IETF Logo Mail Archive

Re: [pcp] Comment on REQ-9A of LSN requirements (PCP)

"Reinaldo Penno (repenno)" <repenno@cisco.com> Tue, 21 August 2012 10:16 UTC

Return-Path: <repenno@cisco.com>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D13BA21F869F; Tue, 21 Aug 2012 03:16:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id te13NuTc2qu3; Tue, 21 Aug 2012 03:16:16 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) by ietfa.amsl.com (Postfix) with ESMTP id 08BDF21F86AA; Tue, 21 Aug 2012 03:16:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=repenno@cisco.com; l=4098; q=dns/txt; s=iport; t=1345544176; x=1346753776; h=from:to:cc:subject:date:message-id:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=Is0UXtokxZhdjn1dl1Px5qvMWmQwvRaljdEzNakuJ/4=; b=h9wME8djdoFAyD/HhA45LA3X6IVggWG79SwcrxRMistVjHL61W3c0Sa2 4BEl2nBEWyOHJMnmZ46chOdEwtSWYOpiuWN5Ch/yShOuIIP7IhASzwdRc jgFppbrU/19Y40ftrINnhpApFuq5hds0akojNtUm8xPzY1hYKZOWZ2e+x k=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av8EAANfM1CtJV2Y/2dsb2JhbABFul+BB4IgAQEBBAEBAQ8BWwsMBgEIEQMBAiguCxQJCAIEAQ0FGQIHh2sLmROgPIsIHASGfAOIGo04gRSNGYFmgmGBWQ
X-IronPort-AV: E=Sophos;i="4.77,801,1336348800"; d="scan'208";a="113695432"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by rcdn-iport-7.cisco.com with ESMTP; 21 Aug 2012 10:16:15 +0000
Received: from xhc-rcd-x04.cisco.com (xhc-rcd-x04.cisco.com [173.37.183.78]) by rcdn-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id q7LAGFBL002027 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 21 Aug 2012 10:16:15 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.159]) by xhc-rcd-x04.cisco.com ([173.37.183.78]) with mapi id 14.02.0298.004; Tue, 21 Aug 2012 05:16:15 -0500
From: "Reinaldo Penno (repenno)" <repenno@cisco.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>, "pcp@ietf.org" <pcp@ietf.org>
Thread-Topic: Comment on REQ-9A of LSN requirements (PCP)
Thread-Index: AQHNf0Qj9EHhzDdBA0m9uGbHtDuTEZdjwh9wgAApyoA=
Date: Tue, 21 Aug 2012 10:16:14 +0000
Message-ID: <CC588904.94CF%repenno@cisco.com>
In-Reply-To: <94C682931C08B048B7A8645303FDC9F36E5229895A@PUEXCB1B.nanterre.francetelecom.fr>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.13.0.110805
x-originating-ip: [10.21.74.208]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19128.005
x-tm-as-result: No--52.736900-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <D0B8FC2DC8D09248BC379D0C5E05889B@cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "behave@ietf.org" <behave@ietf.org>
Subject: Re: [pcp] Comment on REQ-9A of LSN requirements (PCP)
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pcp>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Aug 2012 10:16:16 -0000

-----Original Message-----
From: <mohamed.boucadair@orange.com>
Date: Tue, 21 Aug 2012 07:57:03 +0200
To: Reinaldo Penno <repenno@cisco.com>, "pcp@ietf.org" <pcp@ietf.org>
Cc: "behave@ietf.org" <behave@ietf.org>
Subject: RE: Comment on REQ-9A of LSN requirements (PCP)

>Hi Reinaldo,
>
>Stale mapping is a real issue which may consume per-user quota. The
>issue, exacerbated with the use of nonce, is discussed in detail in
>http://tools.ietf.org/html/draft-boucadair-pcp-failure-04 which proposes
>also a mechanism to recover the mapping nonce. Below some excerpts from
>the draft:
>
>Section 2.2 of the failure draft reads:
>
>   If the same port number is used but a distinct mapping nonce is
>   generated, the request will be rejected with a NOT_AUTHORIZED error
>   with the Lifetime of the error indicating duration of that existing
>   mapping.  This issue can be solved if the PCP Client uses GET OpCode
>   (Section 4) to recover the mapping nonce used when instantiating the
>   mapping.


That's a good idea but unless the PCP Client recovers all nonces by trying
to map to all internal
ports the problem would still exist, right? I mean, only those mappings
that resulted in collisions would be recovered.

Alos, wouldn't this opcode allow an attacker to recover opcodes belonging
to others. But anyway, the problem we are facing is due to base spec which
is at WGLC. If something, we need to solve there.




 

>
>Section 2.3 of the failure draft reads:
>
>   If the PCP Client does not store the explicit dynamic mappings and
>   new mapping nonces are assigned, the PCP Server will reject to
>   refresh these mappings.  This issue can be solved if the PCP Client
>   uses GET OpCode (Section 4) to recover the mapping nonces used when
>   instantiating the mappings.
>
>Section 2.6 of the failure draft reads:
>
>   On the reboot of the IWF, if no mapping table is maintained in a
>   permanent storage, "stale" mappings will be maintained by the PCP
>   Server and per-user quota will be consumed.  This is even exacerbated
>   if new mapping nonces are assigned by the IWF.  This issue can be
>   soften by synchronizing the mapping table owing to the invocation of
>   the GET OpCode defined in Section 4.
> 
>
>Cheers,
>Med
>
>>-----Message d'origine-----
>>De : pcp-bounces@ietf.org [mailto:pcp-bounces@ietf.org] De la
>>part de Reinaldo Penno (repenno)
>>Envoyé : mardi 21 août 2012 04:25
>>À : pcp@ietf.org
>>Cc : behave@ietf.org
>>Objet : [pcp] Comment on REQ-9A of LSN requirements (PCP)
>>
>>"A.  It MUST NOT permit the lifetime of a mapping to be
>>               reduced beyond its current life or be set to zero
>>               (deleted)."
>>
>>In the case of renumbering how a CPE that gets a new address can delete
>>stale mappings of the previous user of that IP address? Given
>>some of the
>>requirements, it can not.
>>
>>Before mapping 'nonce' CPE/host could just send a delete all
>>and we would
>>rely on ingress filtering to make sure things are okay. But
>>now with the
>>mapping nonce the new owner of an IP address has no way of deleting the
>>stale mappings because it does not know the nonce.
>>
>>If renumbering happens frequently (as in some networks as short as 30
>>minutes) and there are many PCP MAP mappings from each
>>CPE/host, then soon
>>depending on the Lifetime there will be no more resources on
>>CGN/AFTR/Firewall due to stale mappings
>>
>>A possible solution would be for DHCP Server or other
>>provisioning server
>>to send a PCP message with THIRD_PARTY to delete all MAP mappings. But
>>again, it does not know the nonce. Not to mention that coupling
>>provisioning and PCP becomes a barrier for adoption. Reducing the
>>'lifetime' defeats the purpose of having PCP.
>>
>>Not sure of any solution given all requirements in place.
>>
>>Thanks,
>>
>>Reinaldo
>>
>>
>>
>>
>>
>>
>>_______________________________________________
>>pcp mailing list
>>pcp@ietf.org
>>https://www.ietf.org/mailman/listinfo/pcp

v2.23.0 | Report a Bug | By Email