Re: [RAM] Tunnelling Route Reduction Protocol
"William Herrin" <bill@herrin.us> Wed, 22 August 2007 23:08 UTC
Return-path: <ram-bounces@iab.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1INzJ4-0006Ee-Vb; Wed, 22 Aug 2007 19:08:10 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1INzJ3-0006Dc-6w for ram@iab.org; Wed, 22 Aug 2007 19:08:09 -0400
Received: from nz-out-0506.google.com ([64.233.162.226]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1INzJ2-0006IM-PS for ram@iab.org; Wed, 22 Aug 2007 19:08:09 -0400
Received: by nz-out-0506.google.com with SMTP id i28so201162nzi for <ram@iab.org>; Wed, 22 Aug 2007 16:08:08 -0700 (PDT)
DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=bYJGbhsNMCL+z+4/opkYNj/j0zWy6bD397KOxW6powM8O1MiCZgIucVpeKMRDxolI0X5g3rt2ODly4lB+dUnueVOJmYzV6NK7WgJj4MK9R09z/pSR9ftWbcV1B/KicuisGLwHGVWpsY40hBo2CDkvtZgDMTcG7pQRXJrQEvRUWc=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=UFMRMmZJ5p4XBPxzdMZpkRmCYUzgozvxs1bRqxw6sx9ECkuO6fhVbVbsFQpmxEadJHU5aCFj6v1p7s/OcR9zk/q0OEEbw6WDJD9IUiQembyj1GNghvsQ1QOvl8KSfmyHJpIR460JBzRifKNgFhxcw/AJUYh/nn/FzFJldbmfpDo=
Received: by 10.142.232.20 with SMTP id e20mr147691wfh.1187824087907; Wed, 22 Aug 2007 16:08:07 -0700 (PDT)
Received: by 10.143.159.7 with HTTP; Wed, 22 Aug 2007 16:08:07 -0700 (PDT)
Message-ID: <3c3e3fca0708221608k736ded33n59604b68daba0998@mail.gmail.com>
Date: Wed, 22 Aug 2007 19:08:07 -0400
From: William Herrin <bill@herrin.us>
To: Noel Chiappa <jnc@mercury.lcs.mit.edu>
Subject: Re: [RAM] Tunnelling Route Reduction Protocol
In-Reply-To: <20070822145350.90D7887303@mercury.lcs.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <20070822145350.90D7887303@mercury.lcs.mit.edu>
X-Google-Sender-Auth: 9baec8cfae1e53bf
X-Spam-Score: 0.9 (/)
X-Scan-Signature: 9466e0365fc95844abaf7c3f15a05c7d
Cc: ram@iab.org
X-BeenThere: ram@iab.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Routing and Addressing Mailing List <ram.iab.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/ram>
List-Post: <mailto:ram@iab.org>
List-Help: <mailto:ram-request@iab.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ram>, <mailto:ram-request@iab.org?subject=subscribe>
Errors-To: ram-bounces@iab.org
On 8/22/07, Noel Chiappa <jnc@mercury.lcs.mit.edu> wrote: > > Wouldn't that be 49.95%? Half of all first packets tend to be responses > > such as SYN/ACK that involve no DNS lookup. For a server handling > > thousands of requests per second, adding a lookup means holding > > thousands of TCBs in a wait state for the duration of the lookup. > > True, but there's an obvious path to take in looking for delay improvments, > which is to 'piggyback' the reverse mapping information on the connection > opening. Hi Noel, I considered such an approach. There are several potential problems but the most serious is authentication. I can generally trust a response to my own query that followed the authoritative server chain. Theoretically a man-in-the-middle attack is possible, but operationally it has proven to be a non-issue. I can never trust data encoded in a random received packet to give me valid route to a particular destination without first applying a fairly elaborate authentication scheme. Regards, Bill Herrin -- William D. Herrin herrin@dirtside.com bill@herrin.us 3005 Crane Dr. Web: <http://bill.herrin.us/> Falls Church, VA 22042-3004 _______________________________________________ RAM mailing list RAM@iab.org https://www1.ietf.org/mailman/listinfo/ram
- Re: [RAM] Tunnelling Route Reduction Protocol Noel Chiappa
- Re: [RAM] Tunnelling Route Reduction Protocol William Herrin
- [RAM] Tunnelling Route Reduction Protocol William Herrin
- Re: [RAM] Tunnelling Route Reduction Protocol Robin Whittle
- Re: [RAM] Tunnelling Route Reduction Protocol William Herrin
- Re: [RAM] Tunnelling Route Reduction Protocol Robin Whittle
- Re: [RAM] Tunnelling Route Reduction Protocol William Herrin
- Re: [RAM] Tunnelling Route Reduction Protocol Brian E Carpenter
- Re: [RAM] Tunnelling Route Reduction Protocol Noel Chiappa
- Re: [RAM] Tunnelling Route Reduction Protocol William Herrin
- Re: [RAM] Tunnelling Route Reduction Protocol William Herrin