Re: [PANRG] draft-rass-panrg-mpath-usecase
<Ruediger.Geib@telekom.de> Wed, 03 April 2019 10:19 UTC
Return-Path: <Ruediger.Geib@telekom.de>
X-Original-To: panrg@ietfa.amsl.com
Delivered-To: panrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84F5E12008B for <panrg@ietfa.amsl.com>; Wed, 3 Apr 2019 03:19:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.289
X-Spam-Level:
X-Spam-Status: No, score=-4.289 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=telekom.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ioH2w-PhJUBZ for <panrg@ietfa.amsl.com>; Wed, 3 Apr 2019 03:19:52 -0700 (PDT)
Received: from mailout11.telekom.de (mailout11.telekom.de [194.25.225.207]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75C3A1200B2 for <panrg@irtf.org>; Wed, 3 Apr 2019 03:19:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telekom.de; i=@telekom.de; q=dns/txt; s=dtag1; t=1554286791; x=1585822791; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=rAYSNmC4hfGibaS3f9SzPjaXZ0dCTtXxKrPeiPlb3L4=; b=A3eaHkp1AKZ++FVgP8zr2bIX1S8mZy6QvL3xvjiLs6MfxTv2OLNdC+D8 OwTtTr8lMwa9E5Zq17C1obNVTYSqq+t/HymZT7GdAHzLrrYDwM6f94pl5 9tOKuBBZhn7St/oStzRz1FG/lP8jL7NSht19x3nXrLkiD0WKFhhStfwLp yhLmCIHk762SjROntmjLhspEiqiZofqdrLn8iF4gLkpLvEfKkMt/hIHCz 0SdnmnSYsLWNqZUYdarQQZh8MY+pHUmvcmh3tYAWQinirFqf4PRTe/jJ/ +t+ym4YSk6hFVB66DOFNtrmrVth6TvEIrkCxNd0KH5flQq+70lp3yc439 A==;
Received: from qde8e4.de.t-internal.com ([10.171.255.33]) by MAILOUT11.dmznet.de.t-internal.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 03 Apr 2019 12:19:47 +0200
X-IronPort-AV: E=Sophos;i="5.60,304,1549926000"; d="scan'208,217";a="506253761"
Received: from he105850.emea1.cds.t-internal.com ([10.169.118.24]) by QDE8PP.de.t-internal.com with ESMTP/TLS/AES256-SHA; 03 Apr 2019 12:19:47 +0200
Received: from HE105872.EMEA1.cds.t-internal.com (10.169.118.69) by HE105850.emea1.cds.t-internal.com (10.169.118.24) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 3 Apr 2019 12:19:47 +0200
Received: from HE104164.emea1.cds.t-internal.com (10.171.40.35) by HE105872.EMEA1.cds.t-internal.com (10.169.118.69) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Wed, 3 Apr 2019 12:19:47 +0200
Received: from GER01-LEJ-obe.outbound.protection.outlook.de (51.5.80.23) by O365mail06.telekom.de (172.30.0.233) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 3 Apr 2019 12:19:45 +0200
Received: from LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE (10.158.142.153) by LEJPR01MB0458.DEUPRD01.PROD.OUTLOOK.DE (10.158.142.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1750.19; Wed, 3 Apr 2019 10:19:46 +0000
Received: from LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE ([fe80::24cc:c867:203f:204d]) by LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE ([fe80::24cc:c867:203f:204d%3]) with mapi id 15.20.1750.023; Wed, 3 Apr 2019 10:19:46 +0000
From: Ruediger.Geib@telekom.de
To: yingzhen.qu@huawei.com
CC: Lin.Han@huawei.com, panrg@irtf.org, ietf@trammell.ch, stefan.rass@aau.at
Thread-Topic: draft-rass-panrg-mpath-usecase
Thread-Index: AdTlbormHOVqAJilSy+eOsBwQ+x38ADYTJeAAEwWZAA=
Date: Wed, 03 Apr 2019 10:19:46 +0000
Message-ID: <LEJPR01MB0460557D8F3CCEE86A9C46449C570@LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE>
References: <LEJPR01MB0460CD485E061E2AF4DF34C29C590@LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE> <594D005A3CB0724DB547CF3E9A9E810B011E1816@sjceml521-mbx.china.huawei.com>
In-Reply-To: <594D005A3CB0724DB547CF3E9A9E810B011E1816@sjceml521-mbx.china.huawei.com>
Accept-Language: en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Ruediger.Geib@telekom.de;
x-originating-ip: [164.19.3.197]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4a5ad84e-f081-42ce-4d73-08d6b81de5c7
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600139)(711020)(4605104)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:LEJPR01MB0458;
x-ms-traffictypediagnostic: LEJPR01MB0458:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <LEJPR01MB0458DEAAA7187B4987423A019C570@LEJPR01MB0458.DEUPRD01.PROD.OUTLOOK.DE>
x-forefront-prvs: 0996D1900D
