Re: [IPFIX] Desambiguite unknwon EH vs. unknown upper layer headers RE: Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh
Benoit Claise <benoit.claise@huawei.com> Tue, 17 October 2023 09:25 UTC
Return-Path: <benoit.claise@huawei.com>
X-Original-To: ipfix@ietfa.amsl.com
Delivered-To: ipfix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1F6B7C151094; Tue, 17 Oct 2023 02:25:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.994
X-Spam-Level:
X-Spam-Status: No, score=-1.994 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.091, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hs28NIYLOmyT; Tue, 17 Oct 2023 02:24:56 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 29D57C15152F; Tue, 17 Oct 2023 02:23:41 -0700 (PDT)
Received: from frapeml500001.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4S8pPp2WTXz67FMv; Tue, 17 Oct 2023 17:21:18 +0800 (CST)
Received: from [10.48.219.166] (10.48.219.166) by frapeml500001.china.huawei.com (7.182.85.94) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.31; Tue, 17 Oct 2023 11:23:26 +0200
Content-Type: multipart/alternative; boundary="------------SvGkI4YPczOQ0aYMpq5CDNN7"
Message-ID: <cfd1770f-d933-4425-8d2f-7666aab3ec35@huawei.com>
Date: Tue, 17 Oct 2023 11:23:21 +0200
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1
Content-Language: en-GB
To: mohamed.boucadair@orange.com, "Eric Vyncke (evyncke)" <evyncke=40cisco.com@dmarc.ietf.org>, "opsawg@ietf.org" <opsawg@ietf.org>
CC: "ipfix@ietf.org" <ipfix@ietf.org>
References: <PH0PR11MB496621D4E25B239309406E42A9C9A@PH0PR11MB4966.namprd11.prod.outlook.com> <AS8PR02MB1014614D43A98C942561FF51688C9A@AS8PR02MB10146.eurprd02.prod.outlook.com>
From: Benoit Claise <benoit.claise@huawei.com>
In-Reply-To: <AS8PR02MB1014614D43A98C942561FF51688C9A@AS8PR02MB10146.eurprd02.prod.outlook.com>
X-Originating-IP: [10.48.219.166]
X-ClientProxiedBy: dggems706-chm.china.huawei.com (10.3.19.183) To frapeml500001.china.huawei.com (7.182.85.94)
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipfix/i1GoIsLQ6mqKIJcy7-bYgtzrk9A>
Subject: Re: [IPFIX] Desambiguite unknwon EH vs. unknown upper layer headers RE: Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh
X-BeenThere: ipfix@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IPFIX WG discussion list <ipfix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipfix>, <mailto:ipfix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipfix/>
List-Post: <mailto:ipfix@ietf.org>
List-Help: <mailto:ipfix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Oct 2023 09:25:00 -0000
Eric, On 10/6/2023 4:19 PM, mohamed.boucadair@orange.com wrote: > > Re-, > > Your comment about “unknown L4” reminded me another comment you had > about how to disambiguate unknown EH vs. upper layer headers: > > Our local copy includes now the following NEW text: > > If an implementation determines that it includes an extension header > > that it does no support, then the exact observed code of that > > extension header will be echoed in the ipv6ExtensionHeadersFull IE. > > How an implementation disambiguates between unknown upper layers vs. > > extension headers is not IPFIX-specific. > Med's proposal is about right. You wrote "There should be a way to convey the information that the exporter was (un)able to parse the **full** extension header chain due to HW limitation.". Obviously, this would be an interesting information to know from a Collector point of view but the question is: Is IPFIX in the business of reporting Exporter capabilities, and specifically hardware capabilities? I am not convinced. Regards, Benoit > See Diff: draft-ietf-opsawg-ipfix-tcpo-v6eh-01.txt - > draft-ietf-opsawg-ipfix-tcpo-v6eh.txt > <https://author-tools.ietf.org/api/iddiff?doc_1=draft-ietf-opsawg-ipfix-tcpo-v6eh&url_2=https://boucadair.github.io/ipfix-tcpoptions-and-v6eh/draft-ietf-opsawg-ipfix-tcpo-v6eh.txt> > > Please let us know if you think this is (not) sufficient. Thanks > > Cheers, > > Med > > *De :*OPSAWG <opsawg-bounces@ietf.org> *De la part de* Eric Vyncke > (evyncke) > *Envoyé :* vendredi 6 octobre 2023 14:49 > *À :* opsawg@ietf.org > *Cc :* ipfix@ietf.org > *Objet :* [OPSAWG] Some comments on draft-ietf-opsawg-ipfix-tcpo-v6eh > > Benoît and Med, > > Thanks for this useful document, please find below some comments > (obviously without any hat). > > Should the “No Next-Header” (next-header=59) be included (cfr my other > remarks on the companion I-D) ? > > There should be a way to convey the information that the exporter was > (un)able to parse the **full** extension header chain due to HW > limitation. This could be done by adding a bit/counter “KNOWN” (the > opposite of UNKNOWN in the sense of a known layer-4 header). > > About having counters per extension header how is “This Information > Element echoes the order and number of occurrences” to be interpreted > for the following flow? > > HBH-RH-DST > > HBH-DST-RH-FRA0-DST > > HBH-DST-RH-FRA1-... > > RH-DST > > Will it be a single IE with HBH=3, DST=5, RH=3, FRA0=1, FRA1=1 or 4 IE > exported (one for each chain) ? > > I think that the 4 IE sounds more logical and useful, then there is no > need to count the occurrences of one specific EH but more how often a > specific EH chain was seen. > > I still wonder why the tcpOptions and ipv6ExtensionHeaders are in the > same I-D though ;-) > > Hope this helps, > > -éric > > ____________________________________________________________________________________________________________ > Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc > pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler > a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, > Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. > > This message and its attachments may contain confidential or privileged information that may be protected by law; > they should not be distributed, used or copied without authorisation. > If you have received this email in error, please notify the sender and delete this message and its attachments. > As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. > Thank you. > > _______________________________________________ > IPFIX mailing list > IPFIX@ietf.org > https://www.ietf.org/mailman/listinfo/ipfix
- [IPFIX] Some comments on draft-ietf-opsawg-ipfix-… Eric Vyncke (evyncke)
- [IPFIX] One or two documents RE: Some comments on… mohamed.boucadair
- [IPFIX] Desambiguite unknwon EH vs. unknown upper… mohamed.boucadair
- Re: [IPFIX] Desambiguite unknwon EH vs. unknown u… Eric Vyncke (evyncke)
- [IPFIX] Full or Truncated EHs RE: Some comments o… mohamed.boucadair
- [IPFIX] count of EHs (RE: Some comments on draft-… mohamed.boucadair
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… Eric Vyncke (evyncke)
- Re: [IPFIX] Desambiguite unknwon EH vs. unknown u… Benoit Claise
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… Aitken, Paul
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… mohamed.boucadair
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… Aitken, Paul
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… mohamed.boucadair
- Re: [IPFIX] Full or Truncated EHs RE: Some commen… Benoit Claise