Re: [Pppext] new PPP-related individual submission
<mohamed.boucadair@orange-ftgroup.com> Tue, 14 September 2010 05:26 UTC
Return-Path: <mohamed.boucadair@orange-ftgroup.com>
X-Original-To: pppext@core3.amsl.com
Delivered-To: pppext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F1BD33A68D7 for <pppext@core3.amsl.com>; Mon, 13 Sep 2010 22:26:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.072
X-Spam-Level:
X-Spam-Status: No, score=-2.072 tagged_above=-999 required=5 tests=[AWL=1.176, BAYES_00=-2.599, HELO_EQ_FR=0.35, RCVD_IN_DNSWL_LOW=-1, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4BPkCW7QyBYr for <pppext@core3.amsl.com>; Mon, 13 Sep 2010 22:26:00 -0700 (PDT)
Received: from relais-inet.francetelecom.com (relais-ias92.francetelecom.com [193.251.215.92]) by core3.amsl.com (Postfix) with ESMTP id 2BF223A6A6B for <pppext@ietf.org>; Mon, 13 Sep 2010 22:25:25 -0700 (PDT)
Received: from omfedm07.si.francetelecom.fr (unknown [xx.xx.xx.3]) by omfedm13.si.francetelecom.fr (ESMTP service) with ESMTP id 844FB3247BE; Tue, 14 Sep 2010 07:25:50 +0200 (CEST)
Received: from PUEXCH41.nanterre.francetelecom.fr (unknown [10.101.44.30]) by omfedm07.si.francetelecom.fr (ESMTP service) with ESMTP id 5D2A74C027; Tue, 14 Sep 2010 07:25:50 +0200 (CEST)
Received: from PUEXCB1B.nanterre.francetelecom.fr ([10.101.44.13]) by PUEXCH41.nanterre.francetelecom.fr ([10.101.44.30]) with mapi; Tue, 14 Sep 2010 07:25:50 +0200
From: mohamed.boucadair@orange-ftgroup.com
To: James Carlson <carlsonj@workingcode.com>
Date: Tue, 14 Sep 2010 07:25:48 +0200
Thread-Topic: [Pppext] new PPP-related individual submission
Thread-Index: ActTqIH/ERveVjWYSxOVG9oVjpGibAAIzNUQ
Message-ID: <28215_1284441950_4C8F075E_28215_7077_1_94C682931C08B048B7A8645303FDC9F31C50646914@PUEXCB1B.nanterre.francetelecom.fr>
References: <4C87A4AC.10404@workingcode.com> <4C87D7D6.3000606@workingcode.com> <13692_1284361742_4C8DCE0E_13692_114058_1_94C682931C08B048B7A8645303FDC9F31C50646461@PUEXCB1B.nanterre.francetelecom.fr> <4C8E24C7.2010609@workingcode.com> <30488_1284385338_4C8E2A3A_30488_106487_1_94C682931C08B048B7A8645303FDC9F31C50646773@PUEXCB1B.nanterre.francetelecom.fr> <4C8EC999.8030108@workingcode.com>
In-Reply-To: <4C8EC999.8030108@workingcode.com>
Accept-Language: fr-FR
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: fr-FR
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-PMX-Version: 5.5.9.395186, Antispam-Engine: 2.7.2.376379, Antispam-Data: 2010.9.14.315
Cc: "pppext@ietf.org" <pppext@ietf.org>, "Gabor.Bajko@nokia.com" <Gabor.Bajko@nokia.com>, VILLEFRANQUE Alain RD-BIZZ <alain.villefranque@orange-ftgroup.com>, GRIMAULT Jean-Luc RD-MAPS <jeanluc.grimault@orange-ftgroup.com>, LEVIS Pierre RD-BIZZ <pierre.levis@orange-ftgroup.com>, "teemu.savolainen@nokia.com" <teemu.savolainen@nokia.com>
Subject: Re: [Pppext] new PPP-related individual submission
X-BeenThere: pppext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: PPP Extensions <pppext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/pppext>, <mailto:pppext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pppext>
List-Post: <mailto:pppext@ietf.org>
List-Help: <mailto:pppext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pppext>, <mailto:pppext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Sep 2010 05:26:26 -0000
Dear James; Please see inline. Cheers, Med -----Message d'origine----- De : James Carlson [mailto:carlsonj@workingcode.com] Envoyé : mardi 14 septembre 2010 03:02 À : BOUCADAIR Mohamed NCPI/NAD/TIP Cc : pppext@ietf.org; Gabor.Bajko@nokia.com; teemu.savolainen@nokia.com; LEVIS Pierre RD-BIZZ; GRIMAULT Jean-Luc RD-MAPS; VILLEFRANQUE Alain RD-BIZZ Objet : Re: [Pppext] new PPP-related individual submission On 09/13/10 09:41, mohamed.boucadair@orange-ftgroup.com wrote: > To make the question more detailed in the context of this draft: I do > not understand how the IP stack in CPE-1 could have a packet with > destination address 193.51.145.206 and then decide that this packet > belongs to CPE-2 (and thus needs to be forwarded to PRR) without > modifications to the IP stack that cause inspection of the transport > layer headers. > > Med: What about the configuration details provided in: http://tools.ietf.org/html/draft-boucadair-port-range-01#appendix-B, especially http://tools.ietf.org/html/draft-boucadair-port-range-01#appendix-B.2? Does this answer your concern? FWIW, another implementation candidate can be found here: http://software.merit.edu/pe-arp/. Yes, I saw that. I don't see how this accomplishes what's needed or addresses the question I had. Med: The configuration provided in the document is only an example of how the system can be implemented using private IP addresses as a routing identifier (see the architecture draft for more details about this point). Indeed, this routing identifier is required for the delivery of incoming packets destined to a shared IP address. The port range router is responsible for this task. All incoming traffic destined to a given shared address will be received by a PRR (because a route has been announced). The IPCP options draft does not go into these details because it is out of its scope. Architectural considerations are covered in other documents. Furthermore, we have tested which assess the validity of the concept. These tested are both IPv4 Port range and IPv6-based port range (i.e., IPv6 is used to encapsulate IPv4 traffic) Since it seems we're not getting anywhere on this, and it's not directly related to the draft (just whether this can be deployed ... hopefully somewhere far from me), I guess I'll give up now. > I suspect that one of