Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available

To: tcpm at ietf.org
Subject: Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
From: Andrew Knutsen <andrew.knutsen at bluecoat.com>
Date: Thu, 24 Sep 2009 18:19:21 -0700
Cc: Jamshid Mahdavi <jamshid.mahdavi at bluecoat.com>, Qing Li <qing.li at bluecoat.com>, Wei Jen Yeh <weijen.yeh at bluecoat.com>, Ron Frederick <ron.frederick at bluecoat.com>
Delivered-to: tcpm at core3.amsl.com
In-reply-to: <BA44DAAB-DCFB-412A-A8CB-B6FAA7975D85 at asomi.com>
List-archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-help: <mailto:tcpm-request@ietf.org?subject=help>
List-id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-post: <mailto:tcpm@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
References: <4ABAD595.7050303 at bluecoat.com> <BA44DAAB-DCFB-412A-A8CB-B6FAA7975D85 at asomi.com>
User-agent: Thunderbird 2.0.0.22 (Windows/20090605)

   I'll try to respond to all the issues raised today in this message:

Caitlin Bestler wrote:

What is not clear is why the probe is based on OUI-specific secrethandshakes.

This draft represents an effort to move technology which iscurrently shipping from at least three vendors toward standardization.The handshakes are currently not only "secret", but use invalid optionkinds. This draft allows movement away from the invalid kinds; gettingall vendors to disclose and agree on the rest is future effort, whichwould result in the OUI-less IANA-registered types. We could have putthis "history" in the draft, but it didn't seem appropriate. I didinclude it in the last announcement.

1) Why not simply probe for "first middlebox that sees this once theTTL is less than or equal to X"?That would enable discovering all middleboxes that understoodthis option, no matter whomade them. Once identified SNMP can be used to obtain vendorspecific information.

- Generally, you want to probe for a specific type of device, whichwill pair with the originator.

- Performance is a very important factor here. SNMP adds delay,just like the other existing alternates mentioned in the draft.

2) If vendor X has *two* middleboxes on the path from A to B, is thereany way to control
     who answers?

This would be specific to the device type, presumably based on thetarget data, although other info like the TTL could of course be used. Idon't think there is anything in the draft saying a node cannot bothrespond to the probe and send it farther along, or even modify thetarget data and send it along. These actions would be defined with thedevice type registration.

One further question, what is the correct handling of redundantSYN-ACKs from differentsources? This could happen if a middle-box takes longer than theinitiator anticipatesand the retransmission follows a different path due to intermittentfailures and/or
load balancing.

This is a good question, however I think its best considered anendpoint issue, ie, not one requiring more protocol. All existingimplementations (from the three or more vendors I mentioned above)should be prepared to handle this. Without saying anything specific, Iwill say we've never had a bug reported because of this situation ;-).


Andrew

Follow-Ups:
- Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
  - From: Caitlin Bestler

References:
- [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
  - From: Andrew Knutsen
- Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
  - From: Caitlin Bestler

Prev by Date: Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
Next by Date: Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
Previous by thread: Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
Next by thread: Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available
Index(es):
- Date
- Thread

Re: [tcpm] New version of TCP Option for Transparent Middlebox Discovery available

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.