Re: [bess] A question about RFC 8317

Alexander Vainshtein <Alexander.Vainshtein@ecitele.com> Sun, 27 January 2019 15:01 UTC

Return-Path: <Alexander.Vainshtein@ecitele.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8DA1E1228B7 for <bess@ietfa.amsl.com>; Sun, 27 Jan 2019 07:01:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.701
X-Spam-Level:
X-Spam-Status: No, score=-1.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=eci365.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PJu5BF1RpJ9W for <bess@ietfa.amsl.com>; Sun, 27 Jan 2019 07:01:53 -0800 (PST)
Received: from mail1.bemta25.messagelabs.com (mail1.bemta25.messagelabs.com [195.245.230.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98CB5124BAA for <bess@ietf.org>; Sun, 27 Jan 2019 07:01:51 -0800 (PST)
Received: from [46.226.53.55] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-2.bemta.az-c.eu-west-1.aws.symcld.net id 59/B0-10127-CD7CD4C5; Sun, 27 Jan 2019 15:01:48 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA21UbUxTZxjl7f3EUXMpOB4ZMOnUAKEV/MgaNzK TGdNskpn9WbZgsIVL26QU0paJmyYIMUY7P4ptbEsR5EMQ3YasWSZzGSmgyNQVNjDrhoSBQpko cxkrYW677Vu6Gfbrnvc55zzn3Ju8lyUkR2OTWb7SzBsNKr2UXkVuzQyul/10I78g52/Pcwrnl 0dIRfsNJ6Fwj72uGAs+pRXTrh5K8eh2DamoCzQjxdS5i8wOVhk45UZK29IVSnnVNcYoW1oWRc q71SOMcsw/LFI+apij9zDvUTqDuqxyH6Xt//YWVW6rTay0+3dVofHHCcfRKpbkmgi45R2lQgc JZxVBT9VJBh/GERzzzQhMLEtzedB1aYwOEYncbRF02haJEEFwb8AVi40O4QROBr4Lg2QIJ3Jy 6Gu9EMG74PrcmbCe5DZA65PJ8FIxtxc8N/+kcVqbCCYHHoYXxXJvg68OGxD3PPwxeFmEw5LAP 9UQxsAlwsTQNzTGayAw+ReF9WoYv38e4Xk6OO65GYxTYbjBgkJhwNUw0LEwSmBCBvN2ewTnw1 e/nhBaswJ+CTwze7F+DkFL0BcJzoJrNd0RvR6+9jeRGKeAo+oBhQ1BGu6NBMKNJFwRDLh/i4j SoOPEBIlFPgJ6z3Yzp1Gm6z9v5xI4gjuG4KS3FrnC3ykebjqnSCwywA93PIRLaEhwmfBp9yY8 TgebZYLBOAOOuOuZlfNsWFo4Ti/PfxyxUzirBcGlO1ZiWXT4aJBaaX4FmvtcIpybDqcaXot6m 9ot5LL3qW3yf4OtXZ5ocP3QKIqancGPEF6aDXZLyUrvduib9oowXgeOj/sj3mYEDwKNkeC18H j6+2eCG1FKB3pZbdRptOZSlU4vy83JkeXmbpZtFp7btshVH8iK5HyFbD9vMsty5ar9JrnpQGm Rvlhu4M1dSLiUxeUD275Ate0aL1rLiqRrxI1b8wskq9VlxQe0KpO20Fih501elMKyUhBrrwtc vJHX8JUlOr1ws5dpYOOkieL2foEWm8pVpSadBlODSMb2NE3UExLSUGbgk5PELSERFxJpKwzRF cv/h2GUmpwgRjExMZK4ct5YqjM/y8+iJBZJE8QbQk3idAZzNGlWKCESSry1e3eohFn1L5VchT Z1zi2ddo6kcYdnVxcYPl/c+W68uDrl7si1DMfDjfsqzt/XbH9R/dlC58ah3j1npjOMV/3Wn9f trD4bW2dkXMZ5x/uX2wbbevMKfylefzD/yaup/vgtv9udiplDvukPnYULUyXvJH9yyJqWdBB8 WS9kz6vG/WVvWs5dTF/K2/Fd61yMQ0qatKrcLMJoUv0DFhMp3hoFAAA=
X-Env-Sender: Alexander.Vainshtein@ecitele.com
X-Msg-Ref: server-21.tower-307.messagelabs.com!1548601302!593793!1
X-Originating-IP: [52.41.248.36]
X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass
X-StarScan-Received:
X-StarScan-Version: 9.31.5; banners=ecitele.com,-,-
X-VirusChecked: Checked
Received: (qmail 32181 invoked from network); 27 Jan 2019 15:01:45 -0000
