IETF Logo Mail Archive

Re: [tcpm] [v6ops] Flow Label Load Balancing

Tom Herbert <tom@herbertland.com> Sun, 29 November 2020 16:26 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B69043A0990 for <tcpm@ietfa.amsl.com>; Sun, 29 Nov 2020 08:26:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5_Q6Tl8SKekl for <tcpm@ietfa.amsl.com>; Sun, 29 Nov 2020 08:26:13 -0800 (PST)
Received: from mail-ed1-x535.google.com (mail-ed1-x535.google.com [IPv6:2a00:1450:4864:20::535]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 007243A098E for <tcpm@ietf.org>; Sun, 29 Nov 2020 08:26:12 -0800 (PST)
Received: by mail-ed1-x535.google.com with SMTP id v22so11870968edt.9 for <tcpm@ietf.org>; Sun, 29 Nov 2020 08:26:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=4nl8RWUyjAga5aJnJqFHpeZR5YaJoGcPySw6TFLDQYM=; b=RhHJn99s6A/08Hcn9dK+jJifriDjIwn5CxKmNsgO3AWBlhdi5+55F21nWyvHrhfzVo lK8LbKJ3y4Af8zMf1/53SM4/Zov+FzDQrdGyY1d/LyhYrjSHLIpCt1I5O6kcGST+kyxF YtxWdhDV+uWRDymRt+d2fwggj3n4ZnlefLPo7nn7r1I58aZAhUv6du7c2jWj+EdJEdsM BMmPKT+veYl0YgAQcpG1svYesFGz53vGzy8Yk0ZDAOt1RIMWuLMcv1WS5yNmWiY4kwZ7 m9M4F94RymBZyz3SF1Y9tU7ZryFtzfeQ7pRYTK0tkxAI/fGC2G6w5vyTGpyqcJ3U0qkL 0E1g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=4nl8RWUyjAga5aJnJqFHpeZR5YaJoGcPySw6TFLDQYM=; b=Rs7ZeBGt5XNYzP9y30I+RwGzWEV9pGUDd6ZJ761WikCJdEHvGOteoezCbkTaEMy2Be Pk7dwyfRbKORNDWHe4pgUErJybcG6chKIRbj/8r1E40FP77YWTOyM/qY1qz/Kaci8LQG kP9MJHsuWsP9llm4+Smwsb2f4lgbso5F9Jw+1267XrQ2rH+mOd0oGA0p9KCgur9qcAsx 5vq8yRpG5dT9pLG9P3v9YkOd2Ik+rIas3sOyXlcRtV9qd5LVnaT2qFfdE/gwmHOUs6O+ H75l5CdPXlLwUrWoAbczJG+9hnyZ0ABhmng4wzWq5Hvx+vHj4hQWF0qod0q7cDnEu7z3 GtkA==
X-Gm-Message-State: AOAM532HExKzvKuzQNHUpDNbyViRVzVl8uYnvXK63kzWfPXUyeSZDqta UfHdAdNY3QGjEyZlw4VCNkC7gITI1bmkm2a7a8TdxQ==
X-Google-Smtp-Source: ABdhPJx9ImKGbB+SwsnYzYtsUAtryedC9qBssWQQMBqqzsQ92sbx0l9c//dzyrGoO1RK3B4tTNnHfEirb+P78EsJFVU=
X-Received: by 2002:aa7:dd52:: with SMTP id o18mr2084264edw.177.1606667171298; Sun, 29 Nov 2020 08:26:11 -0800 (PST)
MIME-Version: 1.0
References: <CAEGSd=DY8t8Skor+b6LSopzecoUUzUZhti9s0kdooLZGxPEt+w@mail.gmail.com> <d29042a7-742b-a445-cf60-2773e5515ae5@gont.com.ar> <CALx6S37+1duoNGR3dZWesHsZvx15kX9wCWufPMh=esvMaSMF_g@mail.gmail.com> <63e7aad3-7094-7492-dbe4-3eefb5236de3@gont.com.ar> <CALx6S37t4jump6S-R5_xdo5DF+RnHtT4rU5-RuiC-2GQ0PXxkQ@mail.gmail.com> <96b6d04b-e5bb-ba79-0281-e9599109be95@gont.com.ar> <CALx6S34uCrA1QdvLV8fpRKaJGLWMgtCmBCnrsBjU3TS+kXUs3Q@mail.gmail.com> <CAO42Z2xn_+7EVpjGyEU3aAdBmt1h=a4MPXFjjoTi_JeM2w9pkg@mail.gmail.com> <f66cbccd-55ed-375b-743b-7fc6c48a50c2@gont.com.ar> <CAO42Z2xqU4gs9iP=u_0Z16Qk+U24_YH0h5vTmJRJ5XZXZ0nweQ@mail.gmail.com> <0d38980a-f1c5-fac5-a9b1-0711d61353d1@gont.com.ar> <CAEGSd=A_e-db8m2VN+2wEuXj9e+GTq7brYfY_fwW7tysUr19Ng@mail.gmail.com> <CALx6S34xQF-PHQRqom_O8=amoRFmVrzHL-qh8765mtr1XnF2Wg@mail.gmail.com> <d59e1785-672d-8cc7-f844-51c64a440a57@gont.com.ar>
In-Reply-To: <d59e1785-672d-8cc7-f844-51c64a440a57@gont.com.ar>
From: Tom Herbert <tom@herbertland.com>
Date: Sun, 29 Nov 2020 09:25:59 -0700
Message-ID: <CALx6S373yLJwHigv4Yo-xdtRkZ9YsB0J9cwXqy0BWpwXSiHCPg@mail.gmail.com>
To: Fernando Gont <fernando@gont.com.ar>
Cc: Alexander Azimov <a.e.azimov@gmail.com>, Mark Smith <markzzzsmith@gmail.com>, IPv6 Operations <v6ops@ietf.org>, tcpm <tcpm@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/T1Ik_oyb9HciajMQVC0-PUsDC6k>
Subject: Re: [tcpm] [v6ops] Flow Label Load Balancing
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Nov 2020 16:26:17 -0000

