Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-inter-subnet-forwarding-09: (with DISCUSS and COMMENT)
"Ali Sajassi (sajassi)" <sajassi@cisco.com> Mon, 12 October 2020 04:06 UTC
Return-Path: <sajassi@cisco.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A40373A0A08; Sun, 11 Oct 2020 21:06:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.598
X-Spam-Level:
X-Spam-Status: No, score=-9.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=V3iFpSN2; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=oZbh8j6O
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R08b4GmrgOrU; Sun, 11 Oct 2020 21:06:51 -0700 (PDT)
Received: from alln-iport-3.cisco.com (alln-iport-3.cisco.com [173.37.142.90]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C4313A0A0B; Sun, 11 Oct 2020 21:06:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7186; q=dns/txt; s=iport; t=1602475610; x=1603685210; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ooPoElgTx5FRtkCPdVaszZHnXjdfYOWy73MBQpo5wPA=; b=V3iFpSN2OXZh35vQ+cQc4Fz+MhW6UK0GxuYcCWMicoLnxg8aTUL2X9Pr RGFYSdfb/THgbzkkT3Vw+jyoytUzR4+qwdaWHuTFGrbw+fFEPOH1ZHUG5 DT+MX4JaHac5MGKf1DGxqL+xhkFfPOo8wUQSuGCfCPAKZaXaT9rfOapPS A=;
X-IPAS-Result: A0C5CQDK1YNf/4UNJK1gHgEBCxIMQIMhUQeBSS8shD2DRgOmS4JTA1ULAQEBDQEBLQIEAQGESgIXgXwCJTgTAgMBAQEDAgMBAQEBBQEBAQIBBgRthVwMhXMCAQMSEREMAQEwBwEPAgEIDgwCGQYHAgICMBUQAgQBDQUigwSCTAMuAZwyAoE5iGF2gTKDAQEBBYUCGIIQCYEOKoJyg26CRIQSG4IAgTgcghg1PoQVP4MAM4ItkAQSEoMihyycbgqCaJVihQcDH4MVigiUHZMioCUCBAIEBQIOAQEFgWsjgVdwFWUBgj5QFwINjh8REhSDOopWdDcCBgEJAQEDCXyLB4JFAQE
IronPort-PHdr: 9a23:kqTLAhRvJFo1loQSpu/npGjOX9psv++ubAcI9poqja5Pea2//pPkeVbS/uhpkESQBNmJ5PdNiu6QuKflCiQM4peE5XYFdpEEFxoIkt4fkAFoBsmZQVb6I/jnY21ffoxCWVZp8mv9PR1TH8DzNFLXq3y2qzUVH0a3OQ98PO+gHInUgoy+3Pyz/JuGZQJOiXK9bLp+IQ/wox/Ws5wdgJBpLeA6zR6arw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.77,365,1596499200"; d="scan'208";a="552678559"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by alln-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 12 Oct 2020 04:06:49 +0000
Received: from XCH-ALN-005.cisco.com (xch-aln-005.cisco.com [173.36.7.15]) by alln-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 09C46nXK006100 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 12 Oct 2020 04:06:49 GMT
Received: from xhs-aln-001.cisco.com (173.37.135.118) by XCH-ALN-005.cisco.com (173.36.7.15) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 11 Oct 2020 23:06:49 -0500
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 11 Oct 2020 23:06:48 -0500
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Sun, 11 Oct 2020 23:06:48 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hKHjaqx6o75NP+MshpqAjbbcq+E1aPUorSKSN07Z/6TgFlyBkgxPjpfAiqslf72+vSWSFJo6q9GA82LZqee3EJETfVJ+M29g/Lj5tiyrFirTpNdbGamshcPJpiOk8OqyyQ7Qi2Vi9+fORVZb3ioDWMuDa6AOhu4h3UAJMjerkpDfzJ/7hKnCgnr1WJkkGyLvuU2OU43ULLcbvKwLV6abxOxRg1XUUkYxKX7aMILGD3++3fQA0jDSoRyncjpFUQ8OyBMvV3VBDLbmEYuSosJvG8EYR1xQNtjqFOGUEjiCJCT1NcFaq7r26PzLLj3+bWUpashFwaJyEtoWVnOJq+nymg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ooPoElgTx5FRtkCPdVaszZHnXjdfYOWy73MBQpo5wPA=; b=kyxKO3UFY6k1coCQFuc33EODjyFPYcSn4a03y1PZR61Wj0M6kLdr8oZLW4/hVpxPHreUxotz9sMVE/hJ56gN8gW+fF6AkaQ/h/s0/CjlNQDqHYLkv14HaDp5fRzKW2AMk7QJU5eme/5qOCnInhzgOLQxL488Uy51nRnCeQj3OJy2BlJmL/o5DTMJd5mtK4J/HLeGDya4qudcn1QwO0qQJsqKrDRhUtqsqPfSMLrdKRiSJbU60JnacJz06uV8fGRDyXi0j5qvwv30MTuvD/WjaZ/TTVvJUuWadJenBWfs6ExDEzzB5ConFG3dqpQGbaEL3y1rzTmGgBqxBmHMd4i/9g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ooPoElgTx5FRtkCPdVaszZHnXjdfYOWy73MBQpo5wPA=; b=oZbh8j6OJDffDCX2Es9nKjYivV4ooZCm9hb24Ag7PujCEXfKF7bDGZtVbectgXDIvyNCwhnWrcaXTOG+eLE4D/pnGcpKNCNKQ7nH/m+0mk2jphbx8C87JzIgVop4ON/Hes/jGY8tzhxIrOexX77c/Qh6l6qr6yw14GgxVdleF9Q=
Received: from BY5PR11MB4260.namprd11.prod.outlook.com (2603:10b6:a03:1ba::30) by BYAPR11MB3560.namprd11.prod.outlook.com (2603:10b6:a03:f8::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3455.26; Mon, 12 Oct 2020 04:06:46 +0000
