Re: [Ila] [lisp] LISP for ILA
Tom Herbert <tom@quantonium.net> Fri, 16 March 2018 18:23 UTC
Return-Path: <tom@quantonium.net>
X-Original-To: ila@ietfa.amsl.com
Delivered-To: ila@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07B3F127369 for <ila@ietfa.amsl.com>; Fri, 16 Mar 2018 11:23:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=quantonium-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tGtbsba6wSAk for <ila@ietfa.amsl.com>; Fri, 16 Mar 2018 11:23:23 -0700 (PDT)
Received: from mail-wm0-x236.google.com (mail-wm0-x236.google.com [IPv6:2a00:1450:400c:c09::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F5AB129C5D for <ila@ietf.org>; Fri, 16 Mar 2018 11:23:22 -0700 (PDT)
Received: by mail-wm0-x236.google.com with SMTP id t3so4668889wmc.2 for <ila@ietf.org>; Fri, 16 Mar 2018 11:23:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quantonium-net.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=YVNvVSfeDZv/peoBeNbw7r4eqxrCGz7vsKHjyMSlB8Y=; b=XQ+NfJughhIFaco5jSBCctpY9CzeZQ8TuMr5v30C0uLYgj+z43Syp4egdgjlcyxWAh zqGzGfbrZC9awNkF0KmX+hLNTId6nkyOl+6CyJbXeFgEC1JYYnp5HWU7gK9TiAnCqP0D eThkYyvY5VEAIQdO30aKiztwGh6rJ4RPVrInPRBgvj/VIhM51oPy79aGCX/vFaTfadpY HYLfGqqvbiNtQFMSjnLlpEZOr+f0Yc7C1gz36Bay7mfSUDN+ysPxeXVs+gB5lezb5IM8 qLyoN7Otw39xgB5On9SoWfkkyOXEzprh9cMhXSycpe43fokB5LRQ4x/FPv+oOi0tATDF lj/g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=YVNvVSfeDZv/peoBeNbw7r4eqxrCGz7vsKHjyMSlB8Y=; b=NF8GoCUMZojsdY6L6DmFsC1uqihopUDhLyJEvvz6YXGQahwcxLpHp9vKHTUDHIO245 PaOoifp67PG05RYd95jQrfD9Qfy7vnP4WL3As5IGn74YAjzKRZ59cmN7XTZKu3oUJKXo 3QO+yzg8NV0twh4VR1toQ+LXI84/w2EwhHhhwnNXxrZb1yidbV0fuR2t2HMiiWFHag2U 9rG1AQpE5txwW6RSKNfSlspVJXjB1cv0+PwQkv5QpwVXWVFbQbAOov7zc9XHkEzuUSn9 L8Xe04s0vWB+6MBUbC2rNK5Cqs5En+L/aECA9sja22q7TCNLnf401gqiRwNSOhIalIBO 9fEA==
X-Gm-Message-State: AElRT7FeJrm7D+zCOAFMCLj8dZDtXf8HFwPz/Sa01JfoMMnCgzoZKjs4 wsPjozbOmlQ0AT86+VR9asofFZLKG9vrUtN48lgLPw==
X-Google-Smtp-Source: AG47ELutjkLTHper8dqxs4R/3xPKUooj/5kPHvvJAx6GukNwiAe52JSOGk189AzyMiJa2qpndOm9LgiYdkh+i+gPch0=
X-Received: by 10.223.150.117 with SMTP id c50mr2522185wra.196.1521224600845; Fri, 16 Mar 2018 11:23:20 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.135.74 with HTTP; Fri, 16 Mar 2018 11:23:20 -0700 (PDT)
In-Reply-To: <11EDF4FB-8636-4DF2-B687-1AB4934C4F9D@gmail.com>
References: <F1093230-C087-4168-9C5F-8DA7AB677677@cisco.com> <CAPDqMer58nxEixtH=JuZh9WgM0xKkEQYEjwZ6zg3wTjD76gOHQ@mail.gmail.com> <F920CAE2-9042-41DF-B013-E8FE6F891596@cisco.com> <CAPDqMeriMzM82-R-JOgx4zuqJTk2YOoBaWV_58no2V8yPas9QA@mail.gmail.com> <CF1C238D-FBE9-48BC-A7A6-49E45249E5E2@cisco.com> <CAPDqMeqL1kE+N9APFOSR4fUaek0TjZuDZMZDzDmJfMvyLO38GA@mail.gmail.com> <DA74C61A-647A-44BA-8FE7-916CF8895C49@gmail.com> <CAPDqMeqkGH0ELN=XmqF3dmsdeAurE-y+_H9+_E8mzhHo9d9nXw@mail.gmail.com> <7793B214-A235-4795-983B-CCC75A0B90BE@gmail.com> <CAPDqMeo2bdmwSEkPk002W9oxPhyxnLrr-k9MYeR5ZXEG_OGH0g@mail.gmail.com> <11EDF4FB-8636-4DF2-B687-1AB4934C4F9D@gmail.com>
From: Tom Herbert <tom@quantonium.net>
Date: Fri, 16 Mar 2018 11:23:20 -0700
Message-ID: <CAPDqMeoSLqC=mN_hcgiLe-3Dv0c=uezbrZZ9xHn47Osb7rfLVQ@mail.gmail.com>
To: Dino Farinacci <farinacci@gmail.com>
