IETF Logo Mail Archive

Re: [bess] draft-thubert-bess-secure-evpn-mac-signaling and RFC9047 ARP/ND extended community

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Mon, 15 November 2021 11:11 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF1573A09D3; Mon, 15 Nov 2021 03:11:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.595
X-Spam-Level:
X-Spam-Status: No, score=-9.595 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=bOTH5LA8; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=ZKsJReZX
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QJS51EMEILHA; Mon, 15 Nov 2021 03:11:30 -0800 (PST)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3EAD83A09D8; Mon, 15 Nov 2021 03:11:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=16808; q=dns/txt; s=iport; t=1636974690; x=1638184290; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=fFv+YF8yDqISq/WERyzGM7ALhkLtTulo1J+PxpnWyRg=; b=bOTH5LA8U2L6nsu2ICYp3uDga6t8fWaJbBtiUL3akCBDwRTdipesbdSC EuDps5ZNF+T9QV3GSofWthbVdQrJrtTCbOLOjjXBJ8vVkTet1DkbtnH4X vFrhdbK9/Xfo5CT0jrVoMMcKOgVzMimuMM/ywB4UG4mcJBFn2phctWG6W M=;
IronPort-PHdr: A9a23:q3We9h2E0Clku7qksmDPr1BlVkEcU/3cMg0U788hjLRDOuSm8o/5NUPSrfNqkBfSXIrd5v4F7oies63pVWEap5rUtncEfc9AUhYfgpAQmAotSMeOFUz8KqvsaCo3VMRPXVNo5Te1K09QTc3/fFbV5Ha16G16Jw==
IronPort-Data: A9a23:q01gz6L/VJA7HZeLFE+RMpclxSXFcZb7ZxGr2PjKsXjdYENS3jIEnWUeXGzSOPiOZWbxKYx3PNu+/R5U65TTzIA1GVMd+CA2RRqmiyZq6fd1j6vI0qj7wvTrFCqL1O1DLImfRCwIZiWE/E70a+G89SAUOZygH9IQNsaVYkideic8IMsRoUoLd98R2uaEs/Dga+++kYuaT/nkBbOQ82Uc3lT4RE60gEgHUPza4Fv0t7GlDBxBlAe2e3I9VPrzKUwtRkYUTLW4HsbiLwrC5Kuy8mWc9BA3B5b41L36aUYNBLXVOGBiiFIPBPPk2UcE93d0i/tlXBYfQR8/ZzGhh8xx1d9Ar4CYQgYyNaqKk+MYO/VdO3AiY/UepOeYfBBTtuTWlSUqaUDEyfh1F2k3MJEWvOFtDglm+eYRJixIchCeje+s3PexR/J3w98uJ9TxMcYSpGlmiDTQBrM9QJ/FSqHL49Bw3TosiIZJB/m2T8geczViKg7JaRRDM1E/DpU9ne7ujX76GwC0Anr9SbEf+WPfykl616LgdYeTcd2RTsITlUGdzl8qNl/RWnkyXOFzAxLfmp50utLyoA==
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D3BwCIP5Jh/5xdJa1RCR4BAQsSDECBTguBITFRB3daNzECiAwDhTmFDl2CJQObDIEuFIERA1QLAQEBDQEBNwoEAQGFBAKCYQIlNQgOAQIEAQEBEgEBBQEBAQIBBgSBEROFaA2GQgEBAQEDDAYVBhMBATgPAgEIEQQBAS8yHQgCBAESCAwOglCBflcDLwEOnyUBgToCih94gQEygQGCCAEBBgQEhQoYgjUDBoE6gwyCfFRKgwCEBiccgUlEgRVDgWaBAT6BBYFeAgGBJQUBCAoBIyuDIoIujwwRFYEwBEMOAoEFDAkDSEITLolPlHmNWJIzCoM5nx8VpyyWFB+gWwgZhGgCBAIEBQIOAQEGgWMCN2lwcBWDJFEZD44gCwEWFYM7hRSFSnQCCysCBgsBAQMJj1sBAQ
X-IronPort-AV: E=Sophos;i="5.87,236,1631577600"; d="scan'208,217";a="946004075"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Nov 2021 11:11:28 +0000
Received: from mail.cisco.com (xbe-aln-001.cisco.com [173.36.7.16]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 1AFBBSX6031679 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Mon, 15 Nov 2021 11:11:28 GMT
Received: from xfe-rtp-003.cisco.com (64.101.210.233) by xbe-aln-001.cisco.com (173.36.7.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 15 Nov 2021 05:11:27 -0600
Received: from xfe-rtp-004.cisco.com (64.101.210.234) by xfe-rtp-003.cisco.com (64.101.210.233) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 15 Nov 2021 06:11:26 -0500
