IETF Logo Mail Archive

Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication

"Fedyk, Don" <don.fedyk@hpe.com> Fri, 15 December 2017 15:35 UTC

Return-Path: <don.fedyk@hpe.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1AB8128E19 for <bess@ietfa.amsl.com>; Fri, 15 Dec 2017 07:35:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.22
X-Spam-Level:
X-Spam-Status: No, score=-4.22 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5PhZGtiVoefH for <bess@ietfa.amsl.com>; Fri, 15 Dec 2017 07:34:58 -0800 (PST)
Received: from g2t2353.austin.hpe.com (g2t2353.austin.hpe.com [15.233.44.26]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E98BE126B6E for <bess@ietf.org>; Fri, 15 Dec 2017 07:34:53 -0800 (PST)
Received: from G4W9122.americas.hpqcorp.net (g4w9122.houston.hp.com [16.210.21.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by g2t2353.austin.hpe.com (Postfix) with ESMTPS id 44B5984; Fri, 15 Dec 2017 15:34:53 +0000 (UTC)
Received: from G1W8108.americas.hpqcorp.net (2002:10c1:483c::10c1:483c) by G4W9122.americas.hpqcorp.net (2002:10d2:1511::10d2:1511) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Fri, 15 Dec 2017 15:34:52 +0000
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (15.241.52.11) by G1W8108.americas.hpqcorp.net (16.193.72.60) with Microsoft SMTP Server (TLS) id 15.0.1178.4 via Frontend Transport; Fri, 15 Dec 2017 15:34:52 +0000
Received: from AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM (10.169.2.143) by AT5PR8401MB0356.NAMPRD84.PROD.OUTLOOK.COM (10.169.2.146) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.302.9; Fri, 15 Dec 2017 15:34:50 +0000
Received: from AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM ([fe80::8cfc:ebe:b596:a459]) by AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM ([fe80::8cfc:ebe:b596:a459%18]) with mapi id 15.20.0302.017; Fri, 15 Dec 2017 15:34:50 +0000
From: "Fedyk, Don" <don.fedyk@hpe.com>
To: John E Drake <jdrake@juniper.net>, "EXT - thomas.morin@orange.com" <thomas.morin@orange.com>, Marco Marzetti <marco@lamehost.it>
CC: "bess@ietf.org" <bess@ietf.org>
Thread-Topic: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication
Thread-Index: AQHTdM5LCyQuEnUoLEO2JOFxk4Zcf6NC2FuAgAALcQCAAFZkMIAA/vwAgABFxgCAAAIuUA==
Date: Fri, 15 Dec 2017 15:34:50 +0000
Message-ID: <AT5PR8401MB035389AC482DEFA78909334FF60B0@AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM>
References: <CAO367rVvmv4kyFbS8C=WEyZpXZZQUgLsFX1gscy49UNU2_pJvQ@mail.gmail.com> <1513258777.30252.11.camel@orange.com> <CAO367rWCvS2fOD43agch0Mpu1pOfoXYHkptJPfccJsPHc+vzZQ@mail.gmail.com> <AT5PR8401MB0353B2B69B6F8D292FFB268BF60A0@AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM> <1513334544.6588.9.camel@orange.com> <MWHPR05MB355144EB0007DE112C09F34BC70B0@MWHPR05MB3551.namprd05.prod.outlook.com>
In-Reply-To: <MWHPR05MB355144EB0007DE112C09F34BC70B0@MWHPR05MB3551.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=don.fedyk@hpe.com;