Received: from BY5PR11MB4260.namprd11.prod.outlook.com ([fe80::11b2:63eb:a7db:80c5]) by BY5PR11MB4260.namprd11.prod.outlook.com ([fe80::11b2:63eb:a7db:80c5%6]) with mapi id 15.20.3455.028; Mon, 12 Oct 2020 04:06:45 +0000
From: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
To: Erik Kline <ek.ietf@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-bess-evpn-inter-subnet-forwarding@ietf.org" <draft-ietf-bess-evpn-inter-subnet-forwarding@ietf.org>, "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>, Zhaohui Zhang <zzhang@juniper.net>
Thread-Topic: Erik Kline's Discuss on draft-ietf-bess-evpn-inter-subnet-forwarding-09: (with DISCUSS and COMMENT)
Thread-Index: AQHWWnBO/cYtWtgBqUKUsb0xe3jLiKmTb/cA
Date: Mon, 12 Oct 2020 04:06:45 +0000
Message-ID: <DD607815-C1D1-4A4E-AA79-CC5F0FD274CF@cisco.com>
References: <159479413627.21953.4241600579036639955@ietfa.amsl.com>
In-Reply-To: <159479413627.21953.4241600579036639955@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.41.20091302
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2601:648:8800:39a0:fc92:9b6:5974:8606]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1c3ac80d-4d46-47de-07ab-08d86e643c41
x-ms-traffictypediagnostic: BYAPR11MB3560:
x-microsoft-antispam-prvs: <BYAPR11MB35607EE751AE7459FAE29238B0070@BYAPR11MB3560.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 8LmFlCDM2TdySyaRG97mjOjnFU1941kGCp5I5ukW085w4yF1EuZ91pmuitvLZKe4WaN8R5qk2BamexG685rX13UZCVqpCtJdvOHtPvp0jC5n59AnAh+MhAsqFJhZ5v0AswH+kCv+mr8q5eT1ioeISRjyaL70zt9/+QJnxAnRK1ShneBLBvTXNyIT17tJK8a2sSkFmyFuaS6zoxB+AwA+Wf/C+ualqyM0Jyj9L18of/v2azwS0Ek+2059RyC9XuuCixlsfRw7a8c109eT7FkiBqYFNVJ3KwyhebohvDfBH+Ton6db2CDpUUbiO1LajqI1GijYWDbnKB2v+/f35Ej7MQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4260.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(346002)(366004)(396003)(39860400002)(136003)(83380400001)(66476007)(66946007)(76116006)(66556008)(64756008)(6506007)(8936002)(33656002)(4326008)(186003)(71200400001)(8676002)(66446008)(5660300002)(2616005)(86362001)(478600001)(6486002)(110136005)(54906003)(6512007)(36756003)(2906002)(316002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <59025B9C27B5F243A9790F08A427C5E4@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4260.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1c3ac80d-4d46-47de-07ab-08d86e643c41
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Oct 2020 04:06:45.8075 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: uNU0Zy5LEwkoJ6HtmUMpRWsf7JZ+jOUBT0+Hezo58G5WVQGE2iF1NX7bmE2DADRCu1WAf7JVwc2c3Ka+gAeIbg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3560
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.15, xch-aln-005.cisco.com
X-Outbound-Node: alln-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/-KtVElPB7qKJN9tBYlVMjZkRgWM>
Subject: Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-inter-subnet-forwarding-09: (with DISCUSS and COMMENT)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Oct 2020 04:06:53 -0000
Hi Erik, Thanks for your comments and sorry to missed them in first place, please see my replies in line marked w/ [AS]: On 7/14/20, 11:22 PM, "Erik Kline via Datatracker" <noreply@ietf.org> wrote: Erik Kline has entered the following ballot position for draft-ietf-bess-evpn-inter-subnet-forwarding-09: Discuss ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- [ general ] * Can you give an example of what happens to non-IPv4/IPv6 Ethernet packets received at the NVE/PE? Do they get bridged, and if so how far? What happens if a host in BT1 ARPs for IPv4 address associated with a TS in a different BT? [AS] L2 packet (non-ARP/ND packet) gets bridged; however, ARP/ND packets from the host for its IP default GW gets terminated at the PE and process by it. Section 4.1 describes this in details and it provides an example of it at the bottom of the section. Since the PE acts as the IP default GW for the host, all packets to other TSes in other subnets gets forwarded to