Tunnel Issues Review Joe Touch USCISI Mark Townsley

  • Slides: 18
Download presentation
Tunnel Issues Review Joe Touch, USC/ISI Mark Townsley, Cisco 1/2/2022 5: 37 PM 1

Tunnel Issues Review Joe Touch, USC/ISI Mark Townsley, Cisco 1/2/2022 5: 37 PM 1

Overview ¬Motivation ¬Known issues ¬State of 2003, 4301 tunnels ¬Questions ¬Ways forward NB: this

Overview ¬Motivation ¬Known issues ¬State of 2003, 4301 tunnels ¬Questions ¬Ways forward NB: this is not about solutions; this not WG chartering; thisis about whether these are INT issues 1/2/2022 5: 37 PM 2

Motivation ¬ Tunnel use common ¬ tunnel+MTU+ICMP in ~100 RFCs ¬ IPsec, L 2

Motivation ¬ Tunnel use common ¬ tunnel+MTU+ICMP in ~100 RFCs ¬ IPsec, L 2 TP/PPTP ¬ Mobile IP ¬ L[1, 2, 2. 5, 3, 3. 5]VPNs ¬ SEAL, LISP ¬ Potential need for automation ¬ 1300 -byte MTU vs. can/should we do better ¬ Potential need to revise/coordinate ¬ Fragmentation handling, ICMP handling 1/2/2022 5: 37 PM 3

Observation ¬Tunnels are L 2 ¬We create them ¬Still subject to link issues, e.

Observation ¬Tunnels are L 2 ¬We create them ¬Still subject to link issues, e. g. , MTU discovery, signalling ¬Advantages vs. other L 2 s ¬Arguably easier to change ¬When L 2 protocol matches L 3, it MAY be easier to align L 2 and L 3 MTU discovery, signalling, etc. 1/2/2022 5: 37 PM 4

Known Issues ¬ MTU issues ¬MTU discovery ¬Fragmentation – outer or inner ¬ Other

Known Issues ¬ MTU issues ¬MTU discovery ¬Fragmentation – outer or inner ¬ Other signalling ¬ICMP ¬ Performance issues ¬IP-ID exhaustion ¬Fragment size ¬Packing (ala Gig. E packet bursting) 1/2/2022 5: 37 PM 5

MTU Discovery ¬ Mechanisms ¬ICMP-based (RFC 1191) ¬Probe-based (RFC 4821, SEAL) ¬ Impact on

MTU Discovery ¬ Mechanisms ¬ICMP-based (RFC 1191) ¬Probe-based (RFC 4821, SEAL) ¬ Impact on E 2 E MTU discovery ¬Forwarding/recomputing/validating ICMPs ¬Encapsulator sending advisory too-bigs ¬ Tunnel MTU discovery ¬Is internal mechanism required? ¬ See RFC 4459… 1/2/2022 5: 37 PM 6

Fragmentation ¬Outer implies reassembly at decapsulator ¬Inner affects IPv 4 DF, reassy at dst

Fragmentation ¬Outer implies reassembly at decapsulator ¬Inner affects IPv 4 DF, reassy at dst 1/2/2022 5: 37 PM 7

Signalling – ICMP, etc. ¬ Pop control out of tunnel? ¬E. g. , ICMP

Signalling – ICMP, etc. ¬ Pop control out of tunnel? ¬E. g. , ICMP underliverables, MTU discovery ¬ Send tunnel status to the original src? ¬ Push control into tunnel (ever)? ¬(listed for completeness) 1/2/2022 5: 37 PM 8

State of 2003 Tunnels ¬MTU discovery ¬On ingress, enforce outer DF; drop/ICMP if too

State of 2003 Tunnels ¬MTU discovery ¬On ingress, enforce outer DF; drop/ICMP if too big ¬Internally, MUST support ICMP-pmtud ¬Fragmentation ¬Mostly inner-only, i. e. , IPv 4 ¬MAY fragment inner iff IPv 4 and DF=0 ¬MUST NOT fragment outer if DF=1 is set 1/2/2022 5: 37 PM 9

2003 Signalling ¬MAY relay ICMPs from inner to outer ¬SHOULD relay net/host unreach ¬MUST

2003 Signalling ¬MAY relay ICMPs from inner to outer ¬SHOULD relay net/host unreach ¬MUST NOT relay port unreach ¬MUST relay too big ¬MUST NOT relay, SHOULD handle locally: route error, source quench ¬SHOULD keep soft state to assist relay 1/2/2022 5: 37 PM 10

State of 4301 Tunnels ¬MTU discovery ¬IPv 4/DF=1, SHOULD discard and send ICMP ¬IPv

State of 4301 Tunnels ¬MTU discovery ¬IPv 4/DF=1, SHOULD discard and send ICMP ¬IPv 4/DF=0, SHOULD fragment outer, and SHOULD NOT send ICMP ¬IPv 6 SHOULD discard and send ICMP ¬DF may be copy, clear, set ¬Fragmentation ¬Fragments outer only ¬MAY have diff SAs for inner fragments 1/2/2022 5: 37 PM 11

