Vista's 'Next Gen' TCP/IP Stack

boyko.at.netqos writes "Microsoft's new Vista TCP/IP stack might be beneficial to businesses looking to increase use of their IT infrastructure... if they did it right. Ted Romer at Network Performance Daily writes: '[Vista] now allows us to throttle outbound traffic at a client or server. For example, you can throttle the bandwidth of a particular subnet to a particular server, giving some departments more access to the servers that they need. You can even restrict outgoing bandwidth for certain peer-to-peer applications like bit torrent. This shaping can also be handy when applied to servers, allowing less bandwidth for certain users/departments, and more for others. While consumers may debate whether Vista is a worthwhile upgrade, I believe it to be important for enterprise customers who will best be able to put Vista's capabilities to their fullest potential. Of course, I'm getting it for DirectX 10 games, but that's just me.'"

Words to strike fear into any heart

[PHAEDRU5 (213667)]

"redesigned from the ground up"

Re:

[YU Nicks NE Way (129084)]

So, its not the freebsd stack anymore?

No, and it hasn't been since 1998's release of Windows 2000. Remember the introduction of a "multithreaded zero-copy TCP/IP stack"? Yeah -- that was years before Linux or FreeBSD had one.

Will it...

[Threni (635302)]

...let me choose how much bandwidth to allocate to each app, and their relative priority? I want my browser to go first, then Google talk, then any updates (OS, virus checker, firewall) and finally P2P. It's quite annoying that I can't do that on XP. Perhaps it's a tricky problem though.

Re:Will it...

[TheRaven64 (641858)]

It's quite tricky because, typically, the TCP/IP stack has no knowledge of which application is the originator of a particular packet. The application talks to the very top layers of the network stack, and says 'send this buffer to this socket.' This then talks to the lower levels of the stack. On OpenBSD[1] you could conceivably create a virtual network interface for each application that was bridged with the real one and added a tag to all packets, which could then be used for filtering. It would be possible to add an mbuf tag to the packet with the originating process as soon as it was created, although I don't believe this is currently supported. I might have a poke at the code and see how hard it would be...

And, probably, other systems. I'm just most familiar with OpenBSD's filtering.

Re:Will it...

[beuges (613130)]

Windows' OS updates already assume lowest priority, via BITS [microsoft.com]. BITS is available to be used by any application that wants to use it, so if antivirus/firewall vendors decided to make use of it, rather than rolling their own solutions, all those updates can happen at lowest priority also. It's QOS requesting lowest priority, rather than highest priority.

I'm not sure if you can specify individual priority levels, but the OS already allows applications to download using the lowest priority.

Re:

[dave420 (699308)]

You can do that - XP has a QoS service that can do exactly what you want. I use it when I'm at work to prioritise my RDP over any torrents downloading, and to make sure my mp3 streams from home don't get choked.

WinTC [vector.co.jp] - a small service used to configure the Windows QoS service.

If that doesn't do it for you, you could download something like NetLimiter, and use that to manage your bandwidth.

Re:

[jZnat (793348)]

You can use its firewall, ipfw(8), to do QoS packet shaping (which is essentially what you're asking for). Some details are available [macshadows.com] on the MacShadows KB.

Is this a slashvertisment ?

[by Anonymous Coward]

because it sure reads like one
Microsoft is desperate to get business interested in their Vista product so will trot about all manner of reasons to buy it, but business are not biting, unless this Vista can make workers type faster or calc spreadsheets quicker or email faster than there is NO productivity gains unless wowing the coworker with a 3D AIGLX/Beryl like desktop counts as productive

if an Enterprise is worried about client bandwidth they would already be using a tool dedicated for the job like, say a Router

Re:

[dbIII (701233)]

unless this Vista can make workers type faster or calc spreadsheets quicker or email faster than there is NO productivity gains

Actually there probably will be. My coworkers on XP spend surprising amounts of time staring at the screen waiting for the machine to allow user input again - inproving this WILL improve productivity by a few minutes a day. The ones that do not suffer this have dual processor systems.

That said - moving to *nix the gnome desktop with remote appications open can suck intensely if

Re:

[itlurksbeneath (952654)]

I have noticed this in a lot of Windows apps as well and it dumbfounds me that, after all these years, Microsoft programmers still haven't got threaded programming into their heads.

