating"? "Repeating"? > [Med] OK, changed to "replicating". _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [Dots] Erik Kline's Discuss on draft-ietf-dots-mu… Erik Kline via Datatracker
- Re: [Dots] Erik Kline's Discuss on draft-ietf-dot… mohamed.boucadair