IETF Logo Mail Archive

Re: [Softwires] [EXTERNAL] RE: Re: ISP CGN logging inc. Destination ??

"Lee, Yiu" <Yiu_Lee@comcast.com> Mon, 07 May 2018 11:45 UTC

Return-Path: <Yiu_Lee@comcast.com>
X-Original-To: softwires@ietfa.amsl.com
Delivered-To: softwires@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E9F312DA0C; Mon, 7 May 2018 04:45:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H-oj5MBuqmDB; Mon, 7 May 2018 04:45:50 -0700 (PDT)
Received: from pacdcmhout02.cable.comcast.com (pacdcmhout02.cable.comcast.com [68.87.96.15]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 85E1D1200C1; Mon, 7 May 2018 04:45:50 -0700 (PDT)
X-AuditID: 4457600f-7a26a70000006996-d9-5af03c6b5eae
Received: from PACDCEX32.cable.comcast.com (cas-umc02.ndceast.pa.bo.comcast.net [68.87.34.28]) (using TLS with cipher AES256-SHA256 (256/256 bits)) (Client did not present a certificate) by pacdcmhout02.cable.comcast.com (SMTP Gateway) with SMTP id DB.08.27030.B6C30FA5; Mon, 7 May 2018 07:45:47 -0400 (EDT)
Received: from PACDCEX28.cable.comcast.com (24.40.1.151) by PACDCEX32.cable.comcast.com (24.40.1.155) with Microsoft SMTP Server (TLS) id 15.0.1365.1; Mon, 7 May 2018 07:45:48 -0400
Received: from PACDCEX28.cable.comcast.com ([fe80::3aea:a7ff:fe36:86d4]) by PACDCEX28.cable.comcast.com ([fe80::3aea:a7ff:fe36:86d4%19]) with mapi id 15.00.1365.000; Mon, 7 May 2018 07:45:48 -0400
From: "Lee, Yiu" <Yiu_Lee@comcast.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>
CC: "Ramesh.R.Chandra@ril.com" <Ramesh.R.Chandra@ril.com>, "softwires@ietf.org" <softwires@ietf.org>, "int-area@ietf.org" <int-area@ietf.org>, "ianfarrer@gmx.com" <ianfarrer@gmx.com>
Thread-Topic: [EXTERNAL] RE: Re: [Softwires] ISP CGN logging inc. Destination ??
Thread-Index: AQHT5fZ3nN0PPZJwXEG8c8qVzEtsSKQkJfXt
Date: Mon, 07 May 2018 11:45:48 +0000
Message-ID: <9DD3FC63-687D-4097-B0A8-0B5243A65B43@Cable.Comcast.com>
References: <56C7D96E-182F-4584-B190-DCD17957C01F@cisco.com> <95081DF2-FBE4-4B28-802E-13988B6DDF8D@gmx.com> <8433F1DD-3988-4DF6-B14D-3873B0F36CCB@cisco.com> <DE94262F-6C94-492A-B9F0-629160527B37@gmx.com>, <ef2bbe951814477eae919a4abf9ae182@SHYDEXMBX08.in.ril.com> <77D9057C-0310-4D03-BCA9-DBFC17CE9055@Cable.Comcast.com>, <787AE7BB302AE849A7480A190F8B93302DF15571@OPEXCLILMA3.corporate.adroot.infra.ftgroup>
In-Reply-To: <787AE7BB302AE849A7480A190F8B93302DF15571@OPEXCLILMA3.corporate.adroot.infra.ftgroup>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Forward
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrKIsWRmVeSWpSXmKPExsXiEq4ko5tt8yHK4MA8SYtNp6exW9yYdZPF 4vDbp+wWu2fuYLY4vGwrkwOrx937C5k8liz5yeTR8uwkm8eX/n/MASxRXDYpqTmZZalF+nYJ XBm3rx9nK3igW3HryRv2BsYTOl2MnBwSAiYS+/7uZeli5OIQEtjFJNFxogvK2ckosWjbdGYI 5wSjxIG1e5lBWtgE1CRWbzjJBmKLCDhKzHg1mw2kiFlgF6PE0T1vGEESwgLBEs/vXGOEKAqR +P7lMzuEbSSx9ftRMJtFQEXiwP12MJtXwEVi6e/9jBDb5jNLLG3qA2vmFEiSaPv5E6yIUUBM 4vupNUwgNrOAuMStJ/OZIJ4QkFiy5zwzhC0q8fLxP1YI20Bi69J9QP9wANVrSqzfpQ/Rqigx pfsh1F5BiZMzn7BAlItLHD6yg3UCo/gsJBtmIXTPQtI9C0n3AkaWVYzcZhZ6FuZ6lmZ6hqab GMGRl8C/g/HodI9DjAIcjEo8vNMVP0QJsSaWFVfmHmKU4GBWEuFlUwYK8aYkVlalFuXHF5Xm pBYfYpTmYFES5/297E2UkEB6YklqdmpqQWoRTJaJg1OqgXHeHK9nOxr6xJTvrphe+uRtYX3J Cq2dPH7Rb6Tv2HD1+rZ69icvvu/imf5jwbktN3hVd9+LL7OdtvI5g7KUWMvWae++KFVGS/sE lfWIHE5zZZ/HuvqKPFux5ZXPb64KGH9IKoiv/i4bsDXo1pxjSfdl7CKshV6c2n4hK+HtMV6m pytEttRbrFZiKc5INNRiLipOBAAHt3hruAIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/softwires/8PR1_Si4_ZC97nLqsX-DAdzHolk>
Subject: Re: [Softwires] [EXTERNAL] RE: Re: ISP CGN logging inc. Destination ??
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/softwires/>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 May 2018 11:45:57 -0000

I expect Ramesh has already had a way to log dst IP and port if this is required by regulators.

