IETF Logo Mail Archive

Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03

Thomas Nadeau <tnadeau@lucidvision.com> Mon, 20 August 2012 19:31 UTC

Return-Path: <tnadeau@lucidvision.com>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F0EE21F853A for <mpls@ietfa.amsl.com>; Mon, 20 Aug 2012 12:31:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pR1NCPxbt82Q for <mpls@ietfa.amsl.com>; Mon, 20 Aug 2012 12:31:54 -0700 (PDT)
Received: from lucidvision.com (lucidvision.com [72.71.250.34]) by ietfa.amsl.com (Postfix) with ESMTP id 91C0721F8532 for <mpls@ietf.org>; Mon, 20 Aug 2012 12:31:54 -0700 (PDT)
Received: from [172.28.131.12] (westford-nat.juniper.net [66.129.232.2]) by lucidvision.com (Postfix) with ESMTP id 13C272259408; Mon, 20 Aug 2012 15:31:52 -0400 (EDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.0 \(1485\))
From: Thomas Nadeau <tnadeau@lucidvision.com>
In-Reply-To: <24256.1343077448@erosen-linux>
Date: Mon, 20 Aug 2012 15:31:51 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <40F8AA95-FD9E-4D3A-BFC5-D4BE04DC7605@lucidvision.com>
References: <24256.1343077448@erosen-linux>
To: erosen@cisco.com
X-Mailer: Apple Mail (2.1485)
Cc: "mpls@ietf.org" <mpls@ietf.org>, "mpls-chairs@tools.ietf.org" <mpls-chairs@tools.ietf.org>, Giles Heron <giheron@cisco.com>
Subject: Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mpls>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Aug 2012 19:31:55 -0000

On Jul 23, 2012:5:04 PM, at 5:04 PM, Eric Rosen <erosen@cisco.com> wrote:

> Pranjal> This draft does not change or violate procedures defined in RFC
> Pranjal> 5036. It proposes an OPTIONAL method of reduction of "targeted'
> Pranjal> hellos (only - as the name of the draft suggests) and the proposed
> Pranjal> method is backward compatible with procedures defined in RFC
> Pranjal> 5036. The method uses the hello timeout negotiation procedures as
> Pranjal> per RFC 5036 without any changes in negotiation procedures.
> 
> If the draft does not change any of the procedures specified in RFC 5036,
> and does not define any new procedures or messages either, then why is the
> draft marked as "standards track"?  At best it would be "Informational".
> But are you saying that all the draft really does is to suggest that a
> particular parameter be set to a particular value?  That doesn't seem like
> very much content.
> 
> Pranjal> The reduction of hellos provides probabilistically better
> Pranjal> resiliency on maintenance of hello adjacency during sporadic DoS
> Pranjal> attacks. Sporadic DoS attacks on UDP port 646 can result in loss of
> Pranjal> "good" hello packets for certain period of time and thus leading to
> Pranjal> loss of existing adjacencies.
> 
> If an attacker can send you UDP packets on port 646, why doesn't he make
> them look like Hello packets specifying a short hold time?  That's a much
> more effective attack than a "sporadic DoS attack".  In fact, if real Hellos
> are not being sent at all, it just becomes easier to mount an attack with a
> spoofed Hello.  An attacker could send a spoofed Hello with a hold time of 3
> days, and the session would stay up for a few days and then fail
> mysteriously, for no apparent reason.  An attack whose effects are not felt
> until days later can be quite hard to deal with.  When the Hellos are sent
> periodically, on the other hand, there is a self-correction mechanism that
> prevents this.
> 
> If you want to reduce the targeted Hello load, it might be better to invent
> a way (i.e., a protocol change) of turning them off entirely after the
> session comes up, so that arriving Hellos are just discarded.  (
> 
> BTW, the draft asserts that the periodic Hellos have no value that is not
> better served by either BFD or the LDP session keepalives.  I don't know
> whether that's true, but it would be nice to see an argument with a little
> more substance.

	Just following up on some old emails and I noticed this one.   I am not sure if you recall, but this was discussed when we originally presented the draft (something like 2+ years ago).  In effect that is what we are saying with the draft. Since BFD Hellos are used to maintain liveliness now in most implementations, the hellos that are sent after the sessions are established are superfluous. Perhaps too much emphasis was placed on the security aspects versus the optimization nature of the solution, but that is the general idea. A side-effect are the potential security benefits.   

	Keep in mind too that when this was discussed originally, we did ask the WG whether or not to take Luca's suggestion of re-writing the LDP spec to fix this and a few other issues or just do this simple optimization; the guidance we received was to take the optimization route on this one as it seemed simple, quick and effective.

	--Tom



> 
> 
> 
> 
> 
> _______________________________________________
> mpls mailing list
> mpls@ietf.org
> https://www.ietf.org/mailman/listinfo/mpls
>

v2.23.0 | Report a Bug | By Email