1 PSAMP Protocol Specifications PSAMP IETF-58 November 11, 2003 Benoit Claise Juergen Quittek.

Slides:



Advertisements
Similar presentations
Overview of IETF work on IP traffic flow measurement and current developments Dr. Jürgen Quittek General Manager Network Research Division, NEC Europe.
Advertisements

1 PSAMP WG Status 61st IETF Washington November 12, 2004 Discussion: (in Body: subscribe)
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
Progress Report: Metering NSLP (M-NSLP) 66th IETF meeting, NSIS WG.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
1 PSAMP WGIETF, November 2002PSAMP WG PSAMP Framework Document draft-ietf-psamp-framework-01.txt Duffield, Greenberg, Grossglauser, Rexford: AT&T Chiou:
8/2/ IETF, Pittsburgh Kutscher/Ott/Bormann SDPng Requirements draft-kutscher-mmusic-sdpng-req-00.txt Dirk Jörg
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Gursharan Singh Tatla Transport Layer 16-May
Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.
1 PSAMP Protocol Specifications IPFIX IETF-64 November 10th, 2005 Benoit Claise Juergen Quittek Andrew Johnson.
Presentation on Osi & TCP/IP MODEL
Chapter 6: Packet Filtering
Fraunhofer FOKUSCompetence Center NET T. Zseby, CC NET1 IPFIX – IP Flow Information Export Overview Tanja Zseby Fraunhofer FOKUS, Network Research.
WG RAQMON Internet-Drafts RMON MIB WG Meeting Washington, Nov. 11, 2004.
1 IPFIX Protocol Specifications IPFIX IETF-59 March 3, 2004 Benoit Claise Mark Fullmer Reinaldo Penno Paul Calato Stewart Bryant Ganesh Sadasivan.
IPSec IPSec provides the capability to secure communications across a LAN, across private and public wide area networks (WANs) and across the Internet.
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 Inter-domain SLA Exchange
Real-time Flow Management 2 BOF: Remote Packet Capture Extensions Jürgen Quittek NEC Europe Ltd, Heidelberg, Germany Georg Carle GMD.
IPsec Introduction 18.2 Security associations 18.3 Internet Security Association and Key Management Protocol (ISAKMP) 18.4 Internet Key Exchange.
Abierman-psamp-18nov02 1 PSAMP WG 55th IETF Atlanta, Georgia November 18, 2002 Discussion: Admin: (In Body:
Open-Eye Georgios Androulidakis National Technical University of Athens.
Flow Aware Packet Sampling
12/8/2015 draft-blb-mpls-tp-framework-01.txt A framework for MPLS in Transport networks draft-blb-mpls-tp-framework-01.txt Stewart Bryant (Cisco), Matthew.
Standards Activities on Traffic Measurement. 2 Outline Applications requiring traffic measurement Packet capturing and flow measurement Existing protocols.
Evaluation of NetFlow Version 9 Against IPFIX Requirements: changes from version 03 to 04 draft-claise-ipfix-eval-netflow-04.txt Benoit Claise, Cisco Systems.
Fuzzy Control of Sampling Interval for Measurement of QoS Parameters Juraj Giertl.
1 PSAMP Protocol Specifications PSAMP IETF-59 March 2, 2004 Benoit Claise Juergen Quittek.
1 PSAMP WG 64th IETF Vancouver November 10, 2005 Discussion: (in Body: subscribe)
Net Flow Network Protocol Presented By : Arslan Qamar.
63rd IETF - IPFIX WG dratf-stephan-isp-template-00.txt I nteroperability requirement for ISPs.
PSAMP MIB Status Managed Objects for Packet Sampling A Status Report Thomas Dietz Benoit Claise
PSAMP MIB Status Managed Objects for Packet Sampling A Status Report Thomas Dietz Benoit Claise
IP Flow Information eXport (IPFIX) 57 th IETF - Vienna, 16 July 2003 " Web Site: " Mailing list info:
1 MPLS Architectural Considerations for a Transport Profile ITU-T - IETF Joint Working Team Dave Ward, Malcolm Betts, ed. April 16, 2008.
1 Header Compression over IPsec (HCoIPsec) Emre Ertekin, Christos Christou, Rohan Jasani {
1 IPFIX WG 59th IETF Seoul March 3, 2004 Chairs: Nevil Brownlee, Dave Plonka Discussion:
Per-Packet Record Export Proposal draft-kim-ipfix-ppr-00.txt Chang H. Kim, Taesang Choi {kimch,
1 IPFIX Default Transport IPFIX IETF-58 November 10, 2003 Stewart Bryant Benoit Claise.
IPSec is a suite of protocols defined by the Internet Engineering Task Force (IETF) to provide security services at the network layer. standard protocol.
PSAMP Information Model Status Information Model for Packet Sampling A Status Report Thomas Dietz Falko Dressler.
IETF 62 NSIS WG1 Porgress Report: Metering NSLP (M-NSLP) Georg Carle, Falko Dressler, Changpeng Fan, Ali Fessi, Cornelia Kappler, Andreas Klenk, Juergen.
IPFIX MIB Status Managed Object for IP Flow Export A Status Report Thomas Dietz Atsushi Kobayashi
1 Minneapolis‘ IETF IPFIX Aggregation draft-dressler-ipfix-aggregation-00.txt.
IPFIX Protocol Draft Benoit Claise, Cisco Systems Mark Fullmer, OARnet Reinaldo Penno, Nortel Networks Paul Calato, Riverstone Networks.
IPFIX Charter Discussion Juergen Quittek 65th IETF meeting, IPFIX session.
IPFIX Requirements: Document Changes and New Issues Raised Jürgen Quittek, NEC Benoit Claise, Cisco Tanja Zseby, Sebstian Zander, FhG FOKUS.
Computer Science and Engineering Computer System Security CSE 5339/7339 Session 27 November 23, 2004.
TCP/IP Protocol Suite Suresh Kr Sharma 1 The OSI Model and the TCP/IP Protocol Suite Established in 1947, the International Standards Organization (ISO)
TTCN-3 Testing and Test Control Notation Version 3.
1 PSAMP WGIETF, November 2003PSAMP WG PSAMP Framework Document draft-ietf-psamp-framework-04.txt Duffield, Greenberg, Grossglauser, Rexford: AT&T Chiou:
Flow sampling in IPFIX: Status and suggestion for its support Maurizio Molina,
IETF 64 PSAMP WG1 Path-coupled Meter Configuration Georg Carle, Falko Dressler, Changpeng Fan, Ali Fessi, Cornelia Kappler, Andreas Klenk, Juergen Quittek,
IP Flow Information eXport (IPFIX)
IPFIX Protocol Specifications IPFIX IETF-62 March 12th, Benoit Claise Stewart Bryant
Managed Objects for Packet Sampling
An IPv6 Flow Label Specification Proposal
IT443 – Network Security Administration Instructor: Bo Sheng
IPFIX WG 66th IETF San Diego November 9, 2006
IETF#67 – 5-10 November 2006 FECFRAME requirements (draft-ietf-fecframe-req-01) Mark Watson.
Zhenqiang Li Rong Gu China Mobile Jie Dong Huawei Technologies
IPFIX Requirements: Document Changes from Version -07 to Version -09
PSAMP MIB Status: Document Changes
UDP based Publication Channel for Streaming Telemetry
Chapter 8: Monitoring the Network
Chapter 15. Internet Protocol
draft-ietf-taps-transports-usage-03
William Lupton | | 04-Nov-2018
O&M Area Working Group WG
Presentation transcript:

