IETF Logo Mail Archive

Re: 6MAN chair's comments on draft-ietf-conext-destopt

Suresh Krishnan <suresh.krishnan@ericsson.com> Thu, 15 October 2015 03:22 UTC

Return-Path: <suresh.krishnan@ericsson.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43AAD1B2F92 for <ipv6@ietfa.amsl.com>; Wed, 14 Oct 2015 20:22:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Snyr6qcozLkj for <ipv6@ietfa.amsl.com>; Wed, 14 Oct 2015 20:22:29 -0700 (PDT)
Received: from usevmg21.ericsson.net (usevmg21.ericsson.net [198.24.6.65]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 336951B2F91 for <ipv6@ietf.org>; Wed, 14 Oct 2015 20:22:29 -0700 (PDT)
X-AuditID: c6180641-f792c6d00000686a-65-561eaf90b18b
Received: from EUSAAHC005.ericsson.se (Unknown_Domain [147.117.188.87]) by usevmg21.ericsson.net (Symantec Mail Security) with SMTP id 63.E2.26730.09FAE165; Wed, 14 Oct 2015 21:40:00 +0200 (CEST)
Received: from EUSAAMB107.ericsson.se ([147.117.188.124]) by EUSAAHC005.ericsson.se ([147.117.188.87]) with mapi id 14.03.0248.002; Wed, 14 Oct 2015 23:22:27 -0400
From: Suresh Krishnan <suresh.krishnan@ericsson.com>
To: "otroan@employees.org" <otroan@employees.org>
Subject: Re: 6MAN chair's comments on draft-ietf-conext-destopt
Thread-Topic: 6MAN chair's comments on draft-ietf-conext-destopt
Thread-Index: AQHRBrI3bsgJfMrAdE683a9tmiMJCA==
Date: Thu, 15 Oct 2015 03:22:26 +0000
Message-ID: <E87B771635882B4BA20096B589152EF63A99124E@eusaamb107.ericsson.se>
References: <BF9F30E5-6B63-473A-B06B-C46EBDCB41FD@employees.org> <BB169E79-41C5-4344-A4FE-E69DCB642E0D@employees.org> <E87B771635882B4BA20096B589152EF63A98FC0C@eusaamb107.ericsson.se> <734F63A8-83B0-43C6-9C58-A1F3F5FB1E62@employees.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.117.188.9]
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrCLMWRmVeSWpSXmKPExsUyuXRPuO6E9XJhBgtPWFq8PPueyWJy2wo2 ByaPg8c+MnosWfKTKYApissmJTUnsyy1SN8ugSuj7fU/1oI1qhVT1s1iamDcKNfFyMkhIWAi sfPnJEYIW0ziwr31bF2MXBxCAkcZJZ51LGcCSQgJLGeUuPCBHcRmA2rYsPMzUJyDQ0TAUOLA OQWQMLOAtMStJc/ByoUF7CUObToAVi4i4CDx4+VMZghbT+LNyVtgcRYBVYkbDxpYQGxeAV+J dedPsEDs/cQoMeX8AlaQBCPQQd9PrWGCWCAucevJfCaIQwUkluw5zwxhi0q8fPyPFcJWlNjX P50dot5A4v25+cwQtrbEsoWvmSGWCUqcnPmEZQKj6CwkY2chaZmFpGUWkpYFjCyrGDlKi1PL ctONDDcxAqPhmASb4w7GBZ8sDzEKcDAq8fAqzJALE2JNLCuuzD3EKM3BoiTOO2/G/VAhgfTE ktTs1NSC1KL4otKc1OJDjEwcnFINjNY7txjEqpyq2yOwLXfXzJDJDldOMjFmT3lgoVXGy+Jx 0vN116RpO2TWzhe7bWiUb9e/49KedTczt25vvFTrtCGMz6R3Z4dhccarBPUt6QdsVB+XtLf+ eGloGav+O+nYv0V/912ONWGZdCh0flb0Q7VjCZqRa6+e9TTYPbVs3UkrmeQVu+KXNyixFGck GmoxFxUnAgC7hGvUZwIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/wLc__6yY8bNRHIfKUzKRypzprog>
Cc: 6man WG <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Oct 2015 03:22:31 -0000

