Re: [Bgp-autoconf] Review of draft-dt-idr-bgp-autoconf-considerations
Jeffrey Haas <jhaas@pfrc.org> Sat, 06 March 2021 18:20 UTC
Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: bgp-autoconf@ietfa.amsl.com
Delivered-To: bgp-autoconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B995F3A1330 for <bgp-autoconf@ietfa.amsl.com>; Sat, 6 Mar 2021 10:20:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q4lhiKMaxObA for <bgp-autoconf@ietfa.amsl.com>; Sat, 6 Mar 2021 10:19:59 -0800 (PST)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id A1C663A132D for <bgp-autoconf@ietf.org>; Sat, 6 Mar 2021 10:19:59 -0800 (PST)
Received: by slice.pfrc.org (Postfix, from userid 1001) id C9A071E409; Sat, 6 Mar 2021 13:40:55 -0500 (EST)
Date: Sat, 06 Mar 2021 13:40:55 -0500
From: Jeffrey Haas <jhaas@pfrc.org>
To: bgp-autoconf@ietf.org
Message-ID: <20210306184055.GC13488@pfrc.org>
References: <BY5PR14MB4145A41AFE10FD1CD5C52CE7FA9A9@BY5PR14MB4145.namprd14.prod.outlook.com> <SN6PR13MB23344C90447085C85FFA42A1859A9@SN6PR13MB2334.namprd13.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <SN6PR13MB23344C90447085C85FFA42A1859A9@SN6PR13MB2334.namprd13.prod.outlook.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/bgp-autoconf/VTVV35RyD_pU5i_JJP8JCR2ITVQ>
Subject: Re: [Bgp-autoconf] Review of draft-dt-idr-bgp-autoconf-considerations
X-BeenThere: bgp-autoconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP autoconfiguration design team discussion list <bgp-autoconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bgp-autoconf>, <mailto:bgp-autoconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bgp-autoconf/>
List-Post: <mailto:bgp-autoconf@ietf.org>
List-Help: <mailto:bgp-autoconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bgp-autoconf>, <mailto:bgp-autoconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Mar 2021 18:20:02 -0000
Linda, On Mon, Mar 01, 2021 at 11:37:06PM +0000, Linda Dunbar wrote: > * Page 2 Section 2.3 third bullet has "Authentication Method". But I don't see any of the described methods has auto discovering "authentication method". Is it really a requirement of BGP Auto-Discovery protocol? I've updated the text to transport security parameters since that's what we're really representing. > * Page 2 Section 2.3 Fourth bullet: The following BGP peer session parameters are also present in a BGP OPEN message. If a node can trust the parameters discovered by BGP Auto-discovery, why not trust the same information from BGP Open? It's a matter for peer selection. Discovering something that speaks BGP is one part of the procedure. However, you may not want to open a peering session with something unless it is a thing you want to have a session with. For example, a mismatch in desired device role along with AS number - as would be in a BGP Clos fabric. > * Discovery of BGP peer session parameters relevant to peer > selection such as Autonomous System (AS) Numbers, BGP Identifiers, > supported address families/subsequent-address families (AFI/ > SAFIs), and device roles. > > > > * Section 6 IANA consideration: For Layer 3 discovery, do you need IANA to register a specific MULTICAST address for BGP auto discovery? A given protocol document would need to make that request. This is the requirements document. > * Section 3.5: you have the following description: > ". Negotiated keying solutions, such as > IKE, may be desireable but not mandatory for the solution." > > Under what circumstance, the IKE is desired? Is it for the scenario that peer is NOT trusted for Auto-config? With IKE, a node can authenticate any internet reachable peers, which one to choose? Some people might want to use IKE so they get all of the properties it is good for. Some might prefer static keying. If you want to enable both scenarios, then it needs to be mentioned as an option. > * Page 5: first sentence doesn't quite belong there: > "The length of message supported by the protocol." Consider LLDP. If auto-discovery is part of that existing protocol, its length considerations limits what things you can support for auto-discovery. For example, long lists of device roles. -- Jeff
- [Bgp-autoconf] Review of draft-dt-idr-bgp-autocon… Majumdar, Kausik
- Re: [Bgp-autoconf] Review of draft-dt-idr-bgp-aut… Linda Dunbar
- Re: [Bgp-autoconf] Review of draft-dt-idr-bgp-aut… Jeffrey Haas
- Re: [Bgp-autoconf] Review of draft-dt-idr-bgp-aut… Jeffrey Haas