IETF Logo Mail Archive

Re: [Bier] Comments on draft-hfa-bier-pim-tunneling

"Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net> Thu, 20 July 2017 11:20 UTC

Return-Path: <zzhang@juniper.net>
X-Original-To: bier@ietfa.amsl.com
Delivered-To: bier@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 815C0131C04 for <bier@ietfa.amsl.com>; Thu, 20 Jul 2017 04:20:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.801
X-Spam-Level:
X-Spam-Status: No, score=-4.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E8Af5lSIzrzP for <bier@ietfa.amsl.com>; Thu, 20 Jul 2017 04:20:49 -0700 (PDT)
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (mail-by2nam03on0098.outbound.protection.outlook.com [104.47.42.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9CFCE131C03 for <bier@ietf.org>; Thu, 20 Jul 2017 04:20:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=NWFbP3ZTBoj36nsAIjMwCDmWz5q7FLq+D+36LUVArh0=; b=iwykfSLPsU1GfYUX4Ml3TDu9LyYH1JoXnYEci04ftKZk7Kq41m+Iy+adxDIIcQ/yMoB15Cd4vQtXYfBto3wo5VQ+0K3aUdGvOYTJGq88fhwINtcU2p32U7j1erQh4NL9H9EmunLkMH7UeUuXGkRrl5w1zLvKvd5g298kAWY0HFU=
Received: from DM5PR05MB3145.namprd05.prod.outlook.com (10.173.219.15) by DM5PR05MB3180.namprd05.prod.outlook.com (10.173.219.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.4; Thu, 20 Jul 2017 11:20:47 +0000
Received: from DM5PR05MB3145.namprd05.prod.outlook.com ([10.173.219.15]) by DM5PR05MB3145.namprd05.prod.outlook.com ([10.173.219.15]) with mapi id 15.01.1282.011; Thu, 20 Jul 2017 11:20:47 +0000
From: "Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net>
To: "Dolganow, Andrew (Nokia - SG/Singapore)" <andrew.dolganow@nokia.com>, Antoni Przygienda <prz@juniper.net>
CC: "bier@ietf.org" <bier@ietf.org>
Thread-Topic: [Bier] Comments on draft-hfa-bier-pim-tunneling
Thread-Index: AQHS/XAwmu5yjNkcLUehC6Fnhg/YZKJZUqQ7gAM+OpA=
Date: Thu, 20 Jul 2017 11:20:47 +0000
Message-ID: <DM5PR05MB3145A4AFB275EF7DAE114E20D4A70@DM5PR05MB3145.namprd05.prod.outlook.com>
References: <2F5AA4AB-E5E7-453E-963C-DF9679DDE2D8@juniper.net> <B681B2B4-3518-4F8A-A83A-7AEBED2F7CE7@nokia.com>
In-Reply-To: <B681B2B4-3518-4F8A-A83A-7AEBED2F7CE7@nokia.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: nokia.com; dkim=none (message not signed) header.d=none;nokia.com; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [66.129.241.11]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR05MB3180; 7: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
x-ms-office365-filtering-correlation-id: 8f8e962e-7a0a-4c90-1258-08d4cf615ea7
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(48565401081)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:DM5PR05MB3180;
x-ms-traffictypediagnostic: DM5PR05MB3180:
x-exchange-antispam-report-test: UriScan:(151999592597050)(278178393323532)(190756311086443)(26388249023172)(236129657087228)(138986009662008)(148574349560750)(21748063052155)(247924648384137);
x-microsoft-antispam-prvs: <DM5PR05MB3180697B1B4BC95E8D2159C3D4A70@DM5PR05MB3180.namprd05.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(5005006)(8121501046)(2017060910075)(93006095)(93001095)(10201501046)(100000703101)(100105400095)(3002001)(6055026)(6041248)(20161123558100)(20161123555025)(20161123562025)(20161123560025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123564025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:DM5PR05MB3180; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:DM5PR05MB3180;
x-forefront-prvs: 0374433C81
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39400400002)(39850400002)(39860400002)(39410400002)(39450400003)(39840400002)(24454002)(377454003)(7696004)(6636002)(77096006)(3660700001)(3280700002)(2900100001)(53546010)(2950100002)(74316002)(66066001)(5003630100001)(478600001)(2906002)(81166006)(8936002)(76176999)(50986999)(54356999)(8676002)(5660300001)(14454004)(606006)(230783001)(4326008)(38730400002)(53946003)(3846002)(6116002)(236005)(102836003)(6246003)(790700001)(6506006)(33656002)(9686003)(229853002)(99286003)(55016002)(189998001)(86362001)(53936002)(7736002)(6306002)(6436002)(54896002)(25786009)(966005)(579004)(559001); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3180; H:DM5PR05MB3145.namprd05.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DM5PR05MB3145A4AFB275EF7DAE114E20D4A70DM5PR05MB3145namp_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jul 2017 11:20:47.2116 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3180
Archived-At: <https://mailarchive.ietf.org/arch/msg/bier/wWKRX4mmlwLwSeLFhRUs40_b_HA>
Subject: Re: [Bier] Comments on draft-hfa-bier-pim-tunneling
X-BeenThere: bier@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "\"Bit Indexed Explicit Replication discussion list\"" <bier.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bier>, <mailto:bier-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bier/>
List-Post: <mailto:bier@ietf.org>
List-Help: <mailto:bier-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bier>, <mailto:bier-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jul 2017 11:20:53 -0000

With the two stated goals:

- Stay with a single SI to avoid packet duplication in a core due to a scale.
- Intro BIER in the core without a need to touch access domains - evolutionary intro of BIER.

I think it is clear that MVPN is completely orthogonal. The BFIR/BFERs are not MVPN PEs, and section 6 about MVPN should be removed.

The P-BFIR and P-BFER terms are really confusing. They should simply be replaced with BFER and BFER, or Downstream PIM/Protocol Border Router (PBR as in the GTM RFC) and Upstream PBR respectively.



   In case of PIM ASM the procedure for LEAFs joining RP or the source

   is same as above. The unicast (source registration) traffic from

   source to RP will be flooded throughout the BIER domain as regular

   unicast traffic without BIER involvement.



A nit: a unicast packet is not “flooded throughout” J

Some more details about ASM will need to be examined and spelled out.

6<https://tools.ietf.org/html/draft-hfa-bier-pim-tunneling-00#section-6>. Draft Rosen multicast vpn behavior

   Over the years draft rosen mvpn has evolved with many different type

   of signaling.



   As an example, with AD and C-Multicast signaling of PIM or C-

   Multicast of PIM and AD of BGP.



   The above mechanism works with draft rosen mvpn as long the C-

   multicast signaling is done via PIM. The provider PIM for MVPN can be

   forwarded from Root and LEAF PE with above explained mechanism.



If we’re talking about provider PIM, then C-multicast signaling is irreverent.
If we want to use C-multicast signaling for leaf tracking for BIER (when the MVPN provider network and BIER domain are the same), then there is no need for PIM provider tunnels. Just BIER “tunnels”. The C-multicast signaling will need to tell for which VPN it is.



   The multicast traffic has to be forwarded via GRE tunnel. That said

   the AD signaling can be done via MP-BGP.



What is the “AD signaling” here? For C-multicast? The paragraph above says “as long .. is done via PIM” J



   Future drafts will address the NG-MVPN and MPLS tunneling.

For NG-MVPN, draft-ietf-bier-mvpn already covers it?

Jeffrey

From: BIER [mailto:bier-bounces@ietf.org] On Behalf Of Dolganow, Andrew (Nokia - SG/Singapore)
Sent: Tuesday, July 18, 2017 11:18 AM
To: Antoni Przygienda <prz@juniper.net>
Cc: bier@ietf.org
Subject: Re: [Bier] Comments on draft-hfa-bier-pim-tunneling

Inline

Andrew

Sent from my iPhone

On Jul 18, 2017, at 10:56 AM, Antoni Przygienda <prz@juniper.net<mailto:prz@juniper.net>> wrote:
Read the draft on the plane trying to figure out what’s that about. Observations


a)      First, the draft seems to indicate that it’s draft-rosen (6037) and I assume it’s talking about the P-G PIM which is generated by the PE and then first P is acting as BER. And it seems to concern mostly SSM. Just verifying …

The solution we are targeting runs Rosen MVPN in the core. And yes SSM is our main target.


b)      I’m suspicious of the 256bits argument somehow. Is the idea that running a single-SI BIER is somehow massively simpler than multiple-SI-s? The packet WILL split @ replication points & replication is necessary in any case (unless we have ingress rep for which BIER is not needed) so I don’t see how single-SI makes much of a difference.

There are two goals:
- Stay with a single SI to avoid packet duplication in a core due to a scale.
- Intro BIER in the core without a need to touch access domains - evolutionary intro of BIER.



c)       We do not need to burn a protocol bit for PIM albeit yes, it would be tad more efficient. PIM must be carried in either v4 or v6 frame which is its normal encoding and already fully supported by BIER encaps. Additionally, if PIM is stripped of v4/v6 encaps considerations would have to be made to all the PIM RPF & correct source/destination addresses checks in the spec AFAIR. Yes, the BER needs to look into v4/v6 packets to  see PIM being tunneled but if we try to accommodate every IP protocol with a bit, we’ll run out fast. Accomodating a protocol makes most sense when we talk heavy-volume dataplane such as maybe VxLAN if we can save headers for processing speed but PIM is a low volume control protocol and the check is trivial since it’s a well known next-protocol offset position.

Let's discuss in Prague.


d)      I think the moniker BRT is ill chosen. BIER does not do RPF and using “RPF” here to describe tracking of G-membership of P-BFRs is overloading the term in a confusing way IMO. Basically in overlay we should have a G to BFM mapping (and if necessary S to BFR-id derived from BIER packets) and nothing else. There is no “RPF” lookup per packet or anything like this which the moniker suggests (yes, one would say we do a “RPF” per “PIM join” but that somehow implies that such “RPF” can “fail and drop” which it cannot).

e)      The whole “RPF SPF lookup” in 3.1 for (S,G) joins will not work in general case AFAIS. Observe that BIER may NOT be IGP signaled (but e.g. controller based) or run subdomain over a MT sub-setting links or construct a different tree than SPF so this “PIM tunneled (S,G) overlay” seems to violate the separation of layers completely as proposed assuming that it can draw conclusions from IGP state (i.e. it considers the tunnel path somehow “backwards-computable” by the overlay making it not a tunnel but an encapsulation only).
This is bot trying to be a general solution that will work with every BIER deployment. It intends to solve brown-deployment use caee in some pretty typical architecture deployed today.

If the whole (S,G) join architecture hinges on assumption that a “future” BIER packet’s source can be “figured out by computing SPF” then it is very restricted and those assumptions have to be spelled out very clearly. In general case an (S,G) join would have to be sent to all BERs that participate in the P-G IMO make is de-facto ASM is my impression.


Maybe I somehow miss the whole point completely given that the text is jumping between tons of technologies and seems to not state assumptions taken every time clearly …


Let's go over confusing parts tony so we can clarify and avoid those in the text.

Andrew

--- tony

_______________________________________________
BIER mailing list
BIER@ietf.org<mailto:BIER@ietf.org>
https://www.ietf.org/mailman/listinfo/bier

v2.23.0 | Report a Bug | By Email