[ippm] Re: I-D Action: draft-ietf-ippm-asymmetrical-pkts-02.txt / Mcast
Greg Mirsky <gregimirsky@gmail.com> Sun, 01 December 2024 19:39 UTC
Return-Path: <gregimirsky@gmail.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7356C14F5EE for <ippm@ietfa.amsl.com>; Sun, 1 Dec 2024 11:39:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JvfrUOa1apyK for <ippm@ietfa.amsl.com>; Sun, 1 Dec 2024 11:39:20 -0800 (PST)
Received: from mail-wr1-x436.google.com (mail-wr1-x436.google.com [IPv6:2a00:1450:4864:20::436]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D9E9CC14F609 for <ippm@ietf.org>; Sun, 1 Dec 2024 11:39:19 -0800 (PST)
Received: by mail-wr1-x436.google.com with SMTP id ffacd0b85a97d-385ef8b64b3so430328f8f.0 for <ippm@ietf.org>; Sun, 01 Dec 2024 11:39:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1733081958; x=1733686758; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=6FsVdJVjqfxmO8T+RIk1MICui8tPzNRTyIbLGClCWAA=; b=GqB9aP/lQeT1LeybTidoe+/70G1nAyzKyCXqElEmDHCb4P7TmZzariZQPHqlMd5nt8 woq+JIw3mxXMsXJzAWnQIyO0I3pxbgcsTqcyZvgLfWm6f1Urcbx2KOAFqb2fdKjsxuSP n+wBOjMYHx1exGwbsT/lOPhNGYb2NsExTvGLWKXyqMmCM+k2KxOE50DgqT29R/WXXh0u 6tfXb7iXqDXD9gJqVa2k2zMdmccN+Q1Ind7I7qKG2GfnkxX3XmElJIdLvLjlNKEugJxW pFWw1/9JuVw7RtGvw2AzcwA057IoWjwSm4b41PhjAv/w8O3x84btyNBVCyk/W7cXOEMc oicA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1733081958; x=1733686758; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=6FsVdJVjqfxmO8T+RIk1MICui8tPzNRTyIbLGClCWAA=; b=mjGUao/ilXMnKh148DTpQePJNlWtIB4HT0eO4wm4fO7vybNdD/j2LY46FM0T/+Qj3H 7OOa6L1ptUx+d6tuVcxCUH0m7BWmYtCEpWQTkdpGEhEkcU/6QC/MYPe5LwE++OXpP4xp 471GroFRZmtZg0YhOSETmSlmT/ALXcY7HsPNC4fOv5Mo69BXm6OwiW3wIgja18krOTqA sZ6bAYAIfL5gYBqM+wrfo/9nV9BmUBPVP2XcRu0TPDmB0HwbxcJ3XWppqaQiLdQ1pCOH 6d6rf9MI5UO0qOqyGA0ZsYRPb7lpk2l1dti7NSzAKz3taWLGB/Iv+F/POefVpEoiW3Tb YaCw==
X-Gm-Message-State: AOJu0YyGT6Ok5AXwaUwhYW5xdI3A9d34lLwJdmoeGDH0S3Cfr2X7xJJr tJyppmvRdX4YtJ/MkQyW2OmGVhPINj3M9TgVXmhUAVOIHv02eojxWvEiRujtKTbrSEx/9tFxCwx 7KRRTW1B7NqScbFHtsB92qttCsXsB6XDH
X-Gm-Gg: ASbGncsAbGg9b1Sgwsm0C3taMu+jgh2+BZH6WmHJXAW1M8WWW6K6jGu0MKpOy9+gOqq 9KtdvaC4TridWDKfjFDvTwo/0ttCCeTo1
X-Google-Smtp-Source: AGHT+IFvVtRIcTqKrAduXgwGohor2uWkgm8yi1rAYxzja9yGgyXrlIbGM8g3DVLaHuhLbMlaesfkL2sngGnQ73IUGwQ=
X-Received: by 2002:a5d:6da8:0:b0:382:3210:4de0 with SMTP id ffacd0b85a97d-385c6edd73amr15711533f8f.44.1733081958005; Sun, 01 Dec 2024 11:39:18 -0800 (PST)
MIME-Version: 1.0
References: <1f34010828084fcd970e00528e025c23@huawei.com> <CA+RyBmXP66M-jaFv+3zZtAK2P3QfVxjocuasALsAcBTVeNy0mQ@mail.gmail.com> <BEZP281MB20075194524D8F506891AF019C542@BEZP281MB2007.DEUP281.PROD.OUTLOOK.COM> <CA+RyBmWc5hHJsd750=sj5nDAN-Hph25EWYmuXnYURz3g7fjphQ@mail.gmail.com> <BEZP281MB2007F99A49D7B489CD7137B79C2E2@BEZP281MB2007.DEUP281.PROD.OUTLOOK.COM>
In-Reply-To: <BEZP281MB2007F99A49D7B489CD7137B79C2E2@BEZP281MB2007.DEUP281.PROD.OUTLOOK.COM>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Sun, 01 Dec 2024 11:39:08 -0800
Message-ID: <CA+RyBmXqTrh93HNVxetXr8BvmaUhPu5otqc_=uzC8x1Zs8Q66g@mail.gmail.com>
To: Ruediger.Geib@telekom.de
Content-Type: multipart/alternative; boundary="0000000000007944c606283a9614"
Message-ID-Hash: K6L3PEB72R4DMJKIT6DOYMXX5IJFRTB5
X-Message-ID-Hash: K6L3PEB72R4DMJKIT6DOYMXX5IJFRTB5
X-MailFrom: gregimirsky@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ippm.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: ippm@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [ippm] Re: I-D Action: draft-ietf-ippm-asymmetrical-pkts-02.txt / Mcast
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/Rt1-tyjvpq-i-SZNo-f_RsHVsJE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Owner: <mailto:ippm-owner@ietf.org>
List-Post: <mailto:ippm@ietf.org>
List-Subscribe: <mailto:ippm-join@ietf.org>
List-Unsubscribe: <mailto:ippm-leave@ietf.org>
Hi Rudiger, thank you for your thoughtful comments and questions. Please find my notes below tagged GIM2>>. Regards, Greg On Mon, Nov 25, 2024 at 1:13 AM <Ruediger.Geib@telekom.de> wrote: > Hi Greg, > > > > I’ve decided to separate the Mcast discussion from security. I’d first > like to better understand intended operation. See [RG 2]. > > > > Regards, > > > > Ruediger > > > > 3.2. Active Performance Measurement in Multicast Environment > > “The Session-Reflector MUST use the source IP address of the received > STAMP test packet as the destination IP address of the reflected test > packet, and MUST use one of the IP addresses associated with the node as > the source IP address for that packet.” > > [RG] please clarify text: ..... associated with the node hosting the > Session-Reflector as the source IP address for that packet. > > > > [RG]: If I understand the text correctly, a single Session-Sender packet > is intended to be sent to an Mcast tree. Are all receivers expected to be > STAMP aware? > > If not, please discuss operation. I also think, that some of the > discussion of this section should be repeated within or copied to the > security section. > > GIM>> I think that the expectation of STAMP capability on the remote > endpoint of the STAMP test is the same in p2mp as in p2p case. As such, the > system that hosts the STAMP Session-Sender might have information about the > STAMP-capable leaves of the multicast tree or it may not. I think that that > is outside of the scope of STAMP operation. > > > > [RG 2] My Mcast know is insufficient for a constructive discussion. I’d be > happy, if this section passed a review from a person with sufficient Mcast > expertise. > > > > A) > > [RG 2] I’ve asked some Telekom Mcast experts for feedback. > > [RG 2] If Layer 3 / Standard IP Mcast is addressed by the draft, Sender > and Reflector have to be part for the same Mcast tree. I miss text stating, > that this join to an Mcast tree is assumed or required to exist, > respectively, and a reference describing, how that is done (protocol- > options and static or dynamic join...). > GIM2>> Thank you for pointing that out. You are correct, it is implicitly assumed that the Session-Sender is the root and expected Session-Reflctors are leaves of the same multicast distribution tree. How that tree is constructed is outside the scope of this specification. I'll add the following text in Section 3.2: NEW TEXT: For performance measurements using STAMP in a multicast environment, a Session-Sender is expected to be the root and Session-Reflectors leaves of the same multicast distribution tree. The mechanism of constructing the multicast tree is outside the scope of this document. [RG 2] Prior to a STAMP test creating significant MCAST and reflected > loads, a test with conservative chosen load parametrization to check > whether there’s an MCAST forwarding/control plane linking STAMP sender and > reflector seems useful. > GIM2>> I agree that that would be a good operational step. Also, strict control of the identity of a allowed Session-Senders by a Session-Reflector, e.g., using ACLs, as suggested in Security Considerations section of RFC 8545 <https://datatracker.ietf.org/doc/rfc8545/> (that is applicable to this draft by the reference in RFC 8762 <https://datatracker.ietf.org/doc/rfc8762/>). > [RG 2] My colleague failed to understand, how to operate the Layer 2 based > Reflector control/selective filter. He’s asked how to operate, if the > Reflector is a router and MCAST is linked to a loopback address (which > isn’t linked to a MAC address – how would that work). Please note, that my > colleague works on network operation. > GIM2>> As I understand it, in some environments, MAC addresses of network devices may be centrally managed or have a common part. If that is the case, an operator may use the Layer 2 filter to limit the scope of the STAMP test. > > > B) > > [RG 2] I’m also not sure, whether the draft recommends or limits the > number and length of the reflected packets. My perception of a safer and > useful operation was to limit reflection to a single packet per every > received STAMP Sender packet from each downstream STAMP-reflector Mcast > receiver, and it should be of a minimised length (which is discussed by the > draft, I think). > GIM2>> I think that an implementation may be a better mechanism for such limits. And I'll refer to my note above about using ACLs on a Session-Reflector to control access of Session-Senders to STAMP capability of that node. > > > C) > > [RG 2] Just to make sure I understand the intent of the specification > correctly: > > > > [RG 2] The Mcast case is limited to operation from STAMP-Sender upstream > in a Mcast-Tree and the STAMP-Reflector always and only downstream of that > sender in the Multicast tree? > > [RG 2] In case, the text says so explicitly, I apologize for having > overread. In case not, please add a statement. > GIM2>> Your understanding is correct. A Session-Sender transmits STAMP test packets over the multicast tree. AFAIK, multicast is usually operates over unidirectional trees. Thus, a Session-Reflector will transmit reflector packets over the shortest path, unless instructed otherwise, e.g., using Reflected Test Packet Control TLV. > > > > > > >
- [ippm] I-D Action: draft-ietf-ippm-asymmetrical-p… internet-drafts
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… zhangli (CE)
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Ruediger.Geib
- [ippm] Re: I-D Action: draft-ietf-ippm-asymmetric… Greg Mirsky