Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication

John E Drake <jdrake@juniper.net> Fri, 15 December 2017 14:52 UTC

Return-Path: <jdrake@juniper.net>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3233128B93 for <bess@ietfa.amsl.com>; Fri, 15 Dec 2017 06:52:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QeLRbBRn1Ab1 for <bess@ietfa.amsl.com>; Fri, 15 Dec 2017 06:52:20 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1573D127078 for <bess@ietf.org>; Fri, 15 Dec 2017 06:52:20 -0800 (PST)
Received: from pps.filterd (m0108160.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.21/8.16.0.21) with SMTP id vBFEoTG8001795; Fri, 15 Dec 2017 06:52:10 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=JwJZx07R8XZHJ9r9ZrCsNtPD/t0/s0dQlvos64jirQA=; b=j2HxRynh8PCJ7iPC70ToPksBpl5YR4xgd906BmB2NghcPnt95mgjBTLRPhwoyEOoAvRb 0N6DI2hoqQ42mBTjBuLDIHnK8zULRh6jXfl2iru0H6OdG/Cq0A8OuoGT4cIZESot6PL/ 1RQZVfL024bfHCnNj6feVf8NQeI3xs4OtpIKnGu1f4M4pl8+V3Jt2IGH5zjVCVzjdRfm 3ubUDcY+/O5TJ1i4W4peA6hx4G5EkfVs8+4k3Q4iThbyZcgVz+G/dVs+mSpOseVttOtD UuR4wlycaVpQkXyWHApntJiXPTn3Dx5tvIIyrZYWo/UUv+x8soPYVuO3GG8jqMPJAxaW LA==
Received: from nam03-by2-obe.outbound.protection.outlook.com (mail-by2nam03lp0052.outbound.protection.outlook.com [216.32.180.52]) by mx0b-00273201.pphosted.com with ESMTP id 2evcn80nk3-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Fri, 15 Dec 2017 06:52:10 -0800
Received: from MWHPR05MB3551.namprd05.prod.outlook.com (10.174.250.154) by MWHPR05MB3549.namprd05.prod.outlook.com (10.174.250.152) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.323.4; Fri, 15 Dec 2017 14:52:08 +0000
Received: from MWHPR05MB3551.namprd05.prod.outlook.com ([10.174.250.154]) by MWHPR05MB3551.namprd05.prod.outlook.com ([10.174.250.154]) with mapi id 15.20.0323.011; Fri, 15 Dec 2017 14:52:08 +0000
From: John E Drake <jdrake@juniper.net>
To: "EXT - thomas.morin@orange.com" <thomas.morin@orange.com>, "Fedyk, Don" <don.fedyk@hpe.com>, Marco Marzetti <marco@lamehost.it>
CC: "bess@ietf.org" <bess@ietf.org>
Thread-Topic: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication
Thread-Index: AQHTdM5CvklvXirhBEykRTzwM3zAW6NC2FuAgAALcQCAAGgfAIAA7UEAgABFqtA=
Date: Fri, 15 Dec 2017 14:52:08 +0000
Message-ID: <MWHPR05MB355144EB0007DE112C09F34BC70B0@MWHPR05MB3551.namprd05.prod.outlook.com>
References: <CAO367rVvmv4kyFbS8C=WEyZpXZZQUgLsFX1gscy49UNU2_pJvQ@mail.gmail.com> <1513258777.30252.11.camel@orange.com> <CAO367rWCvS2fOD43agch0Mpu1pOfoXYHkptJPfccJsPHc+vzZQ@mail.gmail.com> <AT5PR8401MB0353B2B69B6F8D292FFB268BF60A0@AT5PR8401MB0353.NAMPRD84.PROD.OUTLOOK.COM> <1513334544.6588.9.camel@orange.com>
