IETF Logo Mail Archive

Re: [OPSAWG] New Version Notification for draft-gray-sampled-streaming-00.txt

"Joe Clarke (jclarke)" <jclarke@cisco.com> Tue, 06 August 2019 14:15 UTC

Return-Path: <jclarke@cisco.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C30612019F for <opsawg@ietfa.amsl.com>; Tue, 6 Aug 2019 07:15:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=PNEovD8i; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=MSICLu3B
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ymFzzAajTguM for <opsawg@ietfa.amsl.com>; Tue, 6 Aug 2019 07:15:39 -0700 (PDT)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E00D5120072 for <opsawg@ietf.org>; Tue, 6 Aug 2019 07:15:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9090; q=dns/txt; s=iport; t=1565100938; x=1566310538; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=rj/mvtEYu4cyAbBc5p+co5qusZbun3w5z5Ev07tDLms=; b=PNEovD8igDM7zL+gikMzxnK5hsZDxkoLseDMEadwoJBM4RzAeBouE4PZ ndv9W0pDBnRWlP1xU8bMxOKjIUExIiKM5toVveWpJZ672fPYu1h2aLN3r H24gh98S4BP0yXR28fb4bSuR7TBTMN8Q+mnObdGQTLQE6ONJzk5V1gHsb o=;
IronPort-PHdr: 9a23:uor+rBcD2Qlm6/zIw87D3CBxlGMj4e+mNxMJ6pchl7NFe7ii+JKnJkHE+PFxlwGRD57D5adCjOzb++D7VGoM7IzJkUhKcYcEFnpnwd4TgxRmBceEDUPhK/u/bSc+Fd5BWXdu/mqwNg5eH8OtL1A=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CYAACTikld/5xdJa1mGQEBAQEBAQEBAQEBAQcBAQEBAQGBZ4FFUANtVSAECyoKhBSDRwOLL4I2JZdbglIDVAkBAQEMAQEnBgIBAYQ/AheCJyM4EwEEAQEEAQECAQZthScMhUoBAQEBAgESEREMAQE1AgEECwIBCBgCAiYCAgIwFRACBA4FIoMAAYFqAw4PAQ6gagKBOIhgcYEygnoBAQWBMwEDAoEPgkQYghMDBoEMKIRyhnEXgUA/gREnDBOCTD6CYQEBAgGBSBY4AoJRMoImjCgIglqHNZQGZwkCghyGXI1FG4Iviz6KP459hiWQGQIEAgQFAg4BAQWBZyGBWHAVOyoBgkGCQgkDF4NOhRSFP3IKgR+MCgGBIAEB
X-IronPort-AV: E=Sophos;i="5.64,353,1559520000"; d="scan'208";a="305258509"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 06 Aug 2019 14:15:37 +0000
Received: from XCH-ALN-016.cisco.com (xch-aln-016.cisco.com [173.36.7.26]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id x76EFbTb022135 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 6 Aug 2019 14:15:37 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-ALN-016.cisco.com (173.36.7.26) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 6 Aug 2019 09:15:36 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 6 Aug 2019 10:15:35 -0400
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 6 Aug 2019 10:15:35 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WdSQyEEy1TaJ5KaJXNvmFT6ou4w58V/iF40yvhvo9bcl+Zr+uLAGrUBAw07RTJSnNEa1lPyhpWtKxM2bjqr4keVnx6AaThGsVtpsARrAZ3saHofaZpRCCNBAMh5E4qKdRIucBLiD2xXIdFZO1ttcqYVyx5d3782DrVWWqYOujj5UzrsUOphfpy7GPm65kZyy0E3QNTdXLdVl8tThJbExqH4sdh+hvQ8h3zyLILqIskN/mLA4RpzlJETCDt+MzkAEqOJLqXrjpaWYMzjoOK/seJvLxEkc03W4Y0GrMgNuZCsoPkwVFVvazxKAtosIWdwhXr7YXWztWHTM6vsAq2LLkA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=rj/mvtEYu4cyAbBc5p+co5qusZbun3w5z5Ev07tDLms=; b=KO7hAnzq8yWo+k0RBsG5052AiJsYJXYvwRsi1zFH9326cj4vpCR/+A+79qZOcgXvq24K0QgXepAryPdQjM10LoPN0iWna3b8BDqIJzpCQUgMcmz819KPHm4S+OGS9lYXsxO9Zij7Yu+7Klzv0UdrGcsVxyaLrtFGvyd7AqMvfQey3bvKOp4UXOFJgaqf1sto6m8hddnPIdv1IXcLe2p/x8NRruk5DabT3vV7Ij7Y5CoyikF/3sGYZDrd33eDVXJoZTXl4B/hfDBg90MapuIh73b85S0yb3+5nU7sS3fbCka9gudUHgsMdU1fMEVTV9h/byv5wFVDQkrd5W8CTbBmxw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=rj/mvtEYu4cyAbBc5p+co5qusZbun3w5z5Ev07tDLms=; b=MSICLu3BROTmZvXdQQJRQtvtkw40VRU4ulZhlEThXVpT8v8esWMNrflYhrTIZoLfPOEDDD0qQcuPOumJfQ9Xzr9lKoFcf+zZfkk38yD7xIgh0b5P6zMfVq6gcY2I1+2BWzGQHCno3Ws9MMB6nJ/B7tN2bnSJn6dm1dUhHY3mFVo=
