Internet Engineering Task Force (IETF) G. Tsirtsis
Request for Comments: 6088 G. Giaretta
Category: Standards Track Qualcomm
ISSN: 2070-1721 H. Soliman
Elevate Technologies
N. Montavont
IT/TB
January 2011
Internet Engineering Task Force (IETF) G. Tsirtsis
Request for Comments: 6088 G. Giaretta
Category: Standards Track Qualcomm
ISSN: 2070-1721 H. Soliman
Elevate Technologies
N. Montavont
IT/TB
January 2011
Traffic Selectors for Flow Bindings
流绑定的流量选择器
Abstract
摘要
This document defines binary formats for IPv4 and IPv6 traffic selectors to be used in conjunction with flow bindings for Mobile IPv6.
本文档定义了IPv4和IPv6流量选择器的二进制格式,以便与移动IPv6的流绑定结合使用。
Status of This Memo
关于下段备忘
This is an Internet Standards Track document.
这是一份互联网标准跟踪文件。
This document is a product of the Internet Engineering Task Force (IETF). It represents the consensus of the IETF community. It has received public review and has been approved for publication by the Internet Engineering Steering Group (IESG). Further information on Internet Standards is available in Section 2 of RFC 5741.
本文件是互联网工程任务组(IETF)的产品。它代表了IETF社区的共识。它已经接受了公众审查,并已被互联网工程指导小组(IESG)批准出版。有关互联网标准的更多信息,请参见RFC 5741第2节。
Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at http://www.rfc-editor.org/info/rfc6088.
有关本文件当前状态、任何勘误表以及如何提供反馈的信息,请访问http://www.rfc-editor.org/info/rfc6088.
Copyright Notice
版权公告
Copyright (c) 2011 IETF Trust and the persons identified as the document authors. All rights reserved.
版权所有(c)2011 IETF信托基金和确定为文件作者的人员。版权所有。
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License.
本文件受BCP 78和IETF信托有关IETF文件的法律规定的约束(http://trustee.ietf.org/license-info)自本文件出版之日起生效。请仔细阅读这些文件,因为它们描述了您对本文件的权利和限制。从本文件中提取的代码组件必须包括信托法律条款第4.e节中所述的简化BSD许可证文本,并提供简化BSD许可证中所述的无担保。
Table of Contents
目录
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 2
2. Requirements Notation . . . . . . . . . . . . . . . . . . . . 2
3. Traffic Selector Sub-Options . . . . . . . . . . . . . . . . . 2
3.1. IPv4 Binary Traffic Selector . . . . . . . . . . . . . . . 2
3.2. IPv6 Binary Traffic Selector . . . . . . . . . . . . . . . 6
4. Security Considerations . . . . . . . . . . . . . . . . . . . 11
5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 11
6. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 11
7. References . . . . . . . . . . . . . . . . . . . . . . . . . . 12
7.1. Normative References . . . . . . . . . . . . . . . . . . . 12
7.2. Informative References . . . . . . . . . . . . . . . . . . 12
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 2
2. Requirements Notation . . . . . . . . . . . . . . . . . . . . 2
3. Traffic Selector Sub-Options . . . . . . . . . . . . . . . . . 2
3.1. IPv4 Binary Traffic Selector . . . . . . . . . . . . . . . 2
3.2. IPv6 Binary Traffic Selector . . . . . . . . . . . . . . . 6
4. Security Considerations . . . . . . . . . . . . . . . . . . . 11
5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 11
6. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 11
7. References . . . . . . . . . . . . . . . . . . . . . . . . . . 12
7.1. Normative References . . . . . . . . . . . . . . . . . . . 12
7.2. Informative References . . . . . . . . . . . . . . . . . . 12
This document defines binary formats for IPv4 and IPv6 traffic selector sub-options, as defined in [RFC6089].
本文档定义了[RFC6089]中定义的IPv4和IPv6流量选择器子选项的二进制格式。
The binary traffic selector format defined here, allows for efficient identification of flow(s) based on well-known fields in IPv4 [RFC0791], IPv6 [RFC2460], and transport layer headers like TCP [RFC0793] and UDP [RFC0768].
