Re: [bess] new WGLC for draft-ietf-bess-evpn-inter-subnet-forwarding-05

"Ali Sajassi (sajassi)" <sajassi@cisco.com> Tue, 29 January 2019 22:41 UTC

Return-Path: <sajassi@cisco.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C010130FE5 for <bess@ietfa.amsl.com>; Tue, 29 Jan 2019 14:41:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -12.653
X-Spam-Level:
X-Spam-Status: No, score=-12.653 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UqUy4Ni2bX3u for <bess@ietfa.amsl.com>; Tue, 29 Jan 2019 14:41:56 -0800 (PST)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 97D2C130EE0 for <bess@ietf.org>; Tue, 29 Jan 2019 14:41:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=31310; q=dns/txt; s=iport; t=1548801716; x=1550011316; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=J8kgpEXfTDs2Xz1PUKbkhQ9eu4DCPrL/FtOmCBkWUq4=; b=FVKd17bo5wY5udNlkEC4bjq5wj4uk18XkCACgOGcDYF7r7dXVBWN8hNu XMO1MpqXxEBjMGZp/HcSnQIbSgxspFZgS+5WU8EmFBMA5gzcDt6DtRBoz CTDOxLybxYLgroxFW3O3+U8a+ov1PDWDi4nUZbsZyyQI8fR4HD6DbPl// M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0ADAAC01VBc/5ldJa1kGQEBAQEBAQE?= =?us-ascii?q?BAQEBAQcBAQEBAQGBUQQBAQEBAQsBgQ12Z4EDJwqDeIgai3iBaCV8iCqOYxS?= =?us-ascii?q?BZwsBARgBCYRKAheCWCI0CQ0BAwEBAgEBAm0cDIVKAQEBAQIBAQEhBEcLBQs?= =?us-ascii?q?CAQgOAwMBAiEHAwICAh8GCxQJCAIEAQ0FgyIBgR1MAw0ID6sYfDOEQkFAgkg?= =?us-ascii?q?Ngh6MQBeBf4EQAScME4IXNYJXRwEBAgEBFoEUARIBPwYQCIJLMYImAolThi6?= =?us-ascii?q?GeIshMwkChyyHSIM6GIFqUYRniVeBNYoYgQmEIIEjikgCERSBJx84ZXFwFTs?= =?us-ascii?q?qAYJBCYFuhBKFFIU/QTEBAY1LgR+BHwEB?=
X-IronPort-AV: E=Sophos;i="5.56,538,1539648000"; d="scan'208,217";a="233013270"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 29 Jan 2019 22:41:55 +0000
Received: from XCH-RTP-003.cisco.com (xch-rtp-003.cisco.com [64.101.220.143]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id x0TMftSQ013762 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 29 Jan 2019 22:41:55 GMT
Received: from xch-rtp-005.cisco.com (64.101.220.145) by XCH-RTP-003.cisco.com (64.101.220.143) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Tue, 29 Jan 2019 17:41:54 -0500
Received: from xch-rtp-005.cisco.com ([64.101.220.145]) by XCH-RTP-005.cisco.com ([64.101.220.145]) with mapi id 15.00.1395.000; Tue, 29 Jan 2019 17:41:54 -0500
From: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
To: Krzysztof Szarkowicz <kszarkowicz@gmail.com>, "bess@ietf.org" <bess@ietf.org>
CC: "stephane.litkowski@orange.com" <stephane.litkowski@orange.com>
Thread-Topic: [bess] new WGLC for draft-ietf-bess-evpn-inter-subnet-forwarding-05
Thread-Index: AQHUuCPVmCdoPDeOUUiX20A6ITZGTQ==
Date: Tue, 29 Jan 2019 22:41:54 +0000
Message-ID: <AFC8967B-37E1-4B13-9743-69F796123C66@cisco.com>
References: <9216_1533737011_5B6AF833_9216_196_1_9E32478DFA9976438E7A22F69B08FF924B2291F9@OPEXCLILMA4.corporate.adroot.infra.ftgroup> <FBA62E93-CD59-4991-9AAC-C4B18478BC1F@gmail.com>
In-Reply-To: <FBA62E93-CD59-4991-9AAC-C4B18478BC1F@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.6.190114
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.128.224.47]
Content-Type: multipart/alternative; boundary="_000_AFC8967B37E14B13974369F796123C66ciscocom_"
MIME-Version: 1.0
X-Outbound-SMTP-Client: 64.101.220.143, xch-rtp-003.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/MV2v1n5nN82FFj-0jDQo1XI36Iw>
Subject: Re: [bess] new WGLC for draft-ietf-bess-evpn-inter-subnet-forwarding-05
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jan 2019 22:41:59 -0000

Please refer to my reply inline.

From: BESS <bess-bounces@ietf.org> on behalf of Krzysztof Szarkowicz <kszarkowicz@gmail.com>
Date: Wednesday, August 8, 2018 at 10:55 AM
To: "bess@ietf.org" <bess@ietf.org>
Cc: "stephane.litkowski@orange.com" <stephane.litkowski@orange.com>
Subject: Re: [bess] new WGLC for draft-ietf-bess-evpn-inter-subnet-forwarding-05

Hello working group,


I have two comments regarding section 3.1.


