IETF Logo Mail Archive

Re: [Idr] WG adoption call for draft-abraitis-bgp-version-capability-08, to end September 25

Donatas Abraitis <donatas.abraitis@gmail.com> Thu, 19 January 2023 12:00 UTC

Return-Path: <donatas.abraitis@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CFF32C14CF16 for <idr@ietfa.amsl.com>; Thu, 19 Jan 2023 04:00:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.985
X-Spam-Level:
X-Spam-Status: No, score=-6.985 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4O7fCINlblPG for <idr@ietfa.amsl.com>; Thu, 19 Jan 2023 04:00:42 -0800 (PST)
Received: from mail-qv1-xf29.google.com (mail-qv1-xf29.google.com [IPv6:2607:f8b0:4864:20::f29]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 508CCC14F693 for <idr@ietf.org>; Thu, 19 Jan 2023 04:00:42 -0800 (PST)
Received: by mail-qv1-xf29.google.com with SMTP id k12so1382264qvj.5 for <idr@ietf.org>; Thu, 19 Jan 2023 04:00:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=7yjWOVEoj+kV9eYlRoGZ1fye9GP9sj1QvltDxGf4QQM=; b=OWe23HmnRLt99Zhp7TVjvDoL2brCR03T3rz9Zk73QnYL3IqUiD4Fp4w+KgO2Xel3N0 0FRtz3Y6pAQLr+KMCvNoyHuAi+xdjPYLSURpy2x5rQ3P363BFCk6QSgdBGhu00GqZ2dK bVr7tOkqh67JZYfwHp+E2dHoy6He5etQiP9V9W08fEwtCp/YxY6+EZ0MA1BiP1NCKD/y le5fGZ2FwJE1dk1/X/u5SnxU9pjKufJn8UcKNDM4ZshA1M+1ZVKuVTF4xWSa711Wi29X StHiNlc1AcryXRLPudsnqcbavbMSm0LEz1A1TJieeAQhwrIqwxYHXBud1SqH+fCoZW8l S8Pg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=7yjWOVEoj+kV9eYlRoGZ1fye9GP9sj1QvltDxGf4QQM=; b=2WYhb+fClrNhpZTkRDMGCdRJiY8WzT0aHY1eFbxgpxPR+SZKuagQVMj8dAh9irnLNg RVx/WMmTljvpTAmV/TFYEyFkN274dwGDokO8j8a1bOsxI/3BODqwc3XrNWUEJewW+Y6G 2YM4oTlTVjh9LyFVhnzK/DwC7gReZgKZmXavI3yDnnZ0eNt/gp/M06S1YC+sXn1ZWK1p 8XJaf2dbcsLTxhf9oHugbF/pRpDOSOFzOGKKmRDLIHypNDXFkaxgMyhUzrCHJpTRXYJD dvoWXvV4wUDcYAcn8ObuHhLh1t39LJyfJJ8yy14Qt1WCFhKi/z89FqMAN6ZYzgr4bBdX dSNQ==
X-Gm-Message-State: AFqh2kpDMvgB5OiDHS2LvxlFrpVQu8WS3eihv+DQBj4x/1/epFXmpedu P6RPCiGxlIUHvcm7l3EBsHw8HA0J/gcStpi7200=
X-Google-Smtp-Source: AMrXdXuIL7MK+r/zABcbqrHiIZXJs+axngbNMIyDptBEALv6p7aLmi3ahFjMsK66Ys69V/mEMDYse5DevRmDEsEf/Cg=
X-Received: by 2002:a05:6214:3586:b0:534:e068:323e with SMTP id nn6-20020a056214358600b00534e068323emr414773qvb.41.1674129641091; Thu, 19 Jan 2023 04:00:41 -0800 (PST)
