On Fri, 13 Jun 2003, David Meyer wrote:
[...]
Yes, this is a problem. I certainly can't say I *like* the rpaddr
mechanism, or rather, ASM, architecture-wise.

This overloading was one of the reasons I didn't like the SPT threshold
toggles in the first place (because addresses should be opaque), but the
same argument applies to the whole embedded RP, too.

Fixing it in the protocol would probably be the best choice, but this
doesn't fix the short-term problems of de-facto ASM multicast world (if
you call it "world" :-) which is transitioning to IPv6.

SSM is taking a good step in the right direction, but it doesn't really
appear to be widely available in the short term;
- there are a number of "last-mile" deployment problems, like with
snooping switches
- host support is still new or missing (also for those systems which
weren't shipped yesterday!)
- application API is in progress (though near to finalized), not widely
implemented, and the changes needed in the apps to transition them to SSM
are not not always trivial
- (routers seem to be in a pretty good state, though!)

I'd hope embedded RP might make it easier to transition to IPv6, and to
act as a middle step when moving towards SSM in the long term.

I'd certainly say that some applicability statement is needed, at the very
least, but I'm not sure if it's enough -- or the direction we want to go
towards.

But that's why I've been begging for input. I heartily admit that e.g.
SSM is a better mechanism, but I'm worried about deployment and what can
be made easily available, not theory. It seems to me that a small
modification in the router software is the simplest way to deploy IPv6
multicast...

Dave,

For a mechanism like embedded-RP, the argument that specifying another
detail of operations and mabe express a way to select it is an overload
of signalling is a bit beside the point: The whole idea of embedded
RP addresses already is to replace a huge chunk of protocol/signalling
operations.

I also have to say that i am much less interested in fundemantal
beauty of protocol or design arguments as long as they can not provide
me a comparable simple, effective and reliable mode of large scale deployments,
aka: If i have to violate design principles whose only defense is
"i am a design principle, don't violate me" to get all those deployment
benefits, then i rather choose the deployment benefits. Sure: as soon
as someone tells me "there is an architecturally better way and it is
comparable simple, effective and reliable", then i of course vote for
the architecturally better solution.

Fact is that the amount of state in the Internet for IP multicast is
an important factor to consider. Fact also is that you may want to
have either SPT or RPT based forwarding if you could choose from. I do
not see any comparable simple, effecte and reliable mode of relaying
that information to the DR in a group then to make it part of the address
encoding. Fix the protocol ? Heck, if i could fix PIM-SM to give me less
pain finding an RP, we wouldn't need embedded-RP in the first place, right ?

So, the argument goes: Embedding semantics into a multicast address isn't
as bad as embedding it into a unicast address! Why ? - well, because
there are leass zeleats trying to defined the unencumbered beauty for
multicast addresses as there are for unicast addresses ? Anyhow,
embedded-RP by itself is allowed by the gods of architecture beauty (*pheef*,
what a revief). So now we're discussing wether taking the 4 bits of
address piece we have available (RPaddr) and assigning semantics to each
value of it consistutes a violation of principle in the supreme IETF court
based on the claim that it invading the rights of the RP-unicast-addres.

But that's just a matter of interpretation. My interpretation is that
these 4 bits are not really an RP address but constitute an index into
a table that determines parameters for the mode of operations of PIM
for the IP multicast group itself:

Parameter 1 Parameter2 Parameter3 ...
Index RP-address SPT threshold Protocol
Interface-ID
-------------------------------------------------------------------------
1 1 0 PIM-SM
2 2 infinity PIM-SM
further values to be allocated

Now we already agree that the Embedded-RP group address conveys the
information that this is a group to be run in PIM-SM and we also agree
that the Index field itself will determine a value for the Interface-ID.
I personally do not see any architectural difference in declaring this
Index to also determine other elements of operation, like the SPT threshold.
I would rather argue that if this argument that you could not encode
the SPT threshold setting parameter that we then shold also not be
allowed to do the embedded-RP mechanism at all on the matter of principle,
because we already try to express other parameters like the Protocol and
the Interface-ID.

I am totally open to an actual requirements discussion wether or not
being able to select the SPT threshold (or for that matter Bidir-PIM vs.
Sparse-Mode) is operationally/deployment-wise required / a good thing
or not, but this matter of principle for protocol design arguments - sorry -
strike me just as bogus.

Cheers
Toerless

Is there any reason why ASM is less useful for IPv6 than it is for IPv4?
Are you saying that you need it for IPv4 just because SSM is hard to
deploy? Or is it just because of legacy applications?
I fail to see why the existence of ASM should stop people from deploying
SSM. I can see why some may want to deploy ASM, and why some only will
deploy SSM. I don't see any reason to deprecate ASM, although I agree
that parts of it could be improved...