Received: from us-west-2a.mta.dlp.protect.symantec.com (HELO EUR01-HE1-obe.outbound.protection.outlook.com) (52.41.248.36) by server-21.tower-307.messagelabs.com with AES256-SHA256 encrypted SMTP; 27 Jan 2019 15:01:45 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ECI365.onmicrosoft.com; s=selector1-ecitele-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=3kJS6vBVa+cjlb41waP/QrikxSzAQC54YtIvz+vm2w8=; b=OFRA8rllU7jeXo1tmExhb5U4QPpFQC4cUxNAirLGSWc4TDTCfcdMcY3HIoy2DohonEkfKFOGLTKJXmBLtfy8Ym17KvB10JaSpvYbOvNLnmOg1+9DiQPH0hQIBE4LD+fMe8SBq+EgXvaRx3RIaB54WpfL5t5+Kl2GVZG0zbLumss=
Received: from AM0PR03MB3828.eurprd03.prod.outlook.com (52.135.146.29) by AM0PR03MB4116.eurprd03.prod.outlook.com (52.135.147.158) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1558.21; Sun, 27 Jan 2019 15:01:40 +0000
Received: from AM0PR03MB3828.eurprd03.prod.outlook.com ([fe80::4841:bfeb:3faa:e89f]) by AM0PR03MB3828.eurprd03.prod.outlook.com ([fe80::4841:bfeb:3faa:e89f%6]) with mapi id 15.20.1558.023; Sun, 27 Jan 2019 15:01:40 +0000
From: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
To: "Rabadan, Jorge (Nokia - US/Mountain View)" <jorge.rabadan@nokia.com>, "Ali Sajassi <sajassi@cisco.com> (sajassi@cisco.com)" <sajassi@cisco.com>, "sboutros@vmware.com" <sboutros@vmware.com>, "ju1738@att.com" <ju1738@att.com>, "Samer Salam (ssalam)" <ssalam@cisco.com>, "John E Drake (jdrake@juniper.net)" <jdrake@juniper.net>
CC: "bess@ietf.org" <bess@ietf.org>, Aldrin Isaac <aldrin.isaac@gmail.com>
Thread-Topic: [bess] A question about RFC 8317
Thread-Index: AdSYUr9cSCgYcdt7R1u6vcshLnORdAAP3KGAABufoYcHOQmUAAAaCHiw
Date: Sun, 27 Jan 2019 15:01:39 +0000
Message-ID: <AM0PR03MB3828A6E399039D176190012B9D950@AM0PR03MB3828.eurprd03.prod.outlook.com>
References: <AM0PR03MB38289E905EE9421BA529727B9DBF0@AM0PR03MB3828.eurprd03.prod.outlook.com> <7A95B86B-03C4-4D11-8A37-FFCB98BFA44B@nokia.com> <AM0PR03MB3828D22EFE13890EB08419459DB80@AM0PR03MB3828.eurprd03.prod.outlook.com> <CAOA2mbyA6SrGLU=GdHk36KSu5+ev59evo5DMSQV6V18BinOh5Q@mail.gmail.com>
In-Reply-To: <CAOA2mbyA6SrGLU=GdHk36KSu5+ev59evo5DMSQV6V18BinOh5Q@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [147.234.241.1]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM0PR03MB4116; 6:jv25TfTs5xsurxSGQChuiEWns1QHcpx/FtwX/WH8fA82kWB1OsRYJv5e2t0Z3F49rSjqBedTz/Z4iaaB1IesyapUA7RZInJWU1H3uccOp75uhIxolOVp52RrIZH3oopDP2czhVLkOdvVAaWzJpJYHHIQodZkubpbTRlt2RoA4a9S+AspAqHhnjS1FmBSPyxHUjY6xHVk9trChc9K9pU+VTpdhCTxQ6ZZ6qy9WgScvwwNg0GskjAAoP7Fn0EzfmHVjBWrv6hiZ3eqcc0MEF3iog3H1y4cnRKD3dQ2o2PNkFvtXv1NUtJAC+St860HYofDj9GWjsGncxrSR836F7ojQl0BU7pxKIkiMrBOyQ2K70nVInYpLsGdMeSLZOtYho2KIRAOpcuTlZtwCl8WW5v3Grn28o3WbVrvTBMc1znCopJ+EbHHEMuJKiNwDEMEJzh7LSAOIRD6ITIokZgU2F06xQ==; 5:6Yc9HRlxuGd8hL2mwAyvm8lsxYo/J4/deh7ff5oTtjDC9jsjWxHicFJzlq7R3JmW2JGzH0PoWPoWbeeayezyWXla1mGdbbFesI9mkldrUxy+zs6bfD+JdacIeHNUE5EPBqMGr0VPxXGMysCO9zDqyBL/uQul9qekYQGVlNQT0RVp3l5st1lwdMYjoKNMvKi1yJAw9QL3VXVIiJf7pVenLw==; 7:ZAC9pgyBer7FXBxVUx/O5giBinCPhZaXA6KTAwfCm3I7k2MRSH3M+PyY2wIsivxvCbTIyNhWstZfIVCeN203g0SUBX+Xcj7vSvoQc9HO1rF/4xL3MsQ8RrY0wrv6Z/fLX5hSSsb8EjMpXIphxlkpEg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: e850b6bb-acb1-4948-8fba-08d6846857a9
