IETF Logo Mail Archive

Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

"Dongjie (Jimmy)" <jie.dong@huawei.com> Wed, 19 October 2022 07:01 UTC

Return-Path: <jie.dong@huawei.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AB23C14CF03 for <idr@ietfa.amsl.com>; Wed, 19 Oct 2022 00:01:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.905
X-Spam-Level:
X-Spam-Status: No, score=-1.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s57pbFpO0U0Q for <idr@ietfa.amsl.com>; Wed, 19 Oct 2022 00:01:28 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B807C14CF05 for <idr@ietf.org>; Wed, 19 Oct 2022 00:01:27 -0700 (PDT)
Received: from fraeml742-chm.china.huawei.com (unknown [172.18.147.207]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4MshRw2TXTz6H7Dt; Wed, 19 Oct 2022 14:59:40 +0800 (CST)
Received: from kwepemi100018.china.huawei.com (7.221.188.35) by fraeml742-chm.china.huawei.com (10.206.15.223) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.31; Wed, 19 Oct 2022 09:01:23 +0200
Received: from kwepemi500017.china.huawei.com (7.221.188.110) by kwepemi100018.china.huawei.com (7.221.188.35) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.31; Wed, 19 Oct 2022 15:01:22 +0800
Received: from kwepemi500017.china.huawei.com ([7.221.188.110]) by kwepemi500017.china.huawei.com ([7.221.188.110]) with mapi id 15.01.2375.031; Wed, 19 Oct 2022 15:01:22 +0800
From: "Dongjie (Jimmy)" <jie.dong@huawei.com>
To: Robert Raszuk <robert@raszuk.net>
CC: "idr@ietf.org" <idr@ietf.org>, Susan Hares <shares@ndzh.com>, "Van De Velde, Gunter \\(Nokia - BE/Antwerp\\)" <gunter.van_de_velde@nokia.com>
Thread-Topic: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)
Thread-Index: AdjSloXuKBSDw00XRRGZ9oJo+L4v0QKq/sNhAFMI0oAAGS9aIP//xKaAgAGdTACAAfCJAIAAA64A//zDECCABf4tgP/+uj6wgAJykgD//iODwA==
Date: Wed, 19 Oct 2022 07:01:22 +0000
Message-ID: <05e1e569e2014cc1aa49b81a40acdceb@huawei.com>
References: <Y0mJ2CJQbUbf6pzO@Space.Net> <790B75F1-2EB1-49B5-93E3-28F7D26B75AB@gmail.com> <CAOj+MME7PNdjUPHmMuf=xk2ZP5N8Ltn55GVZSNXORbpeH0tnTQ@mail.gmail.com> <837e05e397814a29a30e9488517f0f4b@huawei.com> <CAOj+MMG+yjFYhQv_izjDSWeFvuv-Kcqmq3evx+hNK7KdASc8xw@mail.gmail.com> <735db8cb1f314bdaa6ab4a7359208ccb@huawei.com> <CAOj+MMEUC8bL7HKOERPZ0C66660HYkg_Zamc6tiLWzYm=uQNsw@mail.gmail.com>
In-Reply-To: <CAOj+MMEUC8bL7HKOERPZ0C66660HYkg_Zamc6tiLWzYm=uQNsw@mail.gmail.com>
Accept-Language: en-US, zh-CN
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.112.40.66]
Content-Type: multipart/alternative; boundary="_000_05e1e569e2014cc1aa49b81a40acdcebhuaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/-FxbxwMOWyybfdD42fjjFsnxMYg>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Oct 2022 07:01:33 -0000

Hi Robert,

Please see replies inline:

From: Robert Raszuk [mailto:robert@raszuk.net]
Sent: Tuesday, October 18, 2022 6:01 PM
To: Dongjie (Jimmy) <jie.dong@huawei.com>
Cc: idr@ietf.org; Susan Hares <shares@ndzh.com>; Van De Velde, Gunter \(Nokia - BE/Antwerp\) <gunter.van_de_velde@nokia.com>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

Hi Jie,

Thank you for uncovering corner of one potential use case. We need more real use cases.

[Jie] That simple example shows that there can be problem if RT is used for both VRF importing and targeted nodes distribution. If we don’t modify the semantics or the processing rule of RT, a new community type would be a reasonable choice.

In the draft I do not see anywhere statement that node target extended community must be automatically more important then route target extended community.

Since such text is missing I presume it will be subject to operator's local policy configuration.

And if so there is nothing - neither on sender nor on the receiver - to prevent one from using RT value X (RT1 in yr example) as an absolute drop/accept filtering criteria.


[Jie] Good point. I remember we discussed this in the beginning of this adoption call, my consideration is NT should be processed first, then the RT. We could add some text in next revision if the WG agrees with this.

- - -

As far as your IANA allocation I do recommend calling things much more clearly. Currently you asked and IANA allocated sub-type name "Node Target Extended Community" - it is good for the draft, but in the registry it should be "BGP Router ID" or "BGP Identifier" which makes it very clear what is being encoded.

[Jie] I understand your point. The main purpose of the IANA section is to request for a new sub-type code point. Once the WG reached consensus on the format and content of this extended community, the IANA section will be updated accordingly.

Best regards,
Jie

Many thx,
R.

On Tue, Oct 18, 2022 at 5:53 AM Dongjie (Jimmy) <jie.dong=40huawei.com@dmarc.ietf.org<mailto:40huawei.com@dmarc.ietf.org>> wrote:
Hi Robert,

Please note that the use case is to distribute the information to a VRF on specific set of nodes, which are a subset of nodes which are provisioned with that VPN.

A route with both RT-A and RT1 will be imported into the VRFs of all PE nodes of that VPN. Clearly this is not the expected result.

I agree that for non-VPN cases using RT-A only would be OK, while it is not a generic solution to cover the VPN related cases.

Best regards,
Jie

From: Robert Raszuk [mailto:robert@raszuk.net<mailto:robert@raszuk.net>]
Sent: Tuesday, October 18, 2022 12:04 AM
To: Dongjie (Jimmy) <jie.dong@huawei.com<mailto:jie.dong@huawei.com>>
Cc: Jeff Tantsura <jefftant.ietf@gmail.com<mailto:jefftant.ietf@gmail.com>>; idr@ietf.org<mailto:idr@ietf.org>; Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; Van De Velde, Gunter \(Nokia - BE/Antwerp\) <gunter.van_de_velde@nokia.com<mailto:gunter.van_de_velde@nokia.com>>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

Hi Jie,

To your example clearly if you insert both RT2 and RT1 either will cause the import to PE global table. In addition RT2 will also result in import to a VRF.

However if you are to distribute information which is not targetted to a VRF you do not need to insert this extended community (here RT2) to an UPDATE message. Then RT1 alone will result in exactly what you need. I honestly do not see a problem here.

Filtering on a fixed Router_IDs is not flexible enough IMHO even considering targetted information distribution.

Kind regards,
R.

On Mon, Oct 17, 2022 at 5:45 PM Dongjie (Jimmy) <jie.dong=40huawei.com@dmarc.ietf.org<mailto:40huawei.com@dmarc.ietf.org>> wrote:
Hi Robert,

As described in the introduction section of this draft, RT and the RTC mechanism applies to the filtering of routes to all nodes with specific VRFs. One cannot use RTs for both node filtering and VRF filtering, because the matching rule for RTs is “match-any”.

Here is a simple example: Assume you want to use RT-A to specify the target node (say node A), and RT-2 is used to specify the target VRF, then BGP routes carrying both RT-A and RT-2 will be imported by all PE nodes (not just node A) which has RT2 as the import RT of their VRFs, clearly this does not meet the requirement on targeted node distribution.

That’s why this document proposes a new extended community type:  to distinguish its semantics and operation logic with the current RT. Whether we need to use wide community or large community depends on how much information needs to be carried.

Best regards,
Jie

From: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
Sent: Sunday, October 16, 2022 6:00 AM
To: Jeff Tantsura <jefftant.ietf@gmail.com<mailto:jefftant.ietf@gmail.com>>
Cc: Gert Doering <gert@space.net<mailto:gert@space.net>>; Dongjie (Jimmy) <jie.dong@huawei.com<mailto:jie.dong@huawei.com>>; idr@ietf.org<mailto:idr@ietf.org>; Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; Van De Velde, Gunter \(Nokia - BE/Antwerp\) <gunter.van_de_velde@nokia.com<mailto:gunter.van_de_velde@nokia.com>>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

Jeff,

> Imagine a 1000s devices in 9-11-13 stages multi-planar leaf-spine block
> with eBGP (next-hop rewrite) between them

So because you bended BGP to be used in such topologies you now want to load it with features specific to accommodate such topologies ? And where is the rest of the world in this picture ? Where is the Internet in this picture ?

> (requires some planning of how router-ids are allocated)

Why are Router_IDs now an optimal filtering parameter ?

If you have such topology running BGP as IGP just allocate RT and use RT based filtering (perhaps even with RTC) instead of reinventing the wheel. If you are already using RT and for any reason prefer not to touch it, allocate a std, extended, large or wide community and use it for filtering.

Cheers,
Robert



On Sat, Oct 15, 2022 at 11:47 PM Jeff Tantsura <jefftant.ietf@gmail.com<mailto:jefftant.ietf@gmail.com>> wrote:
Hey Gert (long time ;-)),

We are much beyond the time when an AS was bunch of ASBRs with RR and iBGP in between only.
/* fictional
Imagine a 1000s devices in 9-11-13 stages multi-planar leaf-spine block with eBGP (next-hop rewrite) between them, policies are horizontally consistent (based on a position of a device in the block). When everything is up and running, stage interconnection is highly consistent (equidistant end-points)and works just great with consistent distribution of reachability (p2mp).
Single or even double failures are easily mitigated by wide ECMP (with fast rehash, easily below 100ms).
When an optical span fails however, it is a very different story, so you need to update either all relevant receivers (could be just a subset of routes, could be some additional meta-data(metrics/BW/etc) or sender(s) (or a controller that injects said subset m). In many cases, being able to target a specific set of BGP speakers is the only solution (temp mitigation).

As you rightfully said - all of this can be done with 0 changes to the protocol (through management plane), however has a number of its own issues (trade-offs).

I agree that 1:1 mapping doesn’t really scale, we could think a a more efficient distribution through wildcarding (requires some planning of how router-ids are allocated). Would be somewhat similar to “passive BGP” in some implementations - accept all peers that come from 10/8.

I have a mixed feeling about this, BGP person in me is saying (throw this over the board to management), operating this stuff at scale one is seeing some opportunities  ;-)
Hence my support.

Cheers,
Jeff

> On Oct 14, 2022, at 09:10, Gert Doering <gert@space.net<mailto:gert@space.net>> wrote:
>
> Hi,
>
>> On Thu, Oct 13, 2022 at 08:30:45AM -0700, Jeff Tantsura wrote:
>> Looking at my toolset (sometimes i need to move GWs of capacity from one region to another) - this would be a very useful addition.
>
> If you need a mechanism to actually control routing propagation, this
> can all be built today with route-policies and communities, without
> protocol changes.  Exactly the way an AS needs.
>
> If you want this to propagate something else, I am yet to be convinced
> BGP is what we should burden with it.
>
> Gert Doering
>        -- NetMaster
> --
> have you enabled IPv6 on something today...?
>
> SpaceNet AG                      Vorstand: Sebastian v. Bomhard, Michael Emmer
> Joseph-Dollinger-Bogen 14        Aufsichtsratsvors.: A. Grundner-Culemann
> D-80807 Muenchen                 HRB: 136055 (AG Muenchen)
> Tel: +49 (0)89/32356-444         USt-IdNr.: DE813185279

_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email