IETF Logo Mail Archive

Re: [IPFIX] exporting ranges in IPFIX

Brian Trammell <trammell@tik.ee.ethz.ch> Mon, 11 June 2012 14:48 UTC

Return-Path: <trammell@tik.ee.ethz.ch>
X-Original-To: ipfix@ietfa.amsl.com
Delivered-To: ipfix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5AC8721F8611 for <ipfix@ietfa.amsl.com>; Mon, 11 Jun 2012 07:48:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.197
X-Spam-Level:
X-Spam-Status: No, score=-6.197 tagged_above=-999 required=5 tests=[AWL=0.402, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8f4GpMsElZwn for <ipfix@ietfa.amsl.com>; Mon, 11 Jun 2012 07:48:54 -0700 (PDT)
Received: from smtp.ee.ethz.ch (smtp.ee.ethz.ch [129.132.2.219]) by ietfa.amsl.com (Postfix) with ESMTP id 212E121F855D for <ipfix@ietf.org>; Mon, 11 Jun 2012 07:48:47 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by smtp.ee.ethz.ch (Postfix) with ESMTP id 8DAA5D930A; Mon, 11 Jun 2012 16:48:46 +0200 (MEST)
X-Virus-Scanned: by amavisd-new on smtp.ee.ethz.ch
Received: from smtp.ee.ethz.ch ([127.0.0.1]) by localhost (.ee.ethz.ch [127.0.0.1]) (amavisd-new, port 10024) with LMTP id EXtgTemt0EWn; Mon, 11 Jun 2012 16:48:46 +0200 (MEST)
Received: from pb-10243.ethz.ch (pb-10243.ethz.ch [82.130.102.152]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: briant) by smtp.ee.ethz.ch (Postfix) with ESMTPSA id 47722D9305; Mon, 11 Jun 2012 16:48:46 +0200 (MEST)
Mime-Version: 1.0 (Apple Message framework v1278)
Content-Type: text/plain; charset="us-ascii"
From: Brian Trammell <trammell@tik.ee.ethz.ch>
In-Reply-To: <4FD2693E.9090808@cisco.com>
Date: Mon, 11 Jun 2012 16:48:45 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <496491AA-BE09-4F4E-B45D-F6C3AD8B16C1@tik.ee.ethz.ch>
References: <4FCE149B.8010802@cisco.com> <4FCE168A.6020603@cisco.com> <4FCE25CB.5020508@cisco.com> <4FD2693E.9090808@cisco.com>
To: Paul Aitken <paitken@cisco.com>
X-Mailer: Apple Mail (2.1278)
Cc: IETF IPFIX Working Group <ipfix@ietf.org>
Subject: Re: [IPFIX] exporting ranges in IPFIX
X-BeenThere: ipfix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IPFIX WG discussion list <ipfix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipfix>, <mailto:ipfix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipfix>
List-Post: <mailto:ipfix@ietf.org>
List-Help: <mailto:ipfix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jun 2012 14:48:55 -0000

Hi, Paul, all,

As for adding the port block range IEs, this makes sense as there is (1) no generic range mechanism for IPFIX and (2) no way to report blocks of ports semantically consistent with that required by draft-ietf-behave-lsn-requirements.

Two comments, neither particularly IPFIX-specific:

First, there is a danger here, of course, that self-inconsistent information can be reported using either the step size or number of ports in block for stepped ranges: simply report a step or count greater than the range. This should of course be treated in the descriptions of the IEs...

Second, it's not clear that the proposed solution covers the applications envisioned by the draft in question; from section 5: 

   Note that this list is not exhaustive.  There is a continuum of
   behavior that a CGN may choose to implement.  For example, a CGN
   could use scattered port sets of consecutive port sets.

The stepped-range thing seems a little hackish to me, but I'm not at all familiar with how things are done on CGNs. What about disjoint stepped ranges? What about uneven steps? Hacks are great, but they should at least address the whole problem, I think. However, I suppose these IEs plus structured data would handle every reasonable case... if that's the approach, that should also be mentioned.

Cheers,

Brian


On Jun 8, 2012, at 11:06 PM, Paul Aitken wrote:

> Dear all,
> 
> I've had two feedbacks requesting a range start / range end mechanism. So I propose to request four fields:
> 
>   Port block start:           16 bits
>   Port block end:             16 bits
>   Port block step size        16 bits
>   Number of ports in block    16 bits
> 
> These can be reported in whatever way best matches the implementation.
> 
> eg, { start, step, number }, { start, end, step }, { start, end, number }.
> 
> The default step size will be 1, so { start, end } indicates a contiguous range.
> 
> Finally, I've upped the step size from 8 bits to 16 bits to allow step sizes > 255.
> 
> Any further feedback?
> 
> Thanks,
> P.
> 
> 
> On 05/06/12 16:29, Paul Aitken wrote:
>> Dear IPFIX experts,
>> 
>> As far as I know, IPFIX doesn't have a generic mechanism for reporting ranges.
>> 
>> I'm looking for a way to report bulk port allocation per section 5 of http://tools.ietf.org/html/draft-ietf-behave-lsn-requirements-05.
>> 
>> This method would be useful for reporting port ranges in draft-tsou-behave-natx4-log-reduction-02 and draft-bajko-pripaddrassign-04.
>> 
>> So I propose to request three new IPFIX Information Elements:
>> 
>>   Port block start:           16 bits
>>   Port block step size         8 bits
>>   Number of ports in block    16 bits
>> 
>> 
>> However, there could be better ways to export a "range" which don't require three new IEs each time. Do you forsee a need for a such a mechanism?
>> 
>> Shall I proceed with my request to IANA? If so, should I write a short ID explaining how the three IEs should be used together?
>> 
>> Thanks,
>> P.
>> 
>> _______________________________________________
>> IPFIX mailing list
>> IPFIX@ietf.org
>> https://www.ietf.org/mailman/listinfo/ipfix
> 
> _______________________________________________
> IPFIX mailing list
> IPFIX@ietf.org
> https://www.ietf.org/mailman/listinfo/ipfix

v2.23.0 | Report a Bug | By Email