1 PSAMP Protocol Specifications PSAMP IETF-58 November 11, 2003 Benoit Claise Juergen Quittek

222 PWE3 Architecture IETF-55 Table of Content 2. Introduction 3. Terminology 4. Relationship between PSAMP and IPFIX 4.1 IPFIX Overview 4.2 IPFIX and PSAMP Differences and Similarities Export Point of View Information Model Point of View 5. Using IPFIX for PSAMP 5.1 High Level View of the Integration 5.2 Partial or Entire IPFIX Protocol Specifications Support

333 PWE3 Architecture IETF-55 Table of Content 6. PSAMP Requirements versus the IPFIX Solution 6.1 IPFIX Solution for the PSAMP Requirements 7. Low Level View of the Integration 7.1 Sampling Case, PSAMP Base Level of Functionality Example 7.2 Sampling Case Example 7.3 Filtering Case Example 8. Security Considerations

444 PWE3 Architecture IETF-55 IPFIX latest news Vendor Identifier Information Element Those present agreed that text "compressed VI qualified" from the draft be copied directly into the IPFIX protocol draft. TCP versus SCTP A show of hands by in the meeting showed otherwise, with more favoring SCTP than TCP. However, many did not express an opinion. This issue will be taken to the mailing list to test the meeting consensus.

