| Internet-Draft | SCHC OAM for LPWAN | October 2023 |
| Barthel & Toutain | Expires 25 April 2024 | [Page] |
This document describes how SCHC can be used to efficiently perform basic Operation, Administration and Maintenance (OAM) on Low Power Wide Area Networks (LPWANs) by compressing ICMPv6/IPv6 headers, or by shielding the LPWAN network and the Device from undesirable ICMPv6 traffic.¶
This document specifies additional behavior for SCHC [RFC8724] and extends the YANG Data Model defined in [RFC9363].¶
This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.¶
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.¶
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."¶
This Internet-Draft will expire on 25 April 2024.¶
Copyright (c) 2023 IETF Trust and the persons identified as the document authors. All rights reserved.¶
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Revised BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Revised BSD License.¶
With IP protocols now generalizing to constrained networks, users expect to be able to Operate, Administer and Maintain (OAM) [RFC6291] such networks with the familiar tools and protocols they already use on less constrained networks.¶
However, this requires a little care, because OAM traffic adds load to the network, and LPWANs could easily be overwhelmed by it. LPWANs’ salient characteristics are described in [RFC8376].¶
This document specifies ways to compress such OAM traffic over LPWANs, or to eschew it altogether.¶
OAM uses specific messages sent into the data plane to probe a network. Most often, these messages do not carry meaningful data. Instead, network metrics are inferred from analysing the OAM traffic.¶
For example, such traffic is used¶
The primitive functionalities of OAM are achieved with the ICMPv6 protocol [RFC4443]. ICMPv6 messages are transported over IPv6 [RFC8200].¶
ICMPv6 defines a generic message format, used to inform the source of IPv6 packets of errors during packet delivery..¶
[RFC4443] instantiates 4 such error messages: Destination Unreachable, Packet Too Big, Time Exceeded and Parameter Problem.¶
[RFC4443] also defines the Echo Request and Echo Reply messages, which provide support for the ping application.¶
Other ICMPv6 messages are defined in other RFCs, such as an extended format of the same messages [RFC4884] and other messages used by the Neighbor Discovery Protocol [RFC4861].¶
This document focuses on using Static Context Header Compression (SCHC) to compress [RFC4443] messages that need to be transmitted over the LPWAN network, and on having the LPWAN gateway proxying the Device to save it the unwanted traffic. More specifically, this document describes recommended compression of ICMPv6/IPv6 messages (including header fields and structured payload) and extends SCHC by specifying new surrogate behavior, addressing four scenarios:¶
This draft re-uses the Terminology defined in [RFC8724].¶
The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “NOT RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in BCP 14 [RFC2119] [RFC8174] when, and only when, they appear in all capitals, as shown here.¶
In the LPWAN architecture, we can distinguish the following cases:¶
TBD: list of the fields that can be found in an ICMPv6 message.¶
A Device may send an Echo Request message to check the availability of the network and of the host running the Application.¶
If a ping request is generated by a Device, then SCHC compression applies.¶
The format of an ICMPv6 Echo Request message is described in Figure 1, with Type=128 and Code=0.¶
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Code | Checksum |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Identifier | Sequence Number |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Data ...
+-+-+-+-+-
If we assume that one rule will be devoted to compressing Echo Request messages, then Type and Code are known in the rule to be 128 and 0 and can therefore be elided with the not-sent CDA.¶
Checksum can be reconstructed with the compute-checksum CDA and therefore is not transmitted.¶
[RFC4443] states that Identifier and Sequence Number are meant to “aid in matching Echo Replies to this Echo Request” and that they “may be zero”. Data is “zero or more bytes of arbitrary data”.¶
For constrained devices or networks, we recommend that Identifier be zero, Sequence Number be a counter on 3 bits, and Data be zero bytes (absent). Therefore, Identifier is elided with the not-sent CDA, Sequence Number is transmitted on 3 bits with the LSB CDA and no Data is transmitted.¶
The transmission cost of the Echo Request message is therefore the size of the Rule Id + 3 bits. The rule ID length can be chosen to avoid adding padding.¶
When the destination receives the Echo Request message, it will respond back with a Echo Reply message. This message bears the same format as the Echo Request message but with Type = 129 (see Figure 1).¶
[RFC4443] states that the Identifier, Sequence Number and Data fields of the Echo Reply message shall contain the same values as the invoking Echo Request message. Therefore, a rule shall be used similar to that used for compressing the Echo Request message.¶