In-Reply-To: <1513334544.6588.9.camel@orange.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; MWHPR05MB3549; 6:yB0csPNVvsqIVmzvIUP7nFbA5YnOs7v0ZjuxSvjtG8VlSR28xZ8O0DS1zyDQDNLjQC8sjk6mcFQ+pkGFUwwH/j+yDB7it0BBz55Ql/S+A2A7pbWi9VuaYCV+lOiWbApOqjUls/eBj69QO7zJQ4Lxk2JXIeFieBKsb3I9hPdx+N4emBU4LtAkn+KiJNLdS47agqn9C+yaFUTzrPhPeLCCXToPKW14brmuFCWQ/CxMHOTbagvvccwHtEeK4ouZwrsuQyPt59T4Q3PM5ben9frkJTdy5zln8Pfa9XlNcm8vHW4uQt5cklWIwPYuBq3cAq8bhqBbOiKHDy0LslC2P3D+8UxmCqtNzG9fCmfHBdm4V6E=; 5:HLxY5Lw/mKuLCwjZJbg+J8A57+IPiMmE34VzxG/3g7QQwGtV+7/LY2RfyAiOBBWz4C1gtCAx0wThXHljPobQ89EprmE5hEZH5vHd0CgoVdzap+5s+7oCpjdJ4IVwfCZ4zYp+QRJbTRUn+BRDNEwwTrDahUH2Ymn/F4qY3s4JOHk=; 24:PMp1hmohwg6tfEdCrBCuBXHG2G4yCdUfZ0uZXsDszFLJNyL08XPqsSOUye6epdsUlHc2gzlIuccG3+xClDoDDKYzwjulPEEyJhXIUu4hWt0=; 7:c4Vz4OZQnMLe9xnVJylWu88jRJLe9+G5VuAwmqOrKbCjMopNjQjwI75xkHmoZT3CAi1qkhTw2gW4Qk2Si0Q2Nqtnzx7SM3KK0Wc55Hh2v3iBF1MOi379YIHf2sLetAuOvJPHa7bXzwCXVGr15ukGUtXcmTlsB6WtpgjhhusQxXfJkg2BOA07kpWF4Cqt/6UaFPTe0FHGBPRSVi9ffdE9gnBCYG4ZCw/ciCVaP0rMHE7POTr9jS07mvcfv/E0Rqwa
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: b70989bb-45c2-488e-d556-08d543cb6a48
x-microsoft-antispam: UriScan:(222181515654134); BCL:0; PCL:0; RULEID:(48565401081)(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(5600026)(4604075)(2017052603307)(7153051); SRVR:MWHPR05MB3549;
x-ms-traffictypediagnostic: MWHPR05MB3549:
x-ld-processed: bea78b3c-4cdb-4130-854a-1d193232e5f4,ExtAddr
x-microsoft-antispam-prvs: <MWHPR05MB3549CAA836DDB9A34407EB99C70B0@MWHPR05MB3549.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(227479698468861)(10436049006162)(18271650672692)(222181515654134);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(2401047)(8121501046)(5005006)(10201501046)(3002001)(93006095)(93001095)(3231023)(6055026)(6041248)(20161123555025)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123560025)(20161123562025)(20161123564025)(6072148)(201708071742011); SRVR:MWHPR05MB3549; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:MWHPR05MB3549;
x-forefront-prvs: 05220145DE
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(346002)(366004)(39860400002)(376002)(24454002)(199004)(189003)(13464003)(377424004)(51444003)(6246003)(229853002)(8676002)(2950100002)(305945005)(6116002)(14454004)(3846002)(102836003)(93886005)(33656002)(105586002)(2900100001)(53936002)(25786009)(3660700001)(86362001)(81166006)(97736004)(7736002)(2906002)(53546011)(4001150100001)(81156014)(6506007)(5660300001)(966005)(4326008)(3280700002)(575784001)(7696005)(99286004)(478600001)(5890100001)(76176011)(59450400001)(316002)(6306002)(74316002)(55016002)(110136005)(230783001)(106356001)(9686003)(77096006)(6436002)(66066001)(68736007)(8936002)(19627235001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR05MB3549; H:MWHPR05MB3551.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: b70989bb-45c2-488e-d556-08d543cb6a48
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Dec 2017 14:52:08.2904 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR05MB3549
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2017-12-15_06:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1712150209
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/Oi44F-tjab3_B_-xpuWdyP2pOUY>
Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress Replication
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Dec 2017 14:52:23 -0000

