IETF Logo Mail Archive

Re: [Idr] WGLC on draft-ietf-idr-as-private-reservation-00

David Farmer <farmer@umn.edu> Tue, 11 December 2012 01:06 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F23D21F870F for <idr@ietfa.amsl.com>; Mon, 10 Dec 2012 17:06:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hs1CBQU9ruz0 for <idr@ietfa.amsl.com>; Mon, 10 Dec 2012 17:06:03 -0800 (PST)
Received: from vs-w.tc.umn.edu (vs-w.tc.umn.edu [134.84.135.88]) by ietfa.amsl.com (Postfix) with ESMTP id 84F4921F870E for <idr@ietf.org>; Mon, 10 Dec 2012 17:06:02 -0800 (PST)
Received: from mail-oa0-f70.google.com (mail-oa0-f70.google.com [209.85.219.70]) by vs-w.tc.umn.edu (UMN smtpd) with ESMTP for <idr@ietf.org>; Mon, 10 Dec 2012 19:05:52 -0600 (CST)
X-Umn-Remote-Mta: [N] mail-oa0-f70.google.com [209.85.219.70] #+LO+TR
X-Umn-Classification: local
Received: by mail-oa0-f70.google.com with SMTP id k14so17208827oag.9 for <idr@ietf.org>; Mon, 10 Dec 2012 17:05:51 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding :x-gm-message-state; bh=opieea8gX/pyWDyA4yDInTLkpshCReTYKjGVGvBJqFQ=; b=SLHTAdMdpsxcbM9z5wYrxdK7gwF9hnjWok3HhNr1gVgBSDfwUB3YmriTwYdVSJgVP3 KWSMLqscjRw60GruzACjTaFa/X+ro0I/oPCnlxD+qP1xKxdM2gqNFvxJqEHtC85fXZw/ 9jmBcZ/0LRK+EdDiuz5aD3Ztu3DbF5JjXRRVwGn9dkbY3+jcpBbdxNDasFH+czysbe4A 9zz9vTJiZDVzWj3kVv4cwFHzHDHwN/NaLAVDjMQMnFm7z8b/74lJIvrfYsLrykWsoG+c Ra1qRQgqOfqNk96Y5459yGtEAiZ9VDJ357CbsuoFVODM98ha7kkyug5zr0VHoGgv1Oae YnOg==
Received: by 10.50.194.132 with SMTP id hw4mr8514354igc.37.1355187951748; Mon, 10 Dec 2012 17:05:51 -0800 (PST)
Received: by 10.50.194.132 with SMTP id hw4mr8514353igc.37.1355187951623; Mon, 10 Dec 2012 17:05:51 -0800 (PST)
Received: from x-128-101-232-153.uofm-secure.wireless.umn.edu ([2607:ea00:104:2000:4037:65e9:fe88:a5e]) by mx.google.com with ESMTPS id yf6sm8192597igb.0.2012.12.10.17.05.50 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 10 Dec 2012 17:05:50 -0800 (PST)
Message-ID: <50C686F3.9030100@umn.edu>
Date: Mon, 10 Dec 2012 19:05:55 -0600
From: David Farmer <farmer@umn.edu>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:16.0) Gecko/20121026 Thunderbird/16.0.2
MIME-Version: 1.0
To: Jon Mitchell <jrmitche@puck.nether.net>
References: <CAL9jLaZdX_jem0JdSGHzuhc3GDZXMDR0kvMKq5xr3D-EWYbNVQ@mail.gmail.com> <CA+b+ER=rL6WAMuu5cJUQk94ObUrhKKgmiNuxRhMGJbavCg6S3A@mail.gmail.com> <CAL9jLaa27PZwa+fj_okSHTjjnxQeR8q67Nb5V0aYKOBbqcHtjQ@mail.gmail.com> <CA+b+ERnBAOU5sbtjnPcfzmw2ieu7UPEXWbGCpsY=5hcfSUToFg@mail.gmail.com> <CAL9jLab4WZa-QA2pwhD7cuCk8iNca3xSUeJkQDxJyy4dS37WSg@mail.gmail.com> <9DCD1872-F11D-4B08-9B0B-834C05D7D0FF@tony.li> <m2pq2uzl2i.wl%randy@psg.com> <FCB6E858-F190-46AF-8BA5-F4C92F590505@tony.li> <m2ehjazgmg.wl%randy@psg.com> <50B986F2.5060405@umn.edu> <20121210225019.GA24937@puck.nether.net>
In-Reply-To: <20121210225019.GA24937@puck.nether.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Gm-Message-State: ALoCoQlyAqwOlfBIfUZzNa0c+TmgRsEzfjVyCqjwKq+Kgo5PSMyRe+iaXJU/e1zEGsmlsY7ZyYUp1O2KKWm6lKzFjtZLgKAoGS1jRP6AR1gHp8SfjPNBErmLb9uBdiTjDLzDSG518mA6
Cc: Tony Li <tony.li@tony.li>, idr wg <idr@ietf.org>
Subject: Re: [Idr] WGLC on draft-ietf-idr-as-private-reservation-00
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Dec 2012 01:06:04 -0000

On 12/10/12 16:50 , Jon Mitchell wrote:
>
> David / Randy - thoughts inline...
>
...
>>> update the draft to make these arguments, i will support it, and i
>>> suspect other dissidents will as well.
>
> Actually Randy, to be fair, I think a number of dissendents will not
> over a philosophical objection to private use space, and I'm quite
> shocked at this development since previously I asked you specifically if
> there was anything in the wording that could be changed that would allow
> you to support it and you declined.  Trying to do a neutral re-reading
> of the draft (I think you naturally read it from an ISP providing
> Internet access point of view), I see the last sentence in the
> introduction which was meant to be a broad statement on why BGP has
> proliferated to so many organizations (which includes provider
> redundancy) could be confused to be meaning that "provider assigned asn"
> is the target of this draft.  In a general sense, I'd rather expose any
> issues with private use asns and then allow operators to make their own
> problems in so much as they don't affect others unnecessarily which you
> seem to agree with.  I'd be willing to delete that line if you think
> appropriate?
>
>>
>> In the first paragraph of the introduction there is already a
>> reference to BGP/MPLS IP VPNs [RFC4364], do you want Data Centers
>> explicitly added with reference to
>> draft-lapukhov-bgp-routing-large-dc too?  Are there other references
>
> Brian - As much as marketing is important, I don't think including a
> reference a draft that we haven't yet found a home for that documents
> Microsoft use of BGP within some DC's is a good idea for something that
> applies generically to multiple sites within a single organization.  I
> think many can agree they have seen DC's be in a seperate AS
> (public/private/confed) than the core networks which attach them, I have
> seen this as a normal configuration in multiple networks over the last
> 12 years personally....  I unfortunatley tried to capture this as large
> content providers and may have more generically said DC operators
> (either within or between DC's where they determine the connectivity),
> but I don't think one sentence in the introduction is worth re-opening
> the draft text during WGLC.  I'd be open to considering this past WGLC
> as a minor change however, along with striking the last sentence of the
> introduction if you both think this is appropriate.

In the introduction I believe you do a good job motivating that the uses 
of BGP have expanded significantly since RFC 1930 and this is what 
justifies the expansion.  I'm including the relevant text from the draft;

    ... Since the time when that range was
    reserved, BGP has seen much wider deployment in service provider,
    enterprise and content provider networks.  The places in these
    networks where private use ASNs are in use include networks that are
    attached to the Internet, utilizing implementation specific features
    to remove them upon advertisement to Internet peers, and networks
    that are not attached to the Internet.  The displacement of Frame
    Relay and ATM based VPNs by BGP/MPLS IP VPNs [RFC4364] has also
    increased the deployment of BGP to a larger number of sites,
    especially in networks with requirements for multi-homing or provider
    redundancy.

But I will note that large scale data center use of BGP is not 
explicitly mentioned, maybe it should be added, at least as another 
anticipated use case of more than 1023 ASNs within a single private use 
ASN domain, with or without a reference to the aforementioned draft. 
But, this is the only draft or RFC that I can find that explicitly 
motivates the need for more that 1023 private use ASNs, so not including 
the draft weakens the argument for why we need more that 1023 ASNs, in 
fact I would suggest explicitly referencing section 7.2.2 of the draft 
where the issue is discussed.

Also, I suggest including that BGP/MPLS IP VPNs [RFC4364] for 
enterprises with more than 1023 sites can't use the fairly common 
practice of assigning a private use ASN per site, and is another use 
case for more that 1023 private use ASNs.  A similar example is a large 
private BGP cloud, not necessarily using MBGP, with fairly complicated 
internal routing policy amongst a large number of sites.

I guess what I'm trying to get at is; You should add specific examples 
of where the current 1023 private use ASNs are not enough, to help 
motivate why more are needed.  This is not to say where private use ASNs 
should or shouldn't be used, but that there exist real world cases that 
justify more than 1023 private use ASNs.  Furthermore, these reasons are 
also motivations for some network operators to squat on public ASNs, if 
there is not a larger space of private use ASNs assigned.

Tony's argument was basically the Data Center guys are going to do this 
whether we want them to or not and that it is better for there to be an 
assigned a block than have them squat on public ASNs, I think that is 
the argument Randy is asking to be included in the draft.

I think this argument also applies to BGP/MPLS IP VPNs and internal 
enterprise use of BGP; I've had a couple enterprises ask me about more 
that 1023 private use ASNs and could/should they use some of the 4-byte 
ASN space.  I've told them to hold off and wait for this draft to assign 
a larger private use block from the 4-byte ASNs, rather than squat on 
public ASNs.  But, in the long-run they are going to squat on public 
ASNs, if there isn't a larger block of private use ASNs for them to use.

Also, even if we revise RFC 1930 and/or the RIR's revise their policies, 
to easily allow large publicly registered ASN blocks; There is a 
perception that many enterprises have that a private use block is better 
and more secure than a registered block.  It makes my head hut, and we 
can tell them all the reasons they are wrong, but that is their 
perception and it is their network they will be using them in.

> I'd like to re-iterate overall that the purpose the draft is primarly to
> make an IANA reservation, not to dictate or recommend to others what to
> do with it, except in the operational considerations lay out the changes
> to consider to continue to play nice with the broader Internet.

I agree we don't want to tell people where or where not to use private 
use ASNs in the draft.  However, it is not unreasonable to make sure we 
have a consensus on why 1023 private use ASNs are not enough, that there 
is justification to expand there numbers, and to document the reasons. 
And, from what I'm hearing this is what needs to be added to the Draft. 
  Especially, the data center argument above.

> Jon
>


-- 
================================================
David Farmer               Email: farmer@umn.edu
Office of Information Technology
University of Minnesota
2218 University Ave SE     Phone: 1-612-626-0815
Minneapolis, MN 55414-3029  Cell: 1-612-812-9952
================================================

v2.31.3 | Report a Bug | By Email | System Status