[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: DISCUSS: draft-ietf-radext-fixes

To: "Alan DeKok" <aland@nitros9.org>
Subject: RE: DISCUSS: draft-ietf-radext-fixes
From: "Glen Zorn $gwz$" <gwz@cisco.com>
Date: Mon, 2 Jul 2007 15:38:55 -0700
Cc: "David B. Nelson" <dnelson@elbrysnetworks.com>, <radiusext@ops.ietf.org>, <iesg@ietf.org>, <draft-ietf-radext-fixes@tools.ietf.org>, <radext-chairs@tools.ietf.org>, "Lars Eggert" <lars.eggert@nokia.com>
In-reply-to: <46896AED.50901@nitros9.org>
References: <E1I5KOT-00048s-Pp@ietf.org> <4688FB88.6040400@nitros9.org> <4C0FAAC489C8B74F96BEAD85EAEB262504414EE8@xmb-sjc-215.amer.cisco.com> <008701c7bccc$0859ed90$5d1216ac@xpsuperdvd2> <4C0FAAC489C8B74F96BEAD85EAEB262504414F2A@xmb-sjc-215.amer.cisco.com> <008f01c7bcd1$adee70a0$5d1216ac@xpsuperdvd2> <4C0FAAC489C8B74F96BEAD85EAEB262504414FD6@xmb-sjc-215.amer.cisco.com> <46896AED.50901@nitros9.org>

Alan DeKok <mailto:aland@nitros9.org> allegedly scribbled on Monday,
July 02, 2007 2:15 PM:

> Glen Zorn (gwz) wrote:
>>> Not enforcing the monotonic requirement means that servers would
>>> need to keep a cache of recently used Identifiers for each NAS
>>> IP/UDP. 

I didn't actually write this, David did.

...

>> Only if we assume that a) there is no capabilities exchange between
>> clients & servers or b) that RADIUS servers have virtually no
>> intelligence.  If a server noticed that every single identifier
>> coming from a given client was 1 greater than the last over an hour
>> or so, couldn't it reasonably assume that the client was behaving in
>> the recommended fashion & process that client's requests in the more
>> efficient manner?
> 
>   As opposed to caching packets keyed by (source IP, source port, Id)
> for no more than 30 seconds? 
> 
>   You're proposing keeping long-lived state to track Identifiers as a
> way to avoid keeping short-lived state to track Identifiers.  It's an
> novell idea, but I don't see the benefit. 

Your cache takes a minimum of 7 bytes/client/request.  My flag can be a
bit set to 0 at start up -- if an non-increasing Identifier is ever
seen, flip the bit & fall back to the more expensive method.  
 
> 
>   Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Re: DISCUSS: draft-ietf-radext-fixes
  - From: Alan DeKok <aland@nitros9.org>
- RE: DISCUSS: draft-ietf-radext-fixes
  - From: "Glen Zorn $gwz$" <gwz@cisco.com>
- RE: DISCUSS: draft-ietf-radext-fixes
  - From: "David B. Nelson" <dnelson@elbrysnetworks.com>
- RE: DISCUSS: draft-ietf-radext-fixes
  - From: "Glen Zorn $gwz$" <gwz@cisco.com>
- RE: DISCUSS: draft-ietf-radext-fixes
  - From: "David B. Nelson" <dnelson@elbrysnetworks.com>
- RE: DISCUSS: draft-ietf-radext-fixes
  - From: "Glen Zorn $gwz$" <gwz@cisco.com>
- Re: DISCUSS: draft-ietf-radext-fixes
  - From: Alan DeKok <aland@nitros9.org>

Prev by Date: RE: DISCUSS: draft-ietf-radext-fixes
Next by Date: Re: DISCUSS: draft-ietf-radext-fixes
Previous by thread: Re: DISCUSS: draft-ietf-radext-fixes
Next by thread: RE: DISCUSS: draft-ietf-radext-fixes
Index(es):
- Date
- Thread