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(4618075)(2017052603328)(7153060)(49563074)(7193020); SRVR:AM0PR03MB4116;
x-ms-traffictypediagnostic: AM0PR03MB4116:
x-microsoft-antispam-prvs: <AM0PR03MB4116A50066246721F837987F9D950@AM0PR03MB4116.eurprd03.prod.outlook.com>
x-forefront-prvs: 0930AAFAD9
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(366004)(376002)(39860400002)(396003)(346002)(51874003)(189003)(199004)(53754006)(6436002)(11346002)(93886005)(72206003)(966005)(14454004)(2201001)(8936002)(296002)(26005)(229853002)(7696005)(2501003)(606006)(102836004)(106356001)(53546011)(33656002)(105586002)(236005)(6506007)(110136005)(54906003)(86362001)(76176011)(316002)(733005)(446003)(66066001)(99286004)(6246003)(53936002)(54556002)(6306002)(54896002)(9686003)(97736004)(186003)(39060400002)(74316002)(2906002)(68736007)(81156014)(256004)(14444005)(5024004)(25786009)(53946003)(6116002)(4326008)(99936001)(55016002)(486006)(478600001)(476003)(7736002)(81166006)(8676002)(1941001)(71190400001)(71200400001)(790700001)(3846002)(579004); DIR:OUT; SFP:1102; SCL:1; SRVR:AM0PR03MB4116; H:AM0PR03MB3828.eurprd03.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ecitele.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: toOA3nEG2yRHA1N6uhPDvH83CAUC6URkAprvv6CmIaDIHUXd0GqWJqk17Jo51M9anPdGWFwrb7d3HZlC8rPB1XTQLbLOqyr+Fvnbx+wJfxsksP0Oevg4Q3LGT4g8zWODNNZFqJOWQnIE7g5SYiOogMQwV37LumMVXlZs8HJcGRuPoDeNA4ModZ5rlyyGTtXXO8Cg2f40zukYwrzzgLPQ+Q6dfTwIoM4u4x/TXRr7jy3Fwo+MhUY7WltNHJoj6OLFAy5dSkYhjCzJgSHq9aTkbk8sskxetQfqA21O+tmEzBpbQF9CEfHQhBBEjRi7DdWksQ+JSin1w3bHiymHooRR/pJfcXnxzYQARN5zhs/PqaxmkLAfLBT4Z3lf+dxH/MW6yV5gGAY9dz7279KZnyl0knHEIiHzwqfZA0QkpdF3NQU=
Content-Type: multipart/related; boundary="_007_AM0PR03MB3828A6E399039D176190012B9D950AM0PR03MB3828eurp_"; type="multipart/alternative"
MIME-Version: 1.0
X-OriginatorOrg: ecitele.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e850b6bb-acb1-4948-8fba-08d6846857a9
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Jan 2019 15:01:40.0128 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2c514a61-08de-4519-b4c0-921fef62c42a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR03MB4116
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/EoJ4tSKWSj8IHclFXA-gWJhmSd0>
Subject: Re: [bess] A question about RFC 8317
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 27 Jan 2019 15:01:59 -0000

