IETF Logo Mail Archive

Re: [bess] Comments on draft-ietf-bess-evpn-overlay-04, wrt Inter-AS Option B

"Ali Sajassi (sajassi)" <sajassi@cisco.com> Tue, 14 June 2016 03:00 UTC

Return-Path: <sajassi@cisco.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D26E212D11A for <bess@ietfa.amsl.com>; Mon, 13 Jun 2016 20:00:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.947
X-Spam-Level:
X-Spam-Status: No, score=-15.947 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-1.426, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KBnDZQUHovlb for <bess@ietfa.amsl.com>; Mon, 13 Jun 2016 20:00:49 -0700 (PDT)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 180B412B058 for <bess@ietf.org>; Mon, 13 Jun 2016 20:00:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5403; q=dns/txt; s=iport; t=1465873249; x=1467082849; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=FkDbyGfAxdRaY/ldS4ti662egAXyBlx3DrEtqlYtFw8=; b=awgsAyUP+Ylp4Q86HhDN2JimllXT6wJw+cF02b6umuD6+rmU8XIdeJpP WHorCBBwPPxzPlbrwy1EWF5N3+HBTDqwkBEldaQDcnE/ir/mgWmi6TotQ d/Ptx/cc9f0pwHxpYRp8oQeXa2PJpuDXwJ6+Gkivp/yZsGjSvylTHRMmQ o=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AdAgCIcl9X/5JdJa1SCoM+Vn0GuyyBeRcLhXUCgTM4FAEBAQEBAQFlJ4RMAQECAgEBAWsLEAIBCEYnCyUCBAENBRsEiBEOumQBAQEBAQEBAQEBAQEBAQEBAQEBAQEXBYp0hAkPKIVbBY4nijsBiHuCcII8gWkXhDuIZo9wAR42ggccgUtuAYhFKxh/AQEB
X-IronPort-AV: E=Sophos;i="5.26,469,1459814400"; d="scan'208";a="118440627"
Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 14 Jun 2016 03:00:48 +0000
Received: from XCH-RTP-005.cisco.com (xch-rtp-005.cisco.com [64.101.220.145]) by rcdn-core-10.cisco.com (8.14.5/8.14.5) with ESMTP id u5E30lMS009164 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 14 Jun 2016 03:00:48 GMT
Received: from xch-rtp-005.cisco.com (64.101.220.145) by XCH-RTP-005.cisco.com (64.101.220.145) with Microsoft SMTP Server (TLS) id 15.0.1104.5; Mon, 13 Jun 2016 23:00:47 -0400
Received: from xch-rtp-005.cisco.com ([64.101.220.145]) by XCH-RTP-005.cisco.com ([64.101.220.145]) with mapi id 15.00.1104.009; Mon, 13 Jun 2016 23:00:47 -0400
From: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
To: "Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: [bess] Comments on draft-ietf-bess-evpn-overlay-04, wrt Inter-AS Option B
Thread-Index: AQHRxejzmvHRXtSFYE+4iSa44vU+aQ==
Date: Tue, 14 Jun 2016 03:00:47 +0000
Message-ID: <D3845656.1AB704%sajassi@cisco.com>
References: <BLUPR0501MB1715CCD3A7BF3ABA82C52746D4500@BLUPR0501MB1715.namprd05.prod.outlook.com>
In-Reply-To: <BLUPR0501MB1715CCD3A7BF3ABA82C52746D4500@BLUPR0501MB1715.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.6.4.160422
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.19.76.53]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <17D4EE2F2990AC4BB663396D56BF73FB@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/i-PHLkWrErDRbX6Ps5Um-j9Oxzo>
Cc: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
Subject: Re: [bess] Comments on draft-ietf-bess-evpn-overlay-04, wrt Inter-AS Option B
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jun 2016 03:00:51 -0000

Hi Jeffrey,

A few points: 

1) There have been lots of discussions on this topic but you were not in
attendance for some of them including the ones held at the last IETF in
Bones Aires. So, before jumping into a haste conclusion that there were
not consensus on section 10, please check with your own colleagues who
participated in those meetings.

2) Regarding the current text in section 10: this text is consistent with
the one that was checked for IETF at Yokohama and it is also consistent
with RFC 7432 operation. We still require Eth A-D per ES in order to
validate Eth A-d per EVI, the only difference is that the mass-withdraw
doesn¹t work (i.e., route validation still works).