MIME-Version: 1.0
References: <FEF22BE4-8226-4286-AF7D-6B609D51E6BF@pfrc.org> <CAOj+MMH5C8zXZB=c9v57=M2Aa16cuyJY1EEMDHmX+T5FYq51mg@mail.gmail.com> <8D39FC71-043C-40A9-97D5-D71666611C5A@pfrc.org> <CAOj+MMFRVGde0k9dyW-gjMY1V3N6g8cpspnVLmhOHD557Qo6yw@mail.gmail.com> <A2FF27E6-403F-4606-84E8-A5305E434468@pfrc.org> <CAOj+MMH0LEds_UfVWAf59-JjRiPOYm=fozBx6ncmeSHTyMe11g@mail.gmail.com> <A1859410-8A3E-4CF9-A875-D432F7BEF1F0@pfrc.org> <CAOj+MMHhHB-K=hjEFwJTQ09K9dizkHaKfC79kJWikO=Eh8c1gw@mail.gmail.com> <20847254-3E13-49B3-942C-EE6EFDF993C1@pfrc.org> <CAOj+MMG9BuCBjATYNKO5H0oFUipCE8iBU+DJ0FLDDUZdp+nM3Q@mail.gmail.com> <Y77nmDKUgCUyhJ5W@diehard.n-r-g.com> <C3B4F29D-7C8D-4911-B140-286B7B8DA97B@pfrc.org> <CAOj+MMGmSBDwbxvSZ_x+j7NtCHRFFFvcCEKGJ0Wpis_OU26cLA@mail.gmail.com> <CABNhwV3qwCT8=8R+HTi1DFhbRN=FwHMF4XvQVowQwz=pb2U-nA@mail.gmail.com> <CAOj+MMG-5TT2sEnZVMabP1wA=gBNH0g9zkpoM9LWL7XFnh2aEQ@mail.gmail.com> <CABNhwV2H8Y7pthkWtJsDUN7ZscjGvc+v2XdpZ5CcG2ot9TBBog@mail.gmail.com> <CO1PR13MB492093DC7492BFD14A47C97B85C29@CO1PR13MB4920.namprd13.prod.outlook.com> <CABNhwV2UL0ruFeJwfwPnP7OWO9qCpHw3ubWNF7BoQQUEYEgZRw@mail.gmail.com> <CO1PR13MB4920CBF456034CE08D70691385C19@CO1PR13MB4920.namprd13.prod.outlook.com> <CABNhwV2MDq=ncxOfP1bi8t6wWq0kACupSPXaXO+QkdbUGzcWQw@mail.gmail.com> <CABNhwV31JTyycqdPCSPXidoq-0bd7ZHSZn_GRD2wUPtgLSXXSw@mail.gmail.com>
In-Reply-To: <CABNhwV31JTyycqdPCSPXidoq-0bd7ZHSZn_GRD2wUPtgLSXXSw@mail.gmail.com>
From: Donatas Abraitis <donatas.abraitis@gmail.com>
Date: Thu, 19 Jan 2023 14:00:29 +0200
Message-ID: <CAPF+HwXnzPErRKkAKYC=WAmyTXwWmyCAd7FPm5ZM7RZ=WHv72A@mail.gmail.com>
To: Gyan Mishra <hayabusagsm@gmail.com>
Cc: Linda Dunbar <linda.dunbar@futurewei.com>, Robert Raszuk <robert@raszuk.net>, "idr@ietf.org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000090b80505f29cae8d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/BZy66yOj39kD_U2ETRspmQ-0AuI>
Subject: Re: [Idr] WG adoption call for draft-abraitis-bgp-version-capability-08, to end September 25
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Jan 2023 12:00:46 -0000