* Section 3.1. refers only to “ARP” or “ARP reply”. Given the fact, it is applicable to IPv6 as well, it should refer to ND NS/NA messages as well, I believe.

OK. Added ND NS along with ARP request  and ND NA along with ARP reply.


* In the last paragraph of Section 3.1:


>  Irrespective of using only the anycast address or both anycast and

   non-anycast addresses on the same IRB, when a TS sends an ARP request

   to the PE that is attached to, the ARP request is sent for the

   anycast IP address of the IRB interface associated with the TS's

   subnet.
If both anycast and non-anycast addresses are on the IRB, it is legitimate that TS sends NS/ARP request to resolve either anycast (e.g. to resolve IP address of default gateway configured on TS), or to resolve non-anycast (e.g. ping towards non-anycast address was initiated on TS). Therefore, presuming that TS sends ARP request to resolve only anycast IP is not fully correct, I believe. Thus, wording of this paragraph should cover two cases (NS/ARP request to resolve anycast, and NS/ARP request to resolve non-anycast IP).

TS is not supposed to use non-anycast addresses on the IRB interface because if OAM pinging is needed by the TS to the IRB interface, it can do that using anycast address. Non-anycast addresses are intended to be used by network operator for its OAM within the EVPN network.


>> the PE1 sends an ARP reply with the MACx which is the anycast

   MAC address of that IRB interface.
NA/ARP reply has multiple MAC related fields:

* Destination MAC (in Ethernet header)
* Source MAC (in Ethernet header)
* Sender hardware address (in the payload)
* Target hardware address (in the payload)

It is not ultimately clear from the text, if 'Source MAC (in Ethernet header)’ or 'Sender hardware address (in the payload)’, or both, should be populated with MACx. As I see it, in case of both anycast and non-anycast address is used on IRB, the behavior should be:

Since we are talking about only anycast addresses to be used by the TS, then it should be clear that only anycast MAC address will be used  - i.e., in both source MAC (in Ethernet header) and Sender hardware address (in the payload). However to make that crystal clear, I modified the 1st half of the last para as follow:
“Irrespective of using only the anycast address or both anycast and non-anycast addresses on the same IRB, when a TS sends an ARP request or ND Neighbor Solicitation (NS) to the PE that is attached to, the request is sent for the anycast IP address of the IRB interface associated with the TS's subnet and the reply will use anycast MAC address (in both Source MAC in the Ethernet header and Sender hardware address in the payload).”

Cheers,
Ali

* TS sends and NS/ARP request for the anycast address:
   -> PE sends and NA/ARP reply with anycast MAC in both 'Source MAC (in Ethernet header)’ and 'Sender hardware address (in the payload)’ fields

* TS sends and NS/ARP request for the non-anycast address:
   -> PE sends and NA/ARP reply with non-anycast MAC in both 'Source MAC (in Ethernet header)’ and 'Sender hardware address (in the payload)’ fields

Otherwise, if only 'Sender hardware address (in the payload)’ is populated with anycast/non-anycast MAC (depending, which IP address is being resolved), and 'Source MAC (in Ethernet header)’  is always populated with no-anycast MAC (in implementations mimicking RFC 5798, Section 8.1.2/8.2.2/8.2.3 behavior, which explicitly disables usage of V-MAC in the 'Source MAC (in Ethernet header)’), the L2 domain (L2 switches) between PE and CE will not learn anycast MAC, thus resulting in unknown unicast flooding being used on these switches to reach anycast MAC. This is undesirable behavior and should be avoided.


Thanks,
Krzysztof


On 2018-Aug-08, at 16:03, stephane.litkowski@orange.com<mailto:stephane.litkowski@orange.com> wrote:

Hello working group,

This email starts a two-week Working Group Last Call on draft-ietf-bess-evpn-inter-subnet-forwarding-05 [1].

A significant amount of update has been introduced since the previous WGLC. Please review the updates and provide your feedback.

This poll runs until *the 22th of August*.


Thank you

Stéphane, Matthew
bess chairs

[1] https://datatracker.ietf.org/doc/draft-ietf-bess-evpn-inter-subnet-forwarding/<https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dietf-2Dbess-2Devpn-2Dinter-2Dsubnet-2Dforwarding_&d=DwMFaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=f7wsLGcfzAWDNS6XNTBZwj_OLAOsZZqdrR2IDAzeZqE&m=M3KXSZ0muPPn2zxPT05cRmBqEF0itd-o0h975Aqb6pc&s=EBLyh0PcaHNBNxqOaSANy9lFfsov9flJfYmoJf44EKI&e=>


_________________________________________________________________________________________________________________________



Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc

pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler

a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,

Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.



This message and its attachments may contain confidential or privileged information that may be protected by law;

they should not be distributed, used or copied without authorisation.

If you have received this email in error, please notify the sender and delete this message and its attachments.

As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.

Thank you.
_______________________________________________
BESS mailing list
BESS@ietf.org<mailto:BESS@ietf.org>
https://www.ietf.org/mailman/listinfo/bess<https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_bess&d=DwMFaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=f7wsLGcfzAWDNS6XNTBZwj_OLAOsZZqdrR2IDAzeZqE&m=M3KXSZ0muPPn2zxPT05cRmBqEF0itd-o0h975Aqb6pc&s=I7TJcUnVRhayAA2yOuAxBtRnkwv7eG_mHiM9ggVaPsc&e=>