Major practical decision

So, this high-level conversation has been interesting and educational, but
I'd like to ask a more "brass-tacks" question. In doing so, I'm basically
recognizing that while it's nice to theorize with a blank sheet of paper,
when it comes to specifying bits you have practical constraints.


I get the sense that it is now generally accepted that widespread
multi-homing has to be handled by use of multiple routing-names, and
identity/location separation.

However, it's not clear to me that a new end-end naming layer (e.g. SHIM6 or
HIP) is really a viable solution, because of the amount of legacy equipment
out there. (And a top of the hatly hat to David Conrad for first raising this
issue.) I.e. if your site is multi-homed, and you've deployed HIP/whatever,
that's not much use if many of the people trying to talk to you haven't.

David's contention was that because of this we may be forced to convert the
current IPvN addresses into end-end names, "jack up" the internetwork layer,
and insert a new layer underneath, and deploy some sort of mapping system to
map from IPvN "addresses" to some new routing-name namespace.

I think that's a really good argument - that this is the only solution that's
viable in a short time-frame. However, I'm very interested to hear what
everyone else thinks on this point.

(I note that it's always better to deploy something designed to a purpose, and
it would be better to name end-end entities out of a new namespace designed
for that purpose, but alas, we may be stuck.)


I ask this because jack-up assumes a new routing-name namespace, which has
implications for the routing: it immediately lands us with what seems to me,
after a moderate look, to be a fairly hard problem in that part of the system
- although one more soluble than routing PI addresses, before anyone says
anything!

So, what's it to be: jack-up (i.e. insertion of a new internetworking layer),
or new end-end names (i.e. insertion of a new end-end naming layer)?

        Noel

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

On 12/8/06, Noel Chiappa <jnc@...> wrote:
> So, what's it to be: jack-up (i.e. insertion of a new internetworking layer),
> or new end-end names (i.e. insertion of a new end-end naming layer)?

I'm not sure these are the only possibilities.

We've been playing with the idea of using edge-to-edge tunnelling to
construct an infrastructure for defending against DDoS attacks.  An
unpublished paper is here if you're interested:
http://nrg.cs.ucl.ac.uk/mjh/tmp/e2etun.pdf

Anyway, this sort of edge-to-edge tunnelling doesn't require any
end-host changes, but does permit multiple routing names (in this
case, the decapsulator addresses) for each end-host IP address, and it
should be incrementally deployable.  I hadn't intended it as a
multi-homing architecture, but it might work OK.

In any event, it's an example of an architecture that isn't quite
either of the two you listed above.

 - Mark

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

Hi Noel,

El 08/12/2006, a las 17:54, Noel Chiappa escribió:

yes, these approaches need that the peer supports the protocol (either
the end node itself or some form or proxy)

i am not following

what kind of approach could provide multihoming support (preserving
established communications) without requiring support from both peers
of the communications? (by peers i mean either the end nodes themselves
or devices on the edge next to each peer that perform the multihoming
functions for them)

If we do actually manage to define a solution that _only_ requires
modifications to the multihomed site and does not requires
modifications to the peers that it is communicating with (nor the the
network outside the multihomed site) this would be indeed a really nice
feature, because only those who actually get the multihoming benefits
have to pay the costs of supporting the multihoming support tools,
which is very nice, but i am not sure i have ever seen a proposal that
does this.... could you expand?

regards, marcelo




_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

> So, what's it to be: jack-up (i.e. insertion of a new  
> internetworking layer),
> or new end-end names (i.e. insertion of a new end-end naming layer)?


My $.02:

We're supposed to be architecting a fix for the Internet that should  
last for the foreseeable future.  Not just the next 10 or 20 years,  
but the next 100 or so.  The jack-up model is somewhat less clean and  
inevitably introduces suboptimalities at the interface between the  
layers.  Thus, I'm in favor of replacing the namespace.

Regards,
Tony


_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

There is no alternative to hierarchical routing and also: there is no need for flat routing.

Heiner

Why should a router in Europe be informed if some router (not bike) tips over in China?!

 

 

 

In einer eMail vom 09.12.2006 05:47:09 Westeuropäische Normalzeit schreibt tony.li@...:

> So, what's it to be: jack-up (i.e. insertion of a new 
> internetworking layer),
> or new end-end names (i.e. insertion of a new end-end naming layer)?