x-originating-ip: [173.76.173.235]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AT5PR8401MB0356; 6:UaizBsRPIqP5DUOw6b3cNFkOj6GteKqtWF4m/Q+cWK3QJ3H+ffcsRFP6/YEkEaEiYsu5aAmX5M58NU98uByYZOq6c+nyGiOmO9vbAaNadg5b81RTXEEHhMWg94Dq02RY8QsfffmhA1jBXIs/fLPA3mkquq/ZFhcXlXK5Jd+oDEPlFXKaIpfLxvenyiGs32Q9PjSXozY7GbbPbwedm11wFJde/poSuGmiTNQSjmKSlQgNwa4SXRWmy4fRdZK0AuS5V6AfbGqCHXJjC7PtabpWCLsZpYBE9EUdcLmVHLcwUoxSc0orIKojD+zEFbUriTeDovR6iYZYBRcJ2E1PxPgr1dpqsYdNLghX0JcXBD2HVfA=; 5:/C45CLwmlmhmGCyIyiOcHpeMFwWFF6sRisLaRmBmkvrBizKmjbXi4JlqqLUgxGb8UKbU1N1GDy/kfTEurSCFQ4xKD3Q9N78S9lFUbYhdud354jyGIXRdNGdrpCOzaK+nfiW/+uLQ14PYVOdh1FKVtW/9pmtstp3O9KWsuUYMhoI=; 24:cVFMVmMF29SiH/BXRisVeI0eoMQtCkMvwrwyDTFhyHeWQzVaPIUadW/cgEgSabPlF0AiOuCUkCkWjHCjnzDJaAB0vA67zb3N0fXoE7RpdxI=; 7:NjdclcI6CpiF/VB7QoxBL9QEziCzVnGAMKkWqqIrQJtnzal0zJVdXVu52ZXvprZikJABAGGswjgdZxlJ2tPrRCtkVKzKHDQ0e3HtzS1GWTOIdT2ATOv9ccV2Yxcibgg3pLxrItD2m/LPm77VcI+c8HRka55IcjlD5LKgLZoFDb5ZR7ZLYLNjJE3NQsN77dZB+H5Wno3UgeLvbvDBEmfmm5YxbCnaywsYjaBSYWkXlOZrUQa+E3/xIhN906uHWhD1
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 0f5a85e3-93b6-47e9-a131-08d543d1613f
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:(222181515654134); BCL:0; PCL:0; RULEID:(5600026)(4604075)(4534020)(4602075)(4627115)(8989060)(201703031133081)(201702281549075)(8990040)(48565401081)(2017052603307); SRVR:AT5PR8401MB0356;
x-ms-traffictypediagnostic: AT5PR8401MB0356:
x-microsoft-antispam-prvs: <AT5PR8401MB0356CF9487C134EE548E2E5BF60B0@AT5PR8401MB0356.NAMPRD84.PROD.OUTLOOK.COM>
x-exchange-antispam-report-test: UriScan:(227479698468861)(10436049006162)(138986009662008)(18271650672692)(222181515654134);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(2401047)(8121501046)(5005006)(10201501046)(3002001)(93006095)(93001095)(3231023)(6055026)(6041248)(20161123562025)(20161123564025)(20161123560025)(20161123555025)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:AT5PR8401MB0356; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:AT5PR8401MB0356;
x-forefront-prvs: 05220145DE
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(366004)(396003)(39860400002)(346002)(13464003)(24454002)(51444003)(377424004)(189003)(199004)(3660700001)(7696005)(55016002)(99286004)(305945005)(6306002)(33656002)(9686003)(7736002)(93886005)(966005)(106356001)(5250100002)(230783001)(25786009)(81156014)(81166006)(105586002)(14454004)(2950100002)(53936002)(8666007)(59450400001)(2900100001)(3280700002)(8676002)(6436002)(76176011)(1941001)(53546011)(110136005)(2906002)(229853002)(5890100001)(6246003)(68736007)(478600001)(86362001)(3846002)(6116002)(575784001)(102836003)(4001150100001)(316002)(5660300001)(66066001)(97736004)(74316002)(6506007)(4326008)(8936002)(19627235001); DIR:OUT; SFP:1102; SCL:1; SRVR:AT5PR8401MB0356; H:AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: hpe.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 0f5a85e3-93b6-47e9-a131-08d543d1613f
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Dec 2017 15:34:50.0641 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 105b2061-b669-4b31-92ac-24d304d195dc
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AT5PR8401MB0356
X-OriginatorOrg: hpe.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/GG6Qt6Ax8OqPLuuZz1rXcpmd51Q>
Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Dec 2017 15:35:01 -0000

Hi Thomas

I'm good with the interpretation of RFC7432 and RFC6514 in this area as I said.  But at least one implementation got it wrong.   