The following rule gives an example of a SCHC compression. The type can be elided if the direction is taken into account. Identifier is ignored and generated as 0 at decompression. This implies that only one single ping can be launched at any given time on a device. Finally, only the least significant 8 bits of the sequence number are sent on the LPWAN, allowing a serie of 255 consecutive pings.¶
| Field | FL | FP | DI | Value | Matching Operator | CDA | Sent bits | |
|---|---|---|---|---|---|---|---|---|
| IPv6 Headers description | ||||||||
| ICMPv6 Type | 8 | 1 | Up | 128 | equal | not-sent | ||
| ICMPv6 Type | 8 | 1 | Dw | 129 | equal | not-sent | ||
| ICMPv6 Code | 8 | 1 | Bi | 0 | equal | not-sent | ||
| ICMPv6 Identifier | 16 | 1 | Bi | 0 | ignore | not-sent | ||
| ICMPv6 Sequence | 16 | 1 | Bi | 0 | MSB(13) | LSB | 3 | |
NOTE: Add an example where the Payload is also compressed.¶
If the Device is ping’ed (i.e., is the destination of an Echo Request message), the device receives the compress message and generate an Echo. In that case, the fields sequence number and identifier cannot be compressed if the source is not aware of the compression scheme.¶
But the default behavior is to avoid propagating the Echo Request message over the LPWAN.¶
This is done by proxying the ping request on the core SCHC. This requires to introduce a new processing when the rule is selected. The selection of a compression rule triggers the compression and sends the SCHC packet to the other end. Specifying an Action, change this behavior. In our case, being processed by the compressor, the packet description is processed by a ping proxy. Since the rule is used for the selection, so CDAs are not necessary and set to "not-sent".¶
The ping-proxy takes a parameter in second, gives the interval during which the device is considered active. During this interval, the proxy-ping echoes ping requests, after this duration, the ping request will be discarded.¶
The resulting behavior is shown on Figure 2 and described below:¶
Device NGW core SCHC Internet Host
SCHC packet
---|~~~~~~~~~~~~~~~~~~~~~~~>| Echo Request, Code=0 |
l t | | | |<---------------------------|
i i | | | | |
f m | | | |--------------------------->|
e e X | | | Echo Reply, Code=0 |
r | | | |
| | | |
| | | Echo Request, Code=0 |
| | |O---------------------------|
| | | |
| | | |
NOTE: Do we add a proxy-ping-or-sent with instead a not answering send the compress packet to the device ?¶
The following rule shows an example of a compression rule for pinging a device.¶
| Field | FL | FP | DI | Value | Matching Operator | CDA | Sent bits | |
|---|---|---|---|---|---|---|---|---|
| Action: proxy-ping(300) | ||||||||
| IPv6 Headers description | ||||||||
| ICMPv6 Type | 8 | 1 | Dw | 128 | equal | not-sent | ||
| ICMPv6 Code | 8 | 1 | Bi | 0 | equal | not-sent | ||
| ICMPv6 Identifier | 16 | 1 | Bi | 0 | ignore | not-sent | ||
| ICMPv6 Sequence | 16 | 1 | Bi | 0 | MSB(13) | LSB | 3 | |
In this example, type and code are elided, the identifer has to be sent, and the sequence number is limited to one byte.¶
As stated in [RFC4443], a node should generate an ICMPv6 message in response to an IPv6 packet that is malformed or which cannot be processed due to some incorrect field value.¶
The general intent of this document is to spare both the Device and the LPWAN network this un-necessary traffic. The incorrect packets should be caught at the core SCHC and the ICMPv6 notification should be sent back from there.¶
Device NGW core SCHC Internet Host
| | | Destination Port=XXX |
| | |<---------------------------|
| | | |
| | |--------------------------->|
| | | ICMPv6 Port Unreachable |
| | | |
| | | |
Figure 3 shows an example of an IPv6 packet trying to reach a Device.¶
Let's assume that no rule matches the incoming packet (i.e. there is no co-compression rule)¶
Instead of sending the packet over the LPWAN and having this packet rejected by the Device, the core SCHC issues an ICMPv6 error message “Destination Unreachable” (Type 1) with Code 1 (“Port Unreachable”) on behalf of the Device.¶
In that case the SCHC C/D MAY act as a router (i.e. it MUST have a routable IPv6 address to generate an ICMPv6 message). When compressing a packet containing an IPv6 header, no compression rules are found and: * if a rule contains some extension headers, a parameter problem may be generated (type 4), * no rule contains the IPv6 device address found in the incoming packet, a no route to destination ICMPv6 message (type 0, code 3) may be generated, * a device IPv6 address is found, but no port matches, a port unreachable ICMPv6 message (type 0, code 4) may be generated,¶
In this situation, we assume that a Device has been configured to send information to a server on the Internet. If this server becomes no longer accessible, an ICMPv6 message will be generated back towards the Device by either an intermediate router or the destination. This information can be useful to the Device, for example for reducing the reporting rate in case of periodic reporting of data. Therefore, we compress the ICMPv6 message using SCHC and forward it to the Device over the LPWAN. We also introduce new MO and CDA that can be used to test the presence and/or compress the returning payload.¶
Device NGW core SCHC Internet Server
| | | |
| SCHC compressed IPv6 | |
|~~~~~~~~~~~|----------->|----------------------X |
| | |<--------------------- |
|<~~~~~~~~~~|------------| ICMPv6 Host unreachable |
|SCHC compressed ICMPv6 | payload: IPv6 packet |
|payload: compressed IPv6| |
| | | |
