IETF Logo Mail Archive

Re: [IPFIX] Comments on draft-kashima-ipfix-data-link-layer-monitoring-01.txt

Shingo KASHIMA <kashima@nttv6.net> Tue, 09 March 2010 16:22 UTC

Return-Path: <kashima@nttv6.net>
X-Original-To: ipfix@core3.amsl.com
Delivered-To: ipfix@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4CDB73A69B2 for <ipfix@core3.amsl.com>; Tue, 9 Mar 2010 08:22:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, J_CHICKENPOX_13=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OnzoX3UrdtYr for <ipfix@core3.amsl.com>; Tue, 9 Mar 2010 08:22:02 -0800 (PST)
Received: from mail.nttv6.net (mail.nttv6.net [192.16.178.5]) by core3.amsl.com (Postfix) with ESMTP id 37D743A6968 for <ipfix@ietf.org>; Tue, 9 Mar 2010 08:22:02 -0800 (PST)
Received: from [127.0.0.1] (localhost [IPv6:::1]) by mail.nttv6.net (8.14.3/8.14.3) with ESMTP id o29GKUwb074378; Wed, 10 Mar 2010 01:20:45 +0900 (JST) (envelope-from kashima@nttv6.net)
Date: Wed, 10 Mar 2010 01:20:11 +0900
From: Shingo KASHIMA <kashima@nttv6.net>
To: Nevil Brownlee <n.brownlee@auckland.ac.nz>
In-Reply-To: <4B945D21.3040804@auckland.ac.nz>
References: <20100218135814.C821.1AB7FA03@nttv6.net> <4B945D21.3040804@auckland.ac.nz>
Message-Id: <20100309224354.E4EB.1AB7FA03@nttv6.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver. 2.50.05 [ja]
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.3 (mail.nttv6.net [IPv6:::1]); Wed, 10 Mar 2010 01:20:45 +0900 (JST)
Cc: IPFIX Working Group <ipfix@ietf.org>
Subject: Re: [IPFIX] Comments on draft-kashima-ipfix-data-link-layer-monitoring-01.txt
X-BeenThere: ipfix@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: IPFIX WG discussion list <ipfix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipfix>
List-Post: <mailto:ipfix@ietf.org>
List-Help: <mailto:ipfix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Mar 2010 16:22:19 -0000

Hi Nevil and all,

Thank you for your comments.

Please see our comments in-line.

> This draft introuces three new IPFIX Information Elements (IEs)
> that would enable IPFIX to be used for monitoring (parts of) in
> data-link-layer parts of packet headers.  It concentrates on Ethernet,
> especially as used in providing layer-2 VPN services (IEEE 802.1ad
> and 802.1ah).

Yes. 

Our interest is not only layer-2 VPN service (Wide-Area Ethernet)
but also cloud service (Data Center Network).
In the newest draft, we added IEEE802.1Qbh as the example of
the extended data link technologies.
http://tools.ietf.org/html/draft-kashima-ipfix-data-link-layer-monitoring-02
"2.2.  Data Center Network Summary"

What we want to say is that this draft can be also applied to
the other data link layer protocols than IEEE 802.1ad/IEEE802.1ah.


> 
> Now that I've read it and thought about it, I have three comments:
> 
> 1. The IPFIX/PSAMP architecture standardises the collection of
>     *IP-related* data, this proposal would extend it to cover data from
>     other parts of a packet's headers.  That would be a significant
>     extension.  Is there support for such a generalisation?

We think the data link layer protocols such as ethernet will be
extended and introduced to various networks, then traffic monitoring
in data link layer becomes more significant.
Though IPFIX/PSAMP is a standard for *IP-related* protocol,
IPFIX/PSAMP architecture is effective and attractive for our large-scale
ethernet networks, e.g. mediation and variouse packet selection.


> 
> 2. It's presented as a simple, minimal extension to IPFIX/PSAMP,
>     simply adding three new IEs PSAMP IEs, i.e with numbers above 338.
>     Does it provide enough detail?  Should there be more than just three?
>     For example, how about having separate IEs for S-VID, C-VID, B-VID
>     and I=SID?  What other IEs are needed for PPP and WiMAX?

I think separated IEs is not bad approach.

In IEEE802.1ah, we need not only {B-VID and I-SID}
but also {B-PCP and I-PCP}*1 at least .
*1{B-PCP and I-PCP}:
  CoS (Class of Service) parameters in {B-TAG and I-TAG}.

In IEEE802.1ad, almost of all header informations have been already
standardized.
- S-VID (=dot1qVlanId)
- S-PCP (=dot1qPriority)
- C-VID (=dot1qCustomerVlanId)
- C-PCP (=dot1qCustomerPriority)


> 
> 3. The description of proposed IE dataLinkFrameType seems rather
>     minimal - eventually we'll want to add more data link types.  For
>     example, the ifType-MIB (www.iana.org/assignments/ianaiftype-mib)
>     has a much longer list.  Maybe we have to choose here between a long
>     list of types, each with its own set of fields, or a short list of
>     very general fields?  A short, simple list seems very appealing!
> 

In the newest draft, we have revised as follows.
"      This Information Element specifies the type of the selected data
       link frame and SHOULD be checked before analyzing higher layer
       protocols.
       The data link layer is defined in [ISO_IEC.7498-1_1994].
       The value matches the value of managed object 'IANAifType' as
       defined in [RFC2863]."

But we have one doubt.
IANAifType means the type of interface, does not mean the type of frame
in a narrow sense.
In particular, IANAifType=ethernetCsmacd(6) means ethernet interfaces,
does not mean ethernet frames.

On the other hand, another registration which differs from IANAifType
takes long time until the standardization finishes.


Best regards.
-- 
Shingo KASHIMA <kashima@nttv6.net>
NTT Information Sharing Platform Lab.

v2.23.0 | Report a Bug | By Email