Re: [bess] Closing on Stephane's open issue with draft-ietf-bess-datacenter-gateway
Robert Raszuk <robert@raszuk.net> Mon, 08 June 2020 09:52 UTC
Return-Path: <robert@raszuk.net>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 73AE63A082D for <bess@ietfa.amsl.com>; Mon, 8 Jun 2020 02:52:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gyO6HivoMXOk for <bess@ietfa.amsl.com>; Mon, 8 Jun 2020 02:52:53 -0700 (PDT)
Received: from mail-ej1-x62a.google.com (mail-ej1-x62a.google.com [IPv6:2a00:1450:4864:20::62a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 30BC83A0827 for <bess@ietf.org>; Mon, 8 Jun 2020 02:52:53 -0700 (PDT)
Received: by mail-ej1-x62a.google.com with SMTP id o15so17529386ejm.12 for <bess@ietf.org>; Mon, 08 Jun 2020 02:52:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8z5l598lzrDiLzDyF8NaV7cvOIRTWBIACc6GaiqJbwo=; b=Vq31WyvtoTctkf1aWi51qmaxev/sDzkY72YWT6Bc6ETGLUg+IGPkvbC46z3j0ZZH9v lMZl+O/Mx7tLQqmeGmlUP4b9TahGqQBd1xYicDY11aGUpfFAYgGyrf+xe+UgbmxZwM/G Tk+2gZJW2Xo2agItHum1m6yV58ONl/9AOukc/eSgmpyyoSt6Ac8yUdgt8uNGpm0/pg9J 2vtpKaAiS6ZphtFVld1XdfRWFDxCly8YaCvAbV8cRACxGihI+HBXlRa5uUETywdLYTt6 KGU1oH4WzySiMsZmU6wmN3AIxt68lUQRCLA4IG9KW/a3nD6zv5Lw7J0XUVmxikNoL3rC yt7g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8z5l598lzrDiLzDyF8NaV7cvOIRTWBIACc6GaiqJbwo=; b=S7T8JhRGoqhsoFFGUUi7GYS64E0bpzfxDXm9HE6NX6u1BpBW8gqujoejsS0iIoIV8a OCaANi2IcmfF+xsRWi72T9TFvL1LHoQjkTKR/ulFAQUdWPPyiWCwX6MHmtN7iiaL0x15 VMGBnM965Z0OR6bx1+lV50oDOhds5XE3Y/wWedW79eG7nEYKTYiUtghtutdol0N4spna h6KSeM5aMLuTJrnV/VA5usniM+TRwaiY1g91fsQyrKrJktU1JoHC7A8ZE0iDCAfaO42n 7pUICanXSSsxKF7rXdzNfZtj7jrAwx4fr4f/x/dxSnVXC8ms3DOCYU/9OQnYX0vRVF1R 5qIQ==
X-Gm-Message-State: AOAM531h1l5tWMQ/k+gkLRPw0U4F9WmVXJpTANcIC33Air2xRP82VUp/ 9iCm7FIAtqkAiWbG4Z+MPj/W63z/pwr9cLVLS/g5Cg==
X-Google-Smtp-Source: ABdhPJyy0IAOM0ANKmo3lFD8FbawLD/O1zpo5b5u83+LFxzWZ9FiEa7rRau5+jKs28+B2/sykElUkR5GRhRC6A24OjA=
X-Received: by 2002:a17:906:3e0c:: with SMTP id k12mr19524230eji.441.1591609971570; Mon, 08 Jun 2020 02:52:51 -0700 (PDT)
MIME-Version: 1.0
References: <07cf01d63a95$fcbf6c70$f63e4550$@olddog.co.uk> <00c901d63d6e$84e9cca0$8ebd65e0$@gmail.com>
In-Reply-To: <00c901d63d6e$84e9cca0$8ebd65e0$@gmail.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Mon, 08 Jun 2020 11:52:42 +0200
Message-ID: <CAOj+MMFPTJZQM=9sCcbjZ986n5suWFmaJS7iruyv8exfMq9yeA@mail.gmail.com>
To: slitkows.ietf@gmail.com
Cc: Adrian Farrel <adrian@olddog.co.uk>, draft-ietf-bess-datacenter-gateway@ietf.org, bess-chairs@ietf.org, BESS <bess@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000fa163805a78f9248"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/5xDJ6iAMGXlAiq_jA1f59Fet9Dc>
Subject: Re: [bess] Closing on Stephane's open issue with draft-ietf-bess-datacenter-gateway
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Jun 2020 09:52:56 -0000
Stephane, Two points .. 1. It is not clear to me that draft-ietf-bess-datacenter-gateway recommends to use RTC for anything - do they ? If not there is no issue. 2. Also note that RTC can be enabled on a per AF basis hence even if you use it say for SAFI 128 you do not need to use it for SAFI 1. As a general comment I do not see any issues using RTs on non VPN SAFIs. Thx,, R. On Mon, Jun 8, 2020 at 10:26 AM <slitkows.ietf@gmail.com> wrote: > Hi Adrian, > > My point is really tied to what will happen when RTC is enabled > (considering > draft-ietf-idr-rtc-no-rt). The behavior will be to drop the routes that > don't have an RT which will break existing Internet families behavior. > " When RTC is