Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-evpn-vpls-seamless-integ-05: (with COMMENT)
"Ali Sajassi (sajassi)" <sajassi@cisco.com> Thu, 24 January 2019 22:20 UTC
Return-Path: <sajassi@cisco.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B2630130EE1; Thu, 24 Jan 2019 14:20:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -19.053
X-Spam-Level:
X-Spam-Status: No, score=-19.053 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-4.553, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6-VSqLM9i2ga; Thu, 24 Jan 2019 14:20:08 -0800 (PST)
Received: from alln-iport-5.cisco.com (alln-iport-5.cisco.com [173.37.142.92]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D0192130F2A; Thu, 24 Jan 2019 14:20:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8614; q=dns/txt; s=iport; t=1548368408; x=1549578008; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=J5kwMqCQmuEA0Lz9q6PzgY+nidWj1c2oR84eDSUYUc0=; b=dz71bo3TNhMKun1dreT9p1R5bTOIX7qD2Ow6Vtp2/8rd+SQeHfLWppNJ DDJIdTmeVU10enb5u9xSVCrrbHlCPpHcfTFPm9j2Vqxq5SG/TzrLGLJP9 H84x6SCNeIimfrgWFRRXmmD3jgUTXDh8IW1q+4SwXjLI34MuU8Cps3T56 0=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0ADAAAlOUpc/5hdJa1kDgsBAQEBAQEBAQEBAQEHAQEBAQEBgVEEAQEBAQELAYFVLmeBAycKg3eIGotzgg18lwsUgWcLAQElhEcCF4JsIjQJDQEDAQECAQECbRwMhUoBAQEBAgEjETkMEAIBCBgCAiYCAgIwFRACBA4FgyIBgXkID6xdgS+EQkGFJwWBC4s2F4F/gRABJx+CFzWDHgIBAgGBKgESAR+DCTGCJgKJaoF7lXFXCQKHKIp8GIFphTGLBY8vi2ECERSBJx84ZVgRCHAVZQGCQYIsEhOITIUEO0ExAQGIboEfgR8BAQ
X-IronPort-AV: E=Sophos;i="5.56,518,1539648000"; d="scan'208";a="230197528"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by alln-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 24 Jan 2019 22:20:06 +0000
Received: from XCH-RTP-001.cisco.com (xch-rtp-001.cisco.com [64.101.220.141]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id x0OMK5uO013169 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 24 Jan 2019 22:20:06 GMT
Received: from xch-rtp-005.cisco.com (64.101.220.145) by XCH-RTP-001.cisco.com (64.101.220.141) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Thu, 24 Jan 2019 17:20:05 -0500
Received: from xch-rtp-005.cisco.com ([64.101.220.145]) by XCH-RTP-005.cisco.com ([64.101.220.145]) with mapi id 15.00.1395.000; Thu, 24 Jan 2019 17:20:05 -0500
From: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>
CC: The IESG <iesg@ietf.org>, "draft-ietf-bess-evpn-vpls-seamless-integ@ietf.org" <draft-ietf-bess-evpn-vpls-seamless-integ@ietf.org>, Matthew Bocci <matthew.bocci@nokia.com>, "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: Benjamin Kaduk's No Objection on draft-ietf-bess-evpn-vpls-seamless-integ-05: (with COMMENT)
Thread-Index: AQHUpqzucqDThd8FvE2qpZr/pGZFxqW6xU4AgAEzU4CAAu2hgA==
Date: Thu, 24 Jan 2019 22:20:05 +0000
Message-ID: <2597DA67-FCC9-40A6-800C-04C4F8E21EB2@cisco.com>
References: <154688146371.23228.11253231358362119768.idtracker@ietfa.amsl.com> <B55A7785-E8FC-4AC0-A719-43B09041F386@cisco.com> <20190122173701.GL81907@kduck.mit.edu>
In-Reply-To: <20190122173701.GL81907@kduck.mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.6.190114
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.41.32.35]
Content-Type: text/plain; charset="utf-8"
Content-ID: <771C557C70E7B040956D42F380BBBDD4@emea.cisco.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Outbound-SMTP-Client: 64.101.220.141, xch-rtp-001.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/iq3hbcaQBbR2nc5uOOdY8X-O4ow>
Subject: Re: [bess] Benjamin Kaduk's No Objection on draft-ietf-bess-evpn-vpls-seamless-integ-05: (with COMMENT)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jan 2019 22:20:11 -0000
Hi Benjamin, please refer to my reply inline. On 1/22/19, 9:37 AM, "Benjamin Kaduk" <kaduk@mit.edu> wrote: On Tue, Jan 22, 2019 at 07:17:05AM +0000, Ali Sajassi (sajassi) wrote: > > Benjamin, Thanks for your review and your comments. Please refer to my comment resolution replies below marked with "AS>". > > On 1/7/19, 9:17 AM, "Benjamin Kaduk" <kaduk@mit.edu> wrote: > > Benjamin Kaduk has entered the following ballot position for > draft-ietf-bess-evpn-vpls-seamless-integ-05: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-bess-evpn-vpls-seamless-integ/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Please be consistent about (non-)hyphenation of "VPLS A-D". > > AS> Done. > > Is "MP2P" really an intended acronym (vs., e.g., P2MP)? It does not appear > in https://www.rfc-editor.org/materials/abbrev.expansion.txt and is not > defined, even though P2MP is, and MP2P is used some 8 times in the > document. > > AS> MP2P is the intended acronym and not P2MP. The term MP2P is used extensively in RFC 7432 which is the pre-requisite to this draft. It seems very strange for this document to explicitly define P2MP but then assume the reader will known MP2P via other means; I'd suggest adding the definition here as well. I added MP2P definition to the terminology section along with an example. It will show up in rev07. > We probably need a definition and/or reference for "split-horizon". > > AS> Added references for it. > > Section 2 > > 6. The support of All-Active redundancy mode across both (PBB-)EVPN > PEs and (PBB-)VPLS PEs is outside the scope of this document. > > The claim (not quoted) of "seamless" integration seems to only hold if > All-Active redundancy mode is not in common use. Is it? > > AS> All-Active redundancy is not applicable to VPLS and PBB-VPLS; therefore, when EVPN (or PBB-EVPN) want to seamless operate with VPLS (or PBB-VPLS), then they MUST operate in a redundancy mode that is applicable to VPLS (and PBB-VPLS). This redundancy mode is Single-Active. Having this background stated in the document would have helped me; I'll leave it to you whether or not it would be useful for the actual target audience, though. I think it is OK to added it. So, I added the following paragraph to req. 6: " All-Active redundancy is not applicable to VPLS and PBB-VPLS. Therefore, when EVPN (or PBB-EVPN) PEs need to operate seamlessly with VPLS (or PBB-VPLS) PEs, then they MUST use a redundancy mode that is applicable to VPLS (or PBB-VPLS). This redundancy mode is Single-Active". > Section 3.1 > > In this case, > when a VPLS PE receives the EVPN IMET route, it MUST ignore it on the > basis that it belongs to an unknown SAFI. [...] > > Is this "MUST" a new requirement imposed by this document, or a restatement > of an existing requirement from elsewhere? > > AS> It is a new requirement. > > Section 3.2 > > Please expand FEC on first usage (or define it in the terminology section). > > AS> Added it to the terminology section. > > When we talk about "learned" C-MAC addresses from traffic on VPLS PWs and > injecting those MAC addresses into bridge tables, RIB/FIB tables, and > MAC-VRFs, are these learned C-MAC addresses coming from provider-owned > equipment or customer equipment? Giving the customer the ability to inject > MAC addresses without verification would probably merit a closer look > (though I do note that the penultimate paragraph discusses the > non-propagation of the learned addresses over the control plane). > > AS> The learned C-MAC addresses come from other Provider Edge devices (i.e., from provider-owned equipment) > > Section 3.4.2, 4.4.2 > > My understanding was that P2MP (PBB-)EVPN tunnels are a well-understood thing, in > which case I would expect to see something more like "this document does > not modify the operation of multicast P2MP EVPN tunnels" than "outside the > scope of this document". > > AS> The MAC learning procedure from P2MP tunnels and associate them with P2P PWs are more elaborate and then mixing them up with MP2P EVPN or P2MP tunnel in EVPN gets even more intricate. Furthermore, there were no such requirements from SPs. (To be clear, this was just a question about the wording and not the technology. So it is fine to leave the text as-is if you are happy with it.) With the definition of MP2P in the terminology section, it is OK to leave it as is. > Section 5 > > Does the extra state that (PBB-)EVPN PEs need to maintain (i.e., both the > normal EVPN state and PWs to the VPLS PEs) pose any risk of DoS due to > resource exhaustion? > > AS> The number of resources used, is basically a function of the number of PEs in a VPN. This number can be divided between EVPN PEs and VPLS PEs without much impact (if any) on resource consumption. Okay, thank you. Cheers, Ali -Benjamin
- [bess] Benjamin Kaduk's No Objection on draft-iet… Benjamin Kaduk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Ali Sajassi (sajassi)
- Re: [bess] Benjamin Kaduk's No Objection on draft… Benjamin Kaduk
- Re: [bess] Benjamin Kaduk's No Objection on draft… Ali Sajassi (sajassi)