IETF Logo Mail Archive

Re: [Gen-art] Genart last call review of draft-ietf-idr-bgp-open-policy-18

Gyan Mishra <hayabusagsm@gmail.com> Wed, 05 January 2022 05:38 UTC

Return-Path: <hayabusagsm@gmail.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CF7BF3A25FF; Tue, 4 Jan 2022 21:38:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.087
X-Spam-Level:
X-Spam-Status: No, score=-2.087 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DB0fjR5OP-Kc; Tue, 4 Jan 2022 21:38:45 -0800 (PST)
Received: from mail-pj1-x1032.google.com (mail-pj1-x1032.google.com [IPv6:2607:f8b0:4864:20::1032]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 380BA3A25FD; Tue, 4 Jan 2022 21:38:45 -0800 (PST)
Received: by mail-pj1-x1032.google.com with SMTP id y16-20020a17090a6c9000b001b13ffaa625so2369116pjj.2; Tue, 04 Jan 2022 21:38:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=uB12PH+g82xfEiGspVqdu7SjqMhbMsJdVC/F6I60VPM=; b=A8nSXAqaLFagwEIFxpOFCUw2wvyOJjx9GIIWO2+L4QyDeL2lzmj5xOXMsbVli1SsTq 6lhULBqTRZ3IlOZ9ANbo6tQrwSE1URBU5IEWlRkMNm5gk8KWUfBuXBS1qO3g+HKVzr50 ffEa4KQ3DtUliO9a4hdO2ztWvnOSFLSm4EDiJJjDQxaBWZsUgk6jyKPf0c6sqeNXY/zc dg/eJJbNUlYX3hrFmWP83rvoMjq8Qw+1K32tC5/8BgBFQvIVbfev7E4kZ5qRsWxM7Ttl rHXlZbxXzkFxTArMEujYLp9BR0dcYAWdDrmO2dve5W2ZWKZvHLPMOY+MrQ4FlZW7827n rZpQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=uB12PH+g82xfEiGspVqdu7SjqMhbMsJdVC/F6I60VPM=; b=EJ9g0Ylbs8hRLAFyGoZanZUYZ/NxIVXZfpIktX329EUydOQgFgSZJmWR6sZijMgleT jvfyK7nfJHVf4V3P6lZqn6/6rj+YKCGn1iMYvclBM2Jhh3vN0tXQUew136QsspEOf6pg QO2n5O4pZFXFK1MLxaHkc69Vn7bdlFAgHUGhQGBrUIKItkpUHniirBoAzfYCNFYASTso 0nOm09uhFHk3xprv+OCxEHFBF4Kv2dBHGMJU84Ex8hJbXNJX0KbyA/+zMYiGUN762SLU s//X14N4SxLcbUFtm8Rm49J6mxjKMg5ZibC6fzYg4I0RqIZ/dlTDGmGF7mU+n1vlIir6 M9hg==
X-Gm-Message-State: AOAM530JAtFjtKPjvM/jFKYv7F8fw8TEwzLtIBpzsm96Dx4lbBbF0FVA roO8Rb89f/mvqMkrijiwNPevwVCywHL8oeLVeE4=
X-Google-Smtp-Source: ABdhPJxdB0zpZXOqruUxkPY91uSj3RSqd87hhCuPI0ecf/lWu6FF0Ty4mUJm+h7dendVXEhHFcpkFzxfLG2rEkv+yv0=
X-Received: by 2002:a17:903:32c9:b0:149:7d71:c235 with SMTP id i9-20020a17090332c900b001497d71c235mr41914108plr.58.1641361124155; Tue, 04 Jan 2022 21:38:44 -0800 (PST)
MIME-Version: 1.0
References: <164013488006.27197.13873644386825552452@ietfa.amsl.com> <CAMMESsx35+gC7CP9ox+U-QsT8Dxkv3=Du8VRq_cprMsEc5PCyQ@mail.gmail.com> <CABNhwV30nrqJ-mOpniso6c=rJpFi0zQX93BWaQKJvKNVcrMNAw@mail.gmail.com> <SA1PR09MB8142D79278F793814694AD40844A9@SA1PR09MB8142.namprd09.prod.outlook.com>
In-Reply-To: <SA1PR09MB8142D79278F793814694AD40844A9@SA1PR09MB8142.namprd09.prod.outlook.com>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Wed, 05 Jan 2022 00:38:33 -0500
Message-ID: <CABNhwV0cGhp1pW24mzJvtOoaGDYM2ypBtTn_--L-0dNRmFhSUA@mail.gmail.com>
To: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>
Cc: Alvaro Retana <aretana.ietf@gmail.com>, "draft-ietf-idr-bgp-open-policy.all@ietf.org" <draft-ietf-idr-bgp-open-policy.all@ietf.org>, "gen-art@ietf.org" <gen-art@ietf.org>, "idr@ietf.org" <idr@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c0e70105d4cf2aa7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/FD3UhcIjdnNOBr9XNcaTqgDdVjA>
Subject: Re: [Gen-art] Genart last call review of draft-ietf-idr-bgp-open-policy-18
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jan 2022 05:38:50 -0000