此处定义的二进制流量选择器格式允许基于IPv4[RFC0791]、IPv6[RFC2460]和传输层标头(如TCP[RFC0793]和UDP[RFC0768]中的已知字段有效识别流量。
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119].
本文件中的关键词“必须”、“不得”、“必需”、“应”、“不应”、“应”、“不应”、“建议”、“可”和“可选”应按照[RFC2119]中所述进行解释。
[RFC6089] defines the format for the traffic selector sub-option.
[RFC6089]定义交通选择器子选项的格式。
The following values of the TS Format field are defined in this specification for binary traffic selectors.
TS格式字段的以下值在本规范中为二进制流量选择器定义。
TS Format:
TS格式:
1 IPv4 binary traffic selector
1 IPv4二进制流量选择器
2 IPv6 binary traffic selector
2 IPv6二进制流量选择器
If the TS Format field of the traffic selector sub-option indicates "IPv4 binary traffic selector", then the traffic selector is formatted as shown below.
如果流量选择器子选项的TS格式字段指示“IPv4二进制流量选择器”,则流量选择器的格式如下所示。
The alignment requirement for this sub-option is:
该子选项的对齐要求为:
4n if A, B, C, D, E, or F is set
如果设置了A、B、C、D、E或F,则为4n
2n if G, H, I, or J is set
如果设置了G、H、I或J,则为2n
n if K, L, M, or N is set
如果设置了K、L、M或n,则为n
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|Sub-opt Type | Sub-Opt Len | TS Format | Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|A|B|C|D|E|F|G|H|I|J|K|L|M|N| Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (A)Start Source Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (B)End Source Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (C)Start Destination Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (D)End Destination Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (E)Start IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (F)End IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (G)Start Source port | (H)End Source port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (I)Start Destination port | (J)End Destination port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (K)Start DS | (L)End DS |(M)Start Prot. | (N) End Prot. |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|Sub-opt Type | Sub-Opt Len | TS Format | Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|A|B|C|D|E|F|G|H|I|J|K|L|M|N| Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (A)Start Source Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (B)End Source Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (C)Start Destination Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (D)End Destination Address |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (E)Start IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (F)End IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (G)Start Source port | (H)End Source port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (I)Start Destination port | (J)End Destination port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (K)Start DS | (L)End DS |(M)Start Prot. | (N) End Prot. |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Figure 1: IPv4 binary traffic selector
图1:IPv4二进制流量选择器
Flags (A-N)
旗帜(A-N)
Each flag indicates whether the corresponding field is present in the message.
每个标志指示消息中是否存在相应的字段。
(A)Start Source Address
(A) 起始源地址
This field identifies the first source address, from the range of 32-bit IPv4 addresses to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. In other words, this is one of the addresses of the correspondent node.
该字段在归属代理看到的从相应节点发送到移动节点的数据包上,从要匹配的32位IPv4地址范围中标识第一个源地址。换句话说,这是对应节点的地址之一。
(B)End Source Address
(B) 端源地址
If more than one contiguous source address needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Source Address field. This field MUST NOT be included unless the Start Source Address field is included. When this field is included, the receiver will match all of the addresses between fields (A) and (B), inclusive of (A) and (B).
如果需要匹配多个连续源地址,则此字段可用于指示从起始源地址字段的值开始的范围的结束值。除非包含起始源地址字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(A)和(B)之间的所有地址,包括(A)和(B)。
(C)Start Destination Address
(C) 起始目的地址
This field identifies the first destination address, from the range of 32-bit IPv4 addresses to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. In other words, this is one of the registered home addresses of the mobile node.
该字段在归属代理看到的从相应节点发送到移动节点的数据分组上,从要匹配的32位IPv4地址范围中标识第一个目标地址。换句话说,这是移动节点的注册家庭地址之一。
(D)End Destination Address
(D) 结束目的地址
If more than one contiguous destination address needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Destination Address field. This field MUST NOT be included unless the Start Destination Address field is included. When this field is included, the receiver will match all of the addresses between fields (C) and (D), inclusive of (C) and (D).