Hi all,
Yet another question regarding 8317 – this time it is related to egress filtering of BUM traffic and Leaf labels.

The relevant scenario is shown in the embedded diagram below.

[cid:image003.png@01D4B65F.07DF4C90]

In this diagram there are 4 Leaf CEs attached to two PEs:

1.       CE-1 is attached to PE-2 and PE-3 via an all-active multi-homed ES with ESI-x

2.       CE-2 is attached to PE-2 and PE-3 via an all-active multi-homed ES with ESI-y

3.       CE-3 is attached just to PE-2 via a single-homed ES with ESI=0

4.       CE-4 is attached just to PE-3 via a single-homed ES with ESI=0.


My understanding of 8317 is that:

1.       PE-2:

a.       Allocates a valid ESI label E2 and advertises it with the per-ES EAD route for ESI-x

b.       Allocates a valid Leaf label L2 and advertises it with the per-ES EAD route with ESI=0

c.       Includes label E2 in encapsulation of BUM frames it receives from CE-1

d.       Includes label L2 in encapsulation of BUM frames it receives from CE-3

2.       Similarly, PE-3:

a.       Allocates a valid ESI label E2 and advertises it with the per-ES EAD route for ESI-y

b.       Allocates a valid Leaf label L2 and advertises it with the per-ES EAD route with ESI=0

c.       Includes label E2 in encapsulation of BUM frames it receives from CE-2

d.       Includes label L2 in encapsulation of BUM frames it receives from CE-4

If the above is correct, why should PE-3 block transmission of a BUM frame it receives from PE-2 and that has originated from CE-1 to CE-4? Please note that:

1.       This frame uses label ESI-2 in its encapsulation, therefore transmission of such a frame to CE-2 will be blocked by egress filtering defined in RFC 7432

2.       PE-3 does not know whether CE-1 is a Root or a Leaf CE because E-Tree Extended Community is only advertised with EAD routes with ESI 0.

Note that PE-3 can block transmission of a BUM frame it receives from PE-2 and that has originated from CE-3 to both CE-2 and CE-4 because:

-          The Leaf Label in the encapsulation of this frame identifies it as a originating from a Leaf CE

-          PE-3 knows from local configuration that both CE-2 and CE-4 are Leaf CEs.

What, if anything, did I miss? Your timely feedback will be highly appreciated.

Regards, and lots of thanks in advance,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com

From: Aldrin Isaac <aldrin.isaac@gmail.com>
Sent: Sunday, January 27, 2019 4:06 AM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
Cc: Ali Sajassi <sajassi@cisco.com> (sajassi@cisco.com) <sajassi@cisco.com>; John E Drake (jdrake@juniper.net) <jdrake@juniper.net>; Rabadan, Jorge (Nokia - US/Mountain View) <jorge.rabadan@nokia.com>; Samer Salam (ssalam) <ssalam@cisco.com>; bess@ietf.org; ju1738@att.com; sboutros@vmware.com
Subject: Re: [bess] A question about RFC 8317

Btw, the other problem with “two RTs” scheme might be mobility.  The leaf MAC-VRF can’t  see each others sequence numbers for a MAC.  Please see/consider my prior email.  Need to address E-Tree for non-MPLS encaps and in DC settings (think PVLAN).

Cheers,
Aldrin


On Thu, Dec 20, 2018 at 11:42 PM Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>> wrote:
Jorge,
Lots of thanks for a prompt response.
My conclusion js tbat the "two RTs" scheme should be used with special care in E-tree solutions. This was not my impression from the first reading of 8317.
Since the "two RTs" scheme is very popular in hub-and-spoke" solutiobs for IP VPN, the fact that it is not the universal answer in EVPN E-Tree deserves some expla ation IMHO- but I do not see how this can be done in IETF.
Thumb typed by Sasha Vainshtein

________________________________
From: Rabadan, Jorge (Nokia - US/Mountain View) <jorge.rabadan@nokia.com<mailto:jorge.rabadan@nokia.com>>
Sent: Thursday, December 20, 2018 7:31:20 PM
To: Alexander Vainshtein; Ali Sajassi <sajassi@cisco.com<mailto:sajassi@cisco.com>> (sajassi@cisco.com<mailto:sajassi@cisco.com>)
Cc: Samer Salam (ssalam); John E Drake (jdrake@juniper.net<mailto:jdrake@juniper.net>); ju1738@att.com<mailto:ju1738@att.com>; sboutros@vmware.com<mailto:sboutros@vmware.com>; bess@ietf.org<mailto:bess@ietf.org>
Subject: Re: A question about RFC 8317

Hi Sasha,

What you are explaining is correct.