applied, on a particular BGP session, to routes of other > address families, the default behavior MUST be that routes without > any RTs are not distributed on that session. This default "default > behavior" applies to all AFI/SAFIs for which a different default > behavior has not been defined." > > Let me run this to IDR to get their feedback (as draft-ietf-idr-rtc-no-rt > is > owned by IDR). > > Stephane > > -----Original Message----- > From: Adrian Farrel <adrian@olddog.co.uk> > Sent: jeudi 4 juin 2020 19:31 > To: slitkows.ietf@gmail.com > Cc: bess-chairs@ietf.org; bess@ietf.org; > draft-ietf-bess-datacenter-gateway@ietf.org > Subject: Closing on Stephane's open issue with > draft-ietf-bess-datacenter-gateway > > Hi, > > John and I had a chat today about what we perceive is Stephane's open > issue. > > What we think the concern is is that we are using RTs in conjunction with > normal (i.e., non-VPN) routes. We do this to allow gateways to filter their > imports based on the RT that applies to the SR domain that it serves. > > An option was to use the Route Origin extended community instead. > > RFC 4360, which introduces both the Route Target and the Route Origin > extended communities and gives some guidance. Loosely expressed, the RT > says > which routers should import, the RO says which routers have advertised. In > both cases, the text suggests that "One possible use of the community is > specified in RFC4364" which implies that there are other acceptable uses. > > 4364 implies that the RO is used "to uniquely identify the set of routes > learned from a particular site." That is (my words), to apply a filter on > top of the RT to prevent re-import by a site of routes that match the RT > and > that were advertised by other entry points to the site. Indeed, the RO > would > seem to be used (in the 4364 case) only when the RT is also in use. > > We appreciate that the distinction is pretty delicate, but we think we are > right to use RT in this case because we are filtering to import, not to > avoid importing. Furthermore, if we used the RO then, to be consistent with > 4364, we would still be using the RT anyway. > > That, we think, disposes of the "RT or RO?" question. > > Now, we can go back to the original formulation of the question: is it OK > to > use RT with "non-VPN IP addresses"? Well, we consulted around a bit > privately amongst some BGP experts, and we couldn't find anyone to say it > was actually a problem. And (of course) no one raised the issue in WG last > call - but Matthew might claim that is because the document was only > lightly > reviewed, and Stephane might claim that this is because he had already > raised the point. Obviously, some of the authors know a bit about BGP, and > Eric was a lead author on 4364 and drove a lot of the details of what we > wrote. > > Two points in closing: > - If someone can show that we break something, we will have to fix it. > - If the chairs want to run this point past IDR and BESS explicitly, that > would be fine. > > Hope this helps. > > Best, > Adrian > > > _______________________________________________ > BESS mailing list > BESS@ietf.org > https://www.ietf.org/mailman/listinfo/bess >
- [bess] Closing on Stephane's open issue with draf… Adrian Farrel
- Re: [bess] Closing on Stephane's open issue with … slitkows.ietf
- Re: [bess] Closing on Stephane's open issue with … Robert Raszuk
- Re: [bess] Closing on Stephane's open issue with … Linda Dunbar
- Re: [bess] Closing on Stephane's open issue with … Adrian Farrel