I mean, why does Access requesting data from a network database freeze up the entire machine (or at least the whole TCP/IP stack)? And nothing frustrates me more than Outlook. When you're typing an email message and Outlook "requests data from server" in the background, freezes your input into the current window. Damn, guys.

Enterprise

[dbIII (701233)]

Wouldn't enterprise customers have purchased routers that do this five years ago to handle the QoS - and managed switches ten years ago to handle the rest?

OK - it is nice, but it certainly is not new.

games?

[by Anonymous Coward]

Of course, I'm getting it for DirectX 10 games, but that's just me

Just you? Wow, those will be some disappointing sales figures.

Alternatively

[eclectro (227083)]

If that guy in accounting is spending all his time downloading movies off from bittorent, wouldn't it be better to fire him instead of shaping his packets??

Re:Alternatively

[cycojesus (831662)]

I am this guy AND I am the son of your boss. Ah, dilemna...

Interesting discussion of this at SecurityNow

[AngusSF (34059)]

GRC | Security Now! Transcript of Episode #51 "Vista's Virgin Stack" http://www.grc.com/sn/SN-051.htm [grc.com]

Re:

[vadim_t (324782)]

Uhh, what the heck is that nonsense? I see no actual discussion of anything there.

This is the "security expert" that never heard of SYN Cookies before, started the whole mess about raw sockets in XP, and ran (or maybe still runs, haven't checked) a port scanner's supposed to scan the ports of the one going to the website, but can be tricked into scanning somebody else.

Create your own reply

[Giant Ape Skeleton (638834)]

Big deal. ______ has had this in the kernel since ______.

Re:Create your own reply

[by Anonymous Coward]

Big deal. Corn has had this in the kernel since it was a stalk.

Re:

[by Anonymous Coward]

Big Deal. _Kentucky_Fried_Chicken_ has had this in the Colonel since _The_Civil_War_.

Window Scaling and ECN!

[amorsen (7485)]

Yay! Now people will hopefully fix their firewalls so I can turn those on again in my Linux boxes.

IPV6 ..

[rs232 (849320)]

What does Vista TCP/IP do that http://en.wikipedia.org/wiki/Ipv6 [slashdot.org]">IPV6 cannot and I don't mean such feetures that are welded to the Vista API.

Quoted portion leaves out important bit

[BrianRoach (614397)]

Rather interesting that the quote in the summary here on slashdot skipped this (emphasis mine):

FTFA: "Vista's ability to use centrally configured group-policies to push out policies to specific users or servers, and allows tagging of packets with the Diffserv code point values, so that our network infrastructure can see the marking and react to it in different ways - whether it's VoIP traffic, or TCP/IP business critical traffic, or web-surfing traffic. (Granted, this QoS doesn't guarantee anything, it just marks the packet in Windows and it is up to your network infrastructure to honor those tags.)"

So ... it really doesn't do much. It may be slightly more convenient to configure QoS on your routers based on the tags rather than port numbers ... but that's about it.

- Roach

Re:Quoted portion leaves out important bit

[BrianRoach (614397)]

And now that I've actually had some coffee ... this is just silly.

They're breaking rule #1: Never trust the client.

If your QoS network equipment is using these tags instead of actual port numbers, well, it's pretty easy to reconfigure how a client tags its packets.

- Roach

This is a stupid idea

[mwilliamson (672411)]

Bandwidth management _must_ not rely on the host's cooperation. All will work beautifully until a virus totally rapes the network because QoS responsibility had been shifted from the network to the hosts. Damn, this isn't just stupid, it's freaking pathetic. What next Microsoft, pull in layer 2 into your stack as well?

For anyone interested in enabling Compound TCP

[PhrostyMcByte (589271)]

The Compound TCP talked about in TFA is disabled in Vista by default. If you want to turn it on, you can open a console with admin privs (right click Command Prompt -> Run as Administrator) and enter:

netsh interface tcp set global congestionprovider=ctcp

This was one of the first commands I ran after Vista installed, and the difference is noticable.

reasons to get vista.

[CDPatten (907182)]

Many people on Slashdot have been screaming for over a year that Vista doesn't offer anything new, nothing worth upgrading for, etc. Well, it seems to me it does. I think anyone who is intellectually honest would agree... I might be on the wrong site?