the underlying assumptions here is that > peer-to-peer communication is not necessarily possible. T1 cannot send > packets that go straight to T2. > > Med: P2P communications are possible but need to cross the port range router. Please refer to the text report I mentioned in my earlier message. That's exactly the question -- how they're forced to cross the "PRR" for all traffic with just a postroute hook. I was sort of hoping for an architectural description of the solution rather than a list of products used. Med: The traffic will be forced to cross a PRR because of routing configuration. This is documented in the architecture documents. As I said above, I'll just stipulate that some system could be hacked up to do this. > That's an improvement, but not what I was suggesting. To make it more > direct: I am unconvinced that transport-layer port range restrictions > are really the sort of issue that should be negotiated down at the > datalink (PPP) layer. There ought to be a more common way to do this. > > Med: Do you have any solution candidate in mind? Yes. Define a DHCP option (as you've already done) that defines port ranges for NATs to use. Then use that. Med: But, we don't have NAT in the port range solution! The basic idea of what we are doing is to avoid introducing a level of NAT in the server provider domain. > I don't understand that answer. PPP and DHCP are in no way mutually > exclusive protocols. > > Med: What I meant is: what SPs which do not have DHCP in their networks have to do in order to support port-range solution? If they really have no DHCP at all, then they have a burden of writing a 200 line UDP application that reads DHCP INFORM messages and sends out replies. In fact, that tiny application is no more complex than the proposed changes to PPP. It's exactly the same information -- i.e., given a particular link to a remote site, which ports should it use? -- and it does the same work. If they do have DHCP already, then they should not need to do anything more than upgrading the configuration to include this new option. At most, they might need a DHCP relay in the PPP server. This buys them the new "port range feature" along with all the rest of the very useful options (such as DNS server addresses, time servers, and the like) that DHCP already offers. And it's still stateless. DHCP INFORM requires no per-peer state. (A much better idea still, I believe, would be to go through the normal process of creating a new IETF working group to work out the right architecture for a feature like "port range restriction" and have that group work out the details in collaboration with the existing groups. Unless I'm missing something important here, it looks like this is being done as a flurry of individual submissions. That's sometimes ok for minor experiments and self-contained extensions, but for fundamental architectural issues that cross dozens of different protocols, I'm not sure I agree that it's the most effective approach.) I'm not seeing a good rationale for modifying PPP. Med: We are not modifying PPP; We are just defining new options to convey an information required for the provisioning of the IP connectivity when IPv4 addresses are rare resources (now). > Allowing IPCP to go to Opened state with negotiated parameters that are > known to be unusable is very much against the intent of PPP negotiation. > I don't agree that this is a good solution to the problem. > > Med: I personally don't have any preference among all these options including the one we described in the draft. I will add a note to the draft to list the options. If there are others on the list with opinions, I'd like to hear from them. But I don't think it's wise to include Configure-Ack 0.0.0.0 as one of the possible solutions to this problem. It's misleading at best, and very likely to cause interoperability problems and very strange failure modes. Configure-Ack means "I agree to your proposal." It doesn't ever mean "I no longer care what you think and I'm going to start ignoring your packets." I can't see a good excuse for it. > Med: Sorry, I cannot control this. This is added automatically. Might I suggest a gmail or other free account? It really does come down to an issue of legal liability. Including that note on your messages virtually guarantees that some folks will refuse to engage in any constructive discussion on this thread -- even if they agree with you and wish to support the proposal -- and greatly muddies the waters if Nokia ever does decide to pursue IPR. -- James Carlson 42.703N 71.076W <carlsonj@workingcode.com> ********************************* This message and any attachments (the "message") are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited. Messages are susceptible to alteration. France Telecom Group shall not be liable for the message if altered, changed or falsified. If you are not the intended addressee of this message, please cancel it immediately and inform the sender. ********************************
- [Pppext] new PPP-related individual submission James Carlson
- Re: [Pppext] new PPP-related individual submission James Carlson
- Re: [Pppext] new PPP-related individual submission mohamed.boucadair
- Re: [Pppext] new PPP-related individual submission James Carlson
- Re: [Pppext] new PPP-related individual submission mohamed.boucadair
- Re: [Pppext] new PPP-related individual submission James Carlson
- Re: [Pppext] new PPP-related individual submission Vernon Schryver
- Re: [Pppext] new PPP-related individual submission mohamed.boucadair
- Re: [Pppext] new PPP-related individual submission James Carlson