Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext-transmit-04: (with DISCUSS and COMMENT)
Benoit Claise <bclaise@cisco.com> Tue, 08 October 2013 22:11 UTC
Return-Path: <bclaise@cisco.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B65D221F9D98; Tue, 8 Oct 2013 15:11:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.569
X-Spam-Level:
X-Spam-Status: No, score=-10.569 tagged_above=-999 required=5 tests=[AWL=0.030, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id izDrJ5lHSNef; Tue, 8 Oct 2013 15:11:26 -0700 (PDT)
Received: from ams-iport-1.cisco.com (ams-iport-1.cisco.com [144.254.224.140]) by ietfa.amsl.com (Postfix) with ESMTP id 754A521F9E4F; Tue, 8 Oct 2013 15:11:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3333; q=dns/txt; s=iport; t=1381270284; x=1382479884; h=message-id:date:from:mime-version:to:cc:subject: references:in-reply-to:content-transfer-encoding; bh=UV3xVd7+B9sasm82ptzW58XDgZwhnux/q6aJ0r5rb6I=; b=NamwiV49Y7Twghy7O/7CxNAjgwcOz1aybe00DfQVRH6qvothfWlHXj5R 9X+98PWlsFfrbGTtEv4iwJpKumT+FHOVbbCeEHRElcQzHQRXr6LmTATld GTZGeTyGf9Sk00Q1HwrTum1Ov9SX2GEM+N1OFa33+M3Y6acOTpDoK26X5 A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Ah0FACOCVFKQ/khR/2dsb2JhbABZgwc4wXuBJhZ0giUBAQEEOC0TARALGAkWDwkDAgECAQ82Bg0BBQIBAYdwAw8MsDcNiWuMV4JrB4QjA5YYgWmBL4UHhhSFNoFmgUA6
X-IronPort-AV: E=Sophos;i="4.90,1059,1371081600"; d="scan'208";a="160465633"
Received: from ams-core-1.cisco.com ([144.254.72.81]) by ams-iport-1.cisco.com with ESMTP; 08 Oct 2013 22:11:23 +0000
Received: from [10.60.67.85] (ams-bclaise-8914.cisco.com [10.60.67.85]) by ams-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id r98MBH6e011852; Tue, 8 Oct 2013 22:11:19 GMT
Message-ID: <52548305.4080909@cisco.com>
Date: Wed, 09 Oct 2013 00:11:17 +0200
From: Benoit Claise <bclaise@cisco.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: joel jaeggli <joelja@bogus.com>
Subject: Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext-transmit-04: (with DISCUSS and COMMENT)
References: <20131008071948.25649.48005.idtracker@ietfa.amsl.com> <525457C1.5030503@gmail.com> <E93EBFCB-54C3-44D3-8126-8439AD15046E@bogus.com> <525460CF.108@gmail.com> <21DD9C6E-287F-4D18-B3F5-3FE01C5351E5@bogus.com>
In-Reply-To: <21DD9C6E-287F-4D18-B3F5-3FE01C5351E5@bogus.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: 6man-chairs@tools.ietf.org, draft-ietf-6man-ext-transmit@tools.ietf.org, ipv6@ietf.org, The IESG <iesg@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Oct 2013 22:11:31 -0000
FYI, there is a middlebox definition at http://tools.ietf.org/html/rfc3303#section-2.1 Regards, Benoit > On Oct 8, 2013, at 12:45 PM, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: > >> Joel, >> >> Would this help? >> >> OLD >> Today, packets are often forwarded not only by straightforward IP >> routers, but also by a variety of intermediate nodes, often referred >> to as middleboxes, such as firewalls, load balancers, or packet >> classifiers. >> >> NEW >> Today, IPv6 packets are often forwarded not only on the basis of their >> first 40 bytes by straightforward IP routing. Some routers, and a >> variety of intermediate nodes often referred to as middleboxes, such >> as firewalls, load balancers, or packet classifiers, inspect other >> parts of each packet. >> > I find that more palatable yeah. > >> (and possibly some changes for consistency later in the document) >> >> Brian >> >> >> On 09/10/2013 08:22, joel jaeggli wrote: >>> On Oct 8, 2013, at 12:06 PM, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: >>> >>>> On 08/10/2013 20:19, Joel Jaeggli wrote: >>>> ... >>>>> ---------------------------------------------------------------------- >>>>> DISCUSS: >>>>> ---------------------------------------------------------------------- >>>>> >>>>> This is a dicuss because I'd like to see if I'm in the rough in this. >>>>> >>>>> Devices generally considered to be IP routers in fact are able to or find >>>>> it necessary to forward on the basis of headers other than the IP header >>>>> e.g. the transport header. By the definition applied in the problem >>>>> statement all ipv6 capable routers in the internet that I'm aware are or >>>>> are capable of being middleboxes. >>>> IMHO, yes, if a box is taking a forwarding decision on the basis of anything >>>> other than the first 40 bytes of an IPv6 header, then it's a middlebox >>>> as far as this draft is concerned. Any such box is not a "straightforward IP >>>> router". >>>> >>>> In the process of working on the draft I have actually corresponded briefly >>>> with Steve Deering, and I'm pretty sure he would agree with me (with >>>> added expletives). >>> Right, so there are no IP routers on the internet today and you should update the document accordingly because as it stands now it seems to presume their existence. >>> >>>>> I would welcome the existence proof of an ipv6 capable router which is >>>>> not capable of being a middlebox by the definition applied in the problem >>>>> statement. >>>>> >>>>> I'm not sure that's a glaring flaw in the document but it certainly is >>>>> with our vocabulary around taxonomy if true. >>>>> >>>>> >>>>> ---------------------------------------------------------------------- >>>>> COMMENT: >>>>> ---------------------------------------------------------------------- >>>>> >>>>> If you need to find the transport header due to configured policy and you >>>>> can't due to being unable to parse the extensions chain your configured >>>>> action will be to drop. That perhaps weasels it's way through section 2.1 >>>>> requirements but it's still quite ugly. >>>> Yes, and it's the reason that the Internet is mainly opaque to IPv6 >>>> extensions headers today. >>>> >>>> Brian >>>>
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Brian E Carpenter
- Joel Jaeggli's Discuss on draft-ietf-6man-ext-tra… Joel Jaeggli
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… joel jaeggli
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Brian E Carpenter
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… joel jaeggli
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Roland Bless
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Benoit Claise
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… joel jaeggli
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Brian E Carpenter
- Re: Joel Jaeggli's Discuss on draft-ietf-6man-ext… Bless, Roland (TM)