Re: [sfc] Mirja Kühlewind's Discuss on draft-farrel-sfc-convent-05: (with DISCUSS and COMMENT)
"Adrian Farrel" <adrian@olddog.co.uk> Thu, 08 February 2018 20:47 UTC
Return-Path: <adrian@olddog.co.uk>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9566A1270A3; Thu, 8 Feb 2018 12:47:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9u5cBvCGIheb; Thu, 8 Feb 2018 12:47:04 -0800 (PST)
Received: from mta5.iomartmail.com (mta5.iomartmail.com [62.128.193.155]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DC192126D73; Thu, 8 Feb 2018 12:47:03 -0800 (PST)
Received: from vs3.iomartmail.com (vs3.iomartmail.com [10.12.10.124]) by mta5.iomartmail.com (8.14.4/8.14.4) with ESMTP id w18Kl171012394; Thu, 8 Feb 2018 20:47:01 GMT
Received: from vs3.iomartmail.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 6FCAE2203A; Thu, 8 Feb 2018 20:47:01 +0000 (GMT)
Received: from asmtp3.iomartmail.com (unknown [10.12.10.224]) by vs3.iomartmail.com (Postfix) with ESMTPS id 59EC122032; Thu, 8 Feb 2018 20:47:01 +0000 (GMT)
Received: from 950129200 ([193.57.120.78]) (authenticated bits=0) by asmtp3.iomartmail.com (8.13.8/8.13.8) with ESMTP id w18KkxvG023469 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 8 Feb 2018 20:47:00 GMT
Reply-To: adrian@olddog.co.uk
From: Adrian Farrel <adrian@olddog.co.uk>
To: 'Martin Stiemerling' <mls.ietf@gmail.com>, "'Mirja Kuehlewind (IETF)'" <ietf@kuehlewind.net>
Cc: draft-farrel-sfc-convent@ietf.org, tal.mizrahi.phd@gmail.com, sfc-chairs@ietf.org, iesg@ietf.org, sfc@ietf.org
References: <151759289599.1342.15363054759260139160.idtracker@ietfa.amsl.com> <1bce8bb3c4ac4dcd901f0da1c2950fcc@BLUPR05MB370.namprd05.prod.outlook.com> <002e01d39c53$40045240$c00cf6c0$@olddog.co.uk> <0beb0fae-60f0-1b41-1e8a-97e0113edc8f@gmail.com>
In-Reply-To: <0beb0fae-60f0-1b41-1e8a-97e0113edc8f@gmail.com>
Date: Thu, 08 Feb 2018 20:46:57 -0000
Message-ID: <09c501d3a11d$f7107210$e5315630$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQNaOpuO90dzvAyd/+cEP7WPMdxW0wGNyEWaAwac6u8CXZCooaBWK7LQ
Content-Language: en-gb
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.0.0.1623-8.2.0.1013-23650.003
X-TM-AS-Result: No--6.920-10.0-31-10
X-imss-scan-details: No--6.920-10.0-31-10
X-TMASE-Version: IMSVA-9.0.0.1623-8.2.1013-23650.003
X-TMASE-Result: 10--6.920500-10.000000
X-TMASE-MatchedRID: VPleTT1nwdSnykMun0J1wvHkpkyUphL9XEjKf9fhKafi7ECA5q90uQaT alM8C773g4BSUQlYa3Rw9cd4urViHcwdQieqpnTaHcQQBuf4ZFuC7C2rJeUToUbkmCm1Jslr5NS 4QOzMK7uqajnR0hbY5RPFN5dKhrHeKDJiqR5tgrXhPQQVFw3HFKOI1u80g4PZ2+mPn502VC/zvp rOXn6be+fOVcxjDhcwIC0OoeD/hCbQLWxBF9DMQcRB0bsfrpPIx1FPlNAAmcBNi+PEyQOthn/Gx t1Wi9PUuCuQeIaS8yi1IESy3mdCyZ6oP1a0mRIj
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/55DxmpvQgV2GIHZmDmXgH9Sdc1o>
Subject: Re: [sfc] Mirja Kühlewind's Discuss on draft-farrel-sfc-convent-05: (with DISCUSS and COMMENT)
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Feb 2018 20:47:06 -0000
Thanks Martin and Mirja, > and it is probably explicitly noteworthy that one incoming packet can > trigger one (or even multiple ?) new packet which may increase the > number of packets related to the incoming flow by a factor of 2. Well, it might be possible to create a use case that does that. OAM, for example, might cause a one-for-one copy. But one might as well say that this is a concern with IP because the payload protocol might result in one packet creating multiple replies. But since this document is somewhat open-ended about how the is used, we should certainly flag up the concern with two mitigations: 1. Applications using this mechanism should be careful about this issue 2. Implementations should rate limit to: a. Protect against simple volume attacks (and accidents) b. Protect against amplification I'll send some text SOON. Cheers, Adrian
- [sfc] Mirja Kühlewind's Discuss on draft-farrel-s… Mirja Kühlewind
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Adrian Farrel
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Mirja Kuehlewind (IETF)
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Mirja Kuehlewind (IETF)
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Martin Stiemerling
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Adrian Farrel
- Re: [sfc] Mirja Kühlewind's Discuss on draft-farr… Alia Atlas