IETF Logo Mail Archive

Re: [v6ops] draft-vyncke-v6ops-james discussion

"nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com> Tue, 16 August 2022 13:38 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5258DC1522DD for <v6ops@ietfa.amsl.com>; Tue, 16 Aug 2022 06:38:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.903
X-Spam-Level:
X-Spam-Status: No, score=-1.903 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zy6MVAxEdACL for <v6ops@ietfa.amsl.com>; Tue, 16 Aug 2022 06:38:07 -0700 (PDT)
Received: from sonic317-38.consmr.mail.ne1.yahoo.com (sonic317-38.consmr.mail.ne1.yahoo.com [66.163.184.49]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0F336C1524A2 for <v6ops@ietf.org>; Tue, 16 Aug 2022 06:38:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1660657085; bh=8/z/C7lmjLvzeoYGaut6NkDgbqa3FZ7QrbL4LvS+870=; h=Date:From:To:Cc:In-Reply-To:References:Subject:From:Subject:Reply-To; b=ZyQHWx0mgJx1uMP5AdbhYuvF883iU3Fx7YyAlnbjBqlArr/CkQnbo8ML1kFgLJGC9DdgA5E66P/WIx0tm+c+dbnUt5+OyqLt/rLsj5k52cW/OCCP8Z5JhT/FW22ZbpO5roQ0s6+rZ0nOhGsAz7+oejPDnsTqKgoZjKlkzW3yc1KAHuuP0bpqVQ+vEcnD+HCEVF+L2Mm7wNBpBzLMHNtN7fV6Sx4mpQGMoximyWB2bMiLc9B0U+OBgeG4rFiiYQbMvoR7x8R6JED2EnxMgd/NcZtrn+8ryrJCm3q9cTVNdIECNRC70tFKVowLIWvNVPDe1VUxyiwKAG4YdQYxc6foQg==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1660657085; bh=pqPC/iSOLERJA4TqtYemFbgTub8Q1ymlZ3r19SfJ4Wl=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=IW4W6iqTkCHtAEmkLbAv0fYwYR63ulEe9WjegOH8CAl89ZtcYzZl2OcjRWvxEP+4sPoprj+vTS2LbNJ86vyxXuw3C63vo//eDYuKn6Myar0fiwv248/+Z4z+dvJMx5j3JChiIIV2M+tLGq9fuxUJkdk/aIePu20o2Yd2IWI0oQR6QcGOfZ9VG+5MZiEHLHp9v+RHaXSkrVh4qsG3uq6ML2wiOOVzx2f1RvbhMsvRLpDyb5a8bq7TLqAvXEG69AUK/FCeOnOtMkI8rFgwwBcozJNxpXrSj4tIVi09AjkXZjwLcQ6UeuVlnABLnRy1ing0aKNU11WRclzsxS+RR97Uww==
