IETF Logo Mail Archive

Re: [IPFIX] Full or Truncated EHs RE: Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh

"Aitken, Paul" <paitken@ciena.com> Thu, 19 October 2023 19:05 UTC

Return-Path: <prvs=7656a0b3bb=paitken@ciena.com>
X-Original-To: ipfix@ietfa.amsl.com
Delivered-To: ipfix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDFE9C151993; Thu, 19 Oct 2023 12:05:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, GB_SUMOF=5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ciena.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dVj3W5dhYz4a; Thu, 19 Oct 2023 12:05:36 -0700 (PDT)
Received: from mx0b-00103a01.pphosted.com (mx0b-00103a01.pphosted.com [67.231.152.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 05500C15152E; Thu, 19 Oct 2023 12:05:35 -0700 (PDT)
Received: from pps.filterd (m0222748.ppops.net [127.0.0.1]) by mx0a-00103a01.pphosted.com (8.17.1.22/8.17.1.22) with ESMTP id 39JIgOrj016902; Thu, 19 Oct 2023 15:05:25 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ciena.com; h= from:to:cc:subject:date:message-id:references:in-reply-to :content-type:mime-version; s=06252019; bh=+8MVJc0YyDq5dAk2ixwrL SVHkyNn6QvAu3O3jIJfgxQ=; b=L/19P/wcEuOFUV+sC3V9kCbUukNO7lVPKe62o zWuVPdycpkkML7Qh7PQfHFgMQR0LxEtALVIoJHLPkUklFpc7wzzaC1uhdFEeBtMR RsWoPP8LqPnYnhk/KuO/4o5RgDRxWwxyD9PE/tOdTU8a17XT+fzLg78l9eoX76Mo n8eu48+B53/dVhmHurB8Ybcmv9mh/QbzKqjSjaKg3aELtsTioCc8euzn26+FFQRN BvF/9xDKItoXrC6Jx3jqj7YLsTw3siLkPNfVQPUdjCyahUgQsJmo5ibRFVFUnSVf cu/ml4RdbVLlezAun9CxkrQ8iUkCQUx+wLxzAuSwu8mR0ulHg==
Received: from outbound.mail.protection.outlook.com (mail-mw2nam10lp2101.outbound.protection.outlook.com [104.47.55.101]) by mx0a-00103a01.pphosted.com (PPS) with ESMTPS id 3tu3vth850-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 19 Oct 2023 15:05:24 -0400 (EDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=J7aTLwnUGr/HRShXcgac8/jGoN3nm1XXn1WVBKMoN9GRCSYifMxIqK6G1ibyqOy1D6rSwPGOS62gWh3KFZ90Nv8wHWTZfigjQlSr/16EsFyZ+D5Y4m3JK07wV+X4fmPWoBMXuret/AclJta9SajtUKL91Hna1LTlSc7nBNyIhk1yhEeCXTxrQfpsTlWi3xeTtrD4bqQpcSK9dOmFIrSh1D1jEjzY9vjcN5b89eNo928S73YU8D23LROeiNuOC2/yBz5um6TuhSt36V10vBRyOI7C3FoBnJHmrM0dZgF4zx9OPYws2K4VcbrLXix387at7a+F1IpNRB0Cr4SgWAJKeQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=+8MVJc0YyDq5dAk2ixwrLSVHkyNn6QvAu3O3jIJfgxQ=; b=ip22Mbso9l8LQqPfz8Q5TM4NKQ3eT7Cyy8vWzMbg72+riv0vyFU09Mkctl7rt6efs9aURpZ76VfP6ttPLJuXg0hRwkG3rQgSb7gNgeLNjDSTER3BWXDm/NGb+Xajz5RnulCH3ycvjgoNXq59WNLRHwAhKXjjFC9s31tLmR1QerfLkKWKkohJ6CbGoVXaj/yHk7NhD61RWVYi2k4yO6nKcW/UHv+cNdGi8jYFaP7IQYSwdDXv6jSx4ae9j+S8SOSFDhRxsPYqYcvcIhYsLQBi/sHsrXg7pAqyHBNBxAWmbyI+ylheZ+3fr+rCmUVllTCoXU57zVkbygf4LpcjY+flfA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ciena.com; dmarc=pass action=none header.from=ciena.com; dkim=pass header.d=ciena.com; arc=none
Received: from BL3PR04MB8028.namprd04.prod.outlook.com (2603:10b6:208:347::6) by MN2PR04MB7056.namprd04.prod.outlook.com (2603:10b6:208:1ec::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6907.26; Thu, 19 Oct 2023 19:05:22 +0000
Received: from BL3PR04MB8028.namprd04.prod.outlook.com ([fe80::f5c7:976a:159b:3bb7]) by BL3PR04MB8028.namprd04.prod.outlook.com ([fe80::f5c7:976a:159b:3bb7%5]) with mapi id 15.20.6907.025; Thu, 19 Oct 2023 19:05:22 +0000
From: "Aitken, Paul" <paitken@ciena.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>
