Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-na-flags-06: (with DISCUSS)
Erik Kline <ek.ietf@gmail.com> Tue, 30 March 2021 22:53 UTC
Return-Path: <ek.ietf@gmail.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B8ACB3A1266; Tue, 30 Mar 2021 15:53:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nP5jU9aGG_0s; Tue, 30 Mar 2021 15:53:32 -0700 (PDT)
Received: from mail-ot1-x335.google.com (mail-ot1-x335.google.com [IPv6:2607:f8b0:4864:20::335]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6904B3A125D; Tue, 30 Mar 2021 15:53:31 -0700 (PDT)
Received: by mail-ot1-x335.google.com with SMTP id 68-20020a9d0f4a0000b02901b663e6258dso17097837ott.13; Tue, 30 Mar 2021 15:53:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=LYyBartaPfCWS2mJs1DC30p8eNVNcMkYdlnGGofFa+0=; b=lySu2Rw11fybF2bhYBlYSWCTV8HfaFhvBTQVMfyMbV15NVDLJqLOXkfwI/fUA06B4L sc0cRtOompWnvE18INFNwCS4Tfo3AzZUwJuigp59mn548HtKMIXkPnsspb6c3caIELQA 3sO9dET4Rap1uXhNYWdBODyOZ2N79apZDigPqa+guvS/Q2WTICwo7Wy6xy90VuyLq8YX ZeLzIfce6Cs09AcUeDC8UgSJp61FsSAnqfpkTJlDCs48IHUk2laRppWFry8myfMtXCiJ DsNrmu9QGbdwm9L5wl7zHMJ7I6m6quDzgPoR6IHAB9zL4a8JOw+0bunkXrdf2hFqZzGq NqOQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=LYyBartaPfCWS2mJs1DC30p8eNVNcMkYdlnGGofFa+0=; b=SkNrcYK28h5C5SxBmCVDySq3Vu1MFBwlFGhr7oylvrKk5XI9rQ+bS5MGWfnVkcoiW9 WKdb8MXvufx5cese7THtPTsoQebFSu1x7pz5OyGZU3YYdoumZcfTdYtICRQWpXXk+9xB bDv0z/VPXkscfs/RNJHA9l1sAsXGo/quzz+T97JuQae00hvWjxqLJuozSKDuJAuFtjHU Q0c26t5YxYQuR4EjFMXXAfYQAdeqIle/oaN6tihvQDiT3g0p9w6m6m+B3qewEkyPuv05 mEEa1VK+sF42c+s7zmzH4DJzY2b+byjFjkGvY/fR2vQ2JQcJP+EY+sZRiJsZ42AtDOJz a45w==
X-Gm-Message-State: AOAM532veJFro6I64By7YJStIkHDK18dpFZJS7zKsktOmGHGuC20uoBn NJ+ysB/oQVys96L+rN862UgA4mm8WGyceI7iGRI=
X-Google-Smtp-Source: ABdhPJz5dGCIi4WUzb6bF3n4AZ6WdiOv0kGH5K9GpGIy6NITRItoK2JwUlh9VKmK8uz+hgwb5CO8yPP+Nn9HnEc0PbA=
X-Received: by 2002:a9d:4816:: with SMTP id c22mr173631otf.144.1617144809902; Tue, 30 Mar 2021 15:53:29 -0700 (PDT)
MIME-Version: 1.0
References: <160083453744.7803.17137223668657572891@ietfa.amsl.com> <MWHPR08MB35204AAE366C90BA01F67A6DF7080@MWHPR08MB3520.namprd08.prod.outlook.com>
In-Reply-To: <MWHPR08MB35204AAE366C90BA01F67A6DF7080@MWHPR08MB3520.namprd08.prod.outlook.com>
From: Erik Kline <ek.ietf@gmail.com>
Date: Tue, 30 Mar 2021 15:53:19 -0700
Message-ID: <CAMGpriUrs3tB0ZDmsj1xGPdh4E0S+He71b0N=pvzhhfj4G0mEg@mail.gmail.com>
To: "Rabadan, Jorge (Nokia - US/Mountain View)" <jorge.rabadan@nokia.com>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-bess-evpn-na-flags@ietf.org" <draft-ietf-bess-evpn-na-flags@ietf.org>, "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>, "Bocci, Matthew (Nokia - GB)" <matthew.bocci@nokia.com>
Content-Type: multipart/alternative; boundary="000000000000f1d6bb05bec8dd72"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/7pKKI9i8QWbYpwtAnup9tYNTj24>
Subject: Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-na-flags-06: (with DISCUSS)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Mar 2021 22:53:37 -0000
Understood. I agree that my concerns are probably better discussed over in draft-ietf-bess-evpn-proxy-arp-nd, as you suggest. On Fri, Oct 9, 2020 at 4:25 AM Rabadan, Jorge (Nokia - US/Mountain View) < jorge.rabadan@nokia.com> wrote: > Hi Erik, > > > > Thank you for the review. > > Please see in-line and let us know your thoughts. > > > > Thanks! > > Jorge > > > > *From: *Erik Kline via Datatracker <noreply@ietf.org> > *Date: *Wednesday, September 23, 2020 at 6:15 AM > *To: *The IESG <iesg@ietf.org> > *Cc: *draft-ietf-bess-evpn-na-flags@ietf.org < > draft-ietf-bess-evpn-na-flags@ietf.org>, bess-chairs@ietf.org < > bess-chairs@ietf.org>, bess@ietf.org <bess@ietf.org>, Bocci, Matthew > (Nokia - GB) <matthew.bocci@nokia.com>, Bocci, Matthew (Nokia - GB) < > matthew.bocci@nokia.com> > *Subject: *Erik Kline's Discuss on draft-ietf-bess-evpn-na-flags-06: > (with DISCUSS) > > Erik Kline has entered the following ballot position