Sent from mobile device, pardon possible typo.

> On May 7, 2018, at 7:28 AM, "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com> wrote:
> 
> Hi Yiu, 
> 
> This may help but this is not sufficient if supplying "Destination IP + Port (public)" is required. 
> 
> Technically the BR may extract and record the destination IPv4 address/port and source IPv6 prefix when doing its stateless decapsulation/translation, but this is not a "native" feature of a BR/lwAFTR. 
> 
> Cheers,
> Med
> 
>> -----Message d'origine-----
>> De : Int-area [mailto:int-area-bounces@ietf.org] De la part de Lee, Yiu
>> Envoyé : lundi 7 mai 2018 13:16
>> À : Ramesh.R.Chandra@ril.com
>> Cc : softwires@ietf.org; int-area@ietf.org; ianfarrer@gmx.com
>> Objet : Re: [Int-area] [EXTERNAL] Re: [Softwires] ISP CGN logging inc.
>> Destination ??
>> 
>> Just a quick thought. Will the dhcpv6 logs help?
>> 
>> Sent from mobile device, pardon possible typo.
>> 
>>> On May 7, 2018, at 7:06 AM, "Ramesh.R.Chandra@ril.com"
>> <Ramesh.R.Chandra@ril.com> wrote:
>>> 
>>> Dear Ian,  thanks for clarifications.
>>> 
>>> Regulator in India mandated to preserve the following details for each
>> flow.
>>> 1.    Source IP + Port (private for end subscriber device)
>>> 2.    Destination IP + Port (public)
>>> 3.    Translated IP + port (public)
>>> 4.    Date and time
>>> 
>>> There is no brainer and all this is available in NAT44. MAP being
>> stateless, no such data available from MAP-BR. We are exploring alternate
>> option on BR to create this data in MAP.
>>> 
>>> Pls advise.
>>> 
>>> Regds
>>> ramesh
>>> -----Original Message-----
>>> From: ianfarrer@gmx.com [mailto:ianfarrer@gmx.com]
>>> Sent: 04 May 2018 17:28
>>> To: Rajiv Asati (rajiva)
>>> Cc: Softwires-wg list; int-area@ietf.org; Ramesh R Chandra
>>> Subject: Re: [Softwires] ISP CGN logging inc. Destination ??
>>> 
>>> Hi Rajiv,
>>> 
>>> Please see inline.
>>> 
>>> Cheers,
>>> Ian
>>> 
>>>> On 4. May 2018, at 12:01, Rajiv Asati (rajiva) <rajiva@cisco.com> wrote:
>>>> 
>>>> Ian,
>>>> 
>>>> Thanks for sharing the URL. While not explicit, “all metadata” would
>> include both source and destination A+P. Is that the right interpretation?
>>> 
>>> [if - My understanding is that per-flow logging is necessary to meet the
>> requirement, but I’m not familiar enough with the legislation to know what
>> exactly needs to be stored.]
>>> 
>>>> 
>>>> If an ISP were to use “binding” mode on the BR, then without using net
>> flow/IPFIX, How could the compliance be achieved ?
>>> 
>>> [if - If there’s address sharing and the requirement is to provide an exact
>> match to a data retention request (in some countries, a list of e.g. 16 users
>> is OK), then AFAICS, you have to use IPFIX.
>>> 
>>> The implementation problem for this is compounded by the lack of state
>> table on most BR implementations (e.g. how do you know when a UDP session has
>> completed without state for that flow?)]
>>> 
>>> 
>>> "Confidentiality Warning: This message and any attachments are intended
>> only for the use of the intended recipient(s).
>>> are confidential and may be privileged. If you are not the intended
>> recipient. you are hereby notified that any
>>> review. re-transmission. conversion to hard copy. copying. circulation or
>> other use of this message and any attachments is
>>> strictly prohibited. If you are not the intended recipient. please notify
>> the sender immediately by return email.
>>> and delete this message and any attachments from your system.
>>> 
>>> Virus Warning: Although the company has taken reasonable precautions to
>> ensure no viruses are present in this email.
>>> The company cannot accept responsibility for any loss or damage arising
>> from the use of this email or attachment."
>>> _______________________________________________
>>> Softwires mailing list
>>> Softwires@ietf.org
>>> https://www.ietf.org/mailman/listinfo/softwires
>> _______________________________________________
>> Int-area mailing list
>> Int-area@ietf.org
>> https://www.ietf.org/mailman/listinfo/int-area

v2.29.0 | Report a Bug | By Email | System Status