X-YMail-OSG: ADKeNrMVM1kJstn4wvhAcVmvJR_6lzBudVYWBJRRmDe9XT0sWQUqPk.Bc_2fT74 oSrUJGZQ.2Zyrp36uP5oltR1ibAnz7NqoDkjIfhwtaR7lyKRmD4x6ysq.Mn1Yam2zcTJ6oRLbd4e ZuGmxXv_5gW3jIh2zDPUbLqa.FToPi0XHud4ppgbDlT4YCOsYltL3qIQXir2ISiKHvTbUl369Bfi QvRgieqBDwm6cKgCnpKTYxGghmAwMqsDKcC4NEH_KPMu9ewbkhXX1z3NgjkP2dFFJw.GH6eQHzp3 hjCenpduFEmepCJj_.ByFrxXUHXDHVhuKqIQOb3w1TpJqoE17ZmySMovEJO_BIEFeVwdrnn.7Zzd eaihDf.ortlpUy9uIBi6wxEiZV0neOSovyyxxmOMTFczFqepr7_dNFvbVR_C7UxVY8hitHktW1I8 vVX94TfBPu0QWE6ye3q9AQm.l.adTX5JGNBv2eQcLYJEvUUWix7ujUoEgHXgomkv6umudBEFVQ9b WsYJDGKc.BNCMddFxMVZB3nA9IrX9MX2A4WFC8SCVKMleMYqaUqfTQlzAiY6a.GfVyidwpVc.Ee5 T3.pd1i.uBcLwu1i_0Z6iCD4JytMNa02FluFje2foVvvcrloA.bhiXaBUMkgYe_kquuXUyHXtJuY 3D_XuNUpurXf4NQ1LZxVwIGutp0rZtLLjobgEAP0bpfGjuC_sYLgUJqZtEcAN3Y_gmi3HH3XdhhN 5bFyjFh.WXUVTluldPZxbTdVg5I9qmJNH62eZk8RC8zZUTYDmFx2rnt1KL.m5faUye3f3y7jsC3r OY1vCWEbB23vWSMuV3_xcXI5tFiP5IGOEtu5nxCIPSZtLir9MxNcWtKxREGKxOOuhd538CrczZSl RakwIINsXHBzltsqd6eWLETNRJ8BpGAHnMobhvLyOE0HL06lIi5yvcrlimCmjcVn0tBQT0smHjhX 03pofYG6qu1HWqSEFvkCHMbC9xuAZ_HnBtmzammBpbtCeWfQ_OimTp3Xo4iytCqp6FVWXdhBriZp tJEGrgZYgVRDDbCCE.vOC9I_3nKjb.1UV1CPnZO41WH1D3LIxKvJlslsKQnlYBQ8LO7qHZ2voxyw 5LIBjm.gSMxjrTS5QAZdac7SAhuqTAPB8teQU_42Fq7FjcqXVEuXNcLy1HD_YY1F3UPUYL6XuoZi O.QkuKbjNsXQYF0MmV097wePMPM1wkFwkfyxftyvlh9T.iUej8ERP5kYCRcJ5mWNoRXzAmmYHjEL 2YAW314n1ioZ3K6rYY.zdaLGHH9IrTSn6FM3nAu1Sq2o3nZV3NRKtii3Qiq8AUW8WZK1fYilrDmj t6hrAlMLCjCfTDGR2UVfaGqhZNOR7uHySGDo7lmr_f1vGhvHI0cl9Xw4F188r7nnxe5tGEKdoLot MF4Rq6FyFxFp0nYXBCi1jE6bY7NSb9FcYaF4J.wlYtGhrXsVyvLk3W3Xd0MFcOKYa_e3Fl_fAMnZ DSw.Hi9LP9xQc4xQs1Z5VKdGU.SGsgk6DCuXcASRxaEYXNmHCOj.DGnkud0lciNSLxXIoKT5k4WM e0cFj29sYb99nHHESprtMaSRUoQErmKMG3Fs1c0Kv8zbd.wTF1J2mtv4uVLpsswsXneXhSAI6Ndh OhoLm7wagzaOJsABBI.KP5pl7oQcDSr6ZIL_TOb6lWM86EC08G5nEcFZV.CYJJ43KfuqonZB1u0R aSpLXx2VXuo6ymLAatrmdKYUCBP5sl83tQ.UJ.FNhv8zCC1MQ5fjdbHfmKnzppdnn3k4PQRG6ZdK 