Re: [Int-area] I-D Action: draft-ietf-intarea-tunnels-03.txt
"Templin, Fred L" <Fred.L.Templin@boeing.com> Mon, 11 July 2016 15:47 UTC
Return-Path: <Fred.L.Templin@boeing.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9631612D589 for <int-area@ietfa.amsl.com>; Mon, 11 Jul 2016 08:47:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OiUEBoZkevsv for <int-area@ietfa.amsl.com>; Mon, 11 Jul 2016 08:47:25 -0700 (PDT)
Received: from ewa-mbsout-02.mbs.boeing.net (ewa-mbsout-02.mbs.boeing.net [130.76.20.195]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 60D1A12D58D for <int-area@ietf.org>; Mon, 11 Jul 2016 08:47:25 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by ewa-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with SMTP id u6BFlOL9054591; Mon, 11 Jul 2016 08:47:24 -0700
Received: from XCH15-05-06.nw.nos.boeing.com (xch15-05-06.nw.nos.boeing.com [137.137.100.84]) by ewa-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id u6BFlI69054539 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=OK); Mon, 11 Jul 2016 08:47:18 -0700
Received: from XCH15-05-05.nw.nos.boeing.com (2002:8989:6450::8989:6450) by XCH15-05-06.nw.nos.boeing.com (2002:8989:6454::8989:6454) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Mon, 11 Jul 2016 08:47:17 -0700
Received: from XCH15-05-05.nw.nos.boeing.com ([137.137.100.80]) by XCH15-05-05.nw.nos.boeing.com ([137.137.100.80]) with mapi id 15.00.1178.000; Mon, 11 Jul 2016 08:47:17 -0700
From: "Templin, Fred L" <Fred.L.Templin@boeing.com>
To: Joe Touch <touch@isi.edu>, "int-area@ietf.org" <int-area@ietf.org>
Thread-Topic: [Int-area] I-D Action: draft-ietf-intarea-tunnels-03.txt
Thread-Index: AQHR2GRt4KMsEiq3UE+L137uMsNVnaAO8uMQgAB+vYCAA+ZQoA==
Date: Mon, 11 Jul 2016 15:47:17 +0000
Message-ID: <dedd4672c60d400380c90a280166982f@XCH15-05-05.nw.nos.boeing.com>
References: <20160707062805.26768.34892.idtracker@ietfa.amsl.com> <577E7549.9020000@isi.edu> <77275dc8e3214bb6a0139818394437f9@XCH15-05-05.nw.nos.boeing.com> <57800BA9.5030208@isi.edu>
In-Reply-To: <57800BA9.5030208@isi.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [137.137.12.6]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: disable
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/qZxjbsE0hiFgX39e0XOVFHaZN-o>
Subject: Re: [Int-area] I-D Action: draft-ietf-intarea-tunnels-03.txt
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jul 2016 15:47:27 -0000
Hi Joe, I will respond to your post in two parts - first, I will respond to your critique of AERO (see below): > -----Original Message----- > From: Joe Touch [mailto:touch@isi.edu] > Sent: Friday, July 08, 2016 1:23 PM > To: Templin, Fred L <Fred.L.Templin@boeing.com>; int-area@ietf.org > Subject: Re: [Int-area] I-D Action: draft-ietf-intarea-tunnels-03.txt > > Fred, > > The text in draft-ietf-intarea-tunnels reflects the current IPv4 and > IPv6 transit and endpoint MTU requirements. It also separates the > existing host and gateway fragment processing functions from that of the > tunnel. > > Can you be more specific where you think the algorithms presented are > incorrect? The basis of the text in the current draft was vetted by > several other parties. > > ---- > > I don't consider draft-templin-aerolink a useful starting point, > however. The following is a PARTIAL list of why: You know that I have been developing the text in AERO since 2002 (you know because you have been watching me do it). The AERO text is what I arrived at when many other approaches failed. > - It imports RFC4459 by reference, which is demonstrably incorrect on > several points (see draft-ietf-intarea-tunnels Sec 5.5.5). Your critique of RFC4459 seems to be based on the assertions you are making in your document (e.g., egress reassembly size as tunnel MTU). I am saying that I do not agree with those assertions. > - It is inconsistent - claiming that Aero links support minimum MTUs of > 1280 B, but claiming (3.13.2) that the