[Idr] Can draft-ietf-idr-tunnel-encaps-09 trigger tunnel creation before VPN is established?
Linda Dunbar <linda.dunbar@huawei.com> Fri, 29 June 2018 19:53 UTC
Return-Path: <linda.dunbar@huawei.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8359B129619; Fri, 29 Jun 2018 12:53:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.19
X-Spam-Level:
X-Spam-Status: No, score=-4.19 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E9CLK4Sumzbq; Fri, 29 Jun 2018 12:53:51 -0700 (PDT)
Received: from huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ADAB812872C; Fri, 29 Jun 2018 12:53:50 -0700 (PDT)
Received: from lhreml704-cah.china.huawei.com (unknown [172.18.7.107]) by Forcepoint Email with ESMTP id CBE10D992354F; Fri, 29 Jun 2018 20:53:45 +0100 (IST)
Received: from SJCEML703-CHM.china.huawei.com (10.208.112.39) by lhreml704-cah.china.huawei.com (10.201.108.45) with Microsoft SMTP Server (TLS) id 14.3.382.0; Fri, 29 Jun 2018 20:53:47 +0100
Received: from SJCEML521-MBS.china.huawei.com ([169.254.2.90]) by SJCEML703-CHM.china.huawei.com ([169.254.5.104]) with mapi id 14.03.0382.000; Fri, 29 Jun 2018 12:53:41 -0700
From: Linda Dunbar <linda.dunbar@huawei.com>
To: Eric C Rosen <erosen@juniper.net>, "idr@ietf.org" <idr@ietf.org>, "pmohapat@cisco.com" <pmohapat@cisco.com>, "erosen@cisco.com" <erosen@cisco.com>, "draft-ietf-idr-tunnel-encaps@ietf.org" <draft-ietf-idr-tunnel-encaps@ietf.org>
Thread-Topic: Can draft-ietf-idr-tunnel-encaps-09 trigger tunnel creation before VPN is established?
Thread-Index: AdQP4pLSUTiJtgZ0T2iFwv1MicSf4w==
Date: Fri, 29 Jun 2018 19:53:40 +0000
Message-ID: <4A95BA014132FF49AE685FAB4B9F17F66B07659B@sjceml521-mbs.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.192.11.89]
Content-Type: multipart/related; boundary="_005_4A95BA014132FF49AE685FAB4B9F17F66B07659Bsjceml521mbschi_"; type="multipart/alternative"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/3kGKcE790dzFrBI3SEzOPcoDXTk>
Subject: [Idr] Can draft-ietf-idr-tunnel-encaps-09 trigger tunnel creation before VPN is established?
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Jun 2018 19:53:55 -0000
Eric, Thank you very much for the reply. Can draft-ietf-idr-tunnel-encaps-09 trigger tunnel creation before VPN is established? For example, having RR sending down the Encap extended community to both end points of a tunnel? Instead of tunnel's one end point to send to others? Thank you very much. Linda Dunbar From: Eric C Rosen [mailto:erosen@juniper.net] Sent: Tuesday, June 26, 2018 2:28 PM To: Linda Dunbar <linda.dunbar@huawei.com>; idr@ietf.org; pmohapat@cisco.com; erosen@cisco.com Subject: Re: [Idr] Questions to RFC5512: Encapsulation sub-TLV and Opaque extended community to indicate the Encapsulation protocol? I think it would be better if you looked at draft-ietf-idr-tunnel-encaps instead of RFC 5512. The draft has passed WG LC, and if it ever gets sent to the IESG, it will obsolete RFC 5512. On 6/26/2018 1:56 PM, Linda Dunbar wrote: BGP experts: If the RFC5512 has "distinguished SAFI value" and "the Encapsulation SAFI". Do those two terms have the same meaning? The Section 3 of RFC5512 has SAFI value of 7 to represent Encapsulation SAFI. Does it mean that the "distinguished SAFI value" is just "7" for speaker to advertise its supported Tunnel information? Yes, per RFC 5512 the Tunnel Encapsulation attribute can only be carried on UPDATEs of SAFI 7. Draft-ietf-idr-tunnel-encaps deprecates this SAFI, and explicitly allows the Tunnel Encapsulation attribute to be carried on UPDATEs whose AFI/SAFI is 1/1, 1/4, 2/4, 1/128, 2/128, and 25/70. Use of the attribute on other AFI/SAFIs is outside the scope of the draft. The Section 4 goes on defining the Tunnel Encapsulation Type (such as L2TPv3 with Type =1; etc), and a list of sub-TLVs, one of the SubTLV is Protocol Type (section 4.2) which can be used to represent the Encapsulation Protocol (i.e. protocol type of data frames carried by the tunnel) Just to be clear, the Protocol Type sub-TLV identifies the protocol type of the payload. If a Protocol Type sub-TLV identifying "IPv4" appears inside a Tunnel Type of "GRE", the meaning is that IPv4 packets may be carried inside a GRE tunnel. Why need the Opaque extended community to indicate the Encapsulation protocol? [cid:image001.png@01D40FB8.F71AE100] [cid:image002.png@01D40FB8.F71AE100] Well, the argument was "I just want to indicate that packets directed to a given prefix need to be encapsulated in GRE. I don't want to have to use a new SAFI to say that, all it takes is putting a community on the UPDATE that mentions that prefix in its NLRI". That's fine as long as you don't want to convey any additional information about how to construct the encapsulation. In practice, people have invented additional extended communities to carry information that should have been carried in the Tunnel Encapsulation attribute, in order to avoid the use of SAFI 7. This extended community is not really necessary when draft-ietf-idr-tunnel-encaps is used, but it is preserved for backwards compatibility purposes; see section 4.5 of that draft.
- [Idr] Can draft-ietf-idr-tunnel-encaps-09 trigger… Linda Dunbar