CC: "ipfix@ietf.org" <ipfix@ietf.org>, "Eric Vyncke (evyncke)" <evyncke=40cisco.com@dmarc.ietf.org>, "opsawg@ietf.org" <opsawg@ietf.org>, Benoit Claise <benoit.claise@huawei.com>
Thread-Topic: [IPFIX] Full or Truncated EHs RE: Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh
Thread-Index: AQHZ+E/v/rYTYPQpXE2IjY/1LVCxOLBBYXUAgAGzpYOADHOrAIAAMi/wgAHS1YA=
Date: Thu, 19 Oct 2023 19:05:22 +0000
Message-ID: <caa01b73-3062-4cb1-b576-86e50462c708@ciena.com>
References: <PH0PR11MB496621D4E25B239309406E42A9C9A@PH0PR11MB4966.namprd11.prod.outlook.com> <AS8PR02MB101468B8506C0FACE75EF832E88CEA@AS8PR02MB10146.eurprd02.prod.outlook.com> <PH0PR11MB49668B23D0D8BCA249D54851A9CDA@PH0PR11MB4966.namprd11.prod.outlook.com> <f1a3ab17-2f56-4e86-a765-ed0dc3623f12@ciena.com> <DU2PR02MB101609D49E85646F983D06BDE88D5A@DU2PR02MB10160.eurprd02.prod.outlook.com>
In-Reply-To: <DU2PR02MB101609D49E85646F983D06BDE88D5A@DU2PR02MB10160.eurprd02.prod.outlook.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BL3PR04MB8028:EE_|MN2PR04MB7056:EE_
x-ms-office365-filtering-correlation-id: 9167b30e-1dc8-4082-8597-08dbd0d6580c
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL3PR04MB8028.namprd04.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(376002)(366004)(396003)(346002)(39860400002)(136003)(230922051799003)(186009)(1800799009)(64100799003)(451199024)(38070700009)(31686004)(31696002)(38100700002)(41300700001)(5660300002)(4326008)(86362001)(8676002)(2906002)(83380400001)(6512007)(26005)(122000001)(6506007)(2616005)(8936002)(36756003)(19627235002)(478600001)(71200400001)(6486002)(66946007)(76116006)(54906003)(64756008)(6916009)(66476007)(66446008)(66556008)(91956017)(316002)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_caa01b7330624cb1b57686e50462c708cienacom_"
MIME-Version: 1.0
X-OriginatorOrg: ciena.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL3PR04MB8028.namprd04.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9167b30e-1dc8-4082-8597-08dbd0d6580c
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Oct 2023 19:05:22.1600 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 457a2b01-0019-42ba-a449-45f99e96b60a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: LHgegOT9orQwfZOPP2IADW4YLUqUo7ehYI+soPoQ7RPm/jxopgqaAl2rUGoTX2YVJMPh4HfjeDJHaAwX4CMH2g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR04MB7056
X-Proofpoint-GUID: JNadu2-LjIOKiR8C1ozEujSkkVSut2sM
X-Proofpoint-ORIG-GUID: JNadu2-LjIOKiR8C1ozEujSkkVSut2sM
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.980,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2023-10-19_18,2023-10-19_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 clxscore=1011 malwarescore=0 spamscore=0 bulkscore=0 phishscore=0 mlxscore=0 adultscore=0 lowpriorityscore=0 priorityscore=1501 mlxlogscore=828 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2309180000 definitions=main-2310190162
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipfix/CPhzaK7Aus3vNicTySr6tq2WSNo>
Subject: Re: [IPFIX] Full or Truncated EHs RE: Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh
X-BeenThere: ipfix@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IPFIX WG discussion list <ipfix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipfix>, <mailto:ipfix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipfix/>
List-Post: <mailto:ipfix@ietf.org>
List-Help: <mailto:ipfix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Oct 2023 19:05:40 -0000