如果需要匹配多个连续的目标地址,则此字段可用于指示从起始目标地址字段的值开始的范围的结束值。除非包含开始-目标地址字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(C)和(D)之间的所有地址,包括(C)和(D)。
(E)Start IPsec SPI - Security Parameter Index
(E) 启动IPsec SPI-安全参数索引
This field identifies the first 32-bit IPsec SPI value, from the range of SPI values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. This field is defined in [RFC4303].
该字段标识归属代理看到的从相应节点发送到移动节点的数据分组上要匹配的SPI值范围中的第一个32位IPsec SPI值。此字段在[RFC4303]中定义。
(F)End IPsec SPI - Security Parameter Index
(F) 结束IPsec SPI-安全参数索引
If more than one contiguous SPI value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start IPsec SPI field. This field MUST NOT be included unless the Start IPsec SPI field is included. When this field is included, the receiver will match all of the SPI values between fields (E) and (F), inclusive of (E) and (F).
如果需要匹配多个连续的SPI值,则此字段可用于指示从起始IPsec SPI字段的值开始的范围的结束值。除非包含启动IPsec SPI字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(E)和(F)(包括(E)和(F))之间的所有SPI值。
(G)Start Source Port
(G) 启动源端口
This field identifies the first 16-bit source port number, from the range of port numbers to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. This is from the range of port numbers defined by IANA (http://www.iana.org).
该字段从要匹配的端口号的范围中识别从相应节点发送到移动节点的数据分组上的第一个16位源端口号,如归属代理所看到的。这是IANA定义的端口号范围(http://www.iana.org).
(H)End Source Port
(H) 端源端口
If more than one contiguous source port number needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Source Port field. This field MUST NOT be included unless the Start Source Port field is included. When this field is included, the receiver will match all of the port numbers between fields (G) and (H), inclusive of (G) and (H).
如果需要匹配多个连续源端口号,则此字段可用于指示从“开始源端口”字段的值开始的范围的结束值。除非包含起始源端口字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(G)和(H)(包括(G)和(H))之间的所有端口号。
(I)Start Destination Port
(一) 起始目的港
This field identifies the first 16-bit destination port number, from the range of port numbers to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent.
该字段根据要匹配的端口号范围,在从相应节点发送到移动节点的数据分组上标识第一个16位目的地端口号,如归属代理所见。
(J)End Destination Port
(J) 结束目的港
If more than one contiguous destination port number needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Destination Port field. This field MUST NOT be included unless the Start Destination Port field is included. When this field is included, the receiver will match all of the port numbers between fields (I) and (J), inclusive of (I) and (J).
如果需要匹配多个连续的目标端口号,则此字段可用于指示从起始目标端口字段值开始的范围的结束值。除非包含“起始目标端口”字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(I)和(J)(包括(I)和(J))之间的所有端口号。
(K)Start DS - Differential Services
(K) 启动DS-差分服务
This field identifies the first differential services value, from the range of differential services values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. Note that this field is called a "Type of Service field" in [RFC0791]. [RFC3260] then clarified that the field has been redefined as a 6-bit DS field with 2 bits reserved, later claimed by Explicit Congestion Notification (ECN) [RFC3168]. For the purpose of this specification, the (K)Start DS field is 8 bits long, where the 6 most significant bits indicate the DS field to be matched and the 2 least significant bits' values MUST be ignored in any comparison.
该字段在归属代理看到的从对应节点发送到移动节点的数据分组上,从要匹配的差分服务值的范围识别第一差分服务值。请注意,此字段在[RFC0791]中称为“服务类型字段”。[RFC3260]随后澄清,该字段已被重新定义为保留2位的6位DS字段,随后由显式拥塞通知(ECN)[RFC3168]声明。在本规范中,(K)开始DS字段的长度为8位,其中6个最高有效位表示要匹配的DS字段,并且在任何比较中必须忽略2个最低有效位的值。
(L)End DS - Differential Services
(五十) 终端DS-差分服务
If more than one contiguous DS value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start DS field. This field MUST NOT be included unless the Start DS field is included. When this field is included, it MUST be coded the same way as defined for (K). When this field is included, the receiver will match all of the values between fields (K) and (L), inclusive of (K) and (L).