link MTU of the tunnel is > "(initially set to the MTU of the underlying link to be used for > tunneling minus ENCAPS)" and endorsing the notion that the path MTU of a > tunnel can be lower than the requirement of IPv6 ("These procedures > apply when the path MTU for this egress is no smaller than (1280+ENCAPS) 1280+ENCAPS refers to the path MTU *within the tunnel*, and not the MTU of the tunnel interface. There are two levels of MTUs to consider; the MTU of the tunnel interface (which must be a minimum of 1280) and the path MTU within the tunnel interface. The text is consistent in that way. > bytes -- which, for most Internet paths, cannot be assumed to be larger > than 1280. This completely ignores the requirement that the tunnel > egress be capable of reassembling a 1500 B datagram, so the correct > limit should be 1500-ENCAPS (as explained in draft-ietf-intarea-tunnels > Sec 4.1). No, it says that the tunnel egress must be capable of reassembling at least 1500+ENCAPS and therefore recommends that the egress be capable of reassembling at least 2KB. About your 1500-ENACPS, that would leave us in no better condition than where things stand today. If the tunnel ingress sets an MTU of 1500-ENCAPS, and if it returns a PTB listing an MTU less than 1500, the PTB could be lost and the original source would never learn that there was a path MTU restriction. That is whey AERO enforces a minimum MTU of 1500 bytes for situations where the original source might not receive PTBs. > - it recommends that the Aero interface send PTB packets (routers, not > interfaces, generate PTBs). RFC1981(bis) says: "Note that Path MTU Discovery must be performed even in cases where a node "thinks" a destination is attached to the same link as itself." and: "If any of the packets sent on that path are too large to be forwarded by some node (regardless of whether it decrements the Hop Limit) along the path, that node will discard them and return ICMPv6 Packet Too Big messages [ICMPv6]." Forwarding nodes that do not decrement the hop count are exactly what happens within the AERO interface. > - it admits packets up to 1500 B without considering that this exceeds > the requirement of IPv6 reassembly in Sec 3.1.13 (i.e., IPv6 endpoints, > such as the egress, must support reassembling a 1500 B IP datagram, but > this yields a tunnel capacity of 1500-encaps, not 1500). Just as tunnels over IPv4 assume a larger reassembly unit than the RFC1122 guarantee of 576B, we are now asking the egress to set a reassembly unit of at least 1500+ENCAPS. Setting a minimum reassembly unit that exceeds the IPv6 1500 should be in scope for this document. Remember - we are trying to get away from tunnels that set an MTU smaller than 1500 so that hosts that send packets that are no larger than 1500 will not get black-holed. Thanks - Fred fred.l.templin@boeing.com > Joe > > On 7/8/2016 1:00 PM, Templin, Fred L wrote: > > Hi Joe, > > > > Sorry to say, but I still disagree with most aspects of the text on fragmentation > > and MTU, which are largely the same as what appeared in the previous draft > > version. I will say that we agree on one fact, however, in that fragmentation > > is ultimately unavoidable. > > > > When we discussed this last year, I thought we had established some things > > that got reflected in Section 3.13 of 'draft-templin-aerolink'. I'd like to invite > > you and the working group to review that text which IMHO presents a > > better MTU and fragmentation consideration for tunnels. > > > > Thanks - Fred > > fred.l.templin@boeing.com > > > >> -----Original Message----- > >> From: Int-area [mailto:int-area-bounces@ietf.org] On Behalf Of Joe Touch > >> Sent: Thursday, July 07, 2016 8:29 AM > >> To: int-area@ietf.org > >> Subject: Re: [Int-area] I-D Action: draft-ietf-intarea-tunnels-03.txt > >> > >> Hi, all, > >> > >> This update incorporates all pending changes, notably from detailed > >> reviews and discussions