IETF Logo Mail Archive

Re: [Ntp] [tsvwg] [Tsv-art] Tsvart early review of draft-ietf-ntp-alternative-port-02

Miroslav Lichvar <mlichvar@redhat.com> Wed, 08 December 2021 14:25 UTC

Return-Path: <mlichvar@redhat.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 83B823A094E for <ntp@ietfa.amsl.com>; Wed, 8 Dec 2021 06:25:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.701, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redhat.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7I304JM-wpTu for <ntp@ietfa.amsl.com>; Wed, 8 Dec 2021 06:25:12 -0800 (PST)
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4441C3A0949 for <ntp@ietf.org>; Wed, 8 Dec 2021 06:25:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1638973511; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=2agQ+Yk/RcD41QWXLUMvEhYe+mQoB9WexxoVG4y9KyI=; b=eLolU8Z/2uRfOO1Q3+MDYzSKTaVSo9AUQzqQBi7k3p+ypvSzobdL91ePcABCqpTFdnzraW o9coSOvjvKKH7yYz5nPFnqESRiVyxIOX6WsHo+W/JwFsklx9G3Of7XJkJaxrp3ITzQb3dh oyWOoDiMBHUwSS6f9VFHuxez6han1aM=
Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-441-kZn2pIT5NO-r_BTJpAu9SA-1; Wed, 08 Dec 2021 09:24:51 -0500
X-MC-Unique: kZn2pIT5NO-r_BTJpAu9SA-1
Received: from smtp.corp.redhat.com (int-mx04.intmail.prod.int.phx2.redhat.com [10.5.11.14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id 092DE760C5; Wed, 8 Dec 2021 14:24:49 +0000 (UTC)
Received: from localhost (unknown [10.43.135.229]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 573155E279; Wed, 8 Dec 2021 14:24:44 +0000 (UTC)
Date: Wed, 08 Dec 2021 15:24:43 +0100
From: Miroslav Lichvar <mlichvar@redhat.com>
To: Eliot Lear <lear@lear.ch>
Cc: "touch@strayalpha.com" <touch@strayalpha.com>, Steven Sommars <stevesommarsntp@gmail.com>, NTP WG <ntp@ietf.org>, TSVWG <tsvwg@ietf.org>, Magnus Westerlund <magnus.westerlund@ericsson.com>, Harlan Stenn <stenn@nwtime.org>, Martin Burnicki <martin.burnicki@meinberg.de>, Danny Mayer <mayer@pdmconsulting.net>, Joseph Touch via IANA-Port-Experts <iana-port-experts@icann.org>, draft-ietf-ntp-alternative-port.all@ietf.org, tsv-art <tsv-art@ietf.org>, Hal Murray <halmurray@sonic.net>
Message-ID: <YbDAK3DoXOmSBlFC@localhost>
References: <A803AF18-2BBD-4A54-9802-3EF693066E6C@strayalpha.com> <CAD4huA7RhF3xZJkdghz4yx3qk8uBjkfJv7Y_hDCvX1a=wATBkg@mail.gmail.com> <CACL_3VENkyebRf25W6EpW0yZY6ELYS41A4D_i+RnQE1M21P2hg@mail.gmail.com> <Ya3fLJCHUsm1wE28@localhost> <90723c26-0352-a4d1-f765-eb26b1522954@pdmconsulting.net> <bf78924b-69bc-760e-cc7f-e6896504e194@meinberg.de> <Ya81mYy8/EuH8ilY@localhost> <ABF8072B-C6C0-47F3-BD7B-BAFE927B5DE1@strayalpha.com> <d3d167ee-5a6d-0060-a350-6eb04ba0ae8b@lear.ch> <98f35559-b1ff-be8b-d06e-a034ccd4b610@lear.ch>
MIME-Version: 1.0
In-Reply-To: <98f35559-b1ff-be8b-d06e-a034ccd4b610@lear.ch>
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.14
Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=mlichvar@redhat.com
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: redhat.com
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/By3imUZQaIcCXXQcxHNISBT1y-U>
X-Mailman-Approved-At: Wed, 08 Dec 2021 07:08:57 -0800
Subject: Re: [Ntp] [tsvwg] [Tsv-art] Tsvart early review of draft-ietf-ntp-alternative-port-02
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Dec 2021 14:25:18 -0000

On Wed, Dec 08, 2021 at 08:14:57AM +0100, Eliot Lear wrote:
> Just to follow this up, my point is that the version bit doesn't matter if
> the packets aren't getting to endpoints.  At that point we need to start
> thinking about what is best for the Internet, and there may well be a
> tradeoff here.  But it really depends on what the operational data looks
> like, in so much as we can get at it.

Cloudflare is probably the largest provider of NTP+NTS. It would be
interesting if they could show how is distributed the length of
NTP+NTS requests received on their servers. IIRC they mentioned this
in one of the NTP WG meetings. As NTS clients are encouraged to not
reuse NTS cookies, they should ask for more cookies if there is a
packet loss, and this should be clearly visible in the distribution of
the request length.

I have some data that show that the filtering exists by measuring
losses at different NTP message lengths. I tested about 2600 public
servers from the pool.ntp.org project spread around the world. Only
servers that respond to packets containing an unknown extension field
were tested. This is a one-way test as the response is always short.
This was done from machines in 3 different countries on different
continents. 10 requests were sent to each server for each message
length. The following table shows from how many of the servers at
least 5 responses were received.

 Len   US     CZ     SG   
  48  98.3%  97.7%  98.6%
 148  98.2%  96.7%  98.2%
 248  90.1%  88.3%  85.0%
 348  90.5%  88.1%  84.7%
 448  89.7%  86.9%  84.1%
 548  96.2%  92.8%  95.5%

The dip between 200 and 500 matches the measurements posted by Steven
Sommars that I linked to earlier. A typical NTP+NTS message length
starts at about 230 bytes. So, depending on your location you could
expect >50% of NTP+NTS requests to about 10% of the public servers to
be lost due their length. After three packets lost in a row, the
request length increases to about 550, where the chances of getting a
response is better again. A response to every fourth request. That
is a common pattern I see on some clients.

-- 
Miroslav Lichvar

v2.23.0 | Report a Bug | By Email