如果需要匹配多个连续DS值,则此字段可用于指示从起始DS字段值开始的范围的结束值。除非包含起始DS字段,否则不得包含此字段。当包含此字段时,必须按照(K)中定义的相同方式对其进行编码。当包含此字段时,接收器将匹配字段(K)和(L)之间的所有值,包括(K)和(L)。
(M)Start Protocol
(M) 启动协议
This field identifies the first 8-bit protocol value, from the range of protocol values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent.
该字段标识归属代理看到的从对应节点发送到移动节点的数据分组上要匹配的协议值范围中的第一个8位协议值。
(N)End Protocol
(N) 终端协议
If more than one contiguous protocol value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Protocol field. This field MUST NOT be included unless the Start Protocol field is included. When this field is included, the receiver will match all of the values between fields (M) and (N), inclusive of (M) and (N).
如果需要匹配多个连续协议值,则此字段可用于指示从开始协议字段值开始的范围的结束值。除非包含启动协议字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(M)和(N)之间的所有值,包括(M)和(N)。
Reserved
含蓄的
Reserved for future use. These bits MUST be set to zero by the sender and ignored by the receiver.
保留供将来使用。这些位必须由发送方设置为零,并由接收方忽略。
If the TS Format field of the traffic selector sub-option indicates "IPv6 binary traffic selector", then the traffic selector is formatted as follows:
如果流量选择器子选项的TS格式字段指示“IPv6二进制流量选择器”,则流量选择器的格式如下:
The alignment requirement for this sub-option is:
该子选项的对齐要求为:
8n if A, B, C, or D is set
如果设置了A、B、C或D,则为8n
4n if E, F, G, or H is set
如果设置了E、F、G或H,则为4n
2n if I, J, K, or L is set
2n如果设置了I、J、K或L
n if M, N, O, or P is set
如果设置了M、n、O或P,则为n
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|Sub-opt Type | Sub-Opt Len | TS Format | Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|A|B|C|D|E|F|G|H|I|J|K|L|M|N|O|P| Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (A)Start Source Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (B)End Source Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (C)Start Destination Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (D)End Destination Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (E)Start IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (F)End IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (G)Start Flow Label |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (H)End Flow Label |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (I)Start Source port | (J)End Source port |
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|Sub-opt Type | Sub-Opt Len | TS Format | Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
|A|B|C|D|E|F|G|H|I|J|K|L|M|N|O|P| Reserved |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (A)Start Source Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (B)End Source Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (C)Start Destination Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ (D)End Destination Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (E)Start IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (F)End IPsec SPI |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (G)Start Flow Label |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (H)End Flow Label |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (I)Start Source port | (J)End Source port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (K)Start Destination port | (L)End Destination port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (M)Start TC | (N)End TC | (O)Start NH | (P) End NH |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (K)Start Destination port | (L)End Destination port |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| (M)Start TC | (N)End TC | (O)Start NH | (P) End NH |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Figure 2: IPv6 binary traffic selector
图2:IPv6二进制流量选择器
Flags (A-P)
旗帜(A-P)
Each flag indicates whether the corresponding field is present in the message
每个标志指示消息中是否存在相应的字段
(A)Start Source Address
(A) 起始源地址
This field identifies the first source address, from the range of 128-bit IPv6 addresses to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. In other words, this is one of the addresses of the correspondent node.
该字段在归属代理看到的从相应节点发送到移动节点的数据分组上,从要匹配的128位IPv6地址范围中标识第一个源地址。换句话说,这是对应节点的地址之一。
(B)End Source Address
(B) 端源地址
If more than one contiguous source address needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Source Address field. This field MUST NOT be included unless the Start Source Address field is included. When this field is included, the receiver will match all of the addresses between fields (A) and (B), inclusive of (A) and (B).
如果需要匹配多个连续源地址,则此字段可用于指示从起始源地址字段的值开始的范围的结束值。除非包含起始源地址字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(A)和(B)之间的所有地址,包括(A)和(B)。
(C)Start Destination Address
(C) 起始目的地址
This field identifies the first destination address, from the range of 128-bit IPv6 addresses to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. In other words, this is one of the registered home addresses of the mobile node.