with Fred Templin, Lucy Yong, Toerless Eckert, > >> and Tom Herbert. > >> > >> There's still a bit to do - notably to wrangle out what we want to say > >> regarding other RFCs in Section 5. This, and the doc's evolution, > >> suggest that it might be useful to consider shifting the intended track > >> from Informational to BCP or beyond, depending on whether we need to be > >> higher than BCP to "update" some of the problems outlined with > >> standards-track docs (most notably RFC2003). > >> > >> NOTE: A brief summary will be presented by the chairs in Berlin, but I > >> will not be attending. Please use the list as the primary venue for > >> discussion. > >> > >> I am currently hoping we can decide how to proceed on this doc in the > >> next few months so we can either remove or complete any "pending" > >> sections and get to WGLC early this fall. > >> > >> Joe > >> > >> --------- > >> > >> Summary of changes: > >> - now "updates" 4459 (informational too) > >> - revised MTU terminology based on list discussions (all MTUs indicate > >> "link" payload sizes) > >> - revised figures to indicate proximity of ingress/egress "interfaces" > >> to nodes > >> - moved Appendix A to new Section 3.6, as outer/inner fragmentation > >> issue is core > >> - revised Sec 4.2 (was 4.1) to explain why two different frag algs are > >> presented > >> - one is implicit in all hosts/forwarders, irrespective of link > >> technology > >> - one is contained "within" the link technology of a tunnel > >> - updated recommendations throughout section 5 > >> > >> Summary of additions: > >> - Sec 4.1 on the variety of MTU values > >> - Sec 4.12 on multipoint tunnels > >> - Sec 5.4 on diagnostics- Sec 5.5.1 on GUE > >> - Sec 5.5.15 on RTGWG-DT-ENCAP > >> - Security Considerations text on inner/outer tunnel vulnerabilities > >> - Recommendation text for Sec 5.5.3 on RFC2003 (IPv4 in IPv4) > >> > >> ---- > >> > >> On 7/6/2016 11:28 PM, internet-drafts@ietf.org wrote: > >>> A New Internet-Draft is available from the on-line Internet-Drafts directories. > >>> This draft is a work item of the Internet Area Working Group of the IETF. > >>> > >>> Title : IP Tunnels in the Internet Architecture > >>> Authors : Joe Touch > >>> Mark Townsley > >>> Filename : draft-ietf-intarea-tunnels-03.txt > >>> Pages : 47 > >>> Date : 2016-07-06 > >>> > >>> Abstract: > >>> This document discusses the role of IP tunnels in the Internet > >>> architecture, in which IP datagrams are carried as payloads in non- > >>> link layer protocols. It explains their relationship to existing > >>> protocol layers and the challenges in supporting IP tunneling based > >>> on the equivalence of tunnels to links. > >>> > >>> > >>> The IETF datatracker status page for this draft is: > >>> https://datatracker.ietf.org/doc/draft-ietf-intarea-tunnels/ > >>> > >>> There's also a htmlized version available at: > >>> https://tools.ietf.org/html/draft-ietf-intarea-tunnels-03 > >>> > >>> A diff from the previous version is available at: > >>> https://www.ietf.org/rfcdiff?url2=draft-ietf-intarea-tunnels-03 > >>> > >>> > >>> Please note that it may take a couple of minutes from the time of submission > >>> until the htmlized version and diff are available at tools.ietf.org. > >>> > >>> Internet-Drafts are also available by anonymous FTP at: > >>> ftp://ftp.ietf.org/internet-drafts/ > >>> > >>> _______________________________________________ > >>> Int-area mailing list > >>> Int-area@ietf.org > >>> https://www.ietf.org/mailman/listinfo/int-area > >> _______________________________________________ > >> Int-area mailing list > >> Int-area@ietf.org > >> https://www.ietf.org/mailman/listinfo/int-area > > >
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- [Int-area] I-D Action: draft-ietf-intarea-tunnels… internet-drafts
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Joe Touch
- Re: [Int-area] I-D Action: draft-ietf-intarea-tun… Templin, Fred L