Re: [Dots] Signal / Data / Alias / Filter Implementation

"Roland Dobbins" <rdobbins@arbor.net> Thu, 03 August 2017 08:04 UTC

From: Roland Dobbins <rdobbins@arbor.net>
To: Jon Shallow <supjps-ietf@jpshallow.com>
Cc: dots@ietf.org
Date: Thu, 03 Aug 2017 15:04:32 +0700
Message-ID: <78660E60-0A94-4164-A8C0-5485816DE059@arbor.net>
In-Reply-To: <040101d30c2e$14440f70$3ccc2e50$@jpshallow.com>
References: <035401d30b77$fb3a1da0$f1ae58e0$@jpshallow.com> <628E4313-95D3-42F5-9DDB-00C7B4EBB4D6@arbor.net> <039001d30ba3$7f4290c0$7dc7b240$@jpshallow.com> <B8BBF80E-5A5B-473D-A0B2-B6EFEC21DEBF@arbor.net> <4a158137-5c92-974e-3e4d-6c46fb3e5a52@nttv6.jp> <040101d30c2e$14440f70$3ccc2e50$@jpshallow.com>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
Received-SPF: None (protection.outlook.com: arbor.net does not designate permitted sender hosts)
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Aug 2017 08:04:49.8762 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0101MB1039
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/m6rdFdlUxRiese9igZ__NSqL1Gs>
Subject: Re: [Dots] Signal / Data / Alias / Filter Implementation
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling $DOTS$ technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Aug 2017 08:04:54 -0000

On 3 Aug 2017, at 14:56, Jon Shallow wrote:

> I am of the firm opinion that destination-ip is REQUIRED

The intent of DOTS is NOT to re-create flowspec.

It's to signal the need for DDoS mitigation.

'Taking out someone else's IP' is not a concern of DOTS itself; this has 
to do with the provisioning of the DOTS clients, servers, and associated 
detection/classification/traceback/mitigation systems.

Getting into layer-4 traffic descriptors, including things like 
non-initial fragments, is re-creating flowspec and IPFIX.  We don't 
intend to do that.

-----------------------------------
Roland Dobbins <rdobbins@arbor.net>

[Dots] Signal / Data / Alias / Filter Implementat… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Roland Dobbins
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Dobbins, Roland
Re: [Dots] Signal / Data / Alias / Filter Impleme… kaname nishizuka
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Konda, Tirumaleswar Reddy
Re: [Dots] Signal / Data / Alias / Filter Impleme… Roland Dobbins
Re: [Dots] Signal / Data / Alias / Filter Impleme… Roland Dobbins
Re: [Dots] Signal / Data / Alias / Filter Impleme… Konda, Tirumaleswar Reddy
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Konda, Tirumaleswar Reddy
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Konda, Tirumaleswar Reddy
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… kaname nishizuka
Re: [Dots] Signal / Data / Alias / Filter Impleme… kaname nishizuka
Re: [Dots] Signal / Data / Alias / Filter Impleme… kaname nishizuka
Re: [Dots] Signal / Data / Alias / Filter Impleme… Roland Dobbins
Re: [Dots] Signal / Data / Alias / Filter Impleme… Jon Shallow
Re: [Dots] Signal / Data / Alias / Filter Impleme… Konda, Tirumaleswar Reddy