I would also say that you have legacy applications for IPv6. There are
already a number of ASM applications supporting IPv6. And it's much
easier to port an IPv4 ASM application to IPv6, than it is to change it
to use SSM. Unless of course it's a simple streaming application.

I've been thinking a bit of how to modify ASM applications, so that they
can work with SSM and do the necessary source discovery on their own. It
is doable, but adds a lot of complexity at the application layer. This
in itself may not be too bad though. Someone should really try to analyze
what the possible effects are.

Stig

Well said.

Greg

All right. So, which IPv6 applications and host stacks do you know ?
If you were trying to make an exhaustive list, then ist would show
that the situation of SSM support is not much different than in IPv4.
That's a noble attempt in support of SSM, and you might even get it
through as an informational RFC, and that might help some customers to
consider more strongly to mive to SSM in IPv6, but that's about as much
as it will achieve. - Which is fine, but which certainly does not
deprecate ASM.
What ? ASM was a mistake ? I don't think so. Sure, we had problems for
which we found no good nor simple enough solutions (like address allocation,
interdomain ASM with MSDP, or worse BGMP), and for those applications that
were hit hardest by these problems, SSM definitely was and is the best
solution in IPv4.

But please don't just switch off your brain and say "in IPv6 everything is
the same" - it is not. IPv6 is not only a different ball park, it is
a completely new game !

- We do not have address allocation issues due to rfc3306
(address management - mayor reason for global SSM in IPv4, remember ?)

- We do not have the interdomain MSDP problem because of embedRP
(simplicity - mayor reason for SSM in IPv4, remember ?)

- We as far as the third argument in favor of SSM in IPv4 goes:
we can even have DoS attack reduced very similar to SSM with
ebedRP (see my other email on that thread).

So, instead of repeating our IPv4 SSM prayer into IPv6 unchanged, could
we please stick to the facts and acknowledge that those are different
in IPv6 over IPv4 ?

Cheers
Toerless

but only a partial improvement. MSDP is only a part of the evils of
network-based source discovery. Why are we trying to only simplify an
unwanted mechanism? Let's just get rid of it.
..and since you aknowledged in your previous post that the current IPv6
mcast deployments are small and should be simple to upgrade, then why
bother with this ASM step at all? Go straight to interdomain SSM in V6

Greg

-----BEGIN PGP SIGNED MESSAGE-----
PIM Bi-Dir with embedded RP addressing (in the IPv6 context) doesn't
require network-based source discovery, or explicit state for each
source. Are there other "evils" that I'm missing?


===
Bill Nickless http://www.mcs.anl.gov/people/nickless +1 630 252 7390
PGP:0E 0F 16 80 C5 B1 69 52 E1 44 1A A5 0E 1B 74 F7 ***@mcs.anl.gov

You mean if we would have thought of SSM in 1994 and defined & implemented it
with a simpler version of IGMP for SSM than *yuck* IGMPv3 ? I think it likely
would have been better because at that time there was still sufficient work
on the application and research side that would supported the end-to-end
aspects of it.

Unfortunately that type of development would never have happened in 1994
unless we had time travel to show all the dead bodies that PIM-SM with
MSDP has left on the battle field, because architecture wise everybody
was so persuaded that the ASM model is the best thing since the wheel.

Don't tell me time travel will never be possible, i still want to go
back and fix things ! ;-))

Cheers
Toerless

Simple answer: "no". A more quantitative answer: "68% probability that
multicast would not be farther along, with or without MSDP".

Without denying the evils/bads/limitations/cons/holes of MSDP, I do want
to mention that in good part of 2000-2001 MBGP routing was extremely
flaky. During this period, more than 68% of addresses were not visible to
several core routers 20%-60% of each day. Therefore, MSDP or no MSDP,
frustrations level was for folks was rising any ways because of severe
reachability and data delivery problems. As kevin said: "Basically we were
under the illusion that multicast was working fine when it wasn't."

--prashant

I propose that the next MBONED working group meeting be a joint meeting
with the MMUSIC folks.

Dave, can you make this happen? I cc'ed the MMUSIC chairs as well.

Thanks,
Dino

-------------------------------------------------------------------------------
X-Authentication-Warning: network-services.uoregon.edu: majordomo set sender to owner-***@network-services.uoregon.edu using -f
Date: Tue, 17 Jun 2003 15:31:03 -0700
Subject: Refocus on Multicast choices (was Re: draft-savola-mboned-mcast-rpaddr-03.txt)
Content-Type: text/plain; charset=US-ASCII; format=flowed
Cc: John Zwiebel <***@procket.com>
To: ***@network-services.uoregon.edu
From: John Zwiebel <***@procket.com>
In-Reply-To: <***@cab.cs.ucsb.edu>
X-OriginalArrivalTime: 17 Jun 2003 22:31:05.0650 (UTC) FILETIME=[240C0920:01C33520]
Sender: owner-***@network-services.uoregon.edu
Precedence: bulk
X-Archive: http://darkwing.uoregon.edu/~llynch/mboned/
X-HTTP: http://ns.uoregon.edu/~dmm/MBONED
X-Subscribe: ***@ns.uoregon.edu
X-Unsubscribe: ***@ns.uoregon.edu