该字段在归属代理看到的从相应节点发送到移动节点的数据分组上,从要匹配的128位IPv6地址的范围识别第一目的地地址。换句话说,这是移动节点的注册家庭地址之一。
(D)End Destination Address
(D) 结束目的地址
If more than one contiguous destination address needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Destination Address field. This field MUST NOT be included unless the Start Destination Address field is included. When this field is included, the receiver will match all of the addresses between fields (C) and (D), inclusive of (C) and (D).
如果需要匹配多个连续的目标地址,则此字段可用于指示从起始目标地址字段的值开始的范围的结束值。除非包含开始-目标地址字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(C)和(D)之间的所有地址,包括(C)和(D)。
(E)Start IPsec SPI - Security Parameter Index
(E) 启动IPsec SPI-安全参数索引
This field identifies the first 32-bit IPsec SPI value, from the range of SPI values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. This field is defined in [RFC4303].
该字段标识归属代理看到的从相应节点发送到移动节点的数据分组上要匹配的SPI值范围中的第一个32位IPsec SPI值。此字段在[RFC4303]中定义。
(F)End IPsec SPI - Security Parameter Index
(F) 结束IPsec SPI-安全参数索引
If more than one contiguous SPI value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start IPsec SPI field. This field MUST NOT be included unless the Start IPsec SPI field is included. When this field is included, the receiver will match all of the SPI values between fields (E) and (F), inclusive of (E) and (F).
如果需要匹配多个连续的SPI值,则此字段可用于指示从起始IPsec SPI字段的值开始的范围的结束值。除非包含启动IPsec SPI字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(E)和(F)(包括(E)和(F))之间的所有SPI值。
(G)Start Flow Label
(G) 启动流标签
This field identifies the first flow label value, from the range of flow label values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. According to [RFC2460], the flow label is 24 bits long. For the purpose of this specification, the sender of this option MUST prefix the flow label value with 8 bits of "0" before inserting it in the (G)Start Flow Label field. The receiver SHOULD ignore the first 8 bits of this field before using it in comparisons with flow labels in packets.
该字段从要匹配的流标签值的范围中识别从对应节点发送到移动节点的数据分组上的第一流标签值,如归属代理所看到的。根据[RFC2460],流标签的长度为24位。出于本规范的目的,在将流量标签值插入(G)开始流量标签字段之前,此选项的发送方必须在流量标签值前面加上8位“0”作为前缀。接收器应忽略此字段的前8位,然后将其与数据包中的流标签进行比较。
(H)End Flow Label
(H) 端流标签
If more than one contiguous flow label value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Flow Label field. This field MUST NOT be included unless the Start Flow Label field is included. When this field is included, the receiver will match all of the flow label values between fields (G) and (H), inclusive of (G) and (H). When this field is included, it MUST be coded the same way as defined for (G).
如果需要匹配多个连续的流量标签值,则此字段可用于指示从“开始流量标签”字段的值开始的范围的结束值。除非包含“开始流量标签”字段,否则不得包含此字段。包含此字段时,接收器将匹配字段(G)和(H)(包括(G)和(H))之间的所有流量标签值。当包含此字段时,必须按照(G)中定义的相同方式对其进行编码。
(I)Start Source Port
(一) 启动源端口
This field identifies the first 16-bit source port number, from the range of port numbers to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent.
该字段从要匹配的端口号的范围中识别从相应节点发送到移动节点的数据分组上的第一个16位源端口号,如归属代理所看到的。
(J)End Source Port
(J) 端源端口
If more than one contiguous source port number needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Source Port field. This field MUST NOT be included unless the Start Source Port field is included. When this field is included, the receiver will match all of the port numbers between fields (I) and (J), inclusive of (I) and (J).
如果需要匹配多个连续源端口号,则此字段可用于指示从“开始源端口”字段的值开始的范围的结束值。除非包含起始源端口字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(I)和(J)(包括(I)和(J))之间的所有端口号。
(K)Start Destination Port
(K) 起始目的港
This field identifies the first 16-bit destination port number, from the range of port numbers to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent.