This article points out 1 cool thing, a new networking stack, but it isn't the only thing. And actually he doesn't even talk about IPv6. For example, my lab at home I has 3 Vista installs, and the communicate out of the box over IPv6. In a couple of years IPv6 will be main-stream because of MS, and we all know the benefits from using the upgraded protocol.

-I think it's cool that when you browse the network people can see a picture of the person instead of the Computer Icon.

-I also do photography, and you use to be able to open an image file on an OSX machine and XP and it would look better on the OSX box. Not with vista.

-For Remote Access: PNRP. Again, really cool... do a search if you don't know what it is.

-Even the average business user will benefit from little things like the snippet tool (prety cool by the way, it's in the accessories folder if you haven't tried it yet).

-I have clients that are going to love the way the Windows clock works now. They can jump around by month, year, or decade in seconds. Those little things are pretty cool.
These are just random features that popped into my head, but it seems that Vista has LOTS of things other than Aero to encourage upgrading on all fronts (Security, tools, toys, looks, games, etc.).

Seriously, apple announces multiple desktops and have this site has a heart attack.... then praises Steve Jobs for being an inventor, a genius, etc. Meanwhile Windows has had those features for years, hell, Unix has for decades!

MS may not have invented the notion of every new feature in Vista, but it's a good product, and way better than XP. A worthy upgrade. It's not one feature that makes it a good product, but the cumulative of many features. I think you anti-ms people lose a lot of credibility when you blindly bash MS and say Vista sucks and it offers no reasons to upgrade for anyone. For all users it has some pretty enticing plusses.

Re:

[Blakey Rat (99501)]

No intellectually honest person is saying Vista + new Office offer nothing new. The problem is that... well... you're reading this on Slashdot.

Re:reasons to get vista.

[strikethree (811449)]

Seriously, apple announces multiple desktops and have this site has a heart attack.... then praises Steve Jobs for being an inventor, a genius, etc. Meanwhile Windows has had those features for years, hell, Unix has for decades!

It seems that you must be a shill since even a fanboi would not make such an outrageous claim. MS Windows has _never_ had multiple desktops. They released a crappy powertoy for XP that supposedly emulates multiple desktops but the apps never play along nicely since MS Windows was _never_ designed with multiple desktops in mind.

strike

Re:reasons to get vista.

[Idaho (12907)]

Many people on Slashdot have been screaming for over a year that Vista doesn't offer anything new.

Yes, and it looks like you've just proven this point yourself. Thanks for pointing it out yourself, here goes:

IPv6.

Has been available in every other OS I know of for years. Microsoft is finally catching up here.

-I think it's cool that when you browse the network people can see a picture of the person instead of the Computer Icon.

Whatever. I think it's a privacy-sensitive thing that I'd want to disable ASAP, but ok. So, you can set an arbitrary picture as your login icon. Stop the presses! Groundbreaking developments!

-I have clients that are going to love the way the Windows clock works now. They can jump around by month, year, or decade in seconds. Those little things are pretty cool.

See above, only even more so.

-I also do photography, and you use to be able to open an image file on an OSX machine and XP and it would look better on the OSX box. Not with vista.

So again, if what you say is true, Microsoft is finally catching up to other OS's here once again. Btw. in fact I don't agree with you, I have used the same 19" CRT on a Mac Mini and a Windows/Linux machine, and the pictures look exactly the same (you just have to calibrate the screen right).

Seriously, apple announces multiple desktops and have this site has a heart attack.... then praises Steve Jobs for being an inventor, a genius, etc. Meanwhile Windows has had those features for years, hell, Unix has for decades!

!? Since when has Windows had multiple desktop built into the OS (without installing 3rd party applications, specific video card drivers or funny power tools that nobody ever bothers with - not least because many applications tend to act in very strange ways when you try to use it)? Also, if Vista finally supports this, Microsoft is, once more (how often do you want to point this out?) finally catching up with what has been taken for granted in every other major OS for ages.

So far, my reaction to Vista (and yes, I tried to run RC2 on my AMD64 3500+ with 1GB RAM) is that it's completely underwhelming. The only thing that is overwhelming about it are the memory requirements - it managed to use 600+ MB right from booting it up!