Figure 4 illustrates this behavior. The ICMPv6 error message is compressed as described in Section 4.5.1 and forwarded over the LPWAN to the Device.¶
The SCHC returning message contains the SCHC residue of the ICMPv6 message and MAY contain the compressed original message contained in the ICMP message. The compression can be done by the core SCHC by reversing the direction as if this message was issued by the device.¶
The ICMPv6 error messages defined in [RFC4443] contain the fields shown in Figure 5.¶
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type | Code | Checksum |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Value/Unused |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| As much of invoking packet |
+ as possible without the ICMPv6 packet +
| exceeding the minimum IPv6 MTU |
[RFC4443] states that Type can take the values 1 to 4, and Code can be set to values between 0 and 6. Value is unused for the Destination Unreachable and Time Exceeded messages. It contains the MTU for the Packet Too Big message and a pointer to the byte causing the error for the Parameter Error message. Therefore, Value is never expected to be greater than 1280 in LPWAN networks.¶
The payload is viewed as a field. An unsued field MUST not appear in the compressoin rules.¶
The source address of the message SHOULD be ignore, since it can be initiated by any router on the path.¶
The following generic rule can therefore be used to compress all ICMPv6 error messages as defined today. More specific rules can also be defined to achieve better compression of some error messages.¶
The Type field can be associated to a matching list [1, 2, 3, 4] and is therefore compressed down to 2 bits. Code can be reduced to 3 bits using the LSB CDA. Value can be sent on 11 bits using the LSB CDA, but if the Device is known to send smaller packets, then the size of this field can be further reduced.¶
The first rule example Table 3 just sends the ICMP type and code as residue to the device.¶
| Field | FL | FP | DI | Value | Matching Operator | CDA | Sent bits | |
|---|---|---|---|---|---|---|---|---|
| IPv6 Headers description | ||||||||
| ICMPv6 Type | 8 | 1 | Dw | 128 | equal | not-sent | ||
| ICMPv6 Code | 8 | 1 | Dw | [0,1,2,3,4,5,6] | match-mapping | mapping-sent | 3 | |
| ICMPv6 Payload | var | 1 | Dw | 0 | ignore | not-sent | ||
The second rule example Table 4 also only sends the ICMP type and code as residue to the device, but it introduces the new MO "rev-rule-match". This MO will check if a rule matches the payload.¶
| Field | FL | FP | DI | Value | Matching Operator | CDA | Sent bits | |
|---|---|---|---|---|---|---|---|---|
| IPv6 Headers description | ||||||||
| ICMPv6 Type | 8 | 1 | Dw | 128 | equal | not-sent | ||
| ICMPv6 Code | 8 | 1 | Dw | [0,1,2,3,4,5,6] | match-mapping | mapping-sent | ||
| ICMPv6 Payload | var | 1 | Dw | 0 | rev-rule-match | not-sent | ||
By [RFC4443], the rest of the ICMPv6 message must contain as much as possible of the IPv6 offending (invoking) packet that triggered this ICMPv6 error message. This information is used to try and identify the SCHC rule that was used to decompress the offending IPv6 packet. If the rule can be found then the Rule Id is added at the end of the compressed ICMPv6 message. Otherwise the compressed packet ends with the compressed Value field.¶
The third rule example Table 5 also sends the ICMP type, code and the compresssed payload as residue. It can be noted that this field is identified as "variable" in the rule which will introduce a size before the IPv6 compressed header.¶
| Field | FL | FP | DI | Value | Matching Operator | CDA | Sent bits | |
|---|---|---|---|---|---|---|---|---|
| IPv6 Headers description | ||||||||
| ICMPv6 Type | 8 | 1 | Dw | 128 | equal | not-sent | ||
| ICMPv6 Code | 8 | 1 | Dw | [0,1,2,3,4,5,6] | match-mapping | mapping-sent | ||
| ICMPv6 Payload | var | 1 | Dw | 0 | rev-rule-match | rev-compress-sent | (compressed IPv6 header*9) + 4 or +12 | |
LT: do we add packet too big, for instance if a fragmentation rule cannot handle a size larger than 1280?¶
The Action is a new attribute in the rule. When a rule matching the packet is selected, the action is applied first and indicates if the regular compression based on CDA should be applied.¶
Figure 6 shows the augmentation of the Data Model defined in [RFC9363]¶
This YANG module extends Field ID identities to includes fields contained in ICMPv6 header. Note that the ICMPv6 payload is parsed to the specific field "fid-icmpv6-payload"¶
It also defines two new Most identities:¶
The Field Value may be compressed by a rule. The result SHOULD be included in the SCHC message as a variable length residue. It contains the Rule ID used by the compression, the residue, the payload and some padding bits since the variable length init is in bytes.¶
module ietf-schc-oam {
yang-version 1.1;
namespace "urn:ietf:params:xml:ns:yang:ietf-schc-oam";
prefix schc-oam;
import ietf-schc {
prefix schc;
}
organization
"IETF IPv6 over Low Power Wide-Area Networks (lpwan) working group";
contact
"WG Web: <https://datatracker.ietf.org/wg/lpwan/about/>
WG List: <mailto:p-wan@ietf.org>
Editor: Laurent Toutain
<mailto:laurent.toutain@imt-atlantique.fr>
Editor: Ana Minaburo
<mailto:ana@ackl.io>";
description
"
Copyright (c) 2021 IETF Trust and the persons identified as
authors of the code. All rights reserved.
