IETF Logo Mail Archive

Re: [Idr] New Version Notification for draft-wang-idr-rd-orf-03.txt

Aijun Wang <wangaijun@tsinghua.org.cn> Fri, 28 August 2020 11:13 UTC

Return-Path: <wangaijun@tsinghua.org.cn>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87E603A0123 for <idr@ietfa.amsl.com>; Fri, 28 Aug 2020 04:13:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nKLNn6JCmBNc for <idr@ietfa.amsl.com>; Fri, 28 Aug 2020 04:13:51 -0700 (PDT)
Received: from mail-m127101.qiye.163.com (mail-m127101.qiye.163.com [115.236.127.101]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E6533A0114 for <idr@ietf.org>; Fri, 28 Aug 2020 04:13:49 -0700 (PDT)
Received: from [240.0.0.1] (unknown [111.194.45.61]) by mail-m127101.qiye.163.com (Hmail) with ESMTPA id 4CEA9464FE; Fri, 28 Aug 2020 19:13:46 +0800 (CST)
Content-Type: multipart/alternative; boundary="Apple-Mail-008F7646-2CA9-4B27-BE33-30B94F089410"
Content-Transfer-Encoding: 7bit
From: Aijun Wang <wangaijun@tsinghua.org.cn>
Mime-Version: 1.0 (1.0)
Date: Fri, 28 Aug 2020 19:13:45 +0800
Message-Id: <7255857C-9946-4853-BFCD-C4FB69CC1EA8@tsinghua.org.cn>
References: <CAOj+MMHFW+ZZkqNDycu16kC_SiSVPJdKRh42OUOnO5dGx+=q_Q@mail.gmail.com>
Cc: "Fomin, Sergey (Nokia - US/Mountain View)" <sergey.fomin@nokia.com>, idr <idr@ietf.org>
In-Reply-To: <CAOj+MMHFW+ZZkqNDycu16kC_SiSVPJdKRh42OUOnO5dGx+=q_Q@mail.gmail.com>
To: Robert Raszuk <robert@raszuk.net>
X-Mailer: iPhone Mail (17G68)
X-HM-Spam-Status: e1kfGhgUHx5ZQUpXWQgYFAkeWUFZS1VLWVdZKFlBSkxLS0o3V1ktWUFJV1 kPCRoVCBIfWUFZHU9LHhlDHU9OTB8aVkpOQkNNSkhJSU1PS0tVEwETFhoSFyQUDg9ZV1kWGg8SFR 0UWUFZT0tIVUpKS0hKTFVKS0tZBg++
X-HM-Sender-Digest: e1kMHhlZQR0aFwgeV1kSHx4VD1lBWUc6OAw6Kww*Ij8YPCoVAh8OAjoK LSMwCg9VSlVKTkJDTUpISUlNQ0lLVTMWGhIXVQwaFRwaEhEOFTsPCBIVHBMOGlUUCRxVGBVFWVdZ EgtZQVlKSkpVSkJPVU9OVU1KWVdZCAFZQUxMSk03Bg++
X-HM-Tid: 0a7434c6034d9865kuuu4cea9464fe
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/-R_o3LaXgL-FKRstN2eBvc72lmo>
Subject: Re: [Idr] New Version Notification for draft-wang-idr-rd-orf-03.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2020 11:13:54 -0000

Hi,Robert:

Aijun Wang
China Telecom

> On Aug 28, 2020, at 15:19, Robert Raszuk <robert@raszuk.net> wrote:
> 
> 
>> By day one design L3VPNs or L2VPNs are overloading all PEs to parse and drop all BGP updates which do not carry routes containing at least one intersecting RT.
>> 
>> [WAJ]  But until now, various filter policies for the unnecessary BGP updates has been added, do you agree?
>> 
> 
> There is a difference between "unnecessary" and those which are caused by wrong service deployment. 


[WAJ] Isn’t it better to release you from such risk?

> 
>> [WAJ] Yes, RD-ORF can also be used within the device, but push the policy to its upstream peer or final to the overwhelming source is better.
>> 
> 
> This is one of the biggest issue I have with this draft. ORF is not transitive and you are making it transitive (even if you pretend it is not). 

[WAJ]: As mentioned earlier, we have updated the draft to state clearly the RD-ORF is non-transitive. Such message will only be received by the overwhelming source when all the nodes along path decide to do such actions. These devices make their decision independently.

> 
> I am not against automated filtering (where it make sense), but if so pls do it correctly. Define a new SAFI just like we did with RTC, call it RDC (RD Constrained) and use it at your own risk to break VPNs in your network. 

[WAJ] Please consider also the inter-as scenarios together.
> 
> While there custom update generation especially based on more then one constraint has a high cost. You need to generate update per each such peer individually walking full vpnv4 table. Dropping is cheap. Replication is cheap. Keep this in mind pls so your vendor's implementation engineers have easy life :). 

[WAJ] There are works needs to be done before dropping the VPN routes. Isn’t such back pressure better than the devices do useless work?

> 
> Cheers,
> R.

v2.23.0 | Report a Bug | By Email