Cc: Florin Coras <fcoras.lists@gmail.com>, "Alberto Rodriguez Natal (natal)" <natal@cisco.com>, "ila@ietf.org" <ila@ietf.org>, "lisp@ietf.org" <lisp@ietf.org>, David Meyer <dmm@1-4-5.net>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ila/906J1GwPFgpFiwVPKy6QpSgxWzs>
Subject: Re: [Ila] [lisp] LISP for ILA
X-BeenThere: ila@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Identifier Locator Addressing <ila.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ila>, <mailto:ila-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ila/>
List-Post: <mailto:ila@ietf.org>
List-Help: <mailto:ila-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ila>, <mailto:ila-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Mar 2018 18:23:26 -0000
On Fri, Mar 16, 2018 at 11:08 AM, Dino Farinacci <farinacci@gmail.com> wrote: > Sorry about that but I did say from the Map-Resolver perspective. That is, the node that receives Map-Requests from good acting ITRs/RTRs as well as bad actors. “You” are the good and bad actors where we can’t tell one from the other (other than good actors follow the spec in rate-limiting the Map-Requests they send). > > Better? > > The “too …” depends on bandwidth and processing power into and in the map-resolver. > > No normative description yet. Just ideas that I have been talking to people about. Dave Meyer has thought about this and how ML can help tell us when we have deviated from a baseline of “normal behavior”. So we can go into frequency-hopping mode when we deviate by %x. > Dino, Detecting that something is under DOS attack is not problem. It's pretty obvious when a device is getting flooded which a bunch of spoofed SYNs for example. The problem is trying to find that one SYN packet in a thousand that is not part of the attack and is actually legitimate. Again this is not easy because the attacker is purposely trying to prevent this determination. AFAIK this is a generally unsolved problem and probably impossible to fully solve. So if the reaction to the attack is to stop all requests and that one legitimate flow is blocked from making progress, then it would seen the DOS attack is successful. Tom
- [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] LISP for ILA Tom Herbert
- Re: [Ila] LISP for ILA Dino Farinacci
- Re: [Ila] LISP for ILA Tom Herbert
- Re: [Ila] LISP for ILA Dino Farinacci
- Re: [Ila] LISP for ILA Templin, Fred L
- Re: [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] LISP for ILA Dino Farinacci
- Re: [Ila] LISP for ILA Tom Herbert
- Re: [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] LISP for ILA Tom Herbert
- Re: [Ila] LISP for ILA Alberto Rodriguez Natal (natal)
- Re: [Ila] [lisp] LISP for ILA Florin Coras
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Richard Li
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Paul Vinciguerra
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Uma Chunduri
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA Uma Chunduri
- Re: [Ila] [lisp] LISP for ILA Tom Herbert
- Re: [Ila] [lisp] LISP for ILA Uma Chunduri
- Re: [Ila] [lisp] LISP for ILA - scaling Joel M. Halpern
- Re: [Ila] [lisp] LISP for ILA - scaling Alberto Rodriguez-Natal
- Re: [Ila] [lisp] LISP for ILA - scaling Dino Farinacci
- Re: [Ila] [lisp] LISP for ILA - scaling jmh.direct