IETF Logo Mail Archive

Re: [v6ops] source address failover [PI [ULA draft revision #2 Regarding isolated networks]]

Olivier Bonaventure <Olivier.Bonaventure@uclouvain.be> Tue, 03 June 2014 07:34 UTC

Return-Path: <olivier.bonaventure@uclouvain.be>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A94081A0117 for <v6ops@ietfa.amsl.com>; Tue, 3 Jun 2014 00:34:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 03bfGfigZaQ7 for <v6ops@ietfa.amsl.com>; Tue, 3 Jun 2014 00:34:17 -0700 (PDT)
Received: from smtp6.sgsi.ucl.ac.be (smtp.sgsi.ucl.ac.be [130.104.5.67]) by ietfa.amsl.com (Postfix) with ESMTP id 10B331A0043 for <v6ops@ietf.org>; Tue, 3 Jun 2014 00:34:17 -0700 (PDT)
Received: from mbpobo.dhcp.info.ucl.ac.be (mbpobo.dhcp.info.ucl.ac.be [130.104.228.46]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: obonaventure@smtp6.sgsi.ucl.ac.be) by smtp6.sgsi.ucl.ac.be (Postfix) with ESMTPSA id 7E6A618344E; Tue, 3 Jun 2014 09:34:06 +0200 (CEST)
X-DKIM: Sendmail DKIM Filter v2.8.3 smtp6.sgsi.ucl.ac.be 7E6A618344E
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=uclouvain.be; s=selucl; t=1401780846; bh=lKreGv6wYwvthRCoIdMcg1mQSjaZqrdx1LO7m6z+pEY=; h=Message-ID:Date:From:Reply-To:MIME-Version:To:CC:Subject: References:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=BR2Luqp4pba5C9n5UF6wNQvAFIIRpxfDSz2TVFuziwTDav/ja1Q6zkvur48Xwk70Q Kia7wLytk3mEOvI8LvYOHOihG0K+fcaNHHHDIWJnGt4JlV2EX+oiETreOvUL7fYjpf ak6xnSp5Nmj7eSx5iBwcDQgKLnOSh0Sc9A/eYqM8=
Message-ID: <538D7A71.6070906@uclouvain.be>
Date: Tue, 03 Jun 2014 09:34:09 +0200
From: Olivier Bonaventure <Olivier.Bonaventure@uclouvain.be>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: Gert Doering <gert@space.net>, Brian E Carpenter <brian.e.carpenter@gmail.com>
References: <2A4B72CD-EDF3-4D11-AC39-B65892F9173F@nominum.com> <CAKD1Yr2NH4Kca4EvhjN2XnDbt8F2eS56ipxu3npH9yOh1bmQaA@mail.gmail.com> <F12F173B-9FF2-4EF8-B11E-33AEDA24961F@nominum.com> <CAKD1Yr1cGx7UfxZaEhm7oHA5PLvghVc52oPVkEQF90_7Vm__vw@mail.gmail.com> <1FDC3A7F-15EC-4397-AF3E-10F86EA04228@nominum.com> <538BDA84.6030800@bogus.com> <37D09BEE-FEDF-4514-8CEB-62959A89C3FF@nominum.com> <538BE13C.7050900@bogus.com> <20140602081743.GP46558@Space.Net> <538CE1CF.9030002@gmail.com> <20140602204730.GH46558@Space.Net>
In-Reply-To: <20140602204730.GH46558@Space.Net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: clamav-milter 0.97.7-exp at smtp-6.sipr-dc.ucl.ac.be
X-Virus-Status: Clean
X-Sgsi-Spamcheck: SASL authenticated,
X-SGSI-MailScanner-ID: 7E6A618344E.A36CE
X-SGSI-MailScanner: Found to be clean
X-SGSI-From: olivier.bonaventure@uclouvain.be
X-SGSI-Spam-Status: No
Archived-At: http://mailarchive.ietf.org/arch/msg/v6ops/Cps1AmPQCR1oQZszPvguaCsfE6w
Cc: Philip Homburg <pch-v6ops-3a@u-1.phicoh.com>, V6 Ops List <v6ops@ietf.org>
Subject: Re: [v6ops] source address failover [PI [ULA draft revision #2 Regarding isolated networks]]
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Olivier.Bonaventure@uclouvain.be
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Jun 2014 07:34:20 -0000

Gert, Brian,
>
> On Tue, Jun 03, 2014 at 08:42:55AM +1200, Brian E Carpenter wrote:
>> On 02/06/2014 20:17, Gert Doering wrote:
>> ...
>>> OTOH, proper source address failover on "host" to source address B would
>>> very nicely solve this whole category of connectivity issues - and (by
>>> enforcing halfway symmetric return traffic via ISP B) would actually solve
>>> it *better* than BGP routing, which might need manual fiddling with the
>>> router to remove "ISP C" from the path.
>>
>> I know that shim6 isn't popular around here, but if you actually
>> want to achieve this effect - for any transport protocol, and
>> any application protocol, unmodified - run linshim6 at both ends.

Having worked actively with both shim6 and Multipath TCP and supervised 
their implementation in the Linux kernel, I'm convinced that solving the 
problem in the transport layer is much better than in the network layer. 
Multipath TCP can deal with the case that you discuss and we'd be happy 
to perform tests with the Multipath TCP implementation in the Linux 
kernel (see http://www.multipath-tcp.org )


> I've heard very good results about failover tests with shim6 (much faster
> convergence than BGP).

shim6 would converge faster, but Multipath TCP is even better. It gives 
you many additional features that cannot be provided by shim6 alone. 
Multipath TCP gets continuous feedback about the quality of the Internet 
paths that it uses. It can detect failures and move traffic away from 
congested links. With a network-level solution like shim6 or LISP, one 
hides the changes in the path to the transport protocol. This is not a 
good idea because the congestion control scheme sends packets over paths 
that it cannot control.


> I'm not convinced we particularily *need* it, though, as - as far as I
> understood - shim6 will primarily serve to ensure session survivability,
> while in most scenarios, sessions are so shortlived that "oh, ISP broken,
> use other one" will be a matter of clicking reload in the browser...

There are many short sessions, but most of the traffic is transported in 
very long TCP flows. Furthermore, the deployent of SPDY will increase 
the lifetime of the TCP connections.

> Or will it also take care of selective non-reachability at session setup
> ("something in the ISP A path to Z broken")?

Multipath TCP  could be tuned to do that. There are many use cases where 
Multipath TCP would provide lots of benefits for failover, traffic 
engineering, ... Feel free to bring this operator input to the mptcp 
mailing list



Olivier


-- 
INL, ICTEAM, UCLouvain, Belgium, http://inl.info.ucl.ac.be

v2.23.0 | Report a Bug | By Email