该字段根据要匹配的端口号范围,在从相应节点发送到移动节点的数据分组上标识第一个16位目的地端口号,如归属代理所见。
(L)End Destination Port
(五十) 结束目的港
If more than one contiguous destination port number needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start Destination Port field. This field MUST NOT be included unless the Start Destination Port field is included. When this field is included, the receiver will match all of the port numbers between fields (K) and (L), inclusive of (K) and (L).
如果需要匹配多个连续的目标端口号,则此字段可用于指示从起始目标端口字段值开始的范围的结束值。除非包含“起始目标端口”字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(K)和(L)(包括(K)和(L))之间的所有端口号。
(M)Start TC - Traffic Class
(M) 开始TC-交通等级
This field identifies the first traffic class value, from the range of traffic class values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent. This field is equivalent to the Start DS field in the IPv4 traffic selector in Figure 1. As per [RFC3260], the field is defined as a 6-bit DS field with 2 bits reserved, later claimed by Explicit Congestion Notification (ECN) [RFC3168]. For the purpose of this specification, the (M)Start TC field is 8 bits long, where the 6 most significant bits indicate the DS field to be matched and the 2 least significant bits' values MUST be ignored in any comparison.
如归属代理所见,该字段从要匹配的业务类别值的范围中识别从对应节点发送到移动节点的数据分组上的第一业务类别值。此字段相当于图1中IPv4流量选择器中的Start DS字段。根据[RFC3260],该字段定义为6位DS字段,保留2位,随后由显式拥塞通知(ECN)[RFC3168]声明。就本规范而言,(M)起始TC字段的长度为8位,其中6个最高有效位表示要匹配的DS字段,在任何比较中必须忽略2个最低有效位的值。
(N)End TC - Traffic Class
(N) 结束TC-交通等级
If more than one contiguous TC value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start TC field. This field MUST NOT be included unless the Start TC field is included. When this
如果需要匹配多个连续TC值,则该字段可用于指示从起始TC字段值开始的范围的结束值。除非包含开始TC字段,否则不得包含此字段。当这
field is included, it MUST be coded the same way as defined for (M). When this field is included, the receiver will match all of the values between fields (M) and (N), inclusive of (M) and (N).
如果包含字段,则必须按照(M)定义的相同方式对其进行编码。当包含此字段时,接收器将匹配字段(M)和(N)之间的所有值,包括(M)和(N)。
(O)Start NH - Next Header
(O) 开始NH-下一个标题
This field identifies the first 8-bit next header value, from the range of next header values to be matched, on data packets sent from a corresponding node to the mobile node as seen by the home agent.
该字段在归属代理看到的从对应节点发送到移动节点的数据分组上识别来自要匹配的下一报头值的范围的第一个8位下一报头值。
(P)End NH - Next Header
(P) 结束NH-下一个标题
If more than one contiguous next header value needs to be matched, then this field can be used to indicate the end value of a range starting from the value of the Start NH field. This field MUST NOT be included unless the Start next header field is included. When this field is included, the receiver will match all of the values between fields (O) and (P), inclusive of (O) and (P).
如果需要匹配多个相邻的下一个标头值,则该字段可用于指示从Start NH字段值开始的范围的结束值。除非包含“开始下一个标题”字段,否则不得包含此字段。当包含此字段时,接收器将匹配字段(O)和(P)之间的所有值,包括(O)和(P)。
Reserved
含蓄的
Reserved for future use. These bits MUST be set to zero by the sender and ignored by the receiver.
保留供将来使用。这些位必须由发送方设置为零,并由接收方忽略。
This document defines the format of the traffic selector field of a sub-option defined for flow bindings [RFC6089]. The authors have not identified any security concerns pertaining to this document beyond what is already identified in [RFC6089].
本文档定义了为流绑定定义的子选项[RFC6089]的流量选择器字段的格式。除了[RFC6089]中已经确定的内容外,作者尚未确定与本文件相关的任何安全问题。
The following new TS format values have been assigned from the "Traffic Selector Format" namespace for the traffic selector sub-option defined in [RFC6089].