My $.02:

We're supposed to be architecting a fix for the Internet that should 
last for the foreseeable future.  Not just the next 10 or 20 years, 
but the next 100 or so.  The jack-up model is somewhat less clean and 
inevitably introduces suboptimalities at the interface between the 
layers.  Thus, I'm in favor of replacing the namespace.

Regards,
Tony


_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

 

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

> I get the sense that it is now generally accepted that
> widespread multi-homing has to be handled by use of multiple
> routing-names, and identity/location separation.

We need to crisply define and obtain consensus on Routing-Names.

>
> However, it's not clear to me that a new end-end naming layer
> (e.g. SHIM6 or
> HIP) is really a viable solution, because of the amount of
> legacy equipment out there. (And a top of the hatly hat to
> David Conrad for first raising this
> issue.) I.e. if your site is multi-homed, and you've deployed
> HIP/whatever, that's not much use if many of the people
> trying to talk to you haven't.

This is a deployment issue yes but not an insurmountable one the
industry is capable of adapting such as the application move today to
SOA.  But, more importantly at this point in the architecture discussion
I believe it must remain on the table as a viable option.

>
> David's contention was that because of this we may be forced
> to convert the current IPvN addresses into end-end names,
> "jack up" the internetwork layer, and insert a new layer
> underneath, and deploy some sort of mapping system to map
> from IPvN "addresses" to some new routing-name namespace.

These are three efforts that can happen regarding our work to define an
architecture in parallel, I don't see that as a problem.

>
> I think that's a really good argument - that this is the only
> solution that's viable in a short time-frame. However, I'm
> very interested to hear what everyone else thinks on this point.

I think we must define short and long term before one can answer this
question.

>
> (I note that it's always better to deploy something designed
> to a purpose, and it would be better to name end-end entities
> out of a new namespace designed for that purpose, but alas,
> we may be stuck.)

This is my view currently we should move to a new namespace for
end-to-end entities.

I think for now we have to pursue these multiple paths.

/jim
>
> Noel
>
> _______________________________________________
> Architecture-discuss mailing list
> Architecture-discuss@...
> https://www1.ietf.org/mailman/listinfo/architecture-discuss
>

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

I don't think we can develop a solution that will last 100 years.  30
years maybe.  I beleive something else will break the system that has
nothing to do with the namespace decision or IP layer.  This is not to
say we should not replace the namespace but to attempt to provide an
architecture that can be implemented by engineers that lasts 100 years
seems a bit impossible to me.

/jim

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

---

From: HeinerHummel@... [mailto:HeinerHummel@...]
Sent: Saturday, December 09, 2006 3:39 AM
To: tony.li@...; jnc@...
Cc: architecture-discuss@...
Subject: Re: [arch-d] Major practical decision

There is no alternative to hierarchical routing and also: there is no need for flat routing.

Heiner

Why should a router in Europe be informed if some router (not bike) tips over in China?!

 

 

 

In einer eMail vom 09.12.2006 05:47:09 Westeuropäische Normalzeit schreibt tony.li@...:

> So, what's it to be: jack-up (i.e. insertion of a new 
> internetworking layer),
> or new end-end names (i.e. insertion of a new end-end naming layer)?


My $.02:

We're supposed to be architecting a fix for the Internet that should 
last for the foreseeable future.  Not just the next 10 or 20 years, 
but the next 100 or so.  The jack-up model is somewhat less clean and 
inevitably introduces suboptimalities at the interface between the 
layers.  Thus, I'm in favor of replacing the namespace.

Regards,
Tony


_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

 

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

On Dec 9, 2006, at 6:36 AM, Bound, Jim wrote:

> I don't think we can develop a solution that will last 100 years.  30
> years maybe.  I beleive something else will break the system that has
> nothing to do with the namespace decision or IP layer.  This is not to
> say we should not replace the namespace but to attempt to provide an
> architecture that can be implemented by engineers that lasts 100 years
> seems a bit impossible to me.

I see extra-terrestrial routing in all seriousness as a major issue  
for the next 100 years (maybe not the
next 20 years, but certainly the next 100). Adopting the 100 year  
rule would imply that there should be a DTN component to the current  
work, and also probably that we should worry about relativistic  
synchronization effects, which seems to be a little premature.