Redistribution and use in source and binary forms, with or
without modification, is permitted pursuant to, and subject to
the license terms contained in, the Simplified BSD License set
forth in Section 4.c of the IETF Trust's Legal Provisions
Relating to IETF Documents
(https://trustee.ietf.org/license-info).
This version of this YANG module is part of RFC XXXX
(https://www.rfc-editor.org/info/rfcXXXX); see the RFC itself
for full legal notices.
The key words 'MUST', 'MUST NOT', 'REQUIRED', 'SHALL', 'SHALL
NOT', 'SHOULD', 'SHOULD NOT', 'RECOMMENDED', 'NOT RECOMMENDED',
'MAY', and 'OPTIONAL' in this document are to be interpreted as
described in BCP 14 (RFC 2119) (RFC 8174) when, and only when,
they appear in all capitals, as shown here.
*************************************************************************
This module extends the ietf-schc module to include the compound-ack
behavior for Ack On Error as defined in RFC YYYY.
It introduces a new leaf for Ack on Error defining the format of the
SCHC Ack and add the possibility to send several bitmaps in a single
answer.";
revision 2023-06-26 {
description
"Initial version for RFC YYYY ";
reference
"RFC YYYY: OAM";
}
identity fid-icmpv6-base-type {
base schc:fid-base-type;
description
"Field IP base type for ICMPv6 headers described in RFC 4443";
reference
"RFC 4443 Internet Control Message Protocol (ICMPv6)
for the Internet Protocol Version 6 (IPv6) Specification";
}
// ICMPv6 Fields
identity fid-icmpv6-type {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 type field";
}
identity fid-icmpv6-code {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 code field";
}
identity fid-icmpv6-checksum {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 checksum field";
}
identity fid-icmpv6-mtu {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 MTU (see draft OAM)";
}
identity fid-icmpv6-pointer {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 field (see draft OAM)";
}
identity fid-icmpv6-identifier {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 identifier field";
}
identity fid-icmpv6-sequence {
base schc:fid-icmpv6-base-type;
description
"ICMPv6 sequence number field";
}
identity fid-icmpv6-payload {
base schc:fid-icmpv6-base-type;
description
"payload in the ICMPv6 message";
}
// MO and CDA
identity mo-rule-match {
base schc:mo-base-type;
description
"Macthing operator return true, if the TV matches a rule
keeping UP and DOWN direction." ;
}
identity mo-rev-rule-match {
base schc:mo-base-type;
description
"Macthing operator return true, if the TV matches a rule
reversing UP and DOWN direction." ;
}
identity cda-compress-sent {
base schc:mo-base-type;
description
"Send a compressed version of TV keeping UP and
DOWN direction." ;
}
identity cda-rev-compress-sent {
base schc:mo-base-type;
description
"Send a compressed version of TV reversing UP and
DOWN direction." ;
}
// Proxy actions
identity proxy-schc-message{
description
"Define how the message is proxied after compression";
}
identity proxy-none {
base proxy-schc-message;
description
"The message is not proxied and sent to L2,
default behavior of RFC 8724";
}
identity proxy-pingv6 {
base proxy-schc-message;
description
"The message is processed by an ping6 proxy";
}
typedef proxy-type {
type identityref {
base proxy-schc-message;
}
description
"type used in rules";
}
// SCHC rule
augment "/schc:schc/schc:rule/schc:nature/schc:compression" {
leaf proxy-behavior {
type schc-oam:proxy-type;
default "schc-oam:proxy-none";
description
"Entity proxying the SCHC message.";
}
list proxy-behavior-value {
key "index";
uses schc:tv-struct;
description
"Parameters associated to the proxy action.";
}
description
"added to SCHC rules";
}
}
flood the return path with ICMP error messages.¶
TODO¶
The following people have been co-authors of precursor versions of this draft. Their contribution is deeply appreciated and acknowledged.¶