New version:
https://datatracker.ietf.org/doc/html/draft-abraitis-bgp-version-capability-11

TL;DR; Switched back to BGP Capability. Why? Because if the implementation
does not support BGP OPEN Optional Parameters, the session resets. Also,
added RFC9072 as a requirement to avoid exceeding 255 bytes of optional
parameters length.

On Tue, Jan 17, 2023 at 7:05 AM Gyan Mishra <hayabusagsm@gmail.com> wrote:

>
> At the top of RFC 4271 section 4.5 this is what I am reading that if any
> open or update message with error sub code is received the session is
> reset.
>
> 4.5 <https://www.rfc-editor.org/rfc/rfc4271#section-4.5>.  NOTIFICATION Message Format
>
>    A NOTIFICATION message is sent when an error condition is detected.
>    The BGP connection is closed immediately after it is sent.
>
>
>
> That goes for all of the sub codes
>
>
> OPEN Message Error subcodes:
>
>                1 - Unsupported Version Number.
>                2 - Bad Peer AS.
>                3 - Bad BGP Identifier.
>                4 - Unsupported Optional Parameter.
>                5 - [Deprecated - see Appendix A <https://www.rfc-editor.org/rfc/rfc4271#appendix-A>].
>                6 - Unacceptable Hold Time.
>
>       UPDATE Message Error subcodes:
>
>                1 - Malformed Attribute List.
>                2 - Unrecognized Well-known Attribute.
>                3 - Missing Well-known Attribute.
>                4 - Attribute Flags Error.
>                5 - Attribute Length Error.
>                6 - Invalid ORIGIN Attribute.
>                7 - [Deprecated - see Appendix A <https://www.rfc-editor.org/rfc/rfc4271#appendix-A>].
>                8 - Invalid NEXT_HOP Attribute.
>                9 - Optional Attribute Error.
>               10 - Invalid Network Field.
>               11 - Malformed AS_PATH.
>
>
>
>
>
> On Mon, Jan 16, 2023 at 8:21 PM Gyan Mishra <hayabusagsm@gmail.com> wrote:
>
>>
>> RFC 4271 section 4.5 states the session is reset for any open or update
>> notification code.
>>
>> RFC 7606 only updates error handling for update messages.  So the
>> unsupported version number will cause the peer to reset.
>>
>> Jakub mentioned this regarding the version capability draft which I agree
>> is a good option below:
>>
>> I can agree to using a new BGP OPEN Optional Parameter.
>>
>>
>>
>> I would add that if after receiving the OPEN message, the BGP neighbor
>> closes the session
>>
>> with “Unsupported Optional Parameters”, that the sender of that OPEN
>> message try
>>
>> opening the session again without the version parameter.
>>
>> Kind Regards
>>
>> Gyan
>>
>> On Mon, Jan 16, 2023 at 1:54 PM Linda Dunbar <linda.dunbar@futurewei.com>
>> wrote:
>>
>>> Gyan,
>>>
>>>
>>>
>>> RFC4271 states that if the version number is not supported, an error
>>> message should be sent. But RFC4271 didn’t say if the BGP Open session
>>> should be failed.
>>>
>>> I am just curious if BGP session can be started even if the  version
>>> number is not supported?
>>>
>>>
>>>
>>> Linda
>>>
>>>
>>>
>>> *From:* Gyan Mishra <hayabusagsm@gmail.com>
>>> *Sent:* Saturday, January 14, 2023 12:01 AM
>>> *To:* Linda Dunbar <linda.dunbar@futurewei.com>
>>> *Cc:* Robert Raszuk <robert@raszuk.net>; idr@ietf.org
>>> *Subject:* Re: [Idr] WG adoption call for
>>> draft-abraitis-bgp-version-capability-08, to end September 25
>>>
>>>
>>>
>>> Hi Linda
>>>
>>>
>>>
>>> Yes, RFC 7606 provides complete revision of error handling as opposed to
>>> peer reset which was the error handling with RFC 4271.
>>>
>>>
>>>
>>> See section 2 and 3.
>>>
>>>
>>>
>>> All BGP implementations including Open BGP implementations should
>>> support RFC 7606.
>>>
>>>
>>>
>>> The main benefit for the versioning is in case the BGP peer capabilities
>>> exchange is in a one way state and not bidirectional and in that case
>>> having the version number would help troubleshoot if the AFI/SAFi,
>>> code-point or parameter is supported or not.
>>>
>>>
>>>
>>> Kind Regards
>>>
>>>
>>>
>>> Gyan
>>>
>>>
>>>
>>> On Fri, Jan 13, 2023 at 4:52 PM Linda Dunbar <linda.dunbar@futurewei.com>
>>> wrote:
>>>
>>> With so many BGP flavors and versions, is it possible to configure a
>>> router to ignore the capabilities that it doesn’t support? But still keep
>>> the BGP session going?
>>>
>>>
>>>
>>> Linda
>>>
>>>
>>>
>>> *From:* Idr <idr-bounces@ietf.org> *On Behalf Of *Gyan Mishra
>>> *Sent:* Thursday, January 12, 2023 3:15 PM
>>> *To:* Robert Raszuk <robert@raszuk.net>
>>> *Cc:* idr@ietf.org
>>> *Subject:* Re: [Idr] WG adoption call for
>>> draft-abraitis-bgp-version-capability-08, to end September 25
>>>
>>>
>>>
>>>
>>>
>>> So I think the crux of the issue is with so many open BGP flavors and
>>> versions and running into possibilities of feature support issues, I think
>>> it would be very helpful to be able to see the compute nodes bgp version
>>> from the TOR for troubleshooting.  In case their are known bugs with
>>> certain versions.
>>>
>>>
>>>
>>> So if you were able to do a “show BGP summary” and are able to see the
>>> versions would be helpful.
>>>
>>>
>>>
>>> Kind Regards
>>>
>>>
>>>
>>> Gyan
>>>
>>>
>>>
>>> On Thu, Jan 12, 2023 at 12:07 PM Robert Raszuk <robert@raszuk.net>
>>> wrote:
>>>
>>> Gyan,
>>>
>>>
>>>
>>> > I can see a lot of value in this draft
>>>
>>>
>>>
>>> So imagine you are a TOR.
>>>
>>>
>>>
>>> Could you provide some examples on what would you do differently to