Guys, it seems to me we have to refocus. Everyone has made
some good points (as well as some stupid ones -- but what would
fun would this discussion be without being able to think we're
all smarter than each other. ;-)

Let me try to outline the dimensions of the problem so we can
break things down and stop using the fact that "you used to
date my sister and dumped her so I won't talk to you any longer"
from interfering with our overall goal of deploying something
that "works".

One dimension of the problem (which I will call "vendor responsibility)
is:
Applications/Hosts, Network (IP/Routers), Layer 2 (switches and/or
"last mile").

Other (perhaps interdependent) dimension are:
ease of deployment and use
scalability
reliability
functionality

I believe we can gain insight into restrictions that have to be dealt
with
in each of the second group of dimensions if we recognize the problems
that
will be introduced in the vendor responsibility dimension.

Certain beliefs are held that need to be challenged. Among these:

I believe App writers don't want to have to deal with a new paradigm
when
what they have works "good enough" and if those "network guys"
(routers
and switches) would just "fix there stuff", life would be good.

I believe router guys have been frustrated by the "failure" of the
switch folks (which includes ATM/DSLAM) to recognize the inevitability
of multicast and the myriad of benefits that will be recognized when
multicast is everywhere. (ie, why isn't ATM getting killed faster?)

I believe "most" switch guys, faced with providing something simple
and
cheap (vs a router) and reliable, make the choice to ignore multicast.
After all, the only deployed IGMPv3 is in Windows and there just isn't
enough content out there that they won't be able to sell their
equipment.
(Sorry Jon, the market is a huge player.)

I believe app writers think that if it works in their enterprise lan,
it
should "just work" across the internet while the router guys are faced
with ISPs that don't want to depend on each other so certain
compromises
have to be made (MSDP).

If you take these attitudes and apply them to the second set of problem
dimensions, I think you can see that if we aren't careful, we'll end up
talking "at" each other and the problems we have will continue. Add to
that another dimension...

I also strongly believe there is an enormous financial incentive for
certain content providers to ensure multicast fails, which (perhaps)
results
in this group trying to solve problems that are not solvable.

But, let's leave my paranoia out of the discussion or we'll be looking
for
the WMDs and trying to impeach yet another president -- to no good
effect.

So, let me -- as a router guy -- try to point out the limits of all the
different multicast options and try to highlight the various discussions
I think I've seen in this thread.

BTW, what I hope to encourage out of this is several -separate-
discussions
so we don't have the "so's your mother" arguments (especially Wiber and
watermelon) flowing back and forth.

ASM vs SSM vs Bidir
--------------------
ASM isn't going away soon. DVMRP hung around for years. Dense-mode was
around for years. ASM is going to be around for years. If you are an
app developer depending on ASM, its going to be there for you.

So, what's the big deal? Why are the "router guys" saying ASM must die?

1) the idea of switching to from the RP-tree to the SPT has proven
to be "intractable". The protocol actually has routers "fight"
with each other when trying to determine which router is going to
be the forwarder. If this "fight" were described as a "route flap"
then perhaps folks who haven't watched the protocol might better
understand the seriousness of this conflict. Switching between
trees, joining and pruning trees, conflicts between multiple
forwarders on a LAN: all of these could be thought of as "route
flaps". (Let's not get caught up in how bad a route flap is,
but do recognize that we are talking about cases where these
route flaps are endemic to certain applications and/or topologies
so that just because they don't affect you, doesn't mean they
aren't important to resolve.)

2) Source discovery is is designed into the protocol. Aggh...
This has been a pain since day-one. Every IETF we revisit the
same requirement that there needs to be some kind of a RTS/CTS
protocol that lets routers know that a source intends to send.
Multicast is -NOT- unicast. The idea that unicast UDP just dumps
packets on to the network and so multicast UDP should be able
to do the same is just wrong, wrong, wrong. Bidir (with previously
announced RPs) can meet this requirement because the route is
-previously- established -- just like unicast UDP. But it should
be obvious by now that expecting the network to dynamically create
a route while not losing any packets or creating duplicate packets,
does not work. Especially when you get interdomain multicast
depending on MSDP.

3) Interdomain multicast is outside of the scope of the PIM protocol.
MSDP was designed as a kludge and was only meant to be temporary,
yet from the moment it was proposed, additional requirements were
placed on it to perform functions it was not well suited for.
Specifically the need to encapsulate the first data packet received
by the SA originator so it could be delivered down the shared-path
of whatever domains just might be interested in receiving that
packet.