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-004.cisco.com (64.101.210.234) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Mon, 15 Nov 2021 06:11:26 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Fy9t131RgyfmN3lF4VXGS3EYXAEXUA71ehhxKdiNJXONWqI21v2I9RfNBU3DCVummXlVIRQb3+AQd8mOSCrq7hOBj5g+qYQ+2mAvUrJam4z0x70SavDxW/YOhCTOKo5RoNsQYN8w79ZaCwsp1eA4OuV8hFWV5Mv25+aXJzm+6/d6FdEuBZNKVEgFCJfcO3Tmhfn8NXDOaQOCYxGcNFimaihvw6uQmYywmKyZPfUcJ9RJXED6vZHuwhGN+FQlCFzmP9MboiLhZey3v+zAVKqtIXSb6a0JXiPA1jK5W8ey9/ozwgyYhxvw/j6RkBPYWLb6nMJn961phQIR7iQEIGsn2w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=U4g1ds6GVikUp/TdtB7yiSYzR1WTjn6drd4NEQSh+lA=; b=CebUPOVOnaGYxYp8LorEoEPV8uJHayukrTrhB0I8zmKVfH33KVyC94deDSWjPVPVhp1u3v4fb44NWCbLQNBlly89YxHHmiASh0l45iTAs0V4IDO+PjstAOrwT/H1kIZfLslcxWAAHBQwHECrAu7mAXz3nE8MEB/Symvu9VINhfGbJlZ3F/cZ/hHTrrwLJJ5lwdGXrtmOckDsJlZmnFY0ompbtCelUhFv5Ajyt6+DaM+axrEpdzhJcgk8jW1xaIWA1YhUyGJb+62Zz65soTp2gK6vfXKyknzjcis+607Sv2c5ItLlmpRuQrBz/f9a9/JZwwDOJ14fArQ62mjqkNa8oA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U4g1ds6GVikUp/TdtB7yiSYzR1WTjn6drd4NEQSh+lA=; b=ZKsJReZX03lH/7EjhwOP4bZwVhiQlH2rydog6S2z5BI/+Kow0krL7Kk3AVCWKR3ABlqrdKpZkakA2l6CAfH9vt8N0rBhd2XZmJJXFBhOxFSouEcZa5lf70HdqfusvtWDRm2z+xsmR933zkdtKqY1ofnLgOl9vwgYCwV/Yhj4Mm4=
Received: from CO1PR11MB4881.namprd11.prod.outlook.com (2603:10b6:303:91::20) by MWHPR11MB1405.namprd11.prod.outlook.com (2603:10b6:300:21::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4690.27; Mon, 15 Nov 2021 11:11:26 +0000
Received: from CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::1493:cc59:eb78:7302]) by CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::1493:cc59:eb78:7302%9]) with mapi id 15.20.4690.027; Mon, 15 Nov 2021 11:11:25 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: "Rabadan, Jorge (Nokia - US/Mountain View)" <jorge.rabadan@nokia.com>, "draft-thubert-bess-secure-evpn-mac-signaling@ietf.org" <draft-thubert-bess-secure-evpn-mac-signaling@ietf.org>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: draft-thubert-bess-secure-evpn-mac-signaling and RFC9047 ARP/ND extended community
Thread-Index: AQHX1wR5Ay/kXnaxBEGBWLmiuGaoeKwEcOXA
Date: Mon, 15 Nov 2021 11:11:22 +0000
Deferred-Delivery: Mon, 15 Nov 2021 11:10:36 +0000
Message-ID: <CO1PR11MB48810FDF1BA5206397F585B0D8989@CO1PR11MB4881.namprd11.prod.outlook.com>
References: <BY3PR08MB70605BEE1DBEDE562A638F8EF7949@BY3PR08MB7060.namprd08.prod.outlook.com>
In-Reply-To: <BY3PR08MB70605BEE1DBEDE562A638F8EF7949@BY3PR08MB7060.namprd08.prod.outlook.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 875aaf14-b0cc-4e61-4f8b-08d9a828aa52
x-ms-traffictypediagnostic: MWHPR11MB1405:
x-microsoft-antispam-prvs: <MWHPR11MB14054CB7A7477AE10C8E90F8D8989@MWHPR11MB1405.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 5INduM3nhIs4bSC3Ia0fN4pGuoGL34Lmh0PfGfZXotl1bgxgjVjR49AKZSSI/sv6NBEqwTnPrwVbZFE0KGjXhcJ81Ph1e0H45B3k1C1cnp1gkVlXUkDI4PFOYZzgyTo9sKfu5LT1W1uuhMuQBaLlDQ7WIoAyB/CfJNVQcBRFO/Zr0oMxJksnm3VU9svRtVV6wXZyzYg6wZgQiB1xmX/Z2meVSnfzQisZ+vRulsGKmx34PSHDxzOZjpbbLedif07sPm5or56kfe1/RcXllJlsVpa4QJFymWAavHFKLS0uJhYKVDBlZ/hriyn7uITt5N/dqvpQfFFdX+D83K4+eN5v8U+Qx5uQ9BH/6Fw4Pz4BM5uoV6Jk6SL8JZAUF9wjmdVFXEpEyTZpSOqGXUZjoRL8h0Oo6ylm3UveC4FNS2vk9cLnErPFu1atNOQeZHsg7Wrj8m1XXBKP90yXOu1e70Nb6hG+NuDJo3pn8AOVp1uqEFEdKprrB2bkNCt6T8ES7DJWEZM58IJs44itKg6xQMVoNQQ3Nn/HQjL1Jf4vVzAh/zIMjZZyWFd1YO4EeEPJ3Z1YWWQBU/fcjjVmrooa4xvNURgjmKm7Wu71HM0sNy0/IHgll5i3X2PNO3A9exYrYgbReV0OC7RnS4zBtCzArjxRm64o4g2MQMcHMx2X9mbjf5zg6LDDmyPzQEdJMDc+uftcGGOa/46zF/ZzuZpVxPzC89yNuEObV4SWKMsYuWUlJTYx6Xz6RspuU7srxbudAUgZcEm8USi8NR9ImpL82jnYqVKhoYFSksVBeUGOG61Q5s0=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB4881.