3) Your so-called ³easy solution² doesn¹t work in all scenarios so there
is no point in documenting something that works sometimes :-) If you
recall several years ago, we went to great length to accommodate
multi-homing across multiple AS¹s and that¹s why we added originating
router¹s IP address to the ES route. The 4 byte field in RD type-1, is a
router ID (for both IPv4 and IPv6) and per RFC 6286, router-id is unique
within an AS only. Thus the suggested solution won¹t work when a CE is
dual-homed to two PEs in two different AS¹s.

We are currently separately documenting a proper solution based on a new
sub-TLV added to the attribute in idr-tunnel-encap draft to identify the
originating PE. A solution based on this attribute will work for all
scenarios. Now the question is what to do in short term. We can either go
with the text that it is in section 10.2 of the evpn-overlay draft, plus
go with the new draft, or just go with the new draft and remove the
suggested solution in section 10.2. I am open to both.

Cheers,
Ali 







On 6/10/16, 1:03 PM, "BESS on behalf of Jeffrey (Zhaohui) Zhang"
<bess-bounces@ietf.org on behalf of zzhang@juniper.net> wrote:

>I want to bring up an old discussion about the following:
>
>   In summary, it can be seen that aliasing (and backup path)
>   functionality should work as is for inter-AS option B without
>   requiring any addition functionality in ASBRs or PEs. However, the
>   mass-withdraw functionality falls back from per-ES mode to per-EVI
>   mode for inter-AS option B - i.e., PEs receiving mass-withdraw route
>   from the same AS use Ether A-D per ES route; whereas, PEs receiving
>   mass-withdraw route from different AS use Ether A-D per EVI route.
>
>There have been lot of discussions on this - offline and in Yokohama
>(https://www.ietf.org/proceedings/94/slides/slides-94-bess-1.pdf). The
>above text does not reflect the consensus among some of us and in
>particular does not reflect what was presented in Yokohama.
>
>There are two issues with inter-as option B as currently specified in RFC
>7432.
>
>A minor issue is that mass-withdraw degrades from per ES to from per (ES,
>EVI) (with the clarification in this overlay draft), which would not
>exist if the main issue is resolved as presented in Yokohama.
>
>The main one is the following requirement in RFC 7432:
>
>   Note that the Ethernet A-D per EVI route may be received by a remote
>   PE before it receives the set of Ethernet A-D per ES routes.
>   Therefore, in order to handle corner cases and race conditions, the
>   Ethernet A-D per EVI route MUST NOT be used for traffic forwarding by
>   a remote PE until it also receives the associated set of Ethernet A-D
>   per ES routes.
>
>Basically, the per-EVI A-D routes cannot be used before the corresponding
>per-ES A-D routes are received and associated. Either that requirement
>must be removed, or there must be a way to associate the per-ES routes
>and per-EVI routes from the same PE.
>
>There is an easy solution to the latter, which was presented in Yokohama
>(https://www.ietf.org/proceedings/94/slides/slides-94-bess-1.pdf). That
>does require a beefed up requirement: the routes from the same PE MUST
>have the same global admin field in the RDs. That should be reasonable,
>and RFC already uses RECOMMEND keyword:
>
>7.9.  Route Distinguisher Assignment per MAC-VRF
>
>   The Route Distinguisher (RD) MUST be set to the RD of the MAC-VRF
>   that is advertising the NLRI.  An RD MUST be assigned for a given
>   MAC-VRF on a PE.  This RD MUST be unique across all MAC-VRFs on a PE.
>   It is RECOMMENDED to use the Type 1 RD [RFC4364].  The value field
>   comprises an IP address of the PE (typically, the loopback address)
>   followed by a number unique to the PE.
>
>Notice the "RECOMMEND" in the above paragraph.
>
>8.4.1.  Constructing Ethernet A-D per EVPN Instance Route
>   ...
>   The Route Distinguisher (RD) MUST be set per Section 7.9.
>
>8.2.1.  Constructing Ethernet A-D per Ethernet Segment Route
>   ...
>   The Route Distinguisher (RD) MUST be a Type 1 RD [RFC4364].  The
>   value field comprises an IP address of the PE (typically, the
>   loopback address) followed by a number unique to the PE.
>
>As long as 8.4.1 or 7.9 says Type 1 RD MUST be used, then all the
>problems are solved. While RFC 7432 did not use MUST, I doubt there is
>any implementation not using a Type 1 RD for the per-EVI route.
>
>Jeffrey
>
>_______________________________________________
>BESS mailing list
>BESS@ietf.org
>https://www.ietf.org/mailman/listinfo/bess

v2.23.0 | Report a Bug | By Email