以下新TS格式值已从[RFC6089]中定义的流量选择器子选项的“流量选择器格式”命名空间中分配。
1 IPv4 Binary Traffic Selector
1 IPv4二进制流量选择器
2 IPv6 Binary Traffic Selector
2 IPv6二进制流量选择器
The authors would like to thank Patrick Stupar and Julien Laganier for their contributions to this document. We would also like to thank Benjamin Lim, Dave Craig, Patrick Stupar, and Basavaraj Patil for their reviews and comments.
作者要感谢Patrick Stupar和Julien Laganier对本文件的贡献。我们还要感谢Benjamin Lim、Dave Craig、Patrick Stupar和Basavaraj Patil的评论和评论。
[RFC0768] Postel, J., "User Datagram Protocol", STD 6, RFC 768, August 1980.
[RFC0768]Postel,J.,“用户数据报协议”,STD 6,RFC 768,1980年8月。
[RFC0791] Postel, J., "Internet Protocol", STD 5, RFC 791, September 1981.
[RFC0791]Postel,J.,“互联网协议”,STD 5,RFC 7911981年9月。
[RFC0793] Postel, J., "Transmission Control Protocol", STD 7, RFC 793, September 1981.
[RFC0793]Postel,J.,“传输控制协议”,标准7,RFC 793,1981年9月。
[RFC2119] Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, March 1997.
[RFC2119]Bradner,S.,“RFC中用于表示需求水平的关键词”,BCP 14,RFC 2119,1997年3月。
[RFC2460] Deering, S. and R. Hinden, "Internet Protocol, Version 6 (IPv6) Specification", RFC 2460, December 1998.
[RFC2460]Deering,S.和R.Hinden,“互联网协议,第6版(IPv6)规范”,RFC 2460,1998年12月。
[RFC3168] Ramakrishnan, K., Floyd, S., and D. Black, "The Addition of Explicit Congestion Notification (ECN) to IP", RFC 3168, September 2001.
[RFC3168]Ramakrishnan,K.,Floyd,S.,和D.Black,“向IP添加显式拥塞通知(ECN)”,RFC 3168,2001年9月。
[RFC4303] Kent, S., "IP Encapsulating Security Payload (ESP)", RFC 4303, December 2005.
[RFC4303]Kent,S.,“IP封装安全有效载荷(ESP)”,RFC 4303,2005年12月。
[RFC6089] Tsirtsis, G., Soliman, H., Montavont, N., Giaretta, G., and K. Kuladinithi, "Flow Bindings in Mobile IPv6 and Network Mobility (NEMO) Basic Support", RFC 6089, January 2011.
[RFC6089]Tsirtsis,G.,Soliman,H.,Montavont,N.,Giaretta,G.,和K.Kuladinhi,“移动IPv6和网络移动(NEMO)基本支持中的流绑定”,RFC 60892011年1月。
[RFC3260] Grossman, D., "New Terminology and Clarifications for Diffserv", RFC 3260, April 2002.
[RFC3260]Grossman,D.“区分服务的新术语和澄清”,RFC 3260,2002年4月。
Authors' Addresses
作者地址
George Tsirtsis Qualcomm
George Tsirtsis高通公司
EMail: tsirtsis@qualcomm.com
EMail: tsirtsis@qualcomm.com
Gerardo Giaretta Qualcomm
Gerardo Giaretta高通公司
EMail: gerardog@qualcomm.com
EMail: gerardog@qualcomm.com
Hesham Soliman Elevate Technologies
Hesham Soliman提升技术公司
EMail: hesham@elevatemobile.com
EMail: hesham@elevatemobile.com
Nicolas Montavont Institut Telecom / Telecom Bretagne 2, rue de la chataigneraie Cesson Sevigne 35576 France
Nicolas Montavont Institut Telecom/Telecom Bretagne 2,法国塞森塞维涅Chataignae街35576号
Phone: (+33) 2 99 12 70 23
EMail: nicolas.montavont@telecom-bretagne.eu
URI: http://www.rennes.enst-bretagne.fr/~nmontavo//
Phone: (+33) 2 99 12 70 23
EMail: nicolas.montavont@telecom-bretagne.eu
URI: http://www.rennes.enst-bretagne.fr/~nmontavo//