You Wrote: 
That is, unless we  explicitly identify an ambiguous piece of text.

I think section  9. Support for Multicast could use a slight rewording.  Perhaps citing  RFC7432 as well.  
I know I read this part several times.  The draft specifies a Multicast tunnel with attribute Ingress replication that you don't use for multicast traffic.

>>>>>
   For example,
   the PMSI Tunnel attribute may indicate the multicast tunnel is of
   type PIM-SM; whereas, the BGP Encapsulation extended community may
   indicate the encapsulation for that tunnel is of type VxLAN. The
   following tunnel types as defined in [RFC6514] can be used in the
   PMSI tunnel attribute for VXLAN/NVGRE:

         + 3 - PIM-SSM Tree
         + 4 - PIM-SM Tree
         + 5 - BIDIR-PIM Tree
         + 6 - Ingress Replication


   Except for Ingress Replication, this multicast tunnel is used by the
   PE originating the route for sending multicast traffic to other PEs,
   and is used by PEs that receive this route for receiving the traffic
   originated by hosts connected to the PE that originated the route.
<<<<<

 
Cheers
Don 

-----Original Message-----
From: John E Drake [mailto:jdrake@juniper.net] 
Sent: Friday, December 15, 2017 9:52 AM
To: EXT - thomas.morin@orange.com <thomas.morin@orange.com>; Fedyk, Don <don.fedyk@hpe.com>; Marco Marzetti <marco@lamehost.it>
Cc: bess@ietf.org
Subject: RE: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication

Thomas,

I completely agree w/ your email, below.

