IETF Logo Mail Archive

Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

"Jakob Heitz (jheitz)" <jheitz@cisco.com> Thu, 10 February 2022 20:56 UTC

Return-Path: <jheitz@cisco.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE4083A1179 for <idr@ietfa.amsl.com>; Thu, 10 Feb 2022 12:56:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.485
X-Spam-Level:
X-Spam-Status: No, score=-9.485 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=h+SIv67p; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=snsOrXyU
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VrGbbFjAw6o2 for <idr@ietfa.amsl.com>; Thu, 10 Feb 2022 12:56:24 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 907753A1157 for <idr@ietf.org>; Thu, 10 Feb 2022 12:56:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=110170; q=dns/txt; s=iport; t=1644526584; x=1645736184; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=gxFp2O5E/A0ftTO2HEvmSmVDEUThD737wfXloMyREkw=; b=h+SIv67pHsdjoSpn6FQ10nQ5BUFnNxNcWInILr098CEUo9qiLqNzvqcV 60urtjc7dgJWpLLXeAZGtw3D8PDzQK0I6HIZd9cmRRLu+NbmrBOI3pC93 DqNHg9s6cF3+n6Ey/HanWg8KEBfj9AM2sUxZ5aEwZFvdvGG9zefAsGI2e M=;
IronPort-PHdr: A9a23:AV9pGhCvPQOvvyxI8oQlUyQVaBdPi9zP1kY95pkmjudIdaKut9TnMVfE7PpgxFnOQc3A6v1ChuaX1sKoWWEJ7Zub9nxXdptKWkwJjMwMlFkmB8iIQUTwMP/taXk8G8JPHF9o9n22Kw5bAsH7MlbTuXa1qzUVH0aXCA==
IronPort-Data: A9a23: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
IronPort-HdrOrdr: A9a23:2RRXK6GHIJ2wBLyBpLqFRJHXdLJyesId70hD6qkvc31om52j+fxGws516fatskdvZJkh8erwX5VoMkmsi6KdgLNhc4tKOTOHhILGFvAY0WKP+UyEJ8S6zJ8g6U4CSdk+NDSTNykBsS+S2mDReLxMrKjlgcKVbKXlvgpQpGpRGsddBnJCe36m+zpNNXB77PQCZf6hz/sCgwDlVWUcb8y9CHVAdfPEvcf3mJXvZgNDLwI76SGV5AnYqILSIly95FMzQjlPybAt/SzuiAri/JiutPm911v1y3LT1ZJLg9Hso+EzR/Bky/JlaAkEuDzYILiJaIfy+wzdZ9vfrmrCpeO85ivI+f4Dsk85MFvF+ScFkDOQoQrGo0WSuWNwx0GT+vAQgFkBepd8bUUzSGqC16NohqAO7Itbm22erJZZFhXGgWD04MXJTQhjkg6urWMlivN7tQ0TbWIyUs4bkWUkxjIeLH7AJlOM1Kk3VO11SM3M7vdfdl2XK3jfo2l02dSpGnA+BA2PTEQOstGcl2E+pgE382IIgMgE2nsQ/pM0TJdJo+zCL6RzjblLCssbd7h0CusNSda+TmbNXRXPOmSPJkmPLtBKB1vd75rspLkl7uCjf5IFiJM0hZTaSVtd8XU/fkr/YPf+lKGjMiq9CVlVcQ6dv/221qIJzIEUHoCbQxFrYGpe5/ednw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: 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
X-IronPort-AV: E=Sophos;i="5.88,333,1635206400"; d="scan'208,217";a="724886201"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 10 Feb 2022 20:56:22 +0000
Received: from mail.cisco.com (xbe-rcd-004.cisco.com [173.37.102.19]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id 21AKuKij014603 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Thu, 10 Feb 2022 20:56:20 GMT
Received: from xfe-aln-001.cisco.com (173.37.135.121) by xbe-rcd-004.cisco.com (173.37.102.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Thu, 10 Feb 2022 14:56:20 -0600
Received: from xfe-aln-003.cisco.com (173.37.135.123) by xfe-aln-001.cisco.com (173.37.135.121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Thu, 10 Feb 2022 14:56:19 -0600
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-003.cisco.com (173.37.135.123) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14 via Frontend Transport; Thu, 10 Feb 2022 14:56:19 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ENRVuGKZ+xhcKsAPLCY4MbBlxhSpYF4uu9Fup6ZePqzH03jxbe/EB+ezGkDEoVqRuYNqvEBUZTVPacHNhR0KtiiFpmfVFKQJgGCxTY78BJPIi5ibs3DKIPvsBozRxXXRXCC4I/F4Cj1PIn5ivjd0IURJ3cs9nhSOaXnuLtj+SWbSVtss7VK+fxpRFiYvAdzJPTfh5ZyGr2zpl5ooO1I2DAz3tPB20ktOQ51Icw0btcFJvLPQPBsVMzNL6aL5BFYDQHoglNVNhOLsrHmwpkzbtPut8Vjf0Z+jRAKDAmmAKrGSZlv5f0Pyt/LpGfGm7wSwRMDGkvK/E3C7V8N+X9QPtg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=gxFp2O5E/A0ftTO2HEvmSmVDEUThD737wfXloMyREkw=; b=NtxEw5MPE2InxwfTZ3+3Lhcn/rD9cPsriRwCGaJOG2Dns1kmiMAHcvxN7j4XmN8uYXeubWvUfSV/Oxy3pfvn6h8fi8oaCrgk/cZFTkzu7OrOK4T+XodcAg1KWXp6VEbD6Rdsd0BktELr2w6T5CAfkwJ/zgJ2oM+v4TRxm68i7jVi4LwvM7wtKZ7k6D+lF/WT1i9B2aOeBsXBmt7pkKx63UVNOZNQwdXIaoUus6UNVIQCSum/CRrY3f0vXlZUL9VGJ63oD4LRG1BNMFZUzDuKX4JhMIpUqpVZ0/yvc65JmxuMqdkr8lMVCkuGK7U1xP05YIiZJoTAN8BljpcXlhM9ng==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gxFp2O5E/A0ftTO2HEvmSmVDEUThD737wfXloMyREkw=; b=snsOrXyUxTzorrDiEjuBoiPBOq7DqR6xtF0P7X/bJsKNguL6/ecCXQmDVd4lFn1br0U94/+lPllhYfZ1fzAVkMJEURVYAph3yn/LRkIjwQay0+mzIUIyvKYr5mjm0mjlArk0Avxaj2Nc1YqVij1j9q7NFqu9mt4GxY6xnNmPgE4=