PE3 would flood anything for which MAC DA is unknown to both local ESes. That is normal behavior, only that in this case CE-1’s MAC will not be learned on PE3 until CE-1 hashes the traffic to PE3 and not only PE2 (which will happen if you have a decent number of flows). *Technically speaking*, the E-Tree solution works since you don’t have leaf-to-leaf communication. However, I would not use the two RT solution in this scenario since it could create unnecessary flooding to local ESes as you describe.

For this scenario I would always use a single RT per EVI, ingress filtering for unicast (based on the leaf indication on MAC/IP routes), and egress filtering for BUM based on leaf label, as explained in RFC8317.

My two cents.

Thank you.
Jorge


From: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>
Date: Thursday, December 20, 2018 at 12:30 PM
To: "Ali Sajassi <sajassi@cisco.com<mailto:sajassi@cisco.com>> (sajassi@cisco.com<mailto:sajassi@cisco.com>)" <sajassi@cisco.com<mailto:sajassi@cisco.com>>
Cc: "Samer Salam (ssalam)" <ssalam@cisco.com<mailto:ssalam@cisco.com>>, "John E Drake (jdrake@juniper.net<mailto:jdrake@juniper.net>)" <jdrake@juniper.net<mailto:jdrake@juniper.net>>, "ju1738@att.com<mailto:ju1738@att.com>" <ju1738@att.com<mailto:ju1738@att.com>>, "sboutros@vmware.com<mailto:sboutros@vmware.com>" <sboutros@vmware.com<mailto:sboutros@vmware.com>>, "Rabadan, Jorge (Nokia - US/Mountain View)" <jorge.rabadan@nokia.com<mailto:jorge.rabadan@nokia.com>>, "bess@ietf.org<mailto:bess@ietf.org>" <bess@ietf.org<mailto:bess@ietf.org>>
Subject: A question about RFC 8317

Ali and all,
I have read RFC 8317<https://tools.ietf.org/html/rfc8317>, and I would like to clarify a question dealing with Leaf ACs of an EVPN-based E-Tree service on All-Active Multi-Homed Ethernet Segments (MH ES).

The reference model for my question is shown in the Embedded diagram below.


[cid:image002.png@01D49865.895588B0]

It shows an EVPN E-tree service with one Root customer site and two leaf customer sites, where each Leaf CE is dual-homed to the same pair of PEs using two different All-Active multi-homed Ethernet Segments.

Suppose that the scheme with two RTs (one identifying the Root site and the other identifying the Leaf sites) is used as described in 4.3.1.

Suppose also that each MAC-VRF uses per MAC-VRF label assignment as defined in section 9.2.1 of RFC 7432, i.e., advertises exactly one EVPN application label that identifies it as the Egress MAC-VRF, while the disposition of the received Ethernet frame within this MAC-VRF is based on the destination MAC address. In this case the per MAC-VRF label can be also used as the “aliasing” label in the per EVI EAD route.

PE-1 will receive and accept per EVI EAD routes for both MH ES for PE-2 and PE-3 with the corresponding “aliasing” labels.

Suppose that MAC-VRF in PE-2 learns some {MAC, IP} pair  {X, Y}  locally from the Leaf CE-1 and advertises this pair in the EVPN MAC/IP Advertisement route. With the “two RTs” scheme this route will be accepted by the MAC-VRF in PE-1 but it will not be accepted by the MAC-VRF in PE3. As a consequence:

-          MAC-VRF in PE-1 will know that this pair has been learned from the “blue” all-active MH ES, and therefore can decide to send locally received unicast frames with destination MAC address X to PE-3 using the corresponding “aliasing label”. No other labels will be included in the EVN encapsulation of such  frames because they are received from the Root AC.

-          MAC-VRF in PE-3 will not know anything about MAC address X, therefore, when it receives an EVPN-encapsulated frame with this destination, it will treat it as an “unknown unicast” and flood it to both Leaf CE-1 (where it should be sent) and to Leaf CE-2 (where it should not be sent).

Is this what is really supposed to happen in this scenario? If not, what did I miss in the E-tree EVPN solution?

Regards, and lots of thanks in advance,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>


___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________

___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________
_______________________________________________
BESS mailing list
BESS@ietf.org<mailto:BESS@ietf.org>
https://www.ietf.org/mailman/listinfo/bess

___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is 
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this 
transmission in error, please inform us by e-mail, phone or fax, and then delete the original 
and all copies thereof.
___________________________________________________________________________