Hi Sriram & Alexander

Responses in-line

Kind Regards

On Tue, Jan 4, 2022 at 11:35 AM Sriram, Kotikalapudi (Fed) <
kotikalapudi.sriram@nist.gov> wrote:

> Hi Gyan,
>
> [I am following up on the messages exchanged between Alvaro and you this
> morning. Thanks to both of you for that.]
>
> Sorry for the delay in replying (considering your original review date).
> Thank you for your careful review and comments/nits. Please see responses
> marked with [KS/AA] below.
>
> > Comment related to Gao-Rexford model.  The Gao-Rexford Model only has 3
> peer
> types North bound upstream Provider, Southbound Customer and lateral same
> tier
> level peer.  With the role capabilities, RS and RS-Client is added which
> makes
> it slightly different but almost identical.  In describing the role types
> would
> it make sense to have a graphical depiction of Gao-Redford model with the
> role
> capabilities on adjacent peers to help explain the role relationship for
> local
> and remote-as.  Just an idea to help explain the role capabilities.
>
> [KS/AA]: We felt that instead of a graphical depiction, it is more useful
> to include text to enumerate the peering relationships corresponding to
> various Roles. So, we have added (in v-19 to be uploaded soon that will
> also include changes to reflect Ines' comments) the following new text in
> Section 2 after Roles are defined:


   Gyan> Perfect

>
>    If the local AS has one of the above Roles (in the order shown), then
>    the corresponding peering relationship with the remote AS is
>    Provider-to-Customer, Customer-to-Provider, RS-to-RS-Client, RS-
>    Client-to-RS, or Peer-to-Peer (i.e., lateral peers), respectively.


>
> Please let us know if this seems acceptable.


Gya> Agreed that is acceptable.  In the description as well maybe listing a
pecking order similar to what is described in Gao-Rexford model style
 route preference in the import and export policy verbiage for each role.
Also could mention that a good reasons for role capabilities usage by
operators  is to prevent routing policy disputes between peering points
that can result in sub optimal routing instability and feedback loops along
with route leaks mentioned.

>
>
> >In the role correctness section scenario where the peer receives multiple
> role
> capabilities to send role mismatch notification.  What if there is a timing
> issue and the multiple are received after the BGP open and peer is
> established
> possible sequence of events issue.  Is it possible the peer may not get a
> mismatch notification if the peer establishes prior to getting a different
> capabilities where a mismatch or problem exists that is missed that could
> result in a route leak. I am thinking of possibly false positive or
> negative or
> negative during BGP open  capabilities exchange.
>
> [KS/AA]: We feel that Alvaro has already adequately addressed this comment
> in his two messages. Please let us know if you still have a question.