>>> compute
>>>
>>> nodes speaking to you from BIRD BGP vs from exaBGP vs home grown
>>> Python BGP ?
>>>
>>>
>>>
>>> Many thx,
>>>
>>> R.
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Thu, Jan 12, 2023 at 5:53 PM Gyan Mishra <hayabusagsm@gmail.com>
>>> wrote:
>>>
>>>
>>>
>>> I support the draft and agree this is very useful for cloud native
>>> environments.
>>>
>>>
>>>
>>> I think the main use of this feature is for DC fabric extension to
>>> compute nodes and now as well Kubernetes microservices cloud native
>>> containerization or router in a container.
>>>
>>>
>>>
>>> Just about every router vendor and ONF disaggregation vendor has a
>>> container version of router such as Cisco’s XRD, Juniper cRPD, SONiC,
>>> Nokia, Arista etc which gives you both control plane and data plane to
>>> front and provide CNI networking for K8 Kubernetes microservices.
>>>
>>>
>>>
>>> As well as you have all the Open BGP versions FRR, BIRD, Quagga, ExaBGP
>>> etc that  give you the BGP control plane to advertise routes using Linux
>>> data plane.
>>>
>>>
>>>
>>> https://containerlab.dev/manual/kinds/
>>> <https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcontainerlab.dev%2Fmanual%2Fkinds%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C877a543e7c434aeecc9d08daf5f4adb6%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638092728500492184%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=nOLWrbrNMQILNzVFclXgLiQZ4LQY8iUpJsOdqKozTQ8%3D&reserved=0>
>>>
>>>
>>>
>>> So this version feature is really for cloud native compute layer NFV -
>>> VNF, CNF,  and not really for PNF  physical hardware based internet routers
>>> or switches.
>>>
>>>
>>>
>>> I can see a lot of value in this draft and I support making a WG
>>> document versus independent stream based on the massive proliferation of
>>> distributed cloud native edge computing software based environments.
>>>
>>>
>>>
>>> Kind Regards
>>>
>>>
>>>
>>> Gyan
>>>
>>>
>>>
>>> On Wed, Jan 11, 2023 at 2:20 PM Robert Raszuk <robert@raszuk.net> wrote:
>>>
>>>
>>>
>>> > a feature that is useful from an operational standpoint
>>>
>>>
>>>
>>> So let's put all the encoding aside. Your email made me curious why
>>> router A needs to know BGP release number, OS version and vendor name of
>>> router B ?
>>>
>>>
>>>
>>> Are we doing such a bad job in IDR that BGP no longer interoperates at
>>> the protocol level ?
>>>
>>>
>>>
>>> The original problem was presented as 1000s of computes reporting their
>>> BGP versions to TORs. But those 1000s of computes are already managed by
>>> orchestration which does have this information. Why should BGP TOR care ?
>>>
>>>
>>>
>>> Or why IXP Route Server should care that customer X is connecting with
>>> Junos vs with Huawei vs with Arrcus to it or to other IX fabric members ?
>>>
>>>
>>>
>>> Kind regards,
>>> R.
>>>
>>>
>>>
>>> _______________________________________________
>>> Idr mailing list
>>> Idr@ietf.org
>>> https://www.ietf.org/mailman/listinfo/idr
>>> <https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fidr&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C877a543e7c434aeecc9d08daf5f4adb6%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638092728500492184%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=prCWQdJRG0gHXfMDlKGnqMLADRUCIhJsvpRA1Hr17zA%3D&reserved=0>
>>>
>>> --
>>>
>>>
>>> <https://nam11.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.verizon.com%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C877a543e7c434aeecc9d08daf5f4adb6%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638092728500492184%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=B5mXvFpqA4yiWAvx6Uszwt4T8ku5Wfud3feAGlawHuo%3D&reserved=0>
>>>
>>> *Gyan Mishra*
>>>
>>> *Network Solutions Architect *
>>>
>>> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>>>
>>> *M 301 502-1347*
>>>
>>>
>>>
>>> --
>>>
>>>
>>> <https://nam11.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.verizon.com%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C877a543e7c434aeecc9d08daf5f4adb6%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638092728500492184%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=B5mXvFpqA4yiWAvx6Uszwt4T8ku5Wfud3feAGlawHuo%3D&reserved=0>
>>>
>>> *Gyan Mishra*
>>>
>>> *Network Solutions Architect *
>>>
>>> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>>>
>>> *M 301 502-1347*
>>>
>>>
>>>
>>> --
>>>
>>>
>>> <https://nam11.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.verizon.com%2F&data=05%7C01%7Clinda.dunbar%40futurewei.com%7C877a543e7c434aeecc9d08daf5f4adb6%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C638092728500492184%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=B5mXvFpqA4yiWAvx6Uszwt4T8ku5Wfud3feAGlawHuo%3D&reserved=0>
>>>
>>> *Gyan Mishra*
>>>
>>> *Network Solutions Architect *
>>>
>>> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>>>
>>> *M 301 502-1347*
>>>
>>>
>>>
>> --
>>
>> <http://www.verizon.com/>
>>
>> *Gyan Mishra*
>>
>> *Network Solutions A**rchitect *
>>
>> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>>
>>
>>
>> *M 301 502-1347*
>>
>> --
>
> <http://www.verizon.com/>
>
> *Gyan Mishra*
>
> *Network Solutions A**rchitect *
>
> *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*
>
>
>
> *M 301 502-1347*
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>


-- 
Donatas

v2.23.0 | Report a Bug | By Email