Re: [tsvwg] Port randomization RFC
Tom Herbert <tom@herbertland.com> Thu, 05 November 2015 04:35 UTC
Return-Path: <tom@herbertland.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92EBD1B390B for <tsvwg@ietfa.amsl.com>; Wed, 4 Nov 2015 20:35:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.278
X-Spam-Level:
X-Spam-Status: No, score=-1.278 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BvUy_d8wecI3 for <tsvwg@ietfa.amsl.com>; Wed, 4 Nov 2015 20:35:23 -0800 (PST)
Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D82F1B38F0 for <tsvwg@ietf.org>; Wed, 4 Nov 2015 20:35:23 -0800 (PST)
Received: by ioc74 with SMTP id 74so12288006ioc.2 for <tsvwg@ietf.org>; Wed, 04 Nov 2015 20:35:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland_com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=ags42xjIZX0fUX5BLrTCINeVvSk307RzhSCT9BYeI/k=; b=V07elT7hj5HjO6v8vyqZDz/r9Ur7WYvuaUsnK/dhssB/3lNidu4huaxNNJ4Q2jClo6 qw7hteqVTF2zdhNNnnWsx1RzA9PUTnCZ+H7nym90G/UO2UZCvArZBjvDMoV/Z6glWugm qaUkFgiCUzR/15FkLR70s/i1YnZEZCoAtF/pkcIWWmJUWPj2+rdQswd4LmfAB6bY5iRa KVK5JFgBAhpS3GLRDgzXTU+HcFs/kLHjfxsysvgZdpfvyfm/Xf8N/jf/I+h4Hjbw/tx+ G2yzTOR34Xm12NJ8L7gawTOOGaOjKL0BkBDKaMT1H3egoD13KH3ux0ovS3wn4ACVmutK tzpQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=ags42xjIZX0fUX5BLrTCINeVvSk307RzhSCT9BYeI/k=; b=LXC+V+RdxCcAnW6wZPzq3wxdrh1dUnIXAvKT/DrWqYfx9zWA+9iBByZSYHhSUc7mzJ fYUeR52Auhscv5No3VjmjhGfiPI9bin7ed3TPdksqkGD9/6vBX0zceAZYvme0Xk7OzGW i/T1D3jtW9xcKZt7I1qb56QbCRsfjWqzV5OaZvsYkYiPQSJVPmYhmhzuAZoEV5ycVWkk uT/sqih8vYuyJGUGaqyzB41XisIMEzvZ0wXxRpXamGzsdN/xPqEiaBIVANJ9bXE7Z8BV gauyI88Zrg3PdUKvdmwVCIzSBX7isBM2Ww/YBlhYr3V3ZEorWkOkg2e7qge7vG2pIGMP QlvQ==
X-Gm-Message-State: ALoCoQmizCwjlYF5sGqI9KjIB1KBRhCUowDWOYtTLf3nSBn7VPWnNTgiXYL1HAP2T54ZajcT/coC
MIME-Version: 1.0
X-Received: by 10.107.156.81 with SMTP id f78mr8072511ioe.107.1446698122737; Wed, 04 Nov 2015 20:35:22 -0800 (PST)
Received: by 10.107.41.83 with HTTP; Wed, 4 Nov 2015 20:35:22 -0800 (PST)
In-Reply-To: <59ACCA94-8DD6-44EA-84B4-0B0D807A0CE3@netapp.com>
References: <59ACCA94-8DD6-44EA-84B4-0B0D807A0CE3@netapp.com>
Date: Thu, 05 Nov 2015 13:35:22 +0900
Message-ID: <CALx6S35PTGZG7HV8RpwYjKnsMC2L0t0rL6iXCowhjQxNOd-CmQ@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
To: "Eggert, Lars" <lars@netapp.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/tsvwg/ISsVyFZVQk5cx1HQah2bzEexTYg>
Cc: "tsvwg@ietf.org" <tsvwg@ietf.org>
Subject: Re: [tsvwg] Port randomization RFC
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Nov 2015 04:35:24 -0000
On Thu, Nov 5, 2015 at 1:16 PM, Eggert, Lars <lars@netapp.com> wrote: > Lucy, as I just said I think you can simply refer to RFC6056. > > https://tools.ietf.org/html/rfc6056 > Lars, GRE/UDP (and all the other UDP encapsulations) are not selecting source port numbers in the usual sense. The source port is chosen to reflect the flow based of the packet being encapsulated, e.g. by a hash over 4-tuple. This is needed to support ECMP mechanisms that work by hashing over the 4-tuple.The salient properties are that this is a stateless selection algorithm and always gives the same answer for a flow going through a device. (also have a uniform distribution, initialized with random hash key, etc.). There is no requirement that two encapsulated flows map to different 4-tuples in the outer encapsulation. Tom
- [tsvwg] Port randomization RFC Eggert, Lars
- Re: [tsvwg] Port randomization RFC Tom Herbert
- Re: [tsvwg] Port randomization RFC Eggert, Lars
- Re: [tsvwg] Port randomization RFC Tom Herbert
- Re: [tsvwg] Port randomization RFC Lucy yong