Received: from CH2PR11MB4200.namprd11.prod.outlook.com (10.141.118.161) by CH2PR11MB4198.namprd11.prod.outlook.com (10.141.118.31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2157.14; Tue, 6 Aug 2019 14:15:34 +0000
Received: from CH2PR11MB4200.namprd11.prod.outlook.com ([fe80::9dc4:365:907d:c943]) by CH2PR11MB4200.namprd11.prod.outlook.com ([fe80::9dc4:365:907d:c943%7]) with mapi id 15.20.2136.018; Tue, 6 Aug 2019 14:15:34 +0000
From: "Joe Clarke (jclarke)" <jclarke@cisco.com>
To: "Gray, Andrew A" <Andrew.Gray@charter.com>
CC: "opsawg@ietf.org" <opsawg@ietf.org>
Thread-Topic: [OPSAWG] New Version Notification for draft-gray-sampled-streaming-00.txt
Thread-Index: AQHVS5s0zdM9IXz3ZkSkvVyjx4XblqbskPCAgAB/AACAAAK2AIABGPeA
Date: Tue, 06 Aug 2019 14:15:34 +0000
Message-ID: <DCAA9672-FC0E-4020-9B3C-240AD03E1995@cisco.com>
References: <156501580187.24363.14759919501093494102.idtracker@ietfa.amsl.com> <329D5F49-7EEE-4A38-B96F-97E15287F81F@charter.com> <D132296C-C756-409C-B0AE-E98FB2B0EC1F@cisco.com> <BF7B7CFB-FF6E-46DC-B22D-68AF891F3211@charter.com>
In-Reply-To: <BF7B7CFB-FF6E-46DC-B22D-68AF891F3211@charter.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=jclarke@cisco.com;
x-originating-ip: [70.231.19.155]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 70ab6cdf-f724-4b5e-515f-08d71a788c39
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:CH2PR11MB4198;
x-ms-traffictypediagnostic: CH2PR11MB4198:
x-ms-exchange-purlcount: 7
x-microsoft-antispam-prvs: <CH2PR11MB41989BFEA454EC41DC41AEAAB8D50@CH2PR11MB4198.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0121F24F22
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(396003)(39860400002)(376002)(346002)(136003)(366004)(199004)(189003)(71190400001)(36756003)(102836004)(33656002)(71200400001)(316002)(486006)(64756008)(66556008)(26005)(86362001)(7736002)(66446008)(66476007)(66946007)(8676002)(14444005)(256004)(76116006)(91956017)(25786009)(186003)(305945005)(3846002)(6116002)(478600001)(229853002)(15650500001)(2906002)(99286004)(6246003)(6512007)(6486002)(8936002)(6436002)(6306002)(66066001)(53936002)(966005)(68736007)(14454004)(5660300002)(53546011)(6506007)(76176011)(6916009)(476003)(11346002)(81156014)(81166006)(2616005)(446003)(4326008); DIR:OUT; SFP:1101; SCL:1; SRVR:CH2PR11MB4198; H:CH2PR11MB4200.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: q+BFhsV9NLxeE3SZuHV/C68Lis64wUY0Kxkp7+R2SxbBAIkT9bGqQftASpk2PoN6sgNbuyk0qgDLC6UdN6INmLixye7qhptShg63PE+GsBDF65y971aiyvGlwIka/dThbciMEqTqy6VVipaJuGjE4HYZkNLFX9x4jCnS++WvAeBhs0GeDH/n+WNQquKQQqPxkZsLQfDo8zInckV8BxBaYA9T1mPcaR8nN3Wb5P0asD6kO3VhCIbTByVSokIGjwUQ491Wa5pnBY+wUbYYg+p5uooYXoWWKw3VDSa8kkvGvlhSiSAXOtM0lRIE1T1KqD1M3Vmt/rTobCIIT99QL6C8aMUzyKJDwokMQ27pRfGuIr7/VOwF5RTt8YtXlm38IRMFNDa3g7zJAAufapaq8AV7FXNZJKoJPaLUOaV935gHMBA=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <1B8D225C1298744396524C02FD3D9B8B@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 70ab6cdf-f724-4b5e-515f-08d71a788c39
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Aug 2019 14:15:34.6109 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jclarke@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR11MB4198
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.26, xch-aln-016.cisco.com
X-Outbound-Node: rcdn-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/kJfWn3XOzficLowYAd__Q7I8KMs>
Subject: Re: [OPSAWG] New Version Notification for draft-gray-sampled-streaming-00.txt
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Aug 2019 14:15:42 -0000


