IETF Logo Mail Archive

Re: [Idr] Fwd: I-D ACTION:draft-pmohapat-idr-acceptown-community-01.txt

Jeffrey Haas <jhaas@pfrc.org> Wed, 07 May 2008 14:22 UTC

Return-Path: <idr-bounces@ietf.org>
X-Original-To: idr-archive@megatron.ietf.org
Delivered-To: ietfarch-idr-archive@core3.amsl.com
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 09AA628C7A3; Wed, 7 May 2008 07:22:50 -0700 (PDT)
X-Original-To: idr@core3.amsl.com
Delivered-To: idr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4803028C70D for <idr@core3.amsl.com>; Wed, 7 May 2008 07:20:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YCG6R6ri-nfc for <idr@core3.amsl.com>; Wed, 7 May 2008 07:19:52 -0700 (PDT)
Received: from manos.scc.mi.org (manos.scc.mi.org [204.11.140.250]) by core3.amsl.com (Postfix) with ESMTP id 8F61528C6A9 for <idr@ietf.org>; Wed, 7 May 2008 07:12:55 -0700 (PDT)
Received: by manos.scc.mi.org (Postfix, from userid 1025) id 4E74C4E4A2; Wed, 7 May 2008 10:12:50 -0400 (EDT)
Date: Wed, 07 May 2008 10:12:50 -0400
From: Jeffrey Haas <jhaas@pfrc.org>
To: "John G. Scudder" <jgs@juniper.net>
Message-ID: <20080507141250.GA17332@scc.mi.org>
References: <20080506180029.GA26405@scc.mi.org> <9A3A6AC97A8CF44DACD99DC00BEC235A02F132D4@xmb-rtp-203.amer.cisco.com> <20080506194653.GA8171@scc.mi.org> <42F67934-71FE-4D36-B793-91A9B7122096@juniper.net> <20080506212850.GA21845@scc.mi.org> <F5EFC2D4-6F27-4E32-A462-6706E23B59FC@juniper.net>
Mime-Version: 1.0
Content-Disposition: inline
In-Reply-To: <F5EFC2D4-6F27-4E32-A462-6706E23B59FC@juniper.net>
User-Agent: Mutt/1.5.9i
Cc: idr@ietf.org, "RAMSAROOP, JEEWAN P, ATTLABS" <jramsaroop@att.com>, "NGUYEN, HAN Q, ATTLABS" <hnguyen@att.com>, "LONGHITANO, ANTHONY C, ATTLABS" <aclonghitano@att.com>
Subject: Re: [Idr] Fwd: I-D ACTION:draft-pmohapat-idr-acceptown-community-01.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: idr-bounces@ietf.org
Errors-To: idr-bounces@ietf.org

On Tue, May 06, 2008 at 07:15:56PM -0400, John G. Scudder wrote:
> I for one would be fine with clarifying the text to make it clear that  
> the latter paragraph cited above means that you should accept your own  
> route only if the ACCEPT_OWN community is present, AND there is an RT  
> attached, AND that RT specifies a VRF other than the source VRF.

Adding the above text would help address my concerns significantly.
This would more strongly tie the feature to BGP MPLS VPNs than the
previous text. 

> Some  
> further words would be called for to indicate that this is meant to  
> clarify operation with route targets, but not limit other applications  
> that might be dreamed up in the future which allow a route to be  
> targeted to a different destination routing table.  In any case, the  
> concerns you cite (no VRFs involved, pulling into the originating VRF)  
> are precluded.

I would further suggest that you discuss the necessity of routers
originating reachability that may be reflected back with this community
need to include sufficient information to prevent such loops.  As a
specific example, the site of origin extended community.

> >vrf foo
> >accept-bgp-vpn-originator-self
> 
> In order to satisfy the use case as I understand it, all PEs would  
> have to have this knob set for all VRFs, since any VRF might at some  
> point need this functionality and the desire is to avoid PE config  
> touches when possible.  So the knob would *in effect* be no different  
> from a global knob to accept routes with self as the originator.

That would be fine.  The per-vrf example was meant to illustrate the
case where a given VRF may not be willing to accept such reflected
routes.

> That  
> actually would be OK as long as the other rules I've cited above are  
> followed, i.e. the route may only go into a VRF other than the  
> source.  In that sense, the ACCEPT_OWN community is belt-and- 
> suspenders rather than being strictly necessary.

Exactly.  With such a knob, no additional well known communities are
really required.  However, for your use case, you still require
information present to help prevent loops.  This would potentially
change your draft from "add this well known community" to "routers may
be configured to accept their own routes under these circumstances".
This potentially moves ACCEPT_OWN to an advisory community.

-- Jeff
_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email