for > draft-ietf-bess-evpn-na-flags-06: Discuss > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-bess-evpn-na-flags/ > > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > [ general ] > > * ND in IPv6 is more than just its analogous ARP function (as immediately > evidenced by the need to support passing the NA flags). I'm concerned > that > this approach isn't actually satisfactory for IPv6, and could end up > constraining existing and future ND extensions and uses. > > [1] New flags > > As new flags are defined in the NA message, they will not be deployable > in these environments until this standard (and possibly others) is > updated. > > A more forward-compatible option might be to just include the whole NA > "flags plus reserved" word (there is room for it in the format in > section 2). > > [jorge] that could have been an option, however the authors made a > decision to have the flags that were used for the required use cases. Also > there are flags specific to the EVPN proxy-ARP/ND and IRB use cases that > are not present in the NA messages, however they are needed on the PEs to > make the right EVPN MAC/IP route selection (i.e. I flag). Also, there are > already implementations so I’m afraid we can’t change the format of the > extended community. > > IMHO if new NA flags are defined in the future, they may or may not be > relevant to the EVPN MAC/IP route. And if they are, a new document should > be needed to register a new flag in the ext community and explain the > procedures. > > > > [2] Current and new NA ND Options > > This approach doesn't support sending additional ND Options in the NA, > and > therefore things like Secure Neighbor Discovery (SeND, RFC 3971) cannot > be supported (nor can any future NA option). > > Arguably, ND proxying might best be disabled when a node is attempting to > use SeND and/or whenever a Nonce Option is present an NA. Nevertheless, > new ND options might be specified that can be carried in NS/NA messages. > > [jorge] I agree with you proxying might be best disabled if options are > used (at least some). Note that this spec just defines an ARP/ND extended > community that is not only used for proxy functions in EVPN networks. I > think the issues related to the use of ND options in EVPN proxy-ND should > be discussed in draft-ietf-bess-evpn-proxy-arp-nd. Actually section 4.3 in > that spec is an attempt to address that. > > > > RFC 4861 sections 4.2 and 4.3 say that "[f]uture versions of this > protocol > may define new option types", and while it also says that "[r]eceivers > MUST silently ignore any options they do not recognize and continue > processing the message", in this case it would be the infrastructure that > would prevent two nodes from attempting to use a newer ND option on > either > side of this PE/CE proxying boundary and not necessarily a limitation of > the > nodes themselves. > > There is no space for these options in the current section 2 format. > Can it be extended to optionally carry the ND options that a PE has > observed to be sent by the node? > > Alternatively, I think we'll need some text that ND proxying MUST be > disabled if NSes contain any options other things like TLLAO or if NAs > are > observed to have anything other than SLLAO. > > Basically, I think we should take care to not impede the deployment of > any > extensions to ND. > > [jorge] these are all very good points, however, as I said earlier, all > issues related to proxy-ND in EVPN networks should be addressed in > draft-ietf-bess-evpn-proxy-arp-nd. It would be great if you can provide > feedback about that document so that we make sure we address all your > concerns. > > > > > > >
- [bess] Erik Kline's Discuss on draft-ietf-bess-ev… Erik Kline via Datatracker
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Rabadan, Jorge (Nokia - US/Mountain View)
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Erik Kline