Re: [IPFIX] I-D Action: draft-ietf-ipfix-ie-doctors-07.txt
Brian Trammell <trammell@tik.ee.ethz.ch> Tue, 04 December 2012 09:44 UTC
Return-Path: <trammell@tik.ee.ethz.ch>
X-Original-To: ipfix@ietfa.amsl.com
Delivered-To: ipfix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5284821F875A for <ipfix@ietfa.amsl.com>; Tue, 4 Dec 2012 01:44:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZuRbLjemwNhl for <ipfix@ietfa.amsl.com>; Tue, 4 Dec 2012 01:44:16 -0800 (PST)
Received: from smtp.ee.ethz.ch (smtp.ee.ethz.ch [129.132.2.219]) by ietfa.amsl.com (Postfix) with ESMTP id 4554E21F876D for <ipfix@ietf.org>; Tue, 4 Dec 2012 01:44:15 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by smtp.ee.ethz.ch (Postfix) with ESMTP id A3DCAD9309; Tue, 4 Dec 2012 10:44:10 +0100 (MET)
X-Virus-Scanned: by amavisd-new on smtp.ee.ethz.ch
Received: from smtp.ee.ethz.ch ([127.0.0.1]) by localhost (.ee.ethz.ch [127.0.0.1]) (amavisd-new, port 10024) with LMTP id JHhMZ7LX8s8a; Tue, 4 Dec 2012 10:44:10 +0100 (MET)
Received: from [80.48.104.80] (unknown [80.48.104.80]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: briant) by smtp.ee.ethz.ch (Postfix) with ESMTPSA id 45337D9305; Tue, 4 Dec 2012 10:44:10 +0100 (MET)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\))
From: Brian Trammell <trammell@tik.ee.ethz.ch>
In-Reply-To: <CCE2E13A.12616%andrewf@plixer.com>
Date: Tue, 04 Dec 2012 10:44:25 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <662DB88B-EAB3-4980-BED3-59AB29552DA3@tik.ee.ethz.ch>
References: <CCE2E13A.12616%andrewf@plixer.com>
To: Andrew Feren <andrewf@plixer.com>
X-Mailer: Apple Mail (2.1499)
Cc: IETF IPFIX Working Group <ipfix@ietf.org>
Subject: Re: [IPFIX] I-D Action: draft-ietf-ipfix-ie-doctors-07.txt
X-BeenThere: ipfix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IPFIX WG discussion list <ipfix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipfix>, <mailto:ipfix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipfix>
List-Post: <mailto:ipfix@ietf.org>
List-Help: <mailto:ipfix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipfix>, <mailto:ipfix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Dec 2012 09:44:17 -0000
Hi, Andrew,
I recall this thread, but had completely missed the resolution to it; apologies, and thanks for bringing it back up.
Rereading the descriptions and the approved revision of ie-doctors, there are two problems with the draft text:
(1) the assumed semantics are incorrect; and
(2) initiatorOctets doesn't actually duplicate octetTotalCount (since it counts from the end of the L4 payload as opposed to the beginning of the L3 header).
The following problems still exist with these IEs:
(3) initiatorPackets still appears to duplicate packetTotalCount, unless...
(3a) the definition of initiatorPackets is interpreted in a certain way. As it is, it's still ambiguous to the point of not being implementable: "The total number of layer 4 packets in a flow from the initiator"... What is a "layer 4 packet"? Is this a packet containing payload beyond the layer 4 header? containing content that will be delivered to the application (which may be different, depending on which layer 4)? a packet containing a layer 4 header known to the MP?
(4) responder{Octets/Packets} still duplicate the RFC 5103 reversed versions of initiatorOctets and initiatorPackets using "initiator" biflowDirection, which goes against the general rule to reuse IEs when necessary.
From a process standpoint, I'm not sure what the right thing to do is, as IE-DOCTORS is now in the RFC-EDITOR queue. I believe the point made by this paragraph (the second in section 4.9) to be a necessary one, but the examples given are clearly in error. The meaning of the text is conveyed by the first sentence, which does not require update; the example is non-normative. I believe that the problem is therefore editorial, and would propose an RFC-EDITOR note like the following during AUTH48:
OLD:
Before registering a new Information Element, it must be determined
that it would be sufficiently unique within the IANA IE registry.