Yours Irrespectively,

John


> -----Original Message-----
> From: BESS [mailto:bess-bounces@ietf.org] On Behalf Of Thomas Morin
> Sent: Friday, December 15, 2017 5:42 AM
> To: Fedyk, Don <don.fedyk@hpe.com>; Marco Marzetti <marco@lamehost.it>
> Cc: bess@ietf.org
> Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress 
> Replication
> 
> Hi Don,
> 
> Fedyk, Don, 2017-12-14 20:33:
> > I think the gray area is that this draft talks about BUM traffic and 
> > ingress replication and then has a section on Multicast tunnels 
> > which excludes ingress replication traffic from the tunnels.
> 
> No, ingress replication is not excluded at all:
> 
>    The following tunnel types as defined in [RFC6514] can be used in
>    the PMSI tunnel attribute for VXLAN/NVGRE:
> 
>          + 3 - PIM-SSM Tree
>          + 4 - PIM-SM Tree
>          + 5 - BIDIR-PIM Tree
>          + 6 - Ingress Replication
> 
> > If you are using point to point VXLAN/NVGRE  tunnels then ingress 
> > replication is default [...]
> 
> This formulation surprises me: that some implementations behave as you 
> describe is possibly true (this seems to be the case of the 
> implementation that triggered this discussion), but I don't know about 
> any text in the specs we are discussing that would imply such a 'default'.
> 
> You might have implementations that in the absence of any local 
> configuration for an EVPN instance on which type of tunnel to use for 
> BUM, will default to ingress replication: this is fine, out of the 
> scope of what is specified for interop, and not breaking other 
> implementations (as long, of course, that what is chosen locally is 
> then advertised as expected in a PMSI Tunnel Attribute).
> 
> 
> > but IMET is being used to identify the NVE IP.    I read RFC7432 and
> > RFC6514 in this area and thought that the PMSI attribute MUST be set 
> > when there is an Inclusive Multicast Ethernet tag IMET.
> 
> Yes!  (the text of RFC7432 quoted by Ali reminds us that)
> 
> 
> > I can see two possible fixes:
> > -          Specify that the PMSI attribute MUST be set if there is an
> > IMET route and specify correct attribute.
> 
> Given the content of RFC7432 and the fact that this is a normative ref 
> of draft-ietf-bess-evpn-overlay, I think that we don't need to repeat 
> this MUST in draft-ietf-bess-evpn-overlay.  That is, unless we 
> explicitly identify an ambiguous piece of text.
> 
> > -          Allow that ingress replication is default when PMSI is
> > absent but accept PMSI that specifies ingress replication.
> >
> 
> I don't think we should do that. It would overnight make non-compliant 
> pre- standard implementation of draft-ietf-bess-evpn-overlay, without 
> a rationale to do so except coping with an implementation that assumed a bit too much.
> 
> Best,
> 
> -Thomas
> 
> 
> 
> > From: BESS [mailto:bess-bounces@ietf.org] On Behalf Of Marco 
> > Marzetti
> > Sent: Thursday, December 14, 2017 9:21 AM
> > To: Thomas Morin <thomas.morin@orange.com>
> > Cc: bess@ietf.org
> > Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with 
> > Ingress Replication
> >
> > Hello,
> >
> > I have encountered an implementation that is not attaching any PMSI 
> > to the IMET.
> > The authors think they don't really need it because they only 
> > support Ingress Replication.
> > Such behavior breaks interoperability with other implementations 
> > that are dropping the NLRI if PMSI is not attached.
> >
> > So i looked at draft-ietf-bess-evpn-overlay-10 and noticed that 
> > there's no clear indication of what the proper behavior is.
> > As said i assumed i had to look at RFC7432 and RFC6514 (and i did 
> > it), but i wasn't 100% sure and i preferred to ask.
> >
> > Onestly you already made my day by confirming what i thought.
> > My suggestion was to make things more clear, but i admit that it 
> > could look redundant.
> >
> > Thanks
> >
> >
> >
> >
> >
> >
> >
> > On Thu, Dec 14, 2017 at 2:39 PM, Thomas Morin
> <thomas.morin@orange.co
> > m> wrote:
> > > Hi Marco,
> > >
> > > Marco Marzetti, 2017-12-14 12:25:
> > > > I am writing this email asking you to clarify what's the
> > > suggested
> > > > behavior when PMSI Tunnel Type is set to "Ingress Replication"
> > > (type
> > > > 6) as draft-ietf-bess-evpn-overlay-10 only suggests what to do
> > > with
> > > > multicast tunnel trees.
> > > >
> > > > I think the originating PE should conform with RFC6514 and
> > > RFC7432
> > > > (from which you've taken inspiration) and always (RFC2119 MUST) 
> > > > attach PMSI Tunnel attribute with the Tunnel Type set to Ingress 
> > > > Replication and Tunnel Identifier set to a routable address of
> > > the PE
> > > > itself (more specifically NVE's IP address).
> > > >
> > > > Is that correct?
> > > > In that case i suggest to add the following line at the end of 
> > > > Section 9.
> > > > """
> > > > For Ingress Replication the PE should follow what's stated in
> > > RFC6514
> > > > Section 5 .
> > > > """
> > >
> > > The text of section 9 lists "Ingress Replication" in the list of 
> > > tunnel types that can be used. My understanding is that, in the 
> > > absence of anything being specifically said for Ingress 
> > > Replication, an implementation should follow what is said in RFC7432 and RFC6514.
> > > (What
> > > other specs could it follow to implement this supported type ?
> > > RFC7432
> > > and RFC6514 are more than an inspiration here, these are specs 
> > > that the document refers to explicitly)
> > >
> > > So I'm not sure that it is useful or needed to add text.
> > >
> > > Can you perhaps expand on why the current text would possibly be 
> > > ambiguous, misleading or incomplete...?
> > >
> > > -Thomas
> > >
> >
> >
> >
> > --
> > Marco
> 
> _______________________________________________
> BESS mailing list
> BESS@ietf.org
> https://urldefense.proofpoint.com/v2/url?u=https-
> 3A__www.ietf.org_mailman_listinfo_bess&d=DwICAg&c=HAkYuh63rsuhr6Sc
> bfh0UjBXeMK-ndb3voDTXcWzoCI&r=CRB2tJiQePk0cT-h5LGhEWH-
> s_xXXup3HzvBSMRj5VE&m=tHiUTn9_QXrhs3cw-
> Dn9_qwR3VK2xWv72DcpoOfR_SI&s=VxylPoVhzXC58hBsqToxzhUK6-3kfy-
> ktUi7A9KZDcs&e=

v2.23.0 | Report a Bug | By Email