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(396003)(376002)(346002)(136003)(39860400002)(189003)(52314003)(199004)(6306002)(81156014)(72206003)(478600001)(966005)(105586002)(19627235002)(14444005)(14454004)(53936002)(486006)(11346002)(75402003)(106356001)(81166006)(186003)(74482002)(3846002)(446003)(316002)(8936002)(6116002)(26005)(102836004)(71200400001)(5660300002)(86362001)(54906003)(97736004)(71190400001)(76176011)(790700001)(476003)(53546011)(9686003)(6916009)(236005)(55016002)(54896002)(7696005)(2906002)(7736002)(33656002)(68736007)(52396003)(66066001)(66574012)(4326008)(8676002)(256004)(606006); DIR:OUT; SFP:1101; SCL:1; SRVR:LEJPR01MB0458; H:LEJPR01MB0460.DEUPRD01.PROD.OUTLOOK.DE; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: telekom.de does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 02yjua7Yw43ZlIohinmHlIg3x+qPwbR9B/iUJm3ZNwvmeBJnC+RxAYS2vwj1+l7CfLtZZNhwFZlInDNFY1OTzN+spG6wIEgj/CMkIwfPL7lv/DyCSmARey53nA+jmOQQsw5XED1w7Ym2Xn/XrXQ+LBvZo/SWr5XZaaaejlGScOEK6xIr90IAuPj5whGks4+jwHnM4FCFbei6L+29qXuNr8THPwI0AssaIF4GDLM9hzEiKfhBgsbvM1PreY+w5kvuEJj/2u9jVG+uwsaWD0uK+FwWKmx821FRGYgynIzyCXZJ1OLgXZUDGy1VZvCMjGznYcWvgXVRkj0ttJE17SKjL3eizidvrUMwgeuf6ByYqVXGD4a5vkeyAzfPdXp7J4WcgcW8EuLkJQHos50Obe8b71b20i4g5a67OL2ACutajDQ=
Content-Type: multipart/alternative; boundary="_000_LEJPR01MB0460557D8F3CCEE86A9C46449C570LEJPR01MB0460DEUP_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 4a5ad84e-f081-42ce-4d73-08d6b81de5c7
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Apr 2019 10:19:46.7349 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bde4dffc-4b60-4cf6-8b04-a5eeb25f5c4f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LEJPR01MB0458
X-OriginatorOrg: telekom.de
Archived-At: <https://mailarchive.ietf.org/arch/msg/panrg/iriiuxo5QQnXOOOavWCpT6D6xRA>
Subject: Re: [PANRG] draft-rass-panrg-mpath-usecase
X-BeenThere: panrg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Path Aware Networking \(Proposed\) Research Group discussion list" <panrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/panrg>, <mailto:panrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/panrg/>
List-Post: <mailto:panrg@irtf.org>
List-Help: <mailto:panrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/panrg>, <mailto:panrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Apr 2019 10:19:56 -0000
Hi Yingzhen, my take from the presentation was, that forwarding along different paths is a or the major design goal. If more than a single packet is forwarded that way by a single transport relation, adoption of a transport protocol may be an issue. You write: * Adding more source and destination address, if IGP is used to calculate routing, then you still end up on the same route because of SPF. RG: the PANRG investigates the usage of different paths, not different routes, if I got that correctly. A layer 2 tunnel and a non-VPN layer 3 packet sent on different accesses may be forwarded along the same SPF routed path, if the CE routers are identical at both ends. As a general statement, I think it would help PANRG to specify what a path is. I doubt that any network provider will support a universal path infrastructure ping presenting everything from layer 0 - layer 3. A fairly good method to determine whether different paths exist to me seems to be measuring RTTs of packets exchanged between end-points connected to one or more provider networks after address variation has been performed. The accesses shouldn't belong to the same access network section. On a single access network section, there may be little or no path variation. * This will require change on hosts because you can't use one TCP or MPTCP session. MPTCP is designed to use different paths by different addresses (and https://www.rfc-editor.org/rfc/rfc6182.txt mentions, that SCTP also supports multipath & multihoming). So MPTCP is based on the principle of different paths using different address-pairs already. Of course, if additional address- or IPv6 flow label variation is introduced, more paths might be used. This could result in packet re-ordering at the destination. The transport and higher layers will have to cope with