    Gyan> Agreed.

>
> Regards,
> Sriram / Alexander
>
> -----------------------------------------------------------------------
> From: Gyan Mishra <hayabusagsm@gmail.com>
> Sent: Tuesday, January 4, 2022 10:44 AM
> To: Alvaro Retana <aretana.ietf@gmail.com>
> Cc: Gyan Mishra via Datatracker <noreply@ietf.org>;
> draft-ietf-idr-bgp-open-policy.all@ietf.org; gen-art@ietf.org;
> idr@ietf.org; last-call@ietf.org
> Subject: Re: Genart last call review of draft-ietf-idr-bgp-open-policy-18
>
> Hi Alvaro
>
> Happy New Year!
>
> Welcome!
>
> On Tue, Jan 4, 2022 at 10:12 AM Alvaro Retana <aretana.ietf@gmail.com>
> wrote:
>
> > On December 21, 2021 at 8:01:21 PM, Gyan Mishra wrote:
> >
> > Gyan:
> >
> > Hi!  Happy New Year!
> >
> > Thank you for the review!
> >
> >
> > ...
> > > Summary: ... The new BGP role capabilities mismatch code 2 subcode 8
> > > discussed on ML seems to have multiple implementations deployed and one
> > > confined by Cisco. I agree that the authors should request a new
> subcode
> > > for the role mismatch notification.
> >
> > To catch others up:  there is a confirmed case of squatting on the
> > assigned subcode.  A consultation on the next steps is open on the idr
> > list and will close tomorrow (Jan/5).
> >
> > https://mailarchive.ietf.org/arch/msg/idr/RBD3Z9YIboudGAIeJLS8L--p4BU/
> >
> > Gyan> Thanks for update
> > ...
> > > Nits/editorial comments:
> > > Comment related to Gao-Rexford model. The Gao-Rexford Model only has 3
> > peer
> > > types North bound upstream Provider, Southbound Customer and lateral
> same
> > > tier level peer. With the role capabilities, RS and RS-Client is added
> > which
> > > makes it slightly different but almost identical. In describing the
> role
> > > types would it make sense to have a graphical depiction of Gao-Redford
> > model
> > > with the role capabilities on adjacent peers to help explain the role
> > > relationship for local and remote-as. Just an idea to help explain the
> > role
> > > capabilities.
> >
> > The role definitions are described in this document, not strictly
> > carried over from Gao-Rexford.  Nonetheless, a graphical description
> > on the roles defined here may make sense.  I'll leave it to the
> > authors to consider (if not too complicated).
>
>
> Gyan> Perfect
>
> >
> >
> >
> > > In the role correctness section scenario where the peer receives
> multiple
> > > role capabilities to send role mismatch notification. What if there is
> a
> > > timing issue and the multiple are received after the BGP open and peer
> is
> > > established possible sequence of events issue. Is it possible the peer
> > may
> > > not get a mismatch notification if the peer establishes prior to
> getting
> > a
> > > different capabilities where a mismatch or problem exists that is
> missed
> > > that could result in a route leak. I am thinking of possibly false
> > positive
> > > or negative or negative during BGP open capabilities exchange
> >
> > All capabilities are signaled in the OPEN, so there's no possibility
> > for receiving a Role Capability afterwards.
> >
>
> Gyan> Agreed.  The multiple capabilities received is mentioned in the text,
> however as it's signaled in the open how would multiple capabilities be
> received.  As the role capabilities are sent in the open , how can the
> possibility of multiple capabilities occur?
>
> >
> >
> > Alvaro.
> >
> --
>
> <http://www.verizon.com/>
>
> *Gyan Mishra*
>
> *Network Solutions A**rchitect *
>
> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>
>
>
> *M 301 502-1347*
>
-- 

<http://www.verizon.com/>

*Gyan Mishra*

*Network Solutions A**rchitect *

*Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*



*M 301 502-1347*

v2.23.0 | Report a Bug | By Email