This evaluation has not always been done in the past, and the
existence of the Information Elements defined without this evaluation
should not be taken as an example that such Information Element
definition practices should be followed in the future. Specific
examples of such Information Elements include initiatorOctets and
responderOctets (which duplicate octetDeltaCount and its reverse per
[RFC5103]) and initiatorPackets and responderPackets (the same, for
packetDeltaCount).
NEW:
Before registering a new Information Element, it must be determined
that it would be sufficiently unique within the IANA IE registry.
This evaluation has not always been done in the past, and the
existence of the Information Elements defined without this evaluation
should not be taken as an example that such Information Element
definition practices should be followed in the future. Specific
examples of such Information Elements include initiatorPackets and
responderPackets (which appear to duplicate packetTotalCount and
its reverse per [RFC5103]).
However, I'd like a ruling from our Friendly Area Directors as to whether this an acceptable resolution at this stage.
Separate from this, issue (3a) above concerning the ambiguity of initiatorPackets and responderPackets should be handled with a revision to the Information Element definitions.
Cheers,
Brian
On 4 Dec 2012, at 5:18, Andrew Feren <andrewf@plixer.com> wrote:
> Hi Brian,
>
> I haven't reread this entire draft, but happened to notice that this
> version still has
>
> "Specific
> examples of such Information Elements include initiatorOctets and
> responderOctets (which duplicate octetDeltaCount and its reverse per
> [RFC5103 <http://tools.ietf.org/html/rfc5103>]) and initiatorPackets
> and responderPackets (the same, for
> packetDeltaCount)."
>
>
> Which is not correct
>
> Earlier discussion at
>
> http://www.ietf.org/mail-archive/web/ipfix/current/msg06451.html
>
> http://www.ietf.org/mail-archive/web/ipfix/current/msg06456.html
>
>
> -Andrew
>
> On 10/3/12 10:47 AM, "internet-drafts@ietf.org" <internet-drafts@ietf.org>
> wrote:
>
>>
>> A New Internet-Draft is available from the on-line Internet-Drafts
>> directories.
>> This draft is a work item of the IP Flow Information Export Working
>> Group of the IETF.
>>
>> Title : Guidelines for Authors and Reviewers of IPFIX
>> Information Elements
>> Author(s) : Brian Trammell
>> Benoit Claise
>> Filename : draft-ietf-ipfix-ie-doctors-07.txt
>> Pages : 33
>> Date : 2012-10-03
>>
>> Abstract:
>> This document provides guidelines for how to write definitions of new
>> Information Elements for the IP Flow Information Export (IPFIX)
>> protocol. It provides instructions on using the proper conventions
>> for Information Elements to be registered in the IANA IPFIX
>> Information Element registry, and provides guidelines for expert
>> reviewers to evaluate new registrations.
>>
>>
>> The IETF datatracker status page for this draft is:
>> https://datatracker.ietf.org/doc/draft-ietf-ipfix-ie-doctors
>>
>> There's also a htmlized version available at:
>> http://tools.ietf.org/html/draft-ietf-ipfix-ie-doctors-07
>>
>> A diff from the previous version is available at:
>> http://www.ietf.org/rfcdiff?url2=draft-ietf-ipfix-ie-doctors-07
>>
>>
>> Internet-Drafts are also available by anonymous FTP at:
>> ftp://ftp.ietf.org/internet-drafts/
>>
>> _______________________________________________
>> IPFIX mailing list
>> IPFIX@ietf.org
>> https://www.ietf.org/mailman/listinfo/ipfix
>
- [IPFIX] I-D Action: draft-ietf-ipfix-ie-doctors-0… internet-drafts
- Re: [IPFIX] I-D Action: draft-ietf-ipfix-ie-docto… Andrew Feren
- Re: [IPFIX] I-D Action: draft-ietf-ipfix-ie-docto… Brian Trammell
- Re: [IPFIX] I-D Action: draft-ietf-ipfix-ie-docto… Nevil Brownlee