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(6666004)(2906002)(53546011)(52536014)(6506007)(166002)(110136005)(76116006)(5660300002)(966005)(83380400001)(26005)(186003)(8676002)(122000001)(7696005)(55016002)(508600001)(9686003)(38070700005)(21615005)(33656002)(316002)(296002)(71200400001)(66446008)(38100700002)(66556008)(8936002)(66476007)(86362001)(64756008)(66946007); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: M3Ic3Sui5CubatSMDzce960LCF7iPodkJNBrnZO/Aq4IN4L3AuSyPlWaTY8ZHeCF6KCS0B9Hjs8ltYUBAQXUEzCD/BL7BxGGa1KG0eBINbVFekqiom8LsC16velULIUr8B+uucMtOjy0G0QdiNspNev2dykzJ+FgufWkPFa8jgzmK++9PPkUVo4HJGlqvbz7e4QdcEC6welhXM80zfRoXRQiweBWXt7261UvGYWIOV5EoLHpylru319iLvaFjoJHBHfRFZ6zPdm2KGtiC314stJd8WDdwlOTcP7CiZJwQsJmtYjCLaO4dgvFejGdt3xghHFGV6ibreUClreA32N3/7liWhtFXDSHL2RSErF09J6i6l9PT8kFYFefkoNmNnpUk36TBdQFPIkVUxlfFyiq7o86gDyj9LNRthKrrcibQnHHY5ZrWJ0AvbaWgowrxGWcatVS8Ydamn+Yx/+iSLw/CnvUlelChPuyD+dbT2RyuU2gcgtGxm27p5AoLj62VDkUyLbCalSMkFQ/VR+2oDEhltrQ4/Gya3EbUQshEFBjIzTQdPuaFjbfToOm1JjFan9OMV3q6MXEZWi8tkPcd4LwEx1TrUNg1IdIipf4q3277iac9A8+WbNIM655PteAo2YV00YNXOReF8rKysNnBeOn6+dkDhSEYh6F5pR1LF7f1WehIiAobFrFIFWOyTB+yBdKpuJ1O3Y4fa9p7kTh5X7E7wCh0Rwhqd9/ZSr1l7KFUuJVMZ81/ehBXYwSW+8Z48KuNBzujvoD0yzaeeYm+RxcTjA0Rk7S2NWk0+eyLOKYJQZZglthfGjBytfvBCgSfOscf/yG0Yoq/Nkx17HzlBqJm88Rv2F5yHirAuuAtr89wn0gP1YBB7j3p/iEqrPz/uk8Jm9NpXChLR9zuKnNeW7ImAu3OaGf82JMIZDMdkLoVUt3cnXPjPfH3Sowxc6y6yGoHJV4nGDJpb3Ml6WlTcONviP1BsoADC0+gsF3qj+lFcR814c2oPYaswGOaUYC+QOHRxGLBOJ/1T7v6+3wNWGS0dL4wUmCrP6VaPJFb96dragO3rkyXmMo7Jl2wPNSCx1EScL00TW6FTlzKqfIYaY0z9dOBVaZuh3cW9DnyvHnVR8bN9xIHa42293LCVRUhCY9ata899CSonPRqCeOyN9kgu3i8ZqfoRBg5MAbKRo38porAYyY/NUK6BElyGzj+CmNjGfLDx7ZIfUt2qRVF6CoPvoCvcPi0NSZrH5dD3gYGBr0CvME9vndtTRtY49gMKUIbuBLtogJAxmPxWJOeEnpf0M3sF6+ozXZJi9TS36Skox2jPpNYD3txhj/J+Z3bD0KeNVqoc5+9VfNwDR4FJ/tusiWXA4oF40AyepSv5np+tead6lCRf2Xp0NxR9RKZU5YLsrVLop1ylstZgUn6Pj0isNl12hQAH6i7j3qIotqQ1Kr6D/S82hwsDKmXCQyPXGvp8c3+ffUHx31EpYYpoLaanHXfEEjuIVY82t7OKe7jpIpm6DeFmpu6rp++e7XUr1gqtcckPwxpXrn5S9dzCLOrjB39tzUqqm/ipZLnQymn2M6cGym7Kx9ethzfyXXBT+nnfJzYzK//8eridygEvNDvrAHOHEglcO3PaQEZQxejZs=
Content-Type: multipart/alternative; boundary="_000_CO1PR11MB48810FDF1BA5206397F585B0D8989CO1PR11MB4881namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB4881.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 875aaf14-b0cc-4e61-4f8b-08d9a828aa52
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Nov 2021 11:11:25.5880 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: oyCvNVYUE85zB5uv+4NSootNFCulgt+WHBi0kgaNhO5DcjUy/pGp7gnBTcnHGUPKRovkFkrmSzlqDSIFwSDaxg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR11MB1405
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.16, xbe-aln-001.cisco.com
X-Outbound-Node: rcdn-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/Q4AU0xpP3ByDnz7KUwPoMvgU_DM>
Subject: Re: [bess] draft-thubert-bess-secure-evpn-mac-signaling and RFC9047 ARP/ND extended community
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Nov 2021 11:11:36 -0000