I am sure that others can come up with likely or possible new issues  
with a 100 year time horizon. While it might
be interesting to enumerate them, I am not sure it would be fruitful  
to incorporate them in the current work.

Regards
Marshall



_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

Mark,

On 12/8/06, Noel Chiappa <jnc@...> wrote:
>> So, what's it to be: jack-up (i.e. insertion of a new  
>> internetworking layer), or new end-end names (i.e. insertion of a  
>> new end-end naming layer)?

On 8 Dec 2006, at 20:02, Mark Handley wrote:
Hmm.  I'm not that sure.  What you seem to suggest looks like  
another, more implementation related dimension to me.

Basically, what I understand Noel saying is that we either must add a  
layer above the current IP layer or one below it.  This can be, of  
course, be implemented at various points in the network: at end-
hosts, at edge routers, somewhere at the first ISP closest to the end  
site, or in the core.  Or some combination of those.  To me, that  
looks like another, basically orthogonal dimension, which is more  
implementation related than where-in-the-stack to insert the new  
layer.  For example, I could imagine a solution that would be  
initially implemented in many laptops, in big boxes used by many  
major corporations, and by some advanced ISPs, and then gradually,  
over a longer term, by all hosts.

Hence, what you seem to propose looks like an implementation strategy  
to me.

Related to your paper, I think that in the long term an architecture  
that allows keeping the routing names (locators) as relative secrets  
provides some pretty effective protection against DDoS.  Furthermore,  
if you use overlay routing instead of resolution to initially map the  
location-independent identifiers into locators, you can allow the  
responding (server) host or site to make the decision whether to  
reveal its locators to the initiator (client).  [That's the approach  
we proposed to be used in Host Identity Indirection Infrastructure  
(Hi3).]

--Pekka Nikander


_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

On 8 Dec 2006, at 18:54, Noel Chiappa wrote:
What I think we need is a gradual, proxy based solution approach, as  
alleged e.g. by Marcelo Bagnulo.

Let's consider briefly what's behind that proposal.  When deploying a  
new naming layer, we will have four kinds of situations: legacy-
legacy, new-new, legacy-new and new-legacy.  Legacy-legacy and new-
new are, in general, not very interesting from an architectural point  
of view, even though there will be numerous engineering and security  
concerns there.

This leads to the following straw man analysis:

A. Legacy (site/host) connecting to a new (site/host)

A.a New (site/host) still providing legacy connectivity by publishing  
a legacy address

This is provided by both HIP and SHIM6, with the difference that  
SHIM6 is oblivious whether the peer supports SHIM6 when the initial  
connection is made.  With HIP, the choice must be currently made  
during initial contact, but there's been discussions about delayed  
HIP state set-up.

A.b New (site/host) being reachable only with the new connectivity  
(no published legacy address)

A.b.a New identifiers being routable in the legacy system

This is the interesting case, IMHO.  If the new identifiers can be  
embedded into the legacy addressing system (e.g. as suggested in  
draft-laganier-ipv6-khi-05.txt), it may be possible to make them  
routable.  For example, the prefix could be routed to one or a few  
sites in the core network, providing a service that would encapsulate  
the legacy traffic (along a similar way Mark Handley et al suggested  
in their e2efa paper) and provide connectivity to the new "world".

Any site adopting the new system could then, independently, provide  
the same encapsulation service locally, for those hosts that don't  
implement it natively.

A.b.b New identifiers not routable in the legacy system

This seems to lead to a situation where the legacy hosts are not able  
to communicate with new systems that do not provide legacy  
connectivity.  This may be a desirable end state, providing the  
remaining legacy sites an incentive to upgrade.


B. New (site/host) connecting to a legacy (site/host)

B.a New (site/host) being able to directly connect with to legacy  
addresses

Again, this is provided by both HIP and SHIM6.

B.b New (site/host) not being able to directly connect with legacy  
systems

B.b.a "Reverse" proxy service

Under certain not-so-simple circumstances we could imagine a proxy  
service that would provide any interested legacy systems a "presence"  
in the new system.  That is, any legacy host/site could register with  
the proxy service, the proxy service would allocate it an ID in the  
new system, and allow new sites/hosts connect to the legacy one  
through it.