Hi Ole,

On 10/14/2015 02:57 PM, otroan@employees.org wrote:
> Suresh,
>
>>    Thanks a lot for your comments. First of all, I would like to
>> apologize for this oversight. I was certain that I discussed this in
>> 6man in the draft's early days but going back through my mails, I
>> realized it was another associated draft
>> (draft-krishnan-6man-header-reserved-bits-00.txt) that was the other
>> option for conex markings that was discussed.
>>
>> https://www.ietf.org/mail-archive/web/ipv6/current/msg12944.html
>
> Don't apologise, I would expect AD's/IESG to have dealt with this. Certainly not individual authors in this case in a different area.
>
>>>> The Hop by hop option header is required to be the first
>>>> extension header and is an easy check in the forwarding path of
>>>> routers.  This proposal appears to be attempting to create a new
>>>> hop by hop option type, instead of using the existing one based on
>>>> the requirement that this ConEx destination option be the first
>>>> destination option in the Destination header. If the authors want
>>>> hop by hop behavior, they should have defined an hop by hop
>>>> option, not try to create a new type of hop by hop capability.
>>
>> The idea was not to create a hop by hop capability. The mere presence of
>> the hop-by-hop option header hurts packet processing on routers that are
>> not conex-aware. Using a hop-by-hop option was not a viable idea. The
>> idea was to run the experiment on consenting intermediate nodes while
>> not causing issues on unmodified nodes.
>
> I understand that.
> Wouldn't you say that if the experiment turned out to be stunningly successful that you ended up creating what's essentially a new HBH header? And one that was more costly for intermediate nodes than HBH.
> The HBH header does deal with the case of unmodified nodes on the path.
> I do understand your concerns with HBH though, that's an active item under discussion in 6man.

Great.

>
> draft-baker-6man-hbh-header-handling suggests a "rescue" for HBH by making all options in the HBH optional (i.e. intermediate nodes without enabled HBH features don't have to parse them).
> (In practice, that's what I would expect most implementations to do anyway.)

That draft would really help things out. If the experiment is a success, 
then it makes a lot of sense to rewrite with a new hop by hop option if 
the intermediate nodes start to get updated with this new behavior. Even 
then, unupdated intermediate nodes (that either drop packets with the 
HBH header or punt them to the slow path) would still cause issues for 
conex marked packets.

>
> I'm personally quite concerned about opening the door and creating the requirement in an IETF document that routers are required to parse deeper into the packet than the header with the one exception.
> And if the argument is that the HBH is dropped or ignored because of performance reasons, why wouldn't the exact same argument apply to this new usage of the DestOpt header?

The concern is mainly about current intermediate nodes that 
indiscriminately penalize/drop packets just based on the presence of the 
HBH option header. If the nodes stay unupdated, they will not process 
the destopt header and will leave the packets alone. If they do get 
updated with awareness of the new option, it is most likely because they 
would like to support it, right?

>
>>>> While it doesn’t say anything specifically, it appears the intent
>>>> that this header is intended for a specific realm, perhaps a
>>>> ConEx domain.  At a minimum the draft needs to define where it is
>>>> intended to be used, that is in a isolated ConEx domain, the
>>>> whole Internet, or something else.
>>
>> Unfortunately, the goal is for this to be used across the Internet. The
>> usage of the destination option was specifically to avoid processing
>> issues on nodes that are not conex-aware. Since RFC6564 closed off other
>> avenues of extensibility (extension headers and hop-by-hop options) I am
>> not sure if there are any other possibilities.
>
> Do you know the conex-aware nodes a priori? You could of course encapsulate or source route.

No. They aren't. Like you say, encapsulation would have made a lot of 
sense if the list of conex-aware nodes on the path were known up front.

Thanks
Suresh

v2.41.0 | Report a Bug | By Email | System Status