IETF Logo Mail Archive

Re: [Idr] I-D Action: draft-ietf-idr-segment-routing-te-policy-08.txt

Przemyslaw Krol <pkrol@google.com> Wed, 20 November 2019 21:39 UTC

Return-Path: <pkrol@google.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9BDBC120233 for <idr@ietfa.amsl.com>; Wed, 20 Nov 2019 13:39:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.499
X-Spam-Level:
X-Spam-Status: No, score=-17.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7-1H93d_eLV9 for <idr@ietfa.amsl.com>; Wed, 20 Nov 2019 13:39:25 -0800 (PST)
Received: from mail-yw1-xc34.google.com (mail-yw1-xc34.google.com [IPv6:2607:f8b0:4864:20::c34]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8C49120241 for <idr@ietf.org>; Wed, 20 Nov 2019 13:39:25 -0800 (PST)
Received: by mail-yw1-xc34.google.com with SMTP id y18so558330ywk.1 for <idr@ietf.org>; Wed, 20 Nov 2019 13:39:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Z6imC0kkeGkZBUOLAsvInHb7Wji21wJ01k9J2K1EqBQ=; b=cUYlD4mIgPPMLZTtaUVcCrATklsL7c4XjOJkTuUrRTcz4xqXmxMtg0F378KZKKOHkh ZhOj+C2KNm+XxYTH7xb7UERLCkPRBBwgFJpKvPSHahM+mw687KhmyiLRA1Diw+OjmgBX zkzfTx+csYmS+VGB8n0uUcgqZPOswhJpKUaWr5w5aQOZ9KSW+/qdRqKOfG+gI7zJ26/r R/nifI735C+IH0kOITNCp4Jv/VGZIEz7Kj7Vz9bShL3a1gY7qY03Hmd2L+M8MkcigoiP ZlN1FvqHao/ssyC/YW4C0cB99glm6LDNf+YoI12LG1g8AZG7bwzp4OAn/cADD9yRzFmC 49Kg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Z6imC0kkeGkZBUOLAsvInHb7Wji21wJ01k9J2K1EqBQ=; b=ay5R9mpW58FcOx7DNzlgaygCa4SsfqqJZPNUuKPaMM89hR7HtbGZ9gnuheUbTzPtxt T5D1ilOZhlM965mRJhbtObfFd4KbIFvQ9C/r+Jr+59uhzehelldTUZtKRI6x/Xjg4cnY F00ttTeVOOxrQp6FFbHrlZsxQLjxIo+MzzKOoSQ4VNdW1t4oOkaPcn6yzVg8XzUFGHYV n9AQa01eG6dTT898kL/qbGgKKbiTnDRHKRQhP+W6tts/ShgS6abdFerTAKTu4QjMnl/5 Ea3VR88MBpp8P1CbJvWWSHsetHFsuAlfoP7uFCPVd8YWbd+XpuogzG4EK4URB4vJIuOy kiiw==
X-Gm-Message-State: APjAAAXM9Wt+xlTca+Uu0wdAfPytJ6SZbYs435NQbt+9kTiVi7MU5ecM LmjS01+kEuBwhbbuUQWR8ZGb0QZuT8CQ4V1P61F/Mw==
X-Google-Smtp-Source: APXvYqy85gLMMDPKck5yOOjP7mObgevpRtO6Y8RlXnd1wj5RiXzvXwaUNRKNkWnKMIstzyIAYQG/oskFsGll0tEg+pU=
X-Received: by 2002:a81:a11:: with SMTP id 17mr3308794ywk.368.1574285964209; Wed, 20 Nov 2019 13:39:24 -0800 (PST)
MIME-Version: 1.0
References: <157414471256.14003.6244444687150312939@ietfa.amsl.com> <CY4PR11MB1541D63781E529E2B2613F05C14C0@CY4PR11MB1541.namprd11.prod.outlook.com> <CAE+itjeJzygag3K4bA=KpDQgNie7shG8Z47YpMjfjMFF7aq=Tg@mail.gmail.com> <CY4PR11MB15414543EC96BB90BC1167D8C14C0@CY4PR11MB1541.namprd11.prod.outlook.com> <CACH2EkUjd6DDbD9m+rEsAzi+OL1+Q=Q0jEfhPej7d2N73wnL7Q@mail.gmail.com> <CAOj+MMF81zQbnb3vNBQfmEW6_wB4L3X9TV=NQNrhZCZya9+tJg@mail.gmail.com>
In-Reply-To: <CAOj+MMF81zQbnb3vNBQfmEW6_wB4L3X9TV=NQNrhZCZya9+tJg@mail.gmail.com>
From: Przemyslaw Krol <pkrol@google.com>
Date: Thu, 21 Nov 2019 05:38:47 +0800
Message-ID: <CACH2EkUfMgQK8rEtPKR_R1ubPz4yi_X=Cd4_8OFsz5hDhSjWxQ@mail.gmail.com>
To: Robert Raszuk <robert@raszuk.net>
Cc: "Ketan Talaulikar (ketant)" <ketant@cisco.com>, "idr@ietf.org" <idr@ietf.org>, Prakash Badrinarayanan <prakash@arista.com>, Manoharan Sundaramoorthy <manoharan@arista.com>
Content-Type: multipart/alternative; boundary="000000000000ac4d2e0597ce032c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/CuMIOlHCeWCNlJ-H-EYMOBGZ8nA>
Subject: Re: [Idr] I-D Action: draft-ietf-idr-segment-routing-te-policy-08.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Nov 2019 21:39:28 -0000

Hi Robert,

Why ? IMO when both present is a valid case as RT can be used locally for
import as well. RT ext-community and NO_ADV community are pretty orthogonal
and serve different purposes.

That's a good point, although in SRTE, NO_ADVERTISE community has a special
meaning on top of the "normal" propagation limitation.  Draft says 'either
OR' so, in my opinion, this implies 'AND' is not acceptable. If that's the
case, then NLRI should be dropped. If, on the other hand, both are
acceptable, then it should probably state 'either RT or NO_ADVERTISE ot
both'.

Say when you are on RR suppressing IBGP would be a spec bug :).

Fair enough. I was reading the previous version as 'by default don't
propagate but you may' and was only curious why IBGP vs EBGP distinction
was made in this version. Security aspect does sound like a good
justification for it.

thanks,


On Wed, Nov 20, 2019 at 10:18 PM Robert Raszuk <robert@raszuk.net> wrote:

> Przemek,
>
> and clearly states the behavior when both are missing (policy not
>> accepted).. Do you see a value in stating the behavior when both are
>> present? Based on the above wording this would deem policy not acceptable
>> and in consequence neither accepted locally not propagated down (must not
>> accepted, not necessarily usable, in order to propagate as stated in the
>> following section). Should it be clearly stated as erroneous condition?
>>
>
> Why ? IMO when both present is a valid case as RT can be used locally for
> import as well. RT ext-community and NO_ADV community are pretty orthogonal
> and serve different purposes.
>
> 4.2.4. Propagation of an SR Policy
>>
>> It seems that the original wording was referring to just BGP when
>> addressing the default propagation. In the current version, there is a
>> distinction between EBGP (do not propagate) and IBGP (propagate). What is
>> the reason for such distinction?
>>
>
> Say when you are on RR suppressing IBGP would be a spec bug :).
>
> Thx,
> R.
>
>
>>

-- 
Przemyslaw Gniewomir "PK" Krol |   Network Engineer ing | pkrol@google.com

v2.23.0 | Report a Bug | By Email