I'm sure there are options I'm not listing above, but I must go now.

--Pekka Nikander


_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

    > From: "Mark Handley" <M.Handley@...>

    >> So, what's it to be: jack-up (i.e. insertion of a new internetworking
    >> layer), or new end-end names (i.e. insertion of a new end-end naming
    >> layer)?

    > I'm not sure these are the only possibilities.
    > We've been playing with the idea of using edge-to-edge tunnelling to
    > construct an infrastructure for defending against DDoS attacks.
    > ..
    > this sort of edge-to-edge tunnelling doesn't require any end-host
    > changes .. and it should be incrementally deployable.
    > In any event, it's an example of an architecture that isn't quite
    > either of the two you listed above.

I think Pekka's recent reply (9 Dec 2006 15:57:37 +0200) says roughly what I
would have said (but a great deal more elegantly - I wouldn't have thought to
decompose it into separate axes, naming and implementation).

I don't have time to carefully read your paper (too much email here I need to
answer :-), but from the 10-minute look I took, at a high level it seems to
be more or less exactly a "jack-up" scheme (which is my term for a scheme in
which a new set of names are added at a layer below the existing
internetworking layer, and those new names are mostly what is used for
forwarding traffic). You have two logically separate namespaces, and map from
one to the other, and in the middle of the network you wrap packets with
names from one namespace inside packets with names from another namespace.
(You call it "tunneling", but to me tunneling implies a point-point thing,
with the creation of some state at each end of the tunnel, and this scheme
doesn't really have that. It's just a straight wrapping.)


This exchange did provoke the following analysis, which all might find
useful. Here's the key point:

*** Architecturally, separation of location and identity necessarily implies
*** creation of a second namespace - one is used for location, and one for
*** identity.

(The namespace might, confusingly, have the same syntax as the first [as in
MIP6, SHIM6, and your scheme], and, yet more confusingly, even be allocated
via the same delegation hierarchy. However, it remains that case that one
cannot use a name from one space in exactly the same way that one uses a name
from the other space, so they are indeed separate.)

So, if one accepts that we need to separate location and identity, one is
basically also accepting that we need a second namespace. (If someone thinks
they can have one without the other, try thinking about it some more! :-)

So the only question, architecturally speaking, is "do the new names take
over the location role, or the identity role"? In designs like HIP, the new
names take over the identity. In all jack-up schemes, the new names (mostly)
take over the location role.

(I say "mostly" because in most jack-up schemes there is usually a vestigial
"location" role left with the original names. In other words, because the goal
is usually to avoid modifying hosts, at some point the packet is unwrapped,
and once that happens, the original internetworking "address", which is now
mostly "identity", resumes its role of identifying an interface, and where
that interface is. Any forwarding decisions that are taken based on it are
only in a scope fairly local to the destination, though.)


So I would claim that, at an architectural level, the question is indeed
"jack-up (i.e. insertion of a new internetworking layer), or new end-end
names (i.e. insertion of a new end-end naming layer)". There are many
possible implementation variants within each, of course, but fundamentally
one of these two things is happening.

        Noel

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

    > From: "Bound, Jim" <Jim.Bound@...>

    >> I get the sense that it is now generally accepted that widespread
    >> multi-homing has to be handled by use of multiple routing-names, and
    >> identity/location separation.

    > We need to crisply define and obtain consensus on Routing-Names.

Routing-names are, very simply, the names for things which the
path-selection (routing) uses. End of definition! :-)

So from my perception there's not really a lot, at a fundamental level, to
obtain consensus on. I think it's obvious that you have to have
path-selection, and in turn that it has to use some sort of names. So the
fact that we have to have them, and a lot about their basic properties, are
necessarily defined for us right there.

Yes, there are issues of detailed syntax etc, but I think those should be put
off *until we know more about how the routing is going to work*. Once we've
done that, we can turn to transforming generic A.p.1 kind of notation into
specific bit patterns, etc.


    >> we may be forced to convert the current IPvN addresses into end-end
    >> names, "jack up" the internetwork layer, and insert a new layer
    >> underneath, and deploy some sort of mapping system to map from IPvN
    >> "addresses" to some new routing-name namespace.

