IETF Logo Mail Archive

Re: [Idr] Adoption and IPR call for draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)

Igor Malyushkin <gmalyushkin@gmail.com> Sat, 20 August 2022 12:27 UTC

Return-Path: <gmalyushkin@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67183C14CF11 for <idr@ietfa.amsl.com>; Sat, 20 Aug 2022 05:27:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.004
X-Spam-Level:
X-Spam-Status: No, score=-2.004 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cfV_oxEb7v0u for <idr@ietfa.amsl.com>; Sat, 20 Aug 2022 05:27:19 -0700 (PDT)
Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F2450C152714 for <idr@ietf.org>; Sat, 20 Aug 2022 05:27:18 -0700 (PDT)
Received: by mail-io1-xd2b.google.com with SMTP id q74so5106403iod.9 for <idr@ietf.org>; Sat, 20 Aug 2022 05:27:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc; bh=M9mNlirfiupxihvKBeqo5gp8YgIU51DHj8LPT7qfsFM=; b=Kknq4SaJcCjaI8iPLlYrwSMYwMofMGFCLjSHf/yo0mPdbRM4xS6bU6EltqzSDvMWAE UivmY0foQc2faZkWrTuCXHmg6G+2fBt6hAFV9TqkNj8LP9yd7eIGhlaeYco+Yi9ARsnr GxNR1yxoDNovZK4LzKaEY+3TojWZyf7yuRgG9LvyAyncwER+bbB5awKMHszaXZ2Ui4zF eco/LXmokBgjKi6qvjVghUQn4Q6i/TEfJpmkPvBSHTbyVdSX2voNpsOpfaVrtYoEEviD MOwjXXjyP8DHqzkyEL2mUCsQLS8dF1A4vnX6tX9pfteopE1NZsQ1twNvcc8sCmj53V7n 7wuA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc; bh=M9mNlirfiupxihvKBeqo5gp8YgIU51DHj8LPT7qfsFM=; b=W+fCw4a2AekSsUQpi1TGjegun3Jw5y9bKHpBJEj9VAaJeblWAiWba1Uy86SVsOnvmn FBjykNkzut4K6gxIqDwVY16HOVOY284rHI9FYIuiLc7Jgzs2t8RYH8jcwMMV/zn8e/Yl YAUT8CALdqmDSzB2XUPJylXRFNRzhdmt/yGAsp4FBeBKUB9gmdvV8ePPptFrrciAYMeh 2n+G8/M7uiycm5QAGkUQeF4V0uM9lu4Ftmzq0zb5xny35GWf8ZWbNd39ETvVCPjk0+PP OsjlAhmNohDe9+Rrv1HEjjjGAfpwIVKnx4JoosOiSdEFWf5OkOlTTIipMPfXme+l51Ns zgUw==
X-Gm-Message-State: ACgBeo29gVTz6ciXDlB5QtVhW8i0gxxwHPI0Tav/AYLeQyN31/+c8xoN VdT0VX/j7OqwQPBPWP82mUoFRTtrAEsmVY//+bA=
X-Google-Smtp-Source: AA6agR452t24bf2q8R8AgdT5bInymDRVcURdPO6SpNCU4C9WpFNbI92fDOzcEYujOwlcaNYPI4AlF8NPxLSrPIVKH9Y=
X-Received: by 2002:a6b:b7c2:0:b0:688:ae30:27d1 with SMTP id h185-20020a6bb7c2000000b00688ae3027d1mr5402874iof.1.1660998438148; Sat, 20 Aug 2022 05:27:18 -0700 (PDT)
MIME-Version: 1.0
References: <BYAPR08MB487262F752C8777A1B9698EFB36B9@BYAPR08MB4872.namprd08.prod.outlook.com> <d9e07ea96dd64ea081ba763941a22b17@huawei.com> <CAOj+MMG=JH=RUtxbmuLsTsTe73+aT9PkqMLpmMbLi-O06inLaQ@mail.gmail.com> <MW4PR02MB7394D29827B69B604455BA1EC66F9@MW4PR02MB7394.namprd02.prod.outlook.com> <CAEfhRryX_C3WkhMXLDMm0Ba8TpRjwFBaVubVKESxkDnMhehUNw@mail.gmail.com>
In-Reply-To: <CAEfhRryX_C3WkhMXLDMm0Ba8TpRjwFBaVubVKESxkDnMhehUNw@mail.gmail.com>
From: Igor Malyushkin <gmalyushkin@gmail.com>
Date: Sat, 20 Aug 2022 14:27:06 +0200
Message-ID: <CAEfhRry3dkxiprSt7+EZWsyCpzoM+szgkQp-491e4LAJNqxPjA@mail.gmail.com>
To: "UTTARO, JAMES" <ju1738@att.com>
Cc: Robert Raszuk <robert@raszuk.net>, Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org>, Zhuangshunwan <zhuangshunwan=40huawei.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e0dde805e6ab558d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/DMqGP77p-puwRBACLr-5NeLUiA4>
Subject: Re: [Idr] Adoption and IPR call for draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 20 Aug 2022 12:27:23 -0000

