IETF Logo Mail Archive

Re: [bess] I-D Action: draft-ietf-idr-tunnel-encaps-01.txt

Eric C Rosen <erosen@juniper.net> Mon, 28 December 2015 15:20 UTC

Return-Path: <erosen@juniper.net>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 081AF1A00DF; Mon, 28 Dec 2015 07:20:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.798
X-Spam-Level:
X-Spam-Status: No, score=0.798 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i-shuKWHaD6X; Mon, 28 Dec 2015 07:20:44 -0800 (PST)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2on0137.outbound.protection.outlook.com [65.55.169.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C85571A0141; Mon, 28 Dec 2015 07:20:43 -0800 (PST)
Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=erosen@juniper.net;
Received: from [172.29.34.172] (66.129.241.12) by BY2PR0501MB2151.namprd05.prod.outlook.com (10.163.198.25) with Microsoft SMTP Server (TLS) id 15.1.361.13; Mon, 28 Dec 2015 15:20:40 +0000
References: <20151221171512.15817.2209.idtracker@ietfa.amsl.com>
To: idr@ietf.org, bess@ietf.org
From: Eric C Rosen <erosen@juniper.net>
Message-ID: <56815342.7030609@juniper.net>
Date: Mon, 28 Dec 2015 10:20:34 -0500
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
MIME-Version: 1.0
In-Reply-To: <20151221171512.15817.2209.idtracker@ietfa.amsl.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [66.129.241.12]
X-ClientProxiedBy: CO1PR06CA030.namprd06.prod.outlook.com (10.242.160.20) To BY2PR0501MB2151.namprd05.prod.outlook.com (25.163.198.25)
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB2151; 2:HfGbVEnVMdXW4h4nWlpjxW9DGwR8iUb2xaljoXhqBR/gZUh795gA98M2+FzK5vbzIhyh/B8G6NxjgXEK1u0uPKU5InfzjOIu1M3K0waDKeHDWgK0UPyRQlanxqCMLHdZf1zfTCZxOFrcBLlBrAOHlw==; 3:gCTmRvT6A2r/McuvMhG66o0KqCX7mw5rVB+5/mJIul+GXWXyF9MNzDisLeyGtFhdz5XbEFcepWKHBs4ZFRRSD4tIxLaKsapVRLiSrGSctH46OTFii1o/NGbgFIeJJZNG; 25:IvJd4aH8FUKiUj1GGPznHwO8HRLXn2kEfl2DPN/e6V85qbz1iAUXm2w2h7eelxLxgwS5nFxLPz8++a0ZpOnBAWZ7z3XbDKuWZoSqMHFX0xW6Dc9QGW08FDzzIt/j98n2TCaDBqJbem70+UxUiC4Eoh1Qd/PQ4XaIp/hIm9OhM+eouk8N+ri5nUTu1yBcPJ0QeFZce9ztK6YcuONN0/Fo32gtaa3Eal3yAL7kg5b4MF3GBUH7I2hACE+BkEn/hgjLjSOaFAA1eevo2uRrc9MlYA==
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY2PR0501MB2151;
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB2151; 20: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; 4:8y1iwctKhapp7IbqxLxh5jh/5hwmxpEnkoDHI0FfPBsU0u90RQ8saZ1uT7CMxWuah1PwmN3usuG5N+JiBt1cKJSW+iKfuLr2MI85KT6ddWKtpG/EYDOAc+pwwsK5I9IIpQIcVhbSQ93jdS/Pt+R8YZpsJICjoYVm61z03Hk2bw7B/okpca91UQ4vH4Qi2SqFNFkV5MYgDQ/Evlldn9d7dILLq0jFGp5GxwGBQD2LGGlroJDcB08fK4uwoU/ulyvdokpArdGjynMe/T1mNwroRW1XOyuK9uDejx6GduBccx/ZrZPbPlFgb/co2WbzLraclDgmO9gC/yF5QDN3RlpOEEZ0ts6HMD2+iTnfwX1ZyfIfx53/QSVSQVC15UCKWP2t
X-Microsoft-Antispam-PRVS: <BY2PR0501MB215190D9011B57F354F8CD42D4FB0@BY2PR0501MB2151.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(2401047)(5005006)(520078)(8121501046)(10201501046)(3002001); SRVR:BY2PR0501MB2151; BCL:0; PCL:0; RULEID:; SRVR:BY2PR0501MB2151;
X-Forefront-PRVS: 08041D247D
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10019020)(6049001)(6009001)(189002)(199003)(105586002)(5008740100001)(97736004)(65806001)(65956001)(117636001)(81156007)(23746002)(36756003)(450100001)(4001350100001)(106356001)(54356999)(76176999)(50986999)(87266999)(59896002)(230783001)(66066001)(189998001)(99136001)(65816999)(5004730100002)(3846002)(50466002)(6116002)(101416001)(83506001)(77096005)(586003)(92566002)(107886002)(47776003)(230700001)(5001770100001)(64126003)(40100003)(42186005)(5001960100002)(1096002)(122386002)(2950100001)(87976001)(86362001)(62816006); DIR:OUT; SFP:1102; SCL:1; SRVR:BY2PR0501MB2151; H:[172.29.34.172]; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
Received-SPF: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB2151; 23: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
X-Microsoft-Exchange-Diagnostics: 1; BY2PR0501MB2151; 5:rVvi4yKfWjJyTLBcrAvt+hDJV3W5fwCOsxAIUBFg0W+EH7iCNjYC10DzPKf/yAn+O235WV2kY8bkCIcYV16hONRUMgIvESz3Fgl3saEf+fkqRRtfoaaDVb689k5DTlGfCAdNweJpyzIC2ze2i2MNSg==; 24:M9JmhW32cyEvasLJIV6uy8KBveJBq7xlP9VopewgXye+GUg+Y1IXLrASKbpq5MDHeOr3WF7dQsLCsV+fNXgGi5idHGuTHDa22lfuJbHNA0s=
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 28 Dec 2015 15:20:40.7741 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY2PR0501MB2151
Archived-At: <http://mailarchive.ietf.org/arch/msg/bess/v6Cl09a_4cSE4X4y-sTDzdGWW5k>
Subject: Re: [bess] I-D Action: draft-ietf-idr-tunnel-encaps-01.txt
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Dec 2015 15:20:46 -0000