> Modulo the comments I've already made, I'm afraid we might be in the
> path of making the FL unusable...
>

Fernanda,

I really don't understand how this makes the flow label "unusable", to
the contrary this is a useful case with good effect and justifies the
work in the host to set the field. In any case, it would be great if
you could provide the draft with the normative requirements that would
make the flow label "usable".

Please include requirements for both hosts and network nodes. If there
is going to the be a requirement that hosts MUST make a 1:1 mapping to
a transport connection and the flow label MUST be consistent for the
life of connection, then I would expect there to also be a requirement
that the flow label MUST be immutable by all devices in the path-- in
particular the requirement of RFC6437 would need to be updated: "A
forwarding node MUST either leave a non-zero flow label value
unchanged or change it only for compelling operational security
reasons..."-- if hosts are not allowed to change a field they are
primarily responsible for setting, then the network should not be
allowed to modify it either.

Additionally, if the underlying design principle is that flow
identification in a packet is immutable and persistent, then I'd like
to see the discussion on how that rectifies with NAT where
intermediate nodes routinely change IP addresses and transport port
numbers without the host endpoints' knowledge-- unlike the flow label,
port numbers are formally part of the transport connection
identification, so changing them in flight is far more invasive and
potentially harmful than changing the flow label (we've seen far more
problems caused by NAT than flow label due to NAT state evictions,
packets of a flow being re-routed to not hit the same NAT device,
etc.).

Tom


> Thanks,
> --
> Fernando Gont
> e-mail: fernando@gont.com.ar || fgont@si6networks.com
> PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
>
>
>

v2.23.0 | Report a Bug | By Email