Received: from BYAPR11MB3207.namprd11.prod.outlook.com (2603:10b6:a03:7c::14) by MN2PR11MB3662.namprd11.prod.outlook.com (2603:10b6:208:ee::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4975.12; Thu, 10 Feb 2022 20:56:17 +0000
Received: from BYAPR11MB3207.namprd11.prod.outlook.com ([fe80::9977:f8a0:e268:24f5]) by BYAPR11MB3207.namprd11.prod.outlook.com ([fe80::9977:f8a0:e268:24f5%6]) with mapi id 15.20.4951.018; Thu, 10 Feb 2022 20:56:17 +0000
From: "Jakob Heitz (jheitz)" <jheitz@cisco.com>
To: Robert Raszuk <robert@raszuk.net>
CC: Gyan Mishra <hayabusagsm@gmail.com>, "UTTARO, JAMES" <ju1738@att.com>, "idr@ietf.org" <idr@ietf.org>, "lizhenqiang@chinamobile.com" <lizhenqiang@chinamobile.com>, Susan Hares <shares@ndzh.com>
Thread-Topic: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)
Thread-Index: AQHYHZ2NBy59lh0M8EKZSDBLk6Bc3KyLG9gAgAAEDgCAABgdgIAAIrJDgAAJD4CAAK2BAIAAM1SAgABnIoCAAGy7AIAAAq2AgAAR4yCAABRjAIAAAOHQ
Date: Thu, 10 Feb 2022 20:56:17 +0000
Message-ID: <BYAPR11MB3207796EFFB4613B1B6B1DB1C02F9@BYAPR11MB3207.namprd11.prod.outlook.com>
References: <MW4PR02MB739496155700F87147654DDFC62E9@MW4PR02MB7394.namprd02.prod.outlook.com> <034D9AF5-22F2-45CE-A6DB-2930B1F5BC1F@tsinghua.org.cn> <MW4PR02MB7394DB1B6B1F92A381009BC6C62E9@MW4PR02MB7394.namprd02.prod.outlook.com> <2022020923363322837715@chinamobile.com> <MW4PR02MB7394D2DACEB6CBE499C2F8FEC62E9@MW4PR02MB7394.namprd02.prod.outlook.com> <00c701d81e26$40907870$c1b16950$@tsinghua.org.cn> <CABNhwV1AWsyxeWV5DCtAUqQaiU+P-czgkwe+MfbK59or7ArF-Q@mail.gmail.com> <MW4PR02MB739426019CD439F6471A43DFC62F9@MW4PR02MB7394.namprd02.prod.outlook.com> <CABNhwV1+3JeDYprXmphUS0Tz=nN4H9Qn-GtVadeptU=d37JmPA@mail.gmail.com> <CABNhwV2VpTp9p_gD5JTc+6SrUALFVDJH=wHhMEPThCEzz9A7WQ@mail.gmail.com> <BYAPR11MB32072588178655F57419B087C02F9@BYAPR11MB3207.namprd11.prod.outlook.com> <CAOj+MMEBiE_OU=GGBXtxLJK4oNvNDF_BZChykeUVqPk0XYH78A@mail.gmail.com>
In-Reply-To: <CAOj+MMEBiE_OU=GGBXtxLJK4oNvNDF_BZChykeUVqPk0XYH78A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8a8b0316-0a38-4af7-77fd-08d9ecd7c85e
x-ms-traffictypediagnostic: MN2PR11MB3662:EE_
x-microsoft-antispam-prvs: <MN2PR11MB36627B04254A32A4951439E4C02F9@MN2PR11MB3662.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:5516;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB3207.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(186003)(83380400001)(40140700001)(66574015)(71200400001)(122000001)(2906002)(53546011)(166002)(7696005)(6916009)(76116006)(52536014)(45080400002)(508600001)(55016003)(33656002)(38100700002)(966005)(38070700005)(316002)(54906003)(6506007)(66476007)(5660300002)(9686003)(66946007)(66446008)(66556008)(86362001)(30864003)(4326008)(8936002)(8676002)(64756008)(559001)(579004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BYAPR11MB3207796EFFB4613B1B6B1DB1C02F9BYAPR11MB3207namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB3207.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8a8b0316-0a38-4af7-77fd-08d9ecd7c85e
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Feb 2022 20:56:17.1987 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fGD0xn22zZvEmcolD2cr14Al6eTAkJFYFu5fHUeI6eUqWST5r4HEmNL65AtNmoxJ9D8t3WY2/v9xKA5cC9l+AQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3662
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.19, xbe-rcd-004.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/2OspHawsN1VRJqHqZ9l86HAQENs>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Feb 2022 20:56:32 -0000