the PE (to its IP default GW). * Where there are multiple prefixes in an IP-VRF, is there a constraint that any other IP-VRF that contains one of the prefixes must contain all of them? Perhaps that's in 7432...? [AS] IP and MAC addresses for a given host is advertised with its corresponding Route Targets as described at the bottom of section 3, and in sections 5.2, 6.2 9.1.1, and 9.2.1. Any PE that has an IP-VRF for that tenant/host, imports the IP route into its VRF upon receiving it. [ sections 4, 5.4, 5.4, 6.3, 6.4, 9.1.2, 9.2.2 ] * Please document what happens to IPv4 TTL/IPv6 Hop Limit values as they cross various NVEs/PEs. [AS] Added the following to section 4: "It should be noted that whenever a PE performs a host IP lookup for a packet, IPv4 TTL or IPv6 hop limit for that packet is decremented by one and if it reaches zero, the packet is discarded. In case of symmetric IRB, the TTL/hop limit is decremented by both ingress and egress PEs (once by each); whereas, in case of asymmetric IRB, the TTL/hop limit is decremented only once by the ingress PE." [AS] I also added similar sentences to sections 5.4, 5.5, 6.3, and 9.1.2, and 9.2.2. This addition is not applicable to section 6.4. [ section 7 ] * Is there a reference for IRB-EXT-MOBILITY? [AS] Yes, there were couple of other comments on this and I have fixed that already. * The two statements: (1) "Although the language used in this section is for IPv4 ARP, it equally applies to IPv6 ND." (2) "If there is [a] many-to-one relationship such that there are many host IP addresses correspond[ing] to a single host MAC address ..., then to detect host mobility, the procedures in [IRB-EXT-MOBILITY] must be exercised..." are in direct conflict. All IPv6 hosts having at least one non-link-local unicast address will have more than one IP address per MAC and this section, or even this document, would not apply? [AS] I modified the paragraph to call out non-link-local address for IPv6 explicitly: “If there is many-to-one relationship such that there are many host IP addresses (non-link-local unicast addresses for IPv6) corresponding to a single host MAC address or there are many host MAC addresses corresponding to a single IP address (non-link-local unicast address for IPv6), then to detect host mobility, the procedures in <xref target="I-D.ietf-bess-evpn-irb-extended-mobility"/> must be exercised followed by the procedures described below.” ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- [ general ] * I believe this is true, but can you just state here (not in the doc) that there are no multi-link subnets that can be created with this model as defined in RFC 4903? It seems like everything is as it should be, but just to double-check. [AS] I don’t see an multi-link subnet issue here. [ section 1 ] * IP-VRF definition: s/VPN Routing.../Virtual Routing/? [AS] Done. [ section 3 ] * 2nd to last paragraph: Is any of this still true for a setup that involves multiple IPv6 prefixes per BD, maybe I misunderstood (or maybe this assumed single prefix per broadcast domain w/ IPv4-only?). Perhaps avoid suggesting there's a 1:1 relationship and use phrases likes "at least as many X as there are Y" or something? [AS] The paragraph says "typically", so it doesn't mandate 1:1 relationship. [ section 4 ] * ARP table: a less IPv4-specific name, even though it's define to hold both IPv4 and IPv6 associations, would be "neighbor table". That might be overloaded in routing contexts so no need to change it. [AS] There was another comments similar to this so I added NDP cache for IPv6. Thanks again, Ali
- [bess] Erik Kline's Discuss on draft-ietf-bess-ev… Erik Kline via Datatracker
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Ali Sajassi (sajassi)
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Erik Kline
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Ali Sajassi (sajassi)
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Erik Kline