IETF Logo Mail Archive

Re: [v6ops] draft-elkins-6man-ipv6-diagnostic-header (Was: draft minutes ietf 81, 3 meetings...)

Shane Amante <shane@castlepoint.net> Mon, 15 August 2011 14:41 UTC

Return-Path: <shane@castlepoint.net>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7233021F8BDE for <v6ops@ietfa.amsl.com>; Mon, 15 Aug 2011 07:41:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.556
X-Spam-Level:
X-Spam-Status: No, score=-2.556 tagged_above=-999 required=5 tests=[AWL=0.043, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UnW3BJA1KNLr for <v6ops@ietfa.amsl.com>; Mon, 15 Aug 2011 07:41:15 -0700 (PDT)
Received: from dog.tcb.net (dog.tcb.net [64.78.150.133]) by ietfa.amsl.com (Postfix) with ESMTP id D5D8421F8BDC for <v6ops@ietf.org>; Mon, 15 Aug 2011 07:41:15 -0700 (PDT)
Received: by dog.tcb.net (Postfix, from userid 0) id 7620526806D; Mon, 15 Aug 2011 08:41:56 -0600 (MDT)
Received: from host2.tcb.net (64.78.235.218 [64.78.235.218]) (authenticated-user smtp) (TLSv1/SSLv3 AES128-SHA 128/128) by dog.tcb.net with SMTP; Mon, 15 Aug 2011 08:41:56 -0600 (MDT) (envelope-from shane@castlepoint.net)
X-Avenger: version=0.7.8; receiver=dog.tcb.net; client-ip=64.78.235.218; client-port=53357; data-bytes=0
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Shane Amante <shane@castlepoint.net>
In-Reply-To: <1313414039.63643.YahooMailClassic@web2814.biz.mail.ne1.yahoo.com>
Date: Mon, 15 Aug 2011 08:41:55 -0600
Content-Transfer-Encoding: quoted-printable
Message-Id: <F9D2A7E5-1DD4-4B2D-93E7-D872122D3E26@castlepoint.net>
References: <1313414039.63643.YahooMailClassic@web2814.biz.mail.ne1.yahoo.com>
To: nalini.elkins@insidethestack.com
X-Mailer: Apple Mail (2.1084)
Cc: v6ops@ietf.org
Subject: Re: [v6ops] draft-elkins-6man-ipv6-diagnostic-header (Was: draft minutes ietf 81, 3 meetings...)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Aug 2011 14:41:16 -0000

Nalini, All,

On Aug 15, 2011, at 7:13 AM, nalini.elkins@insidethestack.com wrote:
> Well, that is a really good idea that we had explored also.  Now, we ourselves make an intelligent packet analyzer and work with the WireShark folks.  If I look at this selfishly for having an extra selling point for my products, then I can say, 'Yes, we allow you to do this!  Buy my product!'  But, I was trying to be a good citizen and allow all to do this without our products.  Now, if our proposal is not adopted, then we will do the checksum or hash on the packets in our products as I think it is needed for diagnostics. 
> 
> This idea also helps technicians who have taken a trace at one point using multiple facilities - that is, WireShark and IBM mainframe CTrace.  Then, it is useful to have the IPID shown in sequence.
> 
> But, the idea of the hash or checksum leaves aside the case where you have only one trace at one point along the path.  Being able to view the sequence of packet transmission is useful even then.  
> 
> Also, I really feel that down the road here, the 32-bit IPID is going to run into scalability issues.  We are proposing a 64-bit IPID.   The IPID is also not standardized.  Some implementations use the same IPID for all connections, others use a different IPID for each connection. Some increment by 1, some by two.
> 
> Our other future thoughts, and agenda, if you will, is that as networks and traffic grow, more and more diagnostics and troubleshooting will have do be done by computer systems rather than humans.  So, we are looking at what metrics need to be saved for that.  I feel that the IPID is one such.  There are others such as TCP Window Scaling - but that belongs on another email list, so I did not want to bring that up.

Have you taken a look at flow-spec for IPv4:
http://tools.ietf.org/html/rfc5575
... and, flow-spec for IPv6:
http://tools.ietf.org/html/draft-ietf-idr-flow-spec-v6-00
(Both the RFC and I-D are within the IDR WG).

In summary, using flow-spec one can define an ACL that then get distributed across all routers within an ASN, via BGP, that can then be used to count matching packets, log packet header information, etc.  It's up to the operator to decide what ACL to be applied and what 'action' (logging, counting, etc.) to be taken for packets that match a given 'rule'.  

From where I'm sitting, this seems like it might already solve the problem you're having, without having to invent a wholly new IPv6 Destination Header Option.  So, I would like to know if you have taken a look at flow-spec and, if so, why it was ruled out?

-shane

v2.23.0 | Report a Bug | By Email