The reality here is that someone leaks the GRT into his VPN.
PE3 may prefer to filter that GRT and carry on anyway, because the real routes are important.
PE2 doesn't care and kicks him out.
Still, it's important that the PE1 operator knows.
If we think the existing network monitoring tools are enough, then I'm fine with it.

The other thing is that (contrary to the claims in the draft),
https://datatracker.ietf.org/doc/html/rfc5292 can do this ORF already.
RFC5292 says nothing about configuration of the feature.
Configuration of the feature is not an interoperability issue,
therefore it's not covered in an RFC.
This draft amounts to a feature request of a router vendor.
The IETF should not be used to submit feature requests.

Regards,
Jakob.

From: Robert Raszuk <robert@raszuk.net>
Sent: Thursday, February 10, 2022 12:40 PM
To: Jakob Heitz (jheitz) <jheitz@cisco.com>
Cc: Gyan Mishra <hayabusagsm@gmail.com>; UTTARO, JAMES <ju1738@att.com>; idr@ietf.org; lizhenqiang@chinamobile.com; Susan Hares <shares@ndzh.com>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

Hey Jakob,

Happy Birthday !

> I would be happy to support a new message in BGP (possibly attached
> to a REFRESH message) to achieve a good solution.

When I wrote last paragraph I was thinking about the same - but stopped upon two issues:

a) can not find any advantage on signalling this inband vs out of band (ie via mgmt channel including NNI mgmt)

b) what is PE1 supposed to do if as you say the very same routes are working fine on PE3 and just PE2 has issues ? PE1 can not shut the session to CE, PE1 can not stop sending them to RR etc ... so what's the point ?