Thomas,

I completely agree w/ your email, below.

Yours Irrespectively,

John


> -----Original Message-----
> From: BESS [mailto:bess-bounces@ietf.org] On Behalf Of Thomas Morin
> Sent: Friday, December 15, 2017 5:42 AM
> To: Fedyk, Don <don.fedyk@hpe.com>; Marco Marzetti
> <marco@lamehost.it>
> Cc: bess@ietf.org
> Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress
> Replication
> 
> Hi Don,
> 
> Fedyk, Don, 2017-12-14 20:33:
> > I think the gray area is that this draft talks about BUM traffic and
> > ingress replication and then has a section on Multicast tunnels which
> > excludes ingress replication traffic from the tunnels.
> 
> No, ingress replication is not excluded at all:
> 
>    The following tunnel types as defined in [RFC6514] can be used in
>    the PMSI tunnel attribute for VXLAN/NVGRE:
> 
>          + 3 - PIM-SSM Tree
>          + 4 - PIM-SM Tree
>          + 5 - BIDIR-PIM Tree
>          + 6 - Ingress Replication
> 
> > If you are using point to point VXLAN/NVGRE  tunnels then ingress
> > replication is default [...]
> 
> This formulation surprises me: that some implementations behave as you
> describe is possibly true (this seems to be the case of the implementation
> that triggered this discussion), but I don't know about any text in the specs
> we are discussing that would imply such a 'default'.
> 
> You might have implementations that in the absence of any local
> configuration for an EVPN instance on which type of tunnel to use for BUM,
> will default to ingress replication: this is fine, out of the scope of what is
> specified for interop, and not breaking other implementations (as long, of
> course, that what is chosen locally is then advertised as expected in a PMSI
> Tunnel Attribute).
> 
> 
> > but IMET is being used to identify the NVE IP.    I read RFC7432 and
> > RFC6514 in this area and thought that the PMSI attribute MUST be set
> > when there is an Inclusive Multicast Ethernet tag IMET.
> 
> Yes!  (the text of RFC7432 quoted by Ali reminds us that)
> 
> 
> > I can see two possible fixes:
> > -          Specify that the PMSI attribute MUST be set if there is an
> > IMET route and specify correct attribute.
> 
> Given the content of RFC7432 and the fact that this is a normative ref of
> draft-ietf-bess-evpn-overlay, I think that we don't need to repeat this MUST
> in draft-ietf-bess-evpn-overlay.  That is, unless we explicitly identify an
> ambiguous piece of text.
> 
> > -          Allow that ingress replication is default when PMSI is
> > absent but accept PMSI that specifies ingress replication.
> >
> 
> I don't think we should do that. It would overnight make non-compliant pre-
> standard implementation of draft-ietf-bess-evpn-overlay, without a rationale
> to do so except coping with an implementation that assumed a bit too much.
> 
> Best,
> 
> -Thomas
> 
> 
> 
> > From: BESS [mailto:bess-bounces@ietf.org] On Behalf Of Marco Marzetti
> > Sent: Thursday, December 14, 2017 9:21 AM
> > To: Thomas Morin <thomas.morin@orange.com>
> > Cc: bess@ietf.org
> > Subject: Re: [bess] draft-ietf-bess-evpn-overlay-10 PMSI with Ingress
> > Replication
> >
> > Hello,
> >
> > I have encountered an implementation that is not attaching any PMSI to
> > the IMET.
> > The authors think they don't really need it because they only support
> > Ingress Replication.
> > Such behavior breaks interoperability with other implementations that
> > are dropping the NLRI if PMSI is not attached.
> >
> > So i looked at draft-ietf-bess-evpn-overlay-10 and noticed that
> > there's no clear indication of what the proper behavior is.
> > As said i assumed i had to look at RFC7432 and RFC6514 (and i did it),
> > but i wasn't 100% sure and i preferred to ask.
> >
> > Onestly you already made my day by confirming what i thought.
> > My suggestion was to make things more clear, but i admit that it could
> > look redundant.
> >
> > Thanks
> >
> >
> >
> >
> >
> >
> >
> > On Thu, Dec 14, 2017 at 2:39 PM, Thomas Morin
> <thomas.morin@orange.co
> > m> wrote:
> > > Hi Marco,
> > >
> > > Marco Marzetti, 2017-12-14 12:25:
> > > > I am writing this email asking you to clarify what's the
> > > suggested
> > > > behavior when PMSI Tunnel Type is set to "Ingress Replication"
> > > (type
> > > > 6) as draft-ietf-bess-evpn-overlay-10 only suggests what to do
> > > with
> > > > multicast tunnel trees.
> > > >
> > > > I think the originating PE should conform with RFC6514 and
> > > RFC7432
> > > > (from which you've taken inspiration) and always (RFC2119 MUST)
> > > > attach PMSI Tunnel attribute with the Tunnel Type set to Ingress
> > > > Replication and Tunnel Identifier set to a routable address of
> > > the PE
> > > > itself (more specifically NVE's IP address).
> > > >
> > > > Is that correct?
> > > > In that case i suggest to add the following line at the end of
> > > > Section 9.
> > > > """
> > > > For Ingress Replication the PE should follow what's stated in
> > > RFC6514
> > > > Section 5 .
> > > > """
> > >
> > > The text of section 9 lists "Ingress Replication" in the list of
> > > tunnel types that can be used. My understanding is that, in the
> > > absence of anything being specifically said for Ingress Replication,
> > > an implementation should follow what is said in RFC7432 and RFC6514.
> > > (What
> > > other specs could it follow to implement this supported type ?
> > > RFC7432
> > > and RFC6514 are more than an inspiration here, these are specs that
> > > the document refers to explicitly)
> > >
> > > So I'm not sure that it is useful or needed to add text.
> > >
> > > Can you perhaps expand on why the current text would possibly be
> > > ambiguous, misleading or incomplete...?
> > >
> > > -Thomas
> > >
> >
> >
> >
> > --
> > Marco
> 
> _______________________________________________
> BESS mailing list
> BESS@ietf.org
> https://urldefense.proofpoint.com/v2/url?u=https-
> 3A__www.ietf.org_mailman_listinfo_bess&d=DwICAg&c=HAkYuh63rsuhr6Sc
> bfh0UjBXeMK-ndb3voDTXcWzoCI&r=CRB2tJiQePk0cT-h5LGhEWH-
> s_xXXup3HzvBSMRj5VE&m=tHiUTn9_QXrhs3cw-
> Dn9_qwR3VK2xWv72DcpoOfR_SI&s=VxylPoVhzXC58hBsqToxzhUK6-3kfy-
> ktUi7A9KZDcs&e=