6HcQfSnw00XIl9Irzht3aIp4WVCCVsIPJaiiIqJOyMrJhthKpciUFundzRDI9Nv3zUtliERDWegO EJsX6cJizLT8SDojfuR4vshKmFDy2roFr1u78ge7FXqTvyNDEBzm55iRMG802Y5UQbhA7lHSSyJ7 7QYiTe0FBllCwZvx44oVqHXQbdf_ImTOYnm6noMsPePgWLuTiGCvRBs0cJZByEf2EhTdlPT6sCui 7tSf9VL4NWAm2BYczlQE2iV5ut84X8HnXV2.wQZ5zFICf8Y9RMyh0DTdl6KaqhjQcRL9qvG2TolX w7jCf4EzGrVwBBylnmzNZXGSV1w0DGtWCObwD1KAUCYcGbTGfyYtDfWwG.sG2NQH5Rql6XNg5aEH NRjBTW0afZmN2HsVXhhb3fDrrbK_hi1B1g0AmNUuD6GubmvdoJcTphSd07o.8GVwvyKJMh7JG0fl HTnsIPY2ZRQ3_7aN7uVJpNe5VYg--
X-Sonic-MF: <nalini.elkins@insidethestack.com>
Received: from sonic.gate.mail.ne1.yahoo.com by sonic317.consmr.mail.ne1.yahoo.com with HTTP; Tue, 16 Aug 2022 13:38:05 +0000
Date: Tue, 16 Aug 2022 13:38:03 +0000
From: "nalini.elkins@insidethestack.com" <nalini.elkins@insidethestack.com>
To: Geoff Huston <gih@apnic.net>, Fred Baker <fredbaker.ietf@gmail.com>, Fernando Gont <fgont@si6networks.com>, Justin Iurman <justin.iurman@uliege.be>
Cc: Barbara Stark <barbarastark@bellsouth.net>, v6ops list <v6ops@ietf.org>, Dhruv Dhody <dhruv.ietf@gmail.com>
Message-ID: <1250651613.2456490.1660657083062@mail.yahoo.com>
In-Reply-To: <71a4557c-ddb8-ea49-37d5-d4c36a34825f@uliege.be>
References: <CABKBHwdZnxLbwqxEizHGrB_w3MnDNDxh+M_maG7nERK0zwqS1A@mail.gmail.com> <9B559433-D06D-4CC5-A81D-659B5454233C@apnic.net> <e8656b24-7010-9210-3a94-c02364071b64@si6networks.com> <816829271.2390043.1660649509671@mail.yahoo.com> <71a4557c-ddb8-ea49-37d5-d4c36a34825f@uliege.be>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_2456487_463612906.1660657083058"
X-Mailer: WebService/1.1.20531 YMailNorrin
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/1bgGeVREI2VO6muya06nkntIqX4>
Subject: Re: [v6ops] draft-vyncke-v6ops-james discussion
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Aug 2022 13:38:11 -0000