> On Aug 5, 2019, at 18:29, Gray, Andrew A <Andrew.Gray@charter.com> wrote:
> 
> Joe,
> 
> Thanks for your review and comments.  Responses in-line.
> 
> On 8/5/19, 3:20 PM, "Joe Clarke (jclarke)" <jclarke@cisco.com> wrote:
> 
>> On Aug 5, 2019, at 10:45, Gray, Andrew A <Andrew.Gray@charter.com> wrote:
>> 
>> Hello opsawg,
>> 
>> I spoke to a number of IETF folks at IETF 105, along with Tianran and Ignas (who I thank for their feedback and suggestions), and it was decided that opsawg would be the best place to at least start the conversations about a new draft I am proposing, as detailed below.
>> 
>> I document several use cases in the draft, but the short version is we are wanting to standardize a method for different vendors to handle ASIC-level replication of packets, to a remote server, including any and all information that ASIC may have about the packet, along with at least part of the payload, with a configurable sampling rate and filtering capabilities.
>> 
>> Some things on my TODO list for it still:
>> 
>> 1. I want to take a closer look at Flowspec rule definition, and see if that can be adequately encoded here.  It looks like the YANG model for Flowspec rules was draft-wu-idr-flowspec-yang-cfg but that has since expired.
>> 2. I'm planning on talking at NANOG 77 in Austin with other operators to see if there's additional use cases and how much appetite there is.
>> 3. I'm talking with a couple vendors about implementations - there is interest here about it as well.
>> 
>> I am sending out the -00 version of this draft and very much welcome comments and feedback.  
> 
>    Hello, Andrew.  I’ve read through this draft, and I have a few comments.  I put it up in GitHub to make it a bit easier.  In addition to your TODO, I know Cisco proposed ERSPAN to the IETF a few years ago, but I do not know what the discussion was around that (https://tools.ietf.org/html/draft-foschiano-erspan-03).  Conceptually, your idea seems very similar.  It is perhaps worth exploring what happened with that work. 
> 
> [AG] ERSPAN doesn't include the potentially useful information the ASIC has about the packets (i.e. what it's going to do with it, what the receive timestamp was).  That draft seems to only standardize a single encapsulation - my desire is to get as much information out of the forwarding ASICs as possible, in whatever format works best for the chipset, but still allow interop with different receiving packets.