The -01 revision of draft-ietf-idr-tunnel-encaps has the following 
changes from the -00 revision:

- By popular request, it has been written in such a way as to obsolete 
RFC5512.  This means that anything useful in RFC5512 had to be 
incorporated into the new draft.  I would welcome opinions on whether 
this was done correctly.

- Two new sub-TLVs are specified:  "MPLS Label Stack" and "Prefix-SID".  
I would welcome opinions on whether these are useful or not.  (I'm 
pretty sure that the first is useful, the second is more speculative.)

- If you are familiar with deployed uses of the Encapsulation Extended 
Community, the Color Extended Community, or the Router's MAC Extended 
Community, it may be worth checking section 4 to make sure that the 
draft does not introduce any problems.

- I wish more folks would take a critical look at section 8, which is 
primarily about the use of VXLAN/NVGRE/VXLAN-GPE together with labeled 
address families.

I would also be interested in hearing if anyone has an opinion on the 
utility of using this sort of mechanism to signal IPsec tunnels.  Once 
RFC 5512 is obsoleted, RFC 5566 ("BGP IPsec Tunnel Encapsulation 
Attribute") will need to be revised.  It might be possible to generalize 
that in such a way as to facilitate the secure interconnection of two 
private ASes across the public Internet.  Comments on whether RFC 5566 
takes a reasonable approach would be welcome.

v2.23.0 | Report a Bug | By Email