Justin,
> Considering what we observed, i.e., all DOs going through with size < 32 bytes, and most of the DOs going through with 32 bytes <= size < 64> bytes, I'd say what you see is expected and not different from other results.
Great!  We are eager to start using PDMv2 (encrypted, of course!) across the internet to get the great performance data that is needed.  
Just FYI, in some of our other testing that is still preliminary, we did see that PDM (the smaller 28 bytes DO) was not getting through to some of the very large sites on the Alexa list.   Our working hypothesis is that this is due to potential blocking at the destination site.  We are working with a CDN provider as we speak to test from their internal network to our servers which will return PDM to them.
For people who may not be as familiar with our work as Justin is, here is a link to the PDMv2 draft which has been adopted by the IPPM WG.
https://datatracker.ietf.org/doc/draft-elkins-ippm-encrypted-pdmv2/

Thanks,

Nalini Elkins
CEO and Founder
Inside Products, Inc.
www.insidethestack.com
(831) 659-8360 

    On Tuesday, August 16, 2022 at 06:25:39 AM PDT, Justin Iurman <justin.iurman@uliege.be> wrote:  
 
 Hi Nalini,

On 8/16/22 13:31, nalini.elkins@insidethestack.com wrote:
> Fernando,
> 
>> IIRC, Nalini's measurements seem to disagree with this. -- buy my take
>> is that they have been performed across a limited set of endpoints for
>> them to be statistically significant.
> 
> Our testing point for FTPs were to:
> 
> 1. PDM-Warsaw
> 2. PDM-Toronto
> 3. PDM-Seattle
> 4. PDM-Mumbai
> 5. PDM-Melbourne
> 6. PDM-Frankfurt
> 
> So 6 cities and 4 continents.
> 
> Europe
> North America
> Asia
> Australia
> 
> Our testing showed Destination Options and Fragment Headers in real 
> application data traffic successfully crossing the core of the Internet.
> 
> In testing from the IETF Hackathon to one of our servers, we showed DoH 
> and Fragment Headers successfully crossing the IETF network.  Others 
> have shown success from South Africa to Warsaw.
> 
> We are working with others to expand our data collection points as well 
> as investigating exactly WHY and WHERE EH's may be blocked.
> 
> I do indeed think this has to do with methodology.    I think everyone 
> is getting correct results based on what they tested.  But, IMHO, the 
> more interesting question is exactly WHY our results are different.

As discussed in Philly, I still think that you see all DOs going through 
due to the size of PMDv2. Following your draft, you only need a 24-byte 
Extension Header for the unencrypted option, while you need a 40-byte 
Extension Header for the encrypted one.

Unencrypted PDMv2 (24 bytes):

+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|  Next header  | Header length |            Padding            |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|  Option Type  | Option Length | Vrsn  |    Reserved Bits    |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|      Random Number          |f|  ScaleDTLR  |  ScaleDTLS  |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|                        Global Pointer                        |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|      PSN This Packet          |    PSN Last Received          |
|-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|  Delta Time Last Received    |    Delta Time Last Sent      |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

Encrypted PDMv2 (40 bytes):

+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|  Next header  | Header length |            Padding            |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|  Option Type  | Option Length | Vrsn  |    Reserved Bits    |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|      Random Number          |f|                              |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+                              :
|                      Encrypted PDM Data                      :
:                          (30 bytes)                          |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

Considering what we observed, i.e., all DOs going through with size < 32 
bytes, and most of the DOs going through with 32 bytes <= size < 64 
bytes, I'd say what you see is expected and not different from other 
results.

Justin

> Thanks,
> 
> Nalini Elkins
> CEO and Founder
> Inside Products, Inc.
> www.insidethestack.com
> (831) 659-8360
> 
> 
> On Monday, August 15, 2022 at 10:58:27 PM PDT, Fernando Gont 
> <fgont@si6networks.com> wrote:
> 
> 
> Hi, Geoff,
> 
> On 16/8/22 00:59, Geoff Huston wrote:
>  >>
>  >> The authors are experimenting with the impact of various kinds of
>  >> extension headers on IPv6 carriage across the dual stack Internet.
>  >> I'm interested in people's views of the experiment and how it might
>  >> best proceed.
>  >
>  > It’s somewhat interesting that there are number of different
>  > measurement approaches that have been discussed recently, with quite
>  > radically different measured outcomes. Maybe we should spend some
>  > time to try and understand why there are such different outcomes from
>  > these measurements.
> 
> My recollection might be failing but... don't most of our measurements
> actually agree?  (i.e., drop rate is too high, and it gets worse as the
> length of the ipv6 header chain increases).
> 
> IIRC, Nalini's measurements seem to disagree with this. -- buy my take
> is that they have been performed across a limited set of endpoints for
> them to be statistically significant.
> 
> Thoughts?
> 
> Thanks,
> -- 
> Fernando Gont
> e-mail: fernando@gont.com.ar <mailto:fernando@gont.com.ar>
> PGP Fingerprint: 7F7F 686D 8AC9 3319 EEAD C1C8 D1D5 4B94 E301 6F01
> 
> -- 
> Fernando Gont
> SI6 Networks
> e-mail: fgont@si6networks.com <mailto:fgont@si6networks.com>
> PGP Fingerprint: F242 FF0E A804 AF81 EB10 2F07 7CA1 321D 663B B494
> 
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org <mailto:v6ops@ietf.org>
> https://www.ietf.org/mailman/listinfo/v6ops 
> <https://www.ietf.org/mailman/listinfo/v6ops>
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email