By the way, you also forgot to mention a few more "features", such as the fantastic customer-friendly Digital Restriction Management schemes, activation schemes that might disable your computer, etc. etc. just to name a few.

What a surprise...

[QuietLagoon (813062)]

... another 'Microsoft is wonderful' posting, coincident with a major product release.

Microsoft astroturf [nwsource.com] in action.

What do you mean, "next-gen"!?

[Idaho (12907)]

For example, you can throttle the bandwidth of a particular subnet to a particular server, giving some departments more access to the servers that they need. You can even restrict outgoing bandwidth for certain peer-to-peer applications like bit torrent. This shaping can also be handy when applied to servers, allowing less bandwidth for certain users/departments, and more for others.

Why is this called "next-gen"? There is nothing "next-gen" about this. If anything, Microsoft is finally catching up with the rest of the world in this department.

Such stuff was possible with Linux (and, I'm sure, BSD) servers for years. I know for sure because I used to have such a setup (to do traffic shaping on our -then- relatively slow internet connection shared by too many people) on a Linux server, more than 5 years ago!

Please stop this silly use of marketingspeak of calling something "next-gen" when in fact the company under consideration is just finally catching up with what the rest of the world has been doing for ages.

and the crackers are dancing in the streets

[mr_death (106532)]

Given Microsoft's usual poor code quality, we should all be cowering in fear. The IP stack is something that needs to be battle-tested for years before we get comfortable with it. Uncle Bill and his minions have chosen to inflict an unproven stack on us for the sake of a few bells and whistles.

This is another fine reason to delay your Vista "upgrade" until at least the second service pack -- assuming you upgrade at all.

I'm taking bets on how many critical patches will be on the ip stack this year (2007).

Re:

[robzon (981455)]

Because Linux doesn't have the super marketing powers.

Re:

[El Torico (732160)]

Judging by the name, I thought that this was a new type of corset; I'm expecting late-night TV commercials any day now.

Seriously, I did a cursory Google search on this and didn't find anything that provides feature details. Do you have any links?

Re:Wondershaper

[Ferzerp (83619)]

It's obvious that no one has RTFA....

"(Granted, this QoS doesn't guarantee anything, it just marks the packet in Windows and it is up to your network infrastructure to honor those tags.) "

Vista supports Diffserv tagging based on the user/application/whatever, enforced via group policy. It's up to your network hardware to actually do the shaping.

Re:Wondershaper

[GIL_Dude (850471)]

Exactly. And if using Group Policy you can easily set it to give say sap.exe high priority and iexplore.exe and firefox.exe low priority (if that would be right for your business). That way, if sap.exe uses port 80 as well you aren't artificially restricting it at the router/switch.

Re:Wondershaper

[vadim_t (324782)]

Well, it's expensive. Are you going to waste a box that can run Vista on that? A box that can run shorewall and traffic shaping is a P100 with 64MB RAM, which can be found for free.

You have two options:
1. The Vista box shapes traffic for itself and nothing else. This isn't terribly effective as to have a good effect you need to shape all of the traffic, giving different hosts different priority.

2. You have the Vista box as a firewall for the network. In this case it's expensive, can be broken into, and if it is, you have a major mess because all your traffic will be going through it.

An old P100 with 64MB RAM running shorewall is practically invulnerable. No ports need to be open, excepting for SSH from the internal network, or not even that. You can run it from CompactFlash and have it with no moving parts at all. It'll quietly sit there for years shoveling packets back and forth with zero problems. It doesn't accept connections, it has no open ports of public services -- it's impossible to break into barring a kernel bug in the TCP stack.

Re:Wondershaper

[Loconut1389 (455297)]

traffic shaping still isn't a breeze to setup under linux and keep in mind in many windows-centric environments, people just don't have the linux experience.

Are you speaking from experience on both fronts? (honest question) Is the vista shaping that difficult?

Linux is great for many things and many people, but sometimes the simpler solution works for a lot of people.

Re:Wondershaper

[morgan_greywolf (835522)]

traffic shaping still isn't a breeze to setup under linux and keep in mind in many windows-centric environments, people just don't have the linux experience.

Even in Windows-centric environments, many businesses do not and will not use a Windows PC to do things like traffic shaping. Firewalls, routers, etc. of any type are generally going to be dedicated-purpose devices from companies like Cisco, Juniper, CheckPoint, etc., not PCs or other general-purpose computing devices, and usually not even PCs running Linux. Why? Better performance, better security, ease of maintenance, higher reliability, the list goes on.