It seems like the ASIC bit blends with what IOAM is doing.  In fact, the “framework” you describe might incorporate work like https://tools.ietf.org/html/draft-spiegel-ippm-ioam-rawexport-02 with the exception that it is using IPFIX for export (which is more overhead than you want).  My overarching point is that there is similar work, and it sounds like you’re making the right connections to understand what is out there.

> 
>    More to the contents of your doc, you have it marked informational, but you mention a few times about standardizing the interactions between components.  You’re not standardizing as much as you’re defining a specific interaction.
> 
> [AG] True - it started as informational but has become more standards track - will update.

Well, for a standards track, you would have to determine an encap.  And then it might be worth breaking out the encap from the YANG module.

> 
>    In https://github.com/xorrkaz/ietf-docs/blob/master/draft-gray-sampled-streaming-00#L195 you mention NETCONF explicitly.  Why can’t this be done with RESTCONF, gRPC, etc.?
> 
> [AG] Good point - it very well could be.  I suppose that could be reworded to be more as an example.
> 
>    In https://github.com/xorrkaz/ietf-docs/blob/master/draft-gray-sampled-streaming-00#L249, why must a Client re-query?  This seems like telemetry would be ideal to update the Client about configuration changes to the stream.
> 
> [AG] The re-query is basically the response to the initial configuration request - in effect the client pushes part of the configuration (the desired filters and such), and the Replicator fills in the rest (what the resulting packet format will be, based on ASIC or location or capability or what-have-you).  Telemetry seems a bit overkill for what was intended to be a single re-pull, but I am open to input?

There has been examples of using YANG push as a way push config and then look to see what is actually applied.  This seems to fit in that paradigm of use case.

> 
>    https://github.com/xorrkaz/ietf-docs/blob/master/draft-gray-sampled-streaming-00#L298, are these bit widths or byte?  Either way, they seem too short for things like an interface-ref list.  If it is bit width, then it wouldn’t even be long enough for a list of actions.
> 
> [AG] Those are bits, and it's an example of the resulting data format - the actual format returned by the device could be whatever bit width is desirable for it.  A few reviewers have thought that packet header and table are requirements - I added "example" language to a few different places to try and fix that, but apparently it's still too easy to assume those listings are the requirements.

I did understand that this was an example.  My point is that I don’t see how this is a feasible example.  Based on your description of the fields, I couldn’t rationalize how they are used or how they would look.  How could a 8-bit field present a list of interface-refs?

> 
>    https://github.com/xorrkaz/ietf-docs/blob/master/draft-gray-sampled-streaming-00#L309, if this is 24 bytes, that seems excessive for two 32-bit integers.  If it’s bits, it’s not long enough.
> 
> [AG] See previous comment.
> 
>    I have other more typographical comments at https://github.com/xorrkaz/ietf-docs/commit/7a849d2b12cd2dff151654f3ef37a87ac870a452#diff-580cadc3568cc3a979bb37410222e08b .
> 
> [AG] I'll roll those in - I'm working from a .xml version and separate .yang file, then regenerating the .txt using xml2rfc (but I can't quite upload the .xml as I use a <xi:include href="ietf-sampled-streaming@2019-06-25.yang" parse="text" /> to have the parser pull in the separate yang file for formatting.  I can upload those to the Git repository and use those for work, if that's easier?

As I said in unicast, I think if you could spin up your own repo, it would be easier to add comments/issues or PRs.

Additionally, as a co-chair, I’d like to add that it is always good to see operators presenting work to the IETF that would make their lives easier.  I appreciate you bringing this discussion to opsawg.

Joe

v2.23.0 | Report a Bug | By Email