Med, I reviewed the current draft-ietf-opsawg-ipfix-tcpo-v6eh.


1.1 "Specify how to automatically update the IANA IPFIX registry"

- is "automatically" correct? I didn't see any mention of this later in the draft.



1.2 "Support means to report the observed Experimental Identifiers (ExIDs) that are carried in shared TCP options (kind=253 or 254)"

- it took me far too long to parse this correctly. Would "Allow reporting of the observed Experimental Identifiers ..." be clearer?



2. Conventions and Definitions

- s/Template/Template Record/

- Collector, Data Record, Flow Record, Exporting Process, Collecting Process are not used in the document, so they should be removed.



3. "to address some of the issues listed in Section 1.1."

- just some of the issues but not all of them?



3.1 "while bit 254 corresponds to the most-significant bit of the IE."

- 256 bits (2^8) are numbered 0 to 255 or 1 to 256, but never up to 254.



3.1 The "No Next Header" (59) value is used if there is no upper-layer header in an IPv6 packet. Even if the value is not considered as an extension header as such, the corresponding bit is set in the ipv6ExtensionHeadersFull IE whenever that value is encountered in the Flow.

- This goes against the previous paragraph, "In doing so, few octets will be needed to encode common IPv6 extension headers when observed in a Flow." because flows with no EH will require at least 8 octets to set bit 59.



3.1 "Several extension header chains may be observed in a Flow. These extension headers may be aggregated in one single ipv6ExtensionHeadersFull Information Element or be exported in separate ipv6ExtensionHeadersFull IEs, one for each extension header chain."

- say whether or not the order of those IEs is important. eg, an intermediate IPFIX device might not preserve the order.



3.2. ipv6ExtensionHeaderCount Information Element

- consider naming this in plural, "ipv6ExtensionHeadersCount", for consistency with the other IEs defined here.



3.2 "and number of consecutive occurrences"

- remove "consecutive"?



3.2. "If several extension header chains are observed in a Flow, each header chain MUST be exported in a separate ipv6ExtensionHeaderCount IE."

- say whether or not the order of those IEs is important.



3.2 "the occurrences that are observed before the Fragment header and the occurrences right after the Fragment header."

- singular, "the occurrence".



3.2 (Figure)

- please name/number the figure and move the bit numbers rightwards one place, consistent with the figures in section 6.

- the count is limited to 8 bits, bu there was no previous mention of this. Say what to do when the count is exceeded.



3.2 Data Type Semantics:

- this is not an identifier. It seems be a new type consisting of (type, count) tuples.



3.3 e.g., ipv6ExtensionHeaderFull

- typo: it's ipv6ExtensionHeadersFull



3.3. ipv6ExtensionHeadersLimit Information Element

- Why use negative logic (ie, where "false" indicates a complete set of IPv6 headers). It would make more sense for this to be "true" when matching and "false" when not matching.



3.3 See [RFC8883] for an example of IPv6 packets processing

- singular "packet processing"



3.4. However, it was regularly reported

- by who? Where? Cite references or it didn't happen!



3.4 "The ipv6ExtensionHeadersChainLength IE is used to report, in octets, the length of an extension header chain observed in a Flow. The length is the sum of the length of all extension headers of the chain."

- say whether multiple IEs are to be exported, one per chain. If so, then say whether order is important.



4.1 Option number X is mapped to bit position "254 - X".

- please, NO! Nobody's going to do that. Please use the same encoding as in 3.1.

- BTW TCP option numbers begin at 0 so it should be "255 - X".



4.2. tcpSharedOptionExID Information Element

- From the description here, I did not understand how to encode the IE.



4.2 Expermients IDs ... (or 4-bute)

- typos



6.1 IPv6 Extension Headers

- this section is actually about "ipv6ExtensionHeadersFull"



6.1 This section provides few examples to illustrate the use of some IEs defined in the document.

- move this text to section 6.



6.1 Figure 1

- there should be 256 bits, numbered 0 to 255.

- the numbering above the middle and right-most blocks is mis-aligned. Compare with Figure 2.



6.1 Figure 2

- again there should be 256 bits, numbered 0 to 255.

- draw figures 1 and 2 as figure 3, with only one section of ellipsis.

- referring to section 9.1 of I-D.ietf-opsawg-ipfix-fixes] for the IPv6 Hop-by-Hop Options, Routing, and Destination Options headers bits:

     1, HOP       0       Hop-by-hop option header
     0, DST      60       Destination option header
     5, RH       43       Routing header

- so please list the headers in order!

- this shows that the bits 0, 1, and 5 should be set - so the figure should show "1 0 0 0 1 1" rather than "0|1|0|0|1|1|".



6.2. TCP Options

- Reword "Given TCP kind allocation practices"

- "Concretely, the tcpOptionsFull IE will be set to 15." --> no, "1|1|0|1|" = 8 + 4 + 1 = 13.



8 TBD3 ipv6ExtensionHeaderLimit

- typo, it's "ipv6ExtensionHeadersLimit"



P.

v2.23.0 | Report a Bug | By Email