[v6ops] Please review draft-donley-behave-deterministic-cgn
Fred Baker <fred@cisco.com> Tue, 11 October 2011 13:54 UTC
Return-Path: <fred@cisco.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3330721F8C42 for <v6ops@ietfa.amsl.com>; Tue, 11 Oct 2011 06:54:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.599
X-Spam-Level:
X-Spam-Status: No, score=-106.599 tagged_above=-999 required=5 tests=[AWL=-4.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EbI-aB12wqyo for <v6ops@ietfa.amsl.com>; Tue, 11 Oct 2011 06:54:16 -0700 (PDT)
Received: from ams-iport-3.cisco.com (ams-iport-3.cisco.com [144.254.224.146]) by ietfa.amsl.com (Postfix) with ESMTP id 84B9321F8C22 for <v6ops@ietf.org>; Tue, 11 Oct 2011 06:54:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=fred@cisco.com; l=937; q=dns/txt; s=iport; t=1318341256; x=1319550856; h=from:subject:date:message-id:cc:to:mime-version: content-transfer-encoding; bh=6+R+mHdJnl0KwZfDLXu1xQ6PCeu6+t6Jr30p+PETnfw=; b=aZ/g67UKoZWuU5fbz/MiO0m/p6GFtxvcnbi71osPzdM69oFacvsw39zR LlZLXChRQwLA3reV63sLBs6d7oTeQEPxrquojSL40xH2l0pQ0kEZh1xg/ RvpaHgwSLZ6zPA85C8wT+7BwJ6WnEmDDaEgp67HvmHKdaPo1alHqWaByb Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvwEACZKlE5Io8UR/2dsb2JhbABDqCiBBYFsASctEoE+NYdjmnABnlmGa2EEk3WFKIxG
X-IronPort-AV: E=Sophos;i="4.68,523,1312156800"; d="scan'208";a="784524"
Received: from bgl-core-2.cisco.com ([72.163.197.17]) by ams-iport-3.cisco.com with ESMTP; 11 Oct 2011 13:54:14 +0000
Received: from Freds-Computer.local (rtp-vpn1-440.cisco.com [10.82.225.184]) by bgl-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p9BDrWYD000976; Tue, 11 Oct 2011 13:54:12 GMT
Received: from [127.0.0.1] by Freds-Computer.local (PGP Universal service); Tue, 11 Oct 2011 09:54:13 -0400
X-PGP-Universal: processed; by Freds-Computer.local on Tue, 11 Oct 2011 09:54:13 -0400
From: Fred Baker <fred@cisco.com>
Date: Tue, 11 Oct 2011 09:51:54 -0400
Message-Id: <3C8B8B8F-6B08-43DE-AF8B-5FF37B087A5F@cisco.com>
To: v6ops v6ops WG <v6ops@ietf.org>
Mime-Version: 1.0 (Apple Message framework v1084)
X-Mailer: Apple Mail (2.1084)
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Cc: Behave Chairs <behave-chairs@tools.ietf.org>, draft-donley-behave-deterministic-cgn@tools.ietf.org
Subject: [v6ops] Please review draft-donley-behave-deterministic-cgn
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Oct 2011 13:54:17 -0000
Operators subject to law enforcement subpoenas and using Carrier Grade NAT are having difficulties with the syslog rate for per-connection logging. Chris Donley has proposed a simplification; the provider allocates a deterministic set of source ports to his subscribers, and only needs to log exceptions. Research in the area suggests that usage of source ports is pareto distributed; a typical user has a requirement on the order of 4 port numbers in simultaneous use (median), but port scans and other large volume uses drive the average quite a bit higher. They haven't asked for it, but I suspect the behave chairs would appreciate operational commentary on the draft. http://tools.ietf.org/html/draft-donley-behave-deterministic-cgn "Deterministic Address Mapping to Reduce Logging in Carrier Grade NATs", Chris Donley, Chris Grundemann, Vikas Sarawat, Karthik Sundaresan, 26-Sep-11
- [v6ops] Please review draft-donley-behave-determi… Fred Baker
- Re: [v6ops] Please review draft-donley-behave-det… George, Wes
- Re: [v6ops] Please review draft-donley-behave-det… Chris Grundemann
- Re: [v6ops] Please review draft-donley-behave-det… George, Wes
- Re: [v6ops] Please review draft-donley-behave-det… Dave Thaler
- Re: [v6ops] Please review draft-donley-behave-det… Fred Baker
- Re: [v6ops] Please review draft-donley-behave-det… Joel M. Halpern
- Re: [v6ops] Please review draft-donley-behave-det… Cameron Byrne
- Re: [v6ops] Please review draft-donley-behave-det… Fred Baker
- Re: [v6ops] Please review draft-donley-behave-det… Joel jaeggli
- Re: [v6ops] Please review draft-donley-behave-det… Fred Baker
- Re: [v6ops] Please review draft-donley-behave-det… Cameron Byrne
- Re: [v6ops] Please review draft-donley-behave-det… Joel M. Halpern
- Re: [v6ops] Please review draft-donley-behave-det… Joel jaeggli
- Re: [v6ops] Please review draft-donley-behave-det… Ray Hunter
- Re: [v6ops] Please review draft-donley-behave-det… George, Wes
- Re: [v6ops] Please review draft-donley-behave-det… Cameron Byrne
- Re: [v6ops] Please review draft-donley-behave-det… Cameron Byrne
- Re: [v6ops] Please review draft-donley-behave-det… George, Wes
- Re: [v6ops] Please review draft-donley-behave-det… Chris Donley
- Re: [v6ops] Please review draft-donley-behave-det… Chris Grundemann
- Re: [v6ops] Please review draft-donley-behave-det… Chris Grundemann
- Re: [v6ops] Please review draft-donley-behave-det… Cameron Byrne
- Re: [v6ops] Please review draft-donley-behave-det… Chris Grundemann