And don't forget the network as a whole.

[khasim (1285)]

The network has different characteristics depending upon what point you are at on it.

The WAN routers see the low bandwidth, higher latency serial links and such.

The servers/workstations see the high bandwidth, low latency ethernet links.

Do you really want your server(s) calculating its(their) window(s) based upon whether the request is originating across the WAN or next to it on the LAN?

This sounds like a good idea when you're talking about a single workstation, at home, connected to a cable connection or xDSL or whatever. But it sounds like soooooo many problems in the corporate environment.

Right now it is easy to find the server/workstation that is flooding the network. It's going to be very difficult when you have hundreds(thousands?) of machines that are ALL trying to maximize their bandwidth usage.

Personally, I'd prefer the ability to set the LAN parameters for the machines ... and then put a shaping router on the WAN links.

Re:

[cornjones (33009)]

the value in this will be that you can push it through group policy and mass configure workstations. It will be just another policy that will help keep your workstations from running away and flooding your network.

Re:Wondershaper

[MicrosoftRepresentit (1002310)]

Yeah, right...because if history teaches us anything, its that Linux is easier to use then Windows.

Re:Wondershaper

[indifferent children (842621)]

Yeah, right...because if history teaches us anything, its that Linux is easier to use then Windows.

If "easier to use" means "requires less knowledge", then Linux might not be "easier to use". But if "easier to use" means "consistently behaves the way a knowledgable person expects", then Linux is much "easier to use".

Re:

[indifferent children (842621)]

Wow! If your best means of proving that Windows is easier to use than Linux, is some corner-case about a Dance Dance Lemmings gaming peripheral, then Linux is even closer to WorldDomination(tm) than I thought.

Re:At least it's now easier to identify Vista

[LehiNephi (695428)]

Up until now, there have been a grand total of ZERO reasons for me to be interested in Vista. None of the new features hold any draw for me. It's good to see that there's finally something worthwhile in it--traffic shaping at the machine level is a good thing.

Re:

[Da Fokka (94074)]

Don't forget about the transparent windows!

Re:

[SEMW (967629)]

None of the new features hold any draw for me. It's good to see that there's finally something worthwhile in it--traffic shaping at the machine level is a good thing.

When you say "It's good to see that there's finally something worthwhile in it"... This isn't a feature that's just been added the day before RTM; it's been there quite a while. Might I suggest that instead of saying that "none of the features hold any draw for me" and them immediately following that up with a stantement that you weren't even aware of at least one of the new features, you take the time to actually find out about the features new to Vista [wikipedia.org], and *then* decide whether any of the features inte

Re:

[Toby The Economist (811138)]

QoS requires support from your network hardware.

The Internet doesn't have that.

Note also QoS doesn't actually solve all problems. For example, if you have two network applications running, and you want one of them to have priority such that it can take bandwidth from the other when it needs it - well, you're out of luck. QoS doesn't handle that situation.

Re:There MS goes again. re-inventing the wheel...

[octaene (171858)]

It's a big deal because now, viruses and malware can slow your network access automagically, so that it'll take weeks for you to download those security patches and antivirus signatures that you should've already downloaded. :-)

You Forgot TCP Window Scaling

[eklitzke (873155)]

The bandwidth throttling may not be a big deal to you, but on high bandwidth high latency links you can get huge performance improvements (i.e. 10-100x) with proper use of TCP window scaling. In the original TCP spec the window size could be no more than 64 KB, but this behavior was later amended and a TCP option was added to allow you to increase this value.

The optimal window size is (Round Trip Time)*(Bandwidth). For my internet connection (600 KBps) that means that a 64KB window is only adequate for sites whose ping time is no greater than 110 ms. For sites with a higher latency, the amount of bandwidth I can get in a TCP connection between me and this host is artificially limited by my TCP window size.

Right now it generally isn't possible to get a reliable connection after increasing the window size past 64 KB because some older/cheapo routers will not work with TCP windows greater than 64K. But if this gets into Vista and TCP window scaling options started getting heavy use, there would be a lot of pressure on sites with broken routers to get them fixed, and then those of us with high bandwidth connections would reap the benefits.