From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dave@taht.net>
Received: from mail.taht.net (mail.taht.net
 [IPv6:2a01:7e00::f03c:91ff:feae:7028])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by lists.bufferbloat.net (Postfix) with ESMTPS id 45F423B2A4
 for <cake@lists.bufferbloat.net>; Thu,  6 Apr 2017 10:41:40 -0400 (EDT)
Received: from nemesis.taht.net (unknown
 [IPv6:2601:646:8501:df5:2e0:4cff:fec1:1206])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by mail.taht.net (Postfix) with ESMTPSA id CCDE421434;
 Thu,  6 Apr 2017 14:41:38 +0000 (UTC)
From: Dave Taht <dave@taht.net>
To: Toke =?utf-8?Q?H=C3=B8iland-J=C3=B8rgensen?= <toke@toke.dk>
Cc: Pete Heist <peteheist@gmail.com>,  cake@lists.bufferbloat.net
References: <2FD59D30-3102-4A3E-A38E-050E438DABF0@gmail.com>
 <87ziftubgy.fsf@alrua-kau>
 <8E96329F-A57D-49C7-A7EE-60BD165B4D5C@gmail.com>
 <87r315u7xe.fsf@alrua-kau>
 <A13F9534-D388-4111-9694-CAA6706F47BE@gmail.com>
 <87mvbtu419.fsf@alrua-kau>
 <94AF2A61-6D02-4F68-B4B4-688EED722A0B@gmail.com>
 <87r315r6ty.fsf@alrua-kau>
Date: Thu, 06 Apr 2017 07:41:37 -0700
In-Reply-To: <87r315r6ty.fsf@alrua-kau> ("Toke
 \=\?utf-8\?Q\?H\=C3\=B8iland-J\?\=
 \=\?utf-8\?Q\?\=C3\=B8rgensen\=22's\?\= message of
 "Thu, 06 Apr 2017 15:42:01 +0200")
Message-ID: <87fuhloaxq.fsf@nemesis.taht.net>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
Subject: Re: [Cake] flow isolation for ISPs
X-BeenThere: cake@lists.bufferbloat.net
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Cake - FQ_codel the next generation <cake.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cake>,
 <mailto:cake-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cake>
List-Post: <mailto:cake@lists.bufferbloat.net>
List-Help: <mailto:cake-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cake>,
 <mailto:cake-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Thu, 06 Apr 2017 14:41:40 -0000


If I had a "vision" here, it was to create a more advanced version
of the the ipset facility, where a customer was represented by
all the IP addresses they might have.

Mac addresses might be hard to get at especially if you were
trying to do this at a layer back from the DSLAM or CMTS.

IP 222.22.22.1 -> 1 customer address
IP 222::1/128  -> 1 v6 p2p on the external interface
IP 222::2/128  -> 1 customer router
IP 222:1::/56  -> 1 customer internal delegation

IP 222.22.22.2 -> 2 customer address
IP 222::3/128  -> 2 v6 p2p on the external interface
IP 222::4/128  -> 2 customer router
IP 222:2::/56  -> 2 customer internal delegation

These would all get thrown into one big ipset (and route)
table, and you'd use the index to hand off to a cake-like
qdisc hanging off of something htb-like.

Sadly:

A) Ipset doesn't work this way (you only get matches)
B) Line conditions vary
C) Total throughput possible on the link varies
as a function of the total bandwidth being used.

Who do you throttle when you are out?

PS (this is my first test of switching back to emacs
again to send mail, let me know if it looks funny)