Hello Jorge

Many thanks for all!

1 and 2: will do

3: Ideally we'd move both the flags and the ROVR hash to the ARP/ND community since it is really a proof of ownership (akin to identity as opposed to sequence number), and keep only the TID in the sequence counter. The idea is that when present the TID always wins vs a legacy sequence. On paper that's not doable if the node is highly mobile and roams for a very very long time. I'm open t suggestion on the best thing to do.

4: very cool. Not that we can now register multicast addresses with https://www.ietf.org/archive/id/draft-thubert-6lo-multicast-registration-02.html. Would you agree to have a new M flag, that would serve as a MLD snooping replacement?

Keep safe

Pascal

From: Rabadan, Jorge (Nokia - US/Mountain View) <jorge.rabadan@nokia.com>
Sent: jeudi 11 novembre 2021 19:59
To: draft-thubert-bess-secure-evpn-mac-signaling@ietf.org; bess@ietf.org
Subject: draft-thubert-bess-secure-evpn-mac-signaling and RFC9047 ARP/ND extended community

Dear authors,

As requested by Pascal, this is an email mostly to suggest the use of the ARP/ND ext community.
Also some additional comments about this draft:


  1.  Minor one: the acronym that we are using in all the EVPN specs is "EVPN" and not "eVPN" - it seems the document is using both, it would be good to just use "EVPN".



  1.  About this sentence - "Nevertheless, primary key of NRLI is still the IP/MAC/ESI combination" -> I think this is a mistake, the ESI is not part of the route key. The Ethernet Tag ID is, in addition to the MAC/IP and lengths.



  1.  As I suggested during the BESS session, the ARP/ND extended community might be a better fit for the some of the extensions, as opposed to the MAC mobility extended community. The ARP/ND extended community is defined in RFC9047.

     *   One of the reasons why I think the ARP/ND is a better fit is because the MAC Mobility ext community is used also with MAC/IP routes with IP=0, whereas the ARP/ND ext community is only used in MAC/IP routes with non-zero IP. Many times, a leaf will advertise first a MAC/IP route with IP=0 and later a MAC/IP route with a non-zero IP, both for the same MAC.
     *   An option could be to keep the TID+hash in the Mobility ext community sequence number, since from an EVPN perspective those two are really a sequence number, and move the rest of the flags defined in this document to the ARP/ND ext community.



  1.  Related to (3), the ARP/ND extended community already defines a way to signal that an IP->MAC binding belongs to an anycast IP (the O flag). Based on what I understood in your document, I think it would be ok to reuse that bit in your procedures, as opposed to define a new flag "A"


Thank you.
Jorge

v2.23.0 | Report a Bug | By Email