555 PWE3 Architecture IETF-55 IPFIX and PSAMP Differences and Similarities Export Point of view PSAMP doesn’t have the notion of flow IPFIX will not distinguish a flow record composed of several packets aggregated together, from a flow record composed of a single packet As a conclusion, the PSAMP export can be seen as special IPFIX flow record containing information about a single packet. Note: the IPFIX terminology is kept unchanged

666 PWE3 Architecture IETF-55 IPFIX and PSAMP Differences and Similarities Information Model Point of view As the templates are flexible, IPFIX will not distinguish what it exports IPFIX source IP address, destination IP address, ToS, etc. PSAMP the packet fragment (base level of functionality) "Recommended Contents for Packet Reports“ framework draft: the PSAMP reporting process SHOULD also report fields relating to the protocols used in the packets, to the packet treatment and to the selection state associated with the packet. Both information models are overlapping PSAMP information model will augment the IPFIX information model

777 PWE3 Architecture IETF-55 Templates and Options Templates Templates and Flow Data Records Templates: supply information about which data types are exported Flow Data Records: the values of the data types defined in the templates Options Templates and Options Data Records Options Templates: supply information about the Metering Process configuration or Metering Process specific data Options Data Records: the values of the data types defined in the Options Templates

888 PWE3 Architecture IETF-55 Using IPFIX for PSAMP Data FlowSet/ Flow Data Record or Options Data Record Template FlowSetTemplate Record/ Options Template Options Template Record / FlowSet Template Record Data Record Full IPFIX implementation is required for PSAMP

999 PWE3 Architecture IETF-55 Sampling Case Example PSAMP Base Level of Functionality Packet Report: Packet Interpretation: Template FlowSet: Template Record (SEQUENCE_NUMBER, PACKET_SAMPLE, SELECTOR_ID) Options Template FlowSet: Options Template Record (SELECTOR_ID, SAMPLING_ALGO, SAMPLING PARAM, OBSERVATION POINT) Data FlowSet: Flow Data Record (SEQUENCE_NUMBER #, PACKET_SAMPLE xxx, SELECTOR_ID 1) Data FlowSet: Options Data Record (SELECTOR_ID 1, systematic sampling, 1/100, ifIndex 3)

10 PWE3 Architecture IETF-55 Sampling Case Example PSAMP Base Level of Functionality The packet reports must contain (framework) the SEQUENCE-NUMBER, PACKET-SAMPLE Template FlowSet defines a Template Record composed of SEQUENCE- NUMBER, PACKET-SAMPLE and SELECTOR-ID. The report interpretation must contain (framework) the SAMPLING- ALGORITHM, SAMPLING-PARAMETER1, SAMPLING- PARAMETER2,, OBSERVATION POINT, etc… The Options Template FlowSet defines a Options Template Record composed of SELECTOR-ID, SAMPLING-ALGORITHM, SAMPLING-PARAMETERS. Finally the Data FlowSet is used to export the Flow Data Record(s) containing the real values of SEQUENCE-NUMBER, PACKET-SAMPLE and SELECTOR-ID. The Data FlowSet is also used to export the Options Data Record(s) containing the real values of SELECTOR-ID, SAMPLING-ALGORITHM, SAMPLING- PARAMETERS.

11 PWE3 Architecture IETF-55 Sampling Case Example Packet Report: Packet Interpretation: Template FlowSet: Template Record (SEQUENCE_NUMBER, PACKET_SAMPLE, DEST_AS, SELECTOR_ID) Options Template FlowSet: Options Template Record (SELECTOR_ID, SAMPLING_ALGO, SAMPLING PARAM, OBSERVATION POINT) Data FlowSet: Options Data Record (SELECTOR_ID 1, systematic sampling, 1/100, ifIndex 3) Data FlowSet: Flow Data Record (SEQUENCE_NUMBER #, PACKET_SAMPLE xxx, DEST_AS d, SELECTOR_ID 1)

12 PWE3 Architecture IETF-55 PSAMP Requirements versus the IPFIX Solution Transparency: “allow transparent interpretation of measurements as communicated by PSAMP reporting, without any need to obtain additional information concerning the observed packet stream.” This requirement is addressed by exporting the Selector ID in every Flow Data Records (packet report) and in the Options Data Records

13 PWE3 Architecture IETF-55 PSAMP Requirements versus the IPFIX Solution Robustness to Information Loss: “allow robust interpretation of measurements with respect to reports missing due to data loss, e.g. in transport, or within the measurement, reporting or exporting processes. Inclusion in reporting of information that enables the accuracy of measurements to be determined. An Options Templates MUST be sent on regular basis. This Options Template contains for example the total number of packet report exported from the PSAMP device, the total number of packet observed, etc... Thus the Collector can compare the number of packet report received per selector ID with the number actually metered and/or sent. In case of discrepancy, a new sampling rate could be computed.

14 PWE3 Architecture IETF-55 Open Issue Terminology section cut/paste the IPFIX protocol spec. section when finalized. Need the IANA consideration section in IPFIX Doublecheck the examples with the information model data type Must clearly define the sampling examples Must have a filtering example Sequential order of sampling/filtering. How to report the order to the collector? Describe the packet fragment encoding with the variable length data type Input sequence discrepancy between all the drafts Need some text review/polishing Any others?

15 PWE3 Architecture IETF-55 Open Issue Thank you

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.