that. Varying source addresses will require transport adaptation anyway, if TCP is used. The ACKs need to get back to the sender. Impacting forwarding path selection by different source and destination addresses is a fair approach within a single domain, I think. In the case of IPv6, the flow-label is an input used for ECMP, see https://www.rfc-editor.org/rfc/rfc6437.txt . Then the IP addresses may even be maintained and different paths may be addressed by varying the IPv6 flow-label. Source address variation may fail, if uRPF is active, see https://tools.ietf.org/html/rfc3704 , and the source address isn't assigned to the access sending the packet. uPRF may be configured at consumer accesses. Regards, Ruediger Von: Yingzhen Qu <yingzhen.qu@huawei.com> Gesendet: Montag, 1. April 2019 23:45 An: Geib, RĂ¼diger <Ruediger.Geib@telekom.de>; stefan.rass@aau.at Cc: Lin Han <Lin.Han@huawei.com>; panrg@irtf.org; ietf@trammell.ch Betreff: RE: draft-rass-panrg-mpath-usecase Hi Ruediger, Thanks for your interests in our draft and comments at the mic during Stefan's presentation. I didn't get a chance to answer your question during the presentation because of the shortness of time. If I understand right, you were suggesting to add different source and destination address to achieve multiple path, it is useful in some circumstances but I see some limitations. Let's take a single domain/AS as an example: * Adding more source and destination address, if IGP is used to calculate routing, then you still end up on the same route because of SPF. * This will require change on hosts because you can't use one TCP or MPTCP session. Acrossing domains is more complicated, but the 2nd point still applies. Thanks, Yingzhen From: Ruediger.Geib@telekom.de<mailto:Ruediger.Geib@telekom.de> [mailto:Ruediger.Geib@telekom.de] Sent: Thursday, March 28, 2019 7:23 AM To: stefan.rass@aau.at<mailto:stefan.rass@aau.at> Cc: Yingzhen Qu <yingzhen.qu@huawei.com<mailto:yingzhen.qu@huawei.com>>; Lin Han <Lin.Han@huawei.com<mailto:Lin.Han@huawei.com>>; panrg@irtf.org<mailto:panrg@irtf.org>; ietf@trammell.ch<mailto:ietf@trammell.ch> Subject: draft-rass-panrg-mpath-usecase Hi Stefan, the idea to route packets containing encrypted information via different paths sound reasonable to me. This may be challenging for higher layers, but well, one may be able to design them to cope with packets received from different paths, I think. I've recommended to investigate available options rather that path detection this morning. Some of these are: * An end system can be multihomed * There's multi-path transport, like MPTCP * If the IP-addresses can be varied, the packets will likely follow different Equal Cost Multi-Path's (ECMP, search the Internet). Varying source address will do. Multipath could mean: * Same fiber, different router interfaces/headers (imagine the LTE path and fixed access sharing the same fiber at some part of a layer 0 path) . * Different parallel ports of a router, but same router to router hop * Different router hops (combined with different ports). What likely is difficult is to vary the AS path. That might work, if you are multihomed with different networks. For a single domain, you may have to use a proxy or a tunnel to reach a different section of that domain (but I assume that there are multiple peerings to reach the destination AS - that might not be the case). I'm not an onion routing expert. That may help too. You could try different paths with the methods described above and measure delays to figure out different router paths (different ports between the same routers a hard to detect). No matter what you do, and even with path aware networking, you'll not be able to figure out or avoid using the same fiber by different networks. Please note, I'm not on the panrg list and readers there may receive this message delayed. While I like your idea, my time doesn't suffice for an ongoing support. Regards, Ruediger
- [PANRG] draft-rass-panrg-mpath-usecase Ruediger.Geib
- Re: [PANRG] draft-rass-panrg-mpath-usecase Yingzhen Qu
- Re: [PANRG] draft-rass-panrg-mpath-usecase Ruediger.Geib