    > These are three efforts that can happen regarding our work to define an
    > architecture in parallel

Sorry, I'm not sure I understand your comment.

First, are you saying that you think the jack-up path is the way to go?
Because further down you say that you prefer a new end-end namespace ("my
view currently we should move to a new namespace for end-to-end entities"),
which is the other path. Or are you saying take both: jack-up short term,
new end-end names long-term?

Second, if I decompose 'jack-up' into separate engineering elements, I'm not
sure I see three pieces. I come up with:

1 - Decide what the new lower layer packet routing-name format is going to be.
2 - Figure out how the routing is going to work.
3 - Decide what the new lower layer packet format is going to be.
4 - Depending on the previous one, we may need to design an encapsulation.
5 - Design and plan deployment of the mapping database.

Some are fairly simple (1, 3 and 4), but others are pretty significant. And
of course 3 depends on 1 (as in, can't start 3 until 1 is done), and 4
depends on 3.

Finally, are you suggesting that we do detailed designs on all possible
alternatives (e.g. one or more jack-up systems, etc), and only pick one once
more detailed designs are in hand? I'm rather concerned that that would
spread us too thin, and we'd be better off trying to decide on one (or maybe
two) to persue up front. However, that's just my opinion; luckily, I don't
have to make that sort of call anymore! :-)


    >> [possibly] this is the only solution that's viable in a short
    >> time-frame.

    > I think we must define short and long term before one can answer this
    > question.

Short-term = (roughly) before the Internet routing tables melt down. :-)

        Noel

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss

    > From: marcelo bagnulo braun <marcelo@...>

Good questions!

I think the problem is that it seems that people tend to either think about
i) how to do multi-homing, or ii) how to deploy something to prevent routing
meltdown (e.g. jack-up), and don't always think "how does the design do both"!

So it's not immediately clear to me, for example, exactly how jack-up/mapping
schemes support multihoming. Yeah, the box that does mapping/wrapping could
know (from the mapping table) that IPvN address range X.1-X.n is multi-homed
because it maps to three different new routing-names, A.p, B.q and C.r, and
there's some mechanism (probably not in the routing itself) to make sure that
whichever one it picks is currently functional (i.e. not unreachable because
while A is reachable, the A<->A.p link has gone down, and the routing has
aggregated all A.* announcements to A by the time they get to this mapping
box).

But, yeah, people thinking about one side of this (multi-homing, or routing
meltdown) need to pay attention to how their stuff does the other side.a


    > what kind of approach could provide multihoming support (preserving
    > established communications)

Oooh, there's multi-homing and there's multihoming! Keeping existing
connections up is probably harder than allowing new connections to succeed.
When you say "preserving established communications", did you mean "keep
existing connection up", or what?

    > without requiring support from both peers of the communications? (by
    > peers i mean either the end nodes themselves

With enough thrust, pigs can fly. The question is, do you want them to fly?!
So I'm sure that with enough mechanism we could probably make this work.
However, do we want the additional complexity (and also, potentially,
overhead) to make it work - is this an important enough goal?

    > If we do actually manage to define a solution that _only_ requires
    > modifications to the multihomed site and does not requires
    > modifications to the peers that it is communicating with (nor the the
    > network outside the multihomed site) this would be indeed a really nice
    > feature

Ditto... E.g. we sort of have this now, it's called PI-addresses, but the
overhead is not reasonable.

    > because only those who actually get the multihoming benefits have to
    > pay the costs of supporting the multihoming support tools, which is
    > very nice

Well, presumably the other party gets some benefit too. I mean, if you're
trying to get to Google, or a news site, or an e-business site, and you can
because they are multi-homed, you get the benefit too, not just the site
you're going to.

    > i am not sure i have ever seen a proposal that does this....

Good point.


    > could you expand?

Sigh. The more I read this morning, the more I think we need to stop doing
this by email, and put 20 people together in a room for a couple of days, and
repeat that several times, with breaks of a couple of weeks in between, for
comment/recuperation.

There is just too much ground to cover, and too much to say about most parts
of it...


        Noel

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@...
https://www1.ietf.org/mailman/listinfo/architecture-discuss