Some additions. In the offered model when a PE sends a notification based
on its preconfigured limits, there is no option for AD, so this moment is
not actual. But the problem is still actual. It's not clear to me why we
need to preconfigure some quota per every possible source PE. Reading the
draft and the analysis document didn't shed the light.
I'm really sorry if this question was raised and was answered previously.
If it is so a link to the conversation would be great :)

сб, 20 авг. 2022 г. в 12:54, Igor Malyushkin <gmalyushkin@gmail.com>:

> Hi all,
>
> This draft requires configuring limits for every possible VRF on a PE with
> every possible pair of "source PE, RD" for these VRFs. For many
> deployments, such an approach leads to an operation burden. From my
> perspective, it is desirable to have some auto-discovery mechanism for
> these limits if the community is going to proceed with this draft.
>
> Also, Section 5.1 states:
>   In single-domain or Option C cross-domain scenario, NEXT_HOP attribute
> is unchanged during routing transmission, so it can be used as source
> address.
>
> It is not actually true. There are some deployments using different
> next-hops for outbound VPN routes belonging to a single PE-VRF pair (e.g.,
> core diversity pattern). Thus, there should be a more precise definition of
> a source PE that is absolutely decoupled from the NEXT_HOP attribute.
>
> сб, 20 авг. 2022 г. в 12:41, UTTARO, JAMES <ju1738@att.com>:
>
>> *I do not support adoption of this draft. *
>>
>>
>>
>> *Thanks,*
>>
>> *          Jim Uttaro*
>>
>>
>>
>> *From:* Idr <idr-bounces@ietf.org> *On Behalf Of * Robert Raszuk
>> *Sent:* Saturday, August 20, 2022 4:28 AM
>> *To:* Susan Hares <shares@ndzh.com>
>> *Cc:* idr@ietf.org; Zhuangshunwan <zhuangshunwan=
>> 40huawei.com@dmarc.ietf.org>
>> *Subject:* Re: [Idr] Adoption and IPR call for
>> draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)
>>
>>
>>
>> Hi,
>>
>>
>>
>> > and all the comments raised in the IDR list have been addressed
>>
>>
>>
>> That is not true.
>>
>>
>>
>> For the record I am still opposing adoption of this draft.
>>
>>
>>
>> Sample list of issues which were not addressed:
>>
>>
>>
>> #1 - RD allocation can be per VRF or Global in a given VPN. This scheme
>> works only in the case of per VRF allocation.
>>
>>
>>
>> #2 - Filtering by src RD can result in loss of reachability to other VPNs
>> on a given node which only import subset of routes.
>>
>>
>>
>> #3 - Use of prefix ORF can be applied where prefix is just /64 RD without
>> any new draft. The draft says:
>>
>>
>>
>>
>>
>> *Using Address Prefix ORF to filter VPN routes need to pre-
>>  configuration, but it is impossible to know which prefix may cause
>>  overflow in advance.*
>>
>>
>>
>>     .. which clearly is not correct as irrespective on the encoding you
>> need to know what RD to push.
>>
>>     Here in this context of RFC5292 PREFIX == RD == /64 PREFIX
>>
>>
>>
>> #4 - Change of ORF list results in advertisement of ALL routes of a a
>> given AFI/SAFI to the peer.
>>
>>         That is the same irrespective if IMMEDIATE or DEFER flags are
>> set. That puts burden on the peer especially in
>>
>>         VPN cases when the number of routes may be high.
>>
>>
>>
>> #5 - Sender of ORF does not know when it is safe to remove the filter.
>> Manual action is still required.
>>
>>
>>
>> #6 - Control plane memory is not an issue these days. To mitigate the
>> real issue this draft tries to solve a PE which
>>
>>        suffers from excessive number of VPN routes with given RD can
>> suppress installation of those routes to data plane
>>
>>        or locally drop it. Signalling it to the peer is practically not
>> needed and only causes more issues then it solves.
>>
>>
>>
>> Kind regards,
>>
>> Robert
>>
>>
>>
>> On Sat, Aug 20, 2022 at 3:48 AM Zhuangshunwan <zhuangshunwan=
>> 40huawei.com@dmarc.ietf.org> wrote:
>>
>> Hi Sue and WG,
>>
>>
>>
>> I support the WG adoption of this draft.
>>
>> The current draