IETF Logo Mail Archive

Re: [Bier] BIER v6 requirements draft comments: draft-ietf-bier-ipv6-requirements ...

Mike McBride <mmcbride7@gmail.com> Tue, 19 November 2019 12:57 UTC

Return-Path: <mmcbride7@gmail.com>
X-Original-To: bier@ietfa.amsl.com
Delivered-To: bier@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DFF2120916 for <bier@ietfa.amsl.com>; Tue, 19 Nov 2019 04:57:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.747
X-Spam-Level:
X-Spam-Status: No, score=-0.747 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ArqgUqyo86oF for <bier@ietfa.amsl.com>; Tue, 19 Nov 2019 04:57:19 -0800 (PST)
Received: from mail-vs1-xe2b.google.com (mail-vs1-xe2b.google.com [IPv6:2607:f8b0:4864:20::e2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 462C1120853 for <bier@ietf.org>; Tue, 19 Nov 2019 04:57:19 -0800 (PST)
Received: by mail-vs1-xe2b.google.com with SMTP id k15so14133486vsp.2 for <bier@ietf.org>; Tue, 19 Nov 2019 04:57:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=Cq276jjXeftaI8pFieqgC+9GhHeOGlhICg8dQ2OAnak=; b=L2mdr29HgkxWdVN3gBmewOwN1Vv15bH5aPAix4SvkJ1ZNX6Zh/Uddjbn7Ebw898d4b FZusXg8Ebn1c6eWHaXtOe1WAwb9etQJL9Z0U+w46wadcNt/z5Lxa4DnUyVr3jAX1D/TY XXyTl51J/oZvOX7BTr8g0dUD3H4gpfvHcmW7f0NVy70cCFbg4pQIe+Pl11RL/WOQx4q5 V69XotJcsslM48uKncicZwuduGT2d5Gic5acqcw3J1CeS1chUdrY83SI9QteordpfOa0 XF1lXu30MUtXZpeiyPqQ2HcXPXmVZMfFeP+D9eLNZOD6trY3z2HxXTbV8SLN521F2/QM WwbQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=Cq276jjXeftaI8pFieqgC+9GhHeOGlhICg8dQ2OAnak=; b=TEcT9ZEbGhi3hFkY/qPoFK+yg62FWatEFeoVBJlvdO0Mx75uD5NhH9FFDaZa2JtKJJ v1uDaLOu6oTJl609R8NGdhBDYJGFtdbgRBmP3lD8rTvP0R6lYMUZupkPCDsk07D5EFwq 5QoUQKZanoAHGl1PM40HINoN4hmcFJ3yxNxgAmdY3SD8PoM4A6J5eL82Mdwh1ulTmeX+ ZE6RapYCzXVs5+JKNsNpYQulD29DOBqq3GfEp1LqVluw8xnNaCto06CjGDViVr4ZWkSq b8T+7Te+DCRdE46l0+Mp4J/9oJmpFeIx0yNm3x6GGwdlaKwl04S52F7e02Kb2bkBBK4p ARtg==
X-Gm-Message-State: APjAAAXzNt6lV8PAwDBkcaZHDMxarkameLk6tiC0zF/x+NgX9V5Dd7vb Sfi0yWfayJ0gUUdnFs03LYwBMANOD2u0mdrwwOBLuKMBvjU=
X-Google-Smtp-Source: APXvYqwVWcOCAIx3yeX16I+EcQlvlABMIFtC9LTGaLfy9BndxSnSIDMdbOKcZ/RDUhyI3YuNa/tHAvxC40vQtvGX+WI=
X-Received: by 2002:a67:3011:: with SMTP id w17mr20283283vsw.102.1574168238082; Tue, 19 Nov 2019 04:57:18 -0800 (PST)
MIME-Version: 1.0
References: <24BB25FC-F19D-4CE2-B5AB-2BF1F844546E@juniper.net>
In-Reply-To: <24BB25FC-F19D-4CE2-B5AB-2BF1F844546E@juniper.net>
From: Mike McBride <mmcbride7@gmail.com>
Date: Tue, 19 Nov 2019 04:57:43 -0800
Message-ID: <CAL3FGfwFJDN6WK8UdLzOdDJDxeL9Bf5P_ncGAdNQw58HEd8UNw@mail.gmail.com>
To: Antoni Przygienda <prz=40juniper.net@dmarc.ietf.org>
Cc: "bier@ietf.org" <bier@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/bier/XOCDnFmYZ1wg9_YaLgJN0HTv8ZE>
Subject: Re: [Bier] BIER v6 requirements draft comments: draft-ietf-bier-ipv6-requirements ...
X-BeenThere: bier@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "\"Bit Indexed Explicit Replication discussion list\"" <bier.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bier>, <mailto:bier-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bier/>
List-Post: <mailto:bier@ietf.org>
List-Help: <mailto:bier-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bier>, <mailto:bier-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Nov 2019 12:57:21 -0000

Hi Tony,

On Mon, Nov 18, 2019 at 9:51 PM Antoni Przygienda
<prz=40juniper.net@dmarc.ietf.org> wrote:
>
> Finally getting to fire off some comments on draft-ietf-bier-ipv6-requirements draft

MM: Yay! thank you, happy we are getting some feedback.

> 3.4: I see NO requirements to do anything with SR or SRv6 in BIER WG charter so I am not sure how it ended up so prominently in the draft. And BIER is a hop-by-hop technology, it already includes provisions to transition non-BIER nodes via correct algorithms so not sure how SRv6 is of any use or relevance here. Of course BIER could be tunneled with SRv6 but then a BIER frame should be carried natively inside a SRv6 frame.  Comingling two level layer 2.5 transport technologies into a single layer format as the draft seems to imply is unnecessary and a bad idea since there will be resulting cross-talk.

MM: Unless my co-authors, or anyone else, disagrees, I say we simply
remove this section and any and all references to SRv6 if it's not
helpful. Focus should be on IPv6 related requirements.

> 4.2: completely disagreed. BIER is a hop-by-hop layer 2.5 technology. Modifying IP options is arguably far more expensive than next-protocol frame.

MM: You completely disagree with requirement 4.2? You believe that the
solution _should_ require hop-by-hop modification of the IP source
address field? Or just disagree with our explanation of it? This
requirement came from Eric Rosen long ago. Please suggest new
requirement wording that makes you happy.

> 4.3:
>
> fragmentation will only play in IPv6 case if the frame is longer than IPv6 max frame size - BML roughly. No matter _where_ we stick the mask we face the same problem until we start to do BIER fragmentation and reassembly

MM: So the requirement "should not require the BFRs to inspect layer 4
or require any changes to layer 4." is fine but you don't like the
fragmentation wording? Or do you not like the requirement period? We
can certainly re-word it or remove it if it causes heartache. Again
this was another Rosen requirement I believe. Fragmentation is
optional for BIER, but, from an IPv6 point of view, it is a basic
capability and we figured we should support it. Maybe we don't but
let's get the requirement down.

> Again, SRv6 is neither in the charter nor an issue since BIER is a L2.5 hop-by-hop technology and not, as the authors want it, all of a sudden an implicit tunneling or multi-hop technology

MM: Consider SRv6 gone from this draft since having it in there is
causing pain.

> 4.11: and again BIER is hop-by-hop and it will rely on higher layers to re-assemble just like MPLS does.

MM: and again IPv6 does provide the fragmentation/assembly capability,
so we figured BIER should inherit such capability but we could
certainly be wrong. Are you in favor then of removing the 4.11
requirement involving fragmentation? Or re-wording it?

> I-D.xie-bier-ipv6-encapsulatio: yes, IPv6 architecture has the loophole for in flight modification of hop-by-hop header options but it does not mean it’s a good idea

MM: This isn't a solutions document so whether it's a good idea or not
can be saved for that document to justify. We will move the solutions
overviews to an appendix.

> Last, major objection is that by opening any IPv6 destination address to receive BIER frames from multiple hops away we are opening a completely security nightmare and argumenting that whole BIER layer has to be IPSEC’ed to close that hole is simply going into a seriously wrong direction IMO.

MM: Which requirement are you referring to? Perhaps you are referring
to requirement 4.3 involving L4 Inspection where we mention IPsec? We
figured the IPSEC architecture should be inherited from IPv6 if we are
considering BIER in IPv6 but it looks like you don't agree. We are
happy to modify/add/remove any requirement just needs specifics.

thanks,
mike

>
>
> --- tony
>
>
>
> _______________________________________________
> BIER mailing list
> BIER@ietf.org
> https://www.ietf.org/mailman/listinfo/bier

v2.23.0 | Report a Bug | By Email