4) non-RPF traffic is difficult to deal with. This means
asserts as well as packets seen on interfaces that are not in the Olist
and are not the IIF for the mroute. The the separating of the
forwarding machinery from the routing machinery in high-end systems
has made non-RPF traffic difficult to handle without using additional
resources inside the router.

So my view of the big 3 are:
-- dynamic route requiring no packet loss including Interdomain
operations
-- protocol thrashing.
-- non-RPF traffic.

Yes, its much better now than it used to be
and in certain topologies and for certain applications it is
"good enough". But it isn't "good enough" for -all- applications
and -all- topologies. So alternatives must be proposed and developed.

ASM just isn't going to get that much better than it is right now.

Bidir
-----
Bidir greatly simplifies the control plan because nothing's going
anywhere until the route is in place (ie a DF has been elected on
the LAN). This happens -before- the first data packet is sent.

Bidir has a problem in the interdomain environment because you
must figure out where the RP is suppose to reside. This problem
has been around since the beginning of multicast.

Bidir doesn't have to deal with source discovery.

Bidir doesn't require extra machinery to deal with non-RPF traffic.
The OIF is either there or its not. (DF details I won't go into)

SSM
---
Again, the route has to be established -before- any packets
are forwarded off the source lan.

SSM has the problem of source discovery, a new protocol or
procedure has to be established. Who wants to have to deal
with that?

SSM -should- deal with duplicate packets on the LAN and so
probably must implement an assert mechanism, but it doesn't
have to look at every mpacket it sees on every interface
just in case a register needs to be sent to the PIM RP.
And it may be possible to use the DF mechanism to figure out
who the forwarder on a given LAN should be for an SSM group
rather than examine packets on non-RPF interfaces.


So, yes, I've glossed over the application requirements and
ignored the layer2 requirements. I hope though that I've made
it clear that as multicast becomes more widely deployed,
PIM-SM and MSDP are going to become more and more unmanageable
in the interdomain environment. As someone who wants to watch
shep's pig from anywhere in the world, I'm very interested in
simplifying the job that the routers have to perform (There
are a lot of pigs out there and if you have a pig fetish, perhaps
you can't get enough).

Now, I could be accused of being multicast-biased and I am,
since obviously the chances of thousands of folks wanting to
watch Shep's pig at the same time it probably quite limited.
On the other hand, if shep's pig's name was victoria...

But that does bring up another topic for discussion.


So I'd like to see this discussion branch off into:

-- App requirements, please don't say "I have to have ASM".
I equate that to customers saying "I have to have 2547"
"Everyone" except the customer "knows" 2547 isn't going to
scale, yet we do nothing to stop them from jumping off that
cliff. Let's -not- do that with multicast.
o how large are your groups?
o what kind of reliability do you need?
o how many sources? (remember RTCP fails in an ASM environment)
o how many receivers?
o what kind of distribution of sources and receivers?
o BW requirements

-- Layer2 requirements (last-hop/last-mile)
o Why can't you do IGMPv3 snooping?
o Why can't you do point to multipoint?
o Do you have some alternate proposals?

WRT whether or not the embedded RP is a good idea, IHNO
(I have no opinion). I don't know enough about the apps to
decide.

Whether or not interdomain bidir is a good idea -- IHNO

Whether or not ASM is the only way to do source discovery that
scales -- I doubt it. think of it this way. If ASM were good
enough, do you think we'd be pushing for something else? The
routing guys have spent at least as much time trying to fix ASM
as the App guys have spent building the app. If the routing
folks think its necessary to toss out all that work, doesn't
it make sense that there's a reason for it?

Now, as for the argument between the routing guys themselves on
ASM/bidir/SSM: There's no reason not to address all three. The
points that both (all?) sides make are valid. Each vendor has to
make a choice on how to deploy its resources. A vendor that doesn't
currently support ASM isn't going anywhere so that's a moot point.

And the question of Bidir vs SSM can't be determined until we get
a better understanding of the application space. Remember we once
thought Dense-mode was viable for expanding ring searches, but the
ttl-0 problem with asserts should have cured us of that. (Which
shouldn't be interpreted to mean I don't think the bug shouldn't
be fixed.)

In the olden days, sparse or dense eventually evolved to sparse-dense
and now dense has withered away. there are some arguments that
suggest that if we could develop a way of determining where to locate
a bidir RP (remember its virtual so is just a subnet and not a real
box) that SSM won't be required, so -only- bidir should be developed.
That would mean IGMPv3 wouldn't be required.

Perhaps we should be figuring out where to locate the RP and
deny such a thing as a source-only group member. Now the debate
might become even easier. Bidir everywhere.

z

-------------------------------------------------------------------------------

Typo, first occurence replace of IPv6 with IPv4.

Dino