4301 Signalling ¬Relay and recompute too-big ¬Each type/code may be blocked, as per SA

4301 Signalling ¬Relay and recompute too-big ¬Each type/code may be blocked, as per SA ¬Others are relayed after validation 1/2/2022 5: 37 PM 12

Fundamental Questions ¬Which tunnel model? ¬Opaque/emulation: at least as good as path ¬Visible: as

Fundamental Questions ¬Which tunnel model? ¬Opaque/emulation: at least as good as path ¬Visible: as if a new link ¬Which parties participate? ¬Only tunnel endpoints (encap/decap) ¬Architecturally simpler ¬Encap/dest host ¬Distributes work by delaying it ¬Assumes work can be distributed when delayed 1/2/2022 5: 37 PM 13

Ways Forward ¬ Document this overview? ¬ Fix existing standards ¬ RFCs 791, 2003,

Ways Forward ¬ Document this overview? ¬ Fix existing standards ¬ RFCs 791, 2003, et al. ¬ Develop new solutions: ¬ MTU discovery issues/solutions ¬ SEAL, DF/IPv 6 rules for too-big ¬ Fragmentation solutions ¬ E. g. , SEAL, LISP, etc. ¬ Signalling issues ¬ Esp. unreach, etc. ¬ Optimization issues ¬ Esp. IP-ID fix 1/2/2022 5: 37 PM 14

Extras ------------------ 1/2/2022 5: 37 PM 15

Extras ------------------ 1/2/2022 5: 37 PM 15

IP-ID Exhaustion ¬Tunnel aggregation: ¬Increases packet rate ¬Decreases source/dest IP addr variability ¬IPv 4

IP-ID Exhaustion ¬Tunnel aggregation: ¬Increases packet rate ¬Decreases source/dest IP addr variability ¬IPv 4 problem: ¬Src/dst/proto/IP_ID uniqueness within 2 MSL ¬Proto is constant (4), src/dst addrs are limited ¬Limits BW to 2. 5 Mbps (576 B), 6. 5 Mbps (1500 B), or 286 Mbps (64 KB) 1/2/2022 5: 37 PM 16

Fragment Size ¬Divide by N may reduce further frag. , but increase packet size

Fragment Size ¬Divide by N may reduce further frag. , but increase packet size variation ¬Fill and leftover is reference code 1/2/2022 5: 37 PM 17

Packing ¬Increases MTU over tunnel, which may increase efficiency over high-speed aggregate paths ¬Are

Packing ¬Increases MTU over tunnel, which may increase efficiency over high-speed aggregate paths ¬Are packets split across frames? 1/2/2022 5: 37 PM 18

Directed Diffusion Chalermek Intanagonwiwat USCISI Ramesh Govindan USCISIDirected Diffusion Chalermek Intanagonwiwat USCISI Ramesh Govindan USCISI
Healing Touch What is Healing Touch Healing TouchHealing Touch What is Healing Touch Healing Touch
Touch By Ibrahim Allam What is Touch TouchTouch By Ibrahim Allam What is Touch Touch
Touch Pressure Pain Touch Touch receptors are onTouch Pressure Pain Touch Touch receptors are on
Touch Judging Duties and Responsibilities Touch and touchTouch Judging Duties and Responsibilities Touch and touch
3 M Touch Systems Micro Touch Capacitive Touch3 M Touch Systems Micro Touch Capacitive Touch
6 rd Sunsetting Mark Townsley Alexandre Cassen Operational6 rd Sunsetting Mark Townsley Alexandre Cassen Operational
Issues in Arabic MT Alex Fraser USCISI 12122021Issues in Arabic MT Alex Fraser USCISI 12122021
Market Driven Strategic Planning by Michael K TownsleyMarket Driven Strategic Planning by Michael K Townsley
Collaborative Writing Brittany Townsley LMWP My Questions HowCollaborative Writing Brittany Townsley LMWP My Questions How
Allison Arnold Kris Biesinger Lisa Townsley University ofAllison Arnold Kris Biesinger Lisa Townsley University of
Haivan Pass Tunnel Construction Project TUNNEL CONSTRUCTION TableHaivan Pass Tunnel Construction Project TUNNEL CONSTRUCTION Table
Online Module Carpal Tunnel Syndrome Carpal Tunnel SyndromeOnline Module Carpal Tunnel Syndrome Carpal Tunnel Syndrome
Tcp Tunnel CAD Tunnel Data Processing Software RequirementsTcp Tunnel CAD Tunnel Data Processing Software Requirements
Un tunnel souterrain sous la mer Le tunnelUn tunnel souterrain sous la mer Le tunnel
1152020 1 Carpal Tunnel Syndrome Carpal Tunnel Syndrome1152020 1 Carpal Tunnel Syndrome Carpal Tunnel Syndrome
Tunnel Tunnel T u n n e lTunnel Tunnel T u n n e l