IETF Logo Mail Archive

Re: [v6ops] draft-elkins-6man-ipv6-diagnostic-header (Was: draft minutes ietf 81, 3 meetings...)

nalini.elkins@insidethestack.com Mon, 15 August 2011 14:56 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C53AB21F8C1F for <v6ops@ietfa.amsl.com>; Mon, 15 Aug 2011 07:56:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.265
X-Spam-Level:
X-Spam-Status: No, score=-1.265 tagged_above=-999 required=5 tests=[AWL=-0.155, BAYES_05=-1.11]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h7w38f7A9y-b for <v6ops@ietfa.amsl.com>; Mon, 15 Aug 2011 07:56:43 -0700 (PDT)
Received: from nm14.access.bullet.mail.sp2.yahoo.com (nm14.access.bullet.mail.sp2.yahoo.com [98.139.44.141]) by ietfa.amsl.com (Postfix) with SMTP id 5BEA421F8C1D for <v6ops@ietf.org>; Mon, 15 Aug 2011 07:56:43 -0700 (PDT)
Received: from [98.139.44.99] by nm14.access.bullet.mail.sp2.yahoo.com with NNFMP; 15 Aug 2011 14:57:26 -0000
Received: from [98.139.44.89] by tm4.access.bullet.mail.sp2.yahoo.com with NNFMP; 15 Aug 2011 14:57:26 -0000
Received: from [127.0.0.1] by omp1026.access.mail.sp2.yahoo.com with NNFMP; 15 Aug 2011 14:57:26 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 831199.94672.bm@omp1026.access.mail.sp2.yahoo.com
Received: (qmail 27613 invoked by uid 60001); 15 Aug 2011 14:57:26 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1313420246; bh=EH9/JInKoOYe0x+UF0erwcPT+NEJg7jZwuwcnNk5zOc=; h=X-YMail-OSG:Received:X-Mailer:Message-ID:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=V5VR9Serd2VNAAn2QFfQTLNeDg9j2e2hqOxSpsPx/Ta8rTQw89PvbpbODulJX/g6ZPWcEA0EHf8BEADc6LVT0J42Mqfgd8iRYqpERSQuKVpWROe189rq1udYCktsRlhSmqGStFwf+0jRZdGj58h4Ly0fxmnJ/Zrb6Rc85n4kIuI=
X-YMail-OSG: sJYOdJYVM1lzKpFZBoeL2cZwPNc4ufMXrEEg.8n_LYVlnUn TL5bnwJIQxF98PIu6b1Qpmgl1JQRi.n4y3SLu2B3kcIe6tpqNjwp00EXqO9O zy33jElaBDLrIUhlQN2F4U4Ema92ZDqrYAvMzSyX09FO3_KDMxg0OaCtTBYn ksFUap2kAKbZU_CWMKYwiIRcKMct.ElrfLmju_i6K6uQ6XInshwfOrqRXnJu XybFURgqaU9tA8IHTqgDuBWILdtDASbSZmJIIaOnVQxQG_BeRDxD.tg29YCD aYc_MPqv7XmBUvgORMy115o8VWb8Jf.u.7IF6qO58phxqoO6vdn25oTZS4ia dSQo9cwwVTa6C70gFvioIAUCG4Rggg7G7nZd8__bgueZFXNdli1Q7txZ9lXo moU0wOza6on_6pS2Ei.O5BFno6XBKdMWDEAqONYFZ55Psmr39CUrSDWB9vQH LKn8zf4asVoI8_SgH8hQZPZaWYEtXMFdC.HTwKMukGwvIjVq01uvtz_3z_lx y.DYKhMZstnzAgNlDNg--
Received: from [24.6.68.48] by web2818.biz.mail.ne1.yahoo.com via HTTP; Mon, 15 Aug 2011 07:57:25 PDT
X-Mailer: YahooMailClassic/14.0.4 YahooMailWebService/0.8.113.313619
Message-ID: <1313420245.20792.YahooMailClassic@web2818.biz.mail.ne1.yahoo.com>
Date: Mon, 15 Aug 2011 07:57:25 -0700
From: nalini.elkins@insidethestack.com
To: Shane Amante <shane@castlepoint.net>
In-Reply-To: <F9D2A7E5-1DD4-4B2D-93E7-D872122D3E26@castlepoint.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: v6ops@ietf.org
Subject: Re: [v6ops] draft-elkins-6man-ipv6-diagnostic-header (Was: draft minutes ietf 81, 3 meetings...)
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: nalini.elkins@insidethestack.com
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Aug 2011 14:56:43 -0000

Shane,


> 
> Have you taken a look at flow-spec for IPv4:
> http://tools.ietf.org/html/rfc5575
> ... and, flow-spec for IPv6:
> http://tools.ietf.org/html/draft-ietf-idr-flow-spec-v6-00
> (Both the RFC and I-D are within the IDR WG).
> 
> In summary, using flow-spec one can define an ACL that then
> get distributed across all routers within an ASN, via BGP,
> that can then be used to count matching packets, log packet
> header information, etc.  It's up to the operator to
> decide what ACL to be applied and what 'action' (logging,
> counting, etc.) to be taken for packets that match a given
> 'rule'.  
> 
> From where I'm sitting, this seems like it might already
> solve the problem you're having, without having to invent a
> wholly new IPv6 Destination Header Option.  So, I would
> like to know if you have taken a look at flow-spec and, if
> so, why it was ruled out?

Certainly an interesting set of RFCs but a few questions I would have:

1.  What if BGP is not being used?

2.  What about matching packets at non-router devices (that is, hosts)

3.  I believe what we need in diagnostics is the entire packet not just a logging that such a packet existed.  For example, the problem we are looking for may be in the body of the protocol data.  Ex. a problem with FTP.  So, we would need the entire packet as captured by a packet analyzer rather than a log that says 'a packet from dest x to source y was sent'.  I do not imagine that the log is going to keep the entire packet.  Am I missing something?


> 
> -shane

v2.23.0 | Report a Bug | By Email