I was even crazy enough to think that maybe we could stuff Flowspec v2 with such message, but again (a) won again.

Best,
R.






On Thu, Feb 10, 2022 at 9:27 PM Jakob Heitz (jheitz) <jheitz=40cisco.com@dmarc.ietf.org<mailto:40cisco.com@dmarc.ietf.org>> wrote:
Good problem.
Bad solution.

Consider an originator PE, PE1, an RR and two receiving PEs, PE2, PE3.

PE1----RR----PE2
        |
        +----PE3

PE1 sends the routes. PE2 hits a limit, but PE3 does not.
The RR I have drawn may be multiple RRs, a confederation or even a multi AS network.
PE2 should do some combination of the following:
- drop the routes from PE1,
- accept no more routes from PE1 (may cause loops)
- send a notification to PE1.
In particular, RR must not block routes from PE1, because PE3 still wants them.

An ORF does not satisfy the above.
I would be happy to support a new message in BGP (possibly attached to a REFRESH message) to achieve a good solution.

Regards,
Jakob.

From: Idr <idr-bounces@ietf.org<mailto:idr-bounces@ietf.org>> On Behalf Of Gyan Mishra
Sent: Thursday, February 10, 2022 10:23 AM
To: UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>>
Cc: idr@ietf.org<mailto:idr@ietf.org>; Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)


Verizon has had this issue with the rogue PE and the workaround is to set the maximum prefix high as well as per VPN maximum prefix but then that allows the flood to occur and defeats the purpose of maximum prefix to manage resources.  So it’s an industry wide known problem but just had not been brought to light until this draft.

Kind Regards

Gyan

On Thu, Feb 10, 2022 at 1:13 PM Gyan Mishra <hayabusagsm@gmail.com<mailto:hayabusagsm@gmail.com>> wrote:
Jim

The draft focuses on both EVPN and IP VPN as in scope to the draft as Aijun mentioned.

What I was mentioning was the scenario with China Telecom and the other two providers related to their specific use case being EVPN related however this solution applies to both EVPN and IP VPN.  I believe they may had IP VPN issues as well as the issue as described below can be problematic and impact any operator.  This is not an operations or design issue.

The solution provides granularity to filter on the source PE flooding excessive routes which could be EVPN or IP VPN.  The PE does not have to be a weak PE and could be any PE with plenty of memory and CPU as well.

The Crux of issue is the flood of unwanted routes by a rogue PE sourcing the unwanted flooding of RT-2 or IP prefix flooding.

**  If the PE-CE maximum prefix threshold and per VPN maximum prefix threshold gets hit due to the flood of routes now that impacts the legitimate valid RT-2 or IP prefixes.  As a result all customers could be impacted that are part of the VPN or MAC VRF. So that’s the major issue this draft is solving in trying to clamp down and squash the offending rogue PE**. I mentioned this before that if you set the maximum prefix high or to the maximum you might as well not set it as it’s not helpful in the prevention of flood of routes.   You can think of this like a DDOS attack by a rogue PE impacting all customers that are part of the VPN importing the RT.

The issue with weak PE or PE being overwhelmed with the flood of routes as well is an issue and this draft addresses any of those possible scenarios.


I mentioned EVPN  RT-2 as you may have 1000s of MAC/IP routes depending on how flat your subnet is per RT-5 so the numbers go up pretty quickly and easy to flood.  Also with

The issue is worse inter-as options b as all RTs have to be accepted with knob retain-rt-all on inter-as PE ASBR for option-b and RTs cannot be filtered on RR for option-c same issue for both EVPN and IP VPN.

The draft discusses why existing mechanisms PE-CE maximum prefix and per VPN maximum prefix does not help this issue.

Kind Regards

Gyan

On Thu, Feb 10, 2022 at 6:44 AM UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>> wrote:
Gyan,

              So, the draft is targeted to a future where network services migrate to SRV6/EVPN, not a lack of functionality in the current set of tools for existing networks except in the case of China Mobile ( I would like to understand what is unique in this network that is driving this ask ). If that is the case then the draft should focus on the deficiencies of the current tool set for these FOUs. Not sure I get the statement in re RT-2 EVPN routes, is a distinction being made between these and let’s say RT-5?

Thanks,
              Jim Uttaro

From: Gyan Mishra <hayabusagsm@gmail.com<mailto:hayabusagsm@gmail.com>>
Sent: Thursday, February 10, 2022 12:35 AM
To: Aijun Wang <wangaijun@tsinghua.org.cn<mailto:wangaijun@tsinghua.org.cn>>
Cc: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>>; idr@ietf.org<mailto:idr@ietf.org>; lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

Hi Jim

I don’t think there are many SRv6 deployments worldwide and I believe China is one of the leaders on proliferation of IPV6 by operators  as well as now SRv6.

Most operators around the world have large IPv4 backbones and it will take time to migrate.

So as Aijun is stating as more operators deploy SRv6 / EVPN and have inter-as EVPN and  with SR-TE it makes it so easy stretch EVPNs so you end up with these cases.

The issue I believe is with  EVPN Type 2 route flood inter-as and not IP VPN prefixes.

Aijun

Is that correct ?

Kind Regards

Gyan

On Wed, Feb 9, 2022 at 9:31 PM Aijun Wang <wangaijun@tsinghua.org.cn<mailto:wangaijun@tsinghua.org.cn>> wrote:
Hi, Jim:
Actually, draft https://datatracker.ietf.org/doc/html/draft-wang-idr-vpn-routes-control-analysis/<https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/html/draft-wang-idr-vpn-routes-control-analysis/__;!!BhdT!2fA_b9k4tDNDtZyioqm3O8hinKjqjXnzYV1IMVwk7WZuJsfddfyj_cAYW_od73I$> describes more possible scenarios for the potential VPN prefixes overflow.
With the trending/deployment of EVPN/SRv6 technologies, such problems will be emerged  inevitably because it is more easy to deploy the inter-AS VPN services.
Even for the intra-AS scenario, as that discussed in the current draft, it is possible for the misconfiguration, or misbehavior of PE; or the increase of VPN prefixes in one VRF crashes some PEs in the network and influences other existing VPN services on such PEs.

VPN Prefix ORF mechanism gives us the capabilities to isolate the problem per VRF, not per BGP session, or per PE.
For standard activity, we should look forward to the trend, not only focus on the current status/experiences.

And, there are at least three operators that have widespread networks have interested in the solution, I think it will also benefit your service deployment in future.

Best Regards

Aijun Wang
China Telecom

From: UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>>
Sent: Thursday, February 10, 2022 12:10 AM
To: lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>; Aijun Wang <wangaijun@tsinghua.org.cn<mailto:wangaijun@tsinghua.org.cn>>
Cc: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; idr@ietf.org<mailto:idr@ietf.org>
Subject: RE: RE: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

Comments In-Line

Thanks,
              Jim Uttaro

Here is the thread..

This draft is trying to solve problems existing in networks today.
[Jim U>] Have you canvassed operators? I would be interested in the “problems” that have been identified in networks today. Pls provide data and not conjecture.
[LZQ] Is what you said conjected? If not, I believe this is a real problem. And by the way, I am from China Mobile, an operator, I don't need to canvass other operators.

I understood your first statement as indicating more than just the China Mobile Network. If this work is directed towards an industry wide problem than you should canvass to see if other operators require this specification.  You may be experiencing this problem on your network due to the architecture/design of your network. Feel free to reach out to others who do not seem to be experiencing your networks problem to better understand why this draft is unnecessary..



From: lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com> <lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>>
Sent: Wednesday, February 9, 2022 10:37 AM
To: UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>>; Aijun Wang <wangaijun@tsinghua.org.cn<mailto:wangaijun@tsinghua.org.cn>>
Cc: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; idr@ietf.org<mailto:idr@ietf.org>
Subject: Re: RE: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

Comments in-line beginning with [LZQ]

________________________________
Best Regards,
Zhenqiang Li
lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>

From: UTTARO, JAMES<mailto:ju1738@att.com>
Date: 2022-02-09 21:33
To: Aijun Wang<mailto:wangaijun@tsinghua.org.cn>
CC: lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>; Hares<mailto:shares@ndzh.com>; idr@ietf.org<mailto:idr@ietf.org>
Subject: RE: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)
Comments In-Line

Thanks,
              Jim Uttaro

From: Aijun Wang <wangaijun@tsinghua.org.cn<mailto:wangaijun@tsinghua.org.cn>>
Sent: Wednesday, February 9, 2022 7:07 AM
To: UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>>
Cc: lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>; Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; idr@ietf.org<mailto:idr@ietf.org>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

Hi, Jim:
Currently, we depended only the “maximum prefixes limit” on the PE router, so when the VPN routes surpasses the threshold, the BGP sessions with the peer will be broken.
[Jim U>] Not true. Additional routing state will be throttled. There is a notification setting and a threshold setting. The only time this was encountered was when a customer mistakenly re-distributed the GRT into their VPN. They were actually quite appreciative of our notification as it helped them quickly isolate the problem and fix it.
[LZQ] Is what you said conjected? If not, I believe this is a real problem. And by the way, I am from China Mobile, an operator, I don't need to canvass other operators.


It will influence all the VRFs that shares within the BGP sessions.
[Jim U>] What does this mean? Is this specific to Option B?
Haven’t you encountered such problems in your network?
[Jim U>] No.
We are trying to find the better solution than the current tools.
[Jim U>] Not required.
Aijun Wang
China Telecom

在 2022年2月9日,19:54,UTTARO, JAMES <ju1738@att.com<mailto:ju1738@att.com>> 写道:

Comments In-Line..

Thanks,
              Jim Uttaro

From: Idr <idr-bounces@ietf.org<mailto:idr-bounces@ietf.org>> On Behalf Of lizhenqiang@chinamobile.com<mailto:lizhenqiang@chinamobile.com>
Sent: Wednesday, February 9, 2022 5:13 AM
To: Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; idr@ietf.org<mailto:idr@ietf.org>
Subject: Re: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)

This draft is trying to solve problems existing in networks today.
[Jim U>] Have you canvassed operators? I would be interested in the “problems” that have been identified in networks today. Pls provide data and not conjecture.
For the solution, I think it is difficult for the receiving router to decide which PE should be blocked when its VRF routes reach a threshould. Why not block any PE sending routes to the overflowing VRF?

________________________________
Best Regards,
Zhenqiang Li

li_zhenqiang@hotmail.com<mailto:li_zhenqiang@hotmail.com>

From: Susan Hares<mailto:shares@ndzh.com>
Date: 2022-02-04 20:39
To: idr@ietf.org<mailto:idr@ietf.org>
Subject: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt- Adoption call (2/4/2022 to 2/18/2022)
Resending the adoption call – with the appropriate header

From: Idr [mailto:idr-bounces@ietf.org] On Behalf Of Susan Hares
Sent: Friday, February 4, 2022 7:33 AM
To: idr@ietf.org<mailto:idr@ietf.org>
Subject: [Idr] draft-wang-idr-vpn-prefix-orf-00.txt : (2/4/2022 to 2/18/2022)

This begins a 2 week WG adoption call  for
draft-wang-idr-vpn-prefix-orf-00.txt
https://datatracker.ietf.org/doc/draft-wang-idr-vpn-prefix-orf<https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/draft-wang-idr-vpn-prefix-orf__;!!BhdT!yPUYUuirQ1P6jY-6LfD7vJRLsQR3n8-cWzq-Id3eLmvKj3ISHGjnW-6e6po$>.

In your discussion on adoption, please consider the following questions:

1) Does this draft describe problems existing in networks today?

2) Does the solution describe address these problems?
The solution has both a general solution and BGP encodings.

3) Would the solution be useful in networks today?

Thank you, Susan Hares
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr<https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/idr__;!!BhdT!z587vpWgIAY6_KETP44Fo8e1ZASFQCIfEodjzi5G17QCO0dTApqL8DQmB0y2p3Q$>
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr<https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/idr__;!!BhdT!2fA_b9k4tDNDtZyioqm3O8hinKjqjXnzYV1IMVwk7WZuJsfddfyj_cAYXaxyV6I$>
--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<https://urldefense.com/v3/__http:/www.verizon.com/__;!!BhdT!2fA_b9k4tDNDtZyioqm3O8hinKjqjXnzYV1IMVwk7WZuJsfddfyj_cAYuAfegQY$>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<http://www.verizon.com/>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<http://www.verizon.com/>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email