IETF Logo Mail Archive

Re: Flow label [not draft-han-6man-in-band-signaling-for-transport-qos-00.txt]

Ole Troan <otroan@employees.org> Fri, 20 October 2017 19:05 UTC

Return-Path: <otroan@employees.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E082134305 for <ipv6@ietfa.amsl.com>; Fri, 20 Oct 2017 12:05:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id U3L2jNFWG1YR for <ipv6@ietfa.amsl.com>; Fri, 20 Oct 2017 12:05:00 -0700 (PDT)
Received: from accordion.employees.org (accordion.employees.org [198.137.202.74]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6FDB132320 for <ipv6@ietf.org>; Fri, 20 Oct 2017 12:05:00 -0700 (PDT)
Received: from h.hanazo.no (96.51-175-103.customer.lyse.net [51.175.103.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by accordion.employees.org (Postfix) with ESMTPSA id E557E2D50B7; Fri, 20 Oct 2017 19:04:59 +0000 (UTC)
Received: from [IPv6:::1] (localhost [IPv6:::1]) by h.hanazo.no (Postfix) with ESMTP id 0F333200702D61; Fri, 20 Oct 2017 21:04:58 +0200 (CEST)
From: Ole Troan <otroan@employees.org>
Message-Id: <6D75068F-9B19-4ECA-878F-5AC22A48AB1A@employees.org>
Content-Type: multipart/signed; boundary="Apple-Mail=_EEB0798F-6641-4507-9056-2BDD409ED7F5"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 11.0 \(3445.1.7\))
Subject: Re: Flow label [not draft-han-6man-in-band-signaling-for-transport-qos-00.txt]
Date: Fri, 20 Oct 2017 21:04:57 +0200
In-Reply-To: <CALx6S35Y7OVFFSiw4-ei84HEk0FjEXmS8TnNx8Uex9-0rAxdfg@mail.gmail.com>
Cc: Toerless Eckert <tte@cs.fau.de>, 6man WG <ipv6@ietf.org>
To: Tom Herbert <tom@herbertland.com>
References: <CALx6S341v1zd2Q9bts8-zrKxU59kieJTJJ=nHQ5w4oQZg=t_cA@mail.gmail.com> <17525287-DDA8-4930-B90B-F9228DF69A90@employees.org> <CALx6S37wLvuJ9tUGjYmzm63eq_bxq0jXSEgfCtH_2i74SvrbLA@mail.gmail.com> <20171017181646.GD31973@faui40p.informatik.uni-erlangen.de> <CALx6S34VRS4GumsFSqN8uDkv4TOLC8q+rOvyN=evUk83KPeHHg@mail.gmail.com> <20171019211637.GB878@faui40p.informatik.uni-erlangen.de> <296dd642b31741cc8ec4aa4b52913037@XCH15-06-11.nw.nos.boeing.com> <CALx6S36s_SoTqpPo=jXmrFC+pgUkEmF8UB_sx_0zGcK-G8JeTQ@mail.gmail.com> <20171019220935.GD878@faui40p.informatik.uni-erlangen.de> <33ff8930-d1af-ea54-7bb4-a6a9b289269e@gmail.com> <20171020144015.GA3093@faui40p.informatik.uni-erlangen.de> <8AE3421D-304B-42F9-B12A-361E21DFF069@employees.org> <CALx6S35nr8JapogAC5Gsi0iPxXhJa9NKOHhzUAnJtmqTwEGtgg@mail.gmail.com> <CDAEBFFD-3B70-41D3-BB41-FCF40ADA2115@employees.org> <CALx6S35Y7OVFFSiw4-ei84HEk0FjEXmS8TnNx8Uex9-0rAxdfg@mail.gmail.com>
X-Mailer: Apple Mail (2.3445.1.7)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/HCyfxDlhBP10pfmQdwbfI4JrIJ8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Oct 2017 19:05:02 -0000

Tom,

> > >>> Problem with flow label is same as with hop-by-hop option: burned because
> > >>> nobody should dare use it for something useful with all the inconsistent
> > >>> code out in the field.  Nothing against redefining it (with new encoding)
> > >                                                          ^^^^^^^^^^^^^^^^^^^
> > >> There is no encoding. It's 20 opaque bits (and always has been). Please
> > >> read https://tools.ietf.org/html/rfc6437.
> > >
> > > Sorry, lame use of words. Meant to say "stronger definition of DO and DONTs
> > > which may include new semantics". I never tried to analyze the state of
> > > affairs on flow label as i did for router alert. Just taking it from what
> > > i heard, last from Joel at the pechakucha.
> >
> > Right. If we take Joel's findings, then it appears the conclusion is that right now using a 4 tuple SA, DA, Prot, Flow for ECMP has a too high probability for failure. It would be very nice to have that fixed. Until then, we're forcing routers to parse transport headers.
> >
> > Ole,
> >
> > I cannot find this presentation. I did find a presentation to nanog about problems with flow labels, but that had more to do with the fact that the flow label does not have to be persistent for the life of a connection which breaks stateful firewalls that require consistent routing for a flow. I didn't see how this is a problem for ECMP itself. Is there a draft on this that details what the problems are?
> 
> I believe Joel's presentation was for a load balancer application.
> 
> Purely for ECMP it only has a consequence for reordering of packets. Which may be bad enough.
> But sending packets of the same flow along different paths has problems with any network function that requires state. NAT64, virtual reassembly of fragments, ACLs and what not. Not that the network should do any of those of course.
> 
> Ole,
> 
> Right, but of course there's never been any requirement in IP that packets in a flow always follow the same path or are never received out of order. Even outside of using the flow label there are other ways that that for packets of a flow to take different paths or be OOO (fragmentation, UDP encapsulation, routing change, etc.). I don't see that there is a protocol problem with flow labels that would justify a general recommendation against their use. Maybe there should be a discussion in v6ops about this.

Absolutely. There is no protocol problem with flow labels.

Cheers,
Ole

v2.23.0 | Report a Bug | By Email