Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-inter-subnet-forwarding-09: (with DISCUSS and COMMENT)
Erik Kline <ek.ietf@gmail.com> Thu, 10 December 2020 03:50 UTC
Return-Path: <ek.ietf@gmail.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D08FE3A09A5; Wed, 9 Dec 2020 19:50:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZdMqTdzf2eDL; Wed, 9 Dec 2020 19:50:22 -0800 (PST)
Received: from mail-ot1-x335.google.com (mail-ot1-x335.google.com [IPv6:2607:f8b0:4864:20::335]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A13123A0989; Wed, 9 Dec 2020 19:50:16 -0800 (PST)
Received: by mail-ot1-x335.google.com with SMTP id w3so3638350otp.13; Wed, 09 Dec 2020 19:50:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=2CwesQ8gzzaUtl3WlARlkRgHvKRx6lMTh8eFc+5qjno=; b=GQpBlLHU4rrOIFw6JhbkQ8y2RxHEGc0UjW9sKGz3OeOu8ZmC5OIZ/YrP8kHNezCshq waV4jNfG6n5pSOT7POuC7HQ7uYonUOjSGE5GJnam5Um/HW5UT7G86CgiOkt4lSF5Cxwt yXfoDn8qbRybJwJy+gKFPo5/kL5Q3AcnPZF3h+Kxv+T+H7/9nRnwiIF/7xipiFz8K/Fl Ix0mWhQJHycq7pDzP9n6eToS0lCeMPgS09yb3+Hd7AL3sJ+AugAcybAy+iKi39Z7FmAA 4yhGONN1bECmDXPli3UCVVRIeMm3HSoSE0bKHs6Y49nwtjTvy+xInt2QXKgiiVamPjiJ pJuw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=2CwesQ8gzzaUtl3WlARlkRgHvKRx6lMTh8eFc+5qjno=; b=Vd3y70RU0Lpocu8JvHFL9xNxTcpe7AWxbFuqqLQKdc57+A0Q32RRvES2M0aga/4xzC blL5UAOM9rp5DS4cGoBsd2cCgo5qTFtiUyQ88Z0WYqVCman82el6D4Jggmf0HsWC40Hb LriDxssuF27BVlHbCZHIxdkh1jVc+txRP/A9f2xW13UW6uJMuXLR98SlZOMwMH+YWI+C W2qs5IGTYU9UN+yWQCW0R52PP21QvxJD0F+oqLtMc60T2xISgHaDjUjX3iXHL1i5J10z EylnWd+IzA6O3T61r7MF8eRqX2QdWvm+2/EPj/IK6xv4bkANaqzlFhn/72ZG2WVJlpC1 B+Ow==
X-Gm-Message-State: AOAM531jBppPpnoNI8aoBHgDWK0Iv8uuBp3mdLL1cb+xbQebXQu/DVZ5 1ZKrICuxIoAFaTIz9WJ+qyS15OM2Ai4jVn5SuzM=
X-Google-Smtp-Source: ABdhPJzQerzC+i6RWe/yQFcc0SBExn2zWXE6N0vlos1+xUqvDEBFKCXUc7sazhbU6a8tgMtVjxs1srYgs1MZnJCV3UQ=
X-Received: by 2002:a05:6830:18f7:: with SMTP id d23mr3308800otf.191.1607572215664; Wed, 09 Dec 2020 19:50:15 -0800 (PST)
MIME-Version: 1.0
References: <159479413627.21953.4241600579036639955@ietfa.amsl.com> <DD607815-C1D1-4A4E-AA79-CC5F0FD274CF@cisco.com>
In-Reply-To: <DD607815-C1D1-4A4E-AA79-CC5F0FD274CF@cisco.com>
From: Erik Kline <ek.ietf@gmail.com>
Date: Wed, 09 Dec 2020 19:50:04 -0800
Message-ID: <CAMGpriV7dmDwB6fRN1A2sxc_c=ebMttBAwNHkh5akonQ=OE+Xw@mail.gmail.com>
To: "Ali Sajassi (sajassi)" <sajassi@cisco.com>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-bess-evpn-inter-subnet-forwarding@ietf.org" <draft-ietf-bess-evpn-inter-subnet-forwarding@ietf.org>, "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>, Zhaohui Zhang <zzhang@juniper.net>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/qOysqWZ3SK8N-bsuUdMN6MKsGw0>
Subject: Re: [bess] Erik Kline's Discuss on draft-ietf-bess-evpn-inter-subnet-forwarding-09: (with DISCUSS and COMMENT)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Dec 2020 03:50:24 -0000
Ali, Thanks for your replies. On Sun, Oct 11, 2020 at 9:06 PM Ali Sajassi (sajassi) <sajassi@cisco.com> wrote: > > Hi Erik, > > Thanks for your comments and sorry to missed them in first place, please see my replies in line marked w/ [AS]: > > On 7/14/20, 11:22 PM, "Erik Kline via Datatracker" <noreply@ietf.org> wrote: > > Erik Kline has entered the following ballot position for > draft-ietf-bess-evpn-inter-subnet-forwarding-09: Discuss > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > [ general ] > > * Can you give an example of what happens to non-IPv4/IPv6 Ethernet packets > received at the NVE/PE? Do they get bridged, and if so how far? What > happens if a host in BT1 ARPs for IPv4 address associated with a TS in > a different BT? > > [AS] L2 packet (non-ARP/ND packet) gets bridged; however, ARP/ND packets from the host for its IP default GW gets terminated at the PE and process by it. Section 4.1 describes this in details and it provides an example of it at the bottom of the section. Since the PE acts as the IP default GW for the host, all packets to other TSes in other subnets gets forwarded to the PE (to its IP default GW). > > * Where there are multiple prefixes in an IP-VRF, is there a constraint that > any other IP-VRF that contains one of the prefixes must contain all of them? > Perhaps that's in 7432...? > > [AS] IP and MAC addresses for a given host is advertised with its corresponding Route Targets as described at the bottom of section 3, and in sections 5.2, 6.2 9.1.1, and 9.2.1. Any PE that has an IP-VRF for that tenant/host, imports the IP route into its VRF upon receiving it. > > [ sections 4, 5.4, 5.4, 6.3, 6.4, 9.1.2, 9.2.2 ] > > * Please document what happens to IPv4 TTL/IPv6 Hop Limit values as they > cross various NVEs/PEs. > > [AS] Added the following to section 4: > "It should be noted that whenever a PE performs a host IP lookup for a packet, > IPv4 TTL or IPv6 hop limit for that packet is decremented by one and if it > reaches zero, the packet is discarded. In case of symmetric IRB, the TTL/hop > limit is decremented by both ingress and egress PEs (once by each); whereas, > in case of asymmetric IRB, the TTL/hop limit is decremented only once by the > ingress PE." I don't quite understand what this text should be telling me. IPv6 Neighbor Solicitations must be sent with a Hop Limit of 255 (4861 S4.3) and "HL==255" is a validation check performed on receipt (4861 S7.1.1). The same goes for the Neighbor Advertisement replies. I think your answers above clarifying the mixed routing and bridging situation (depending on configuration) probably address my original concern (that NS/NA HLs would not get decremented since they're bridged; when they're routed they obviously can't be forwarded). If that's true, it might be better to undo this particular paragraph addition, and I apologize for my confusion. > [AS] I also added similar sentences to sections 5.4, 5.5, 6.3, and 9.1.2, and 9.2.2. This addition is not applicable to section 6.4. > > [ section 7 ] > > * The two statements: > > (1) "Although the language used in this section is for IPv4 ARP, > it equally applies to IPv6 ND." > > (2) "If there is [a] many-to-one relationship such that there are many host > IP addresses correspond[ing] to a single host MAC address ..., then to > detect host mobility, the procedures in [IRB-EXT-MOBILITY] must be > exercised..." > > are in direct conflict. All IPv6 hosts having at least one non-link-local > unicast address will have more than one IP address per MAC and this section, > or even this document, would not apply? > > [AS] I modified the paragraph to call out non-link-local address for IPv6 explicitly: > > “If there is many-to-one relationship such that there are many host IP > addresses (non-link-local unicast addresses for IPv6) > corresponding to a single host MAC address or there are many host MAC addresses > corresponding to a single IP address (non-link-local unicast address for IPv6), > then to detect host mobility, the procedures in > <xref target="I-D.ietf-bess-evpn-irb-extended-mobility"/> > must be exercised followed by the procedures described below.” It's not clear to me that IPv6 link-local addresses need to be called out explicitly. I simply meant that for IPv6 nodes would likely have at least two addresses (one LL, one GUA). Thanks for the reference to the extended mobility doc.
- [bess] Erik Kline's Discuss on draft-ietf-bess-ev… Erik Kline via Datatracker
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Ali Sajassi (sajassi)
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Erik Kline
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Ali Sajassi (sajassi)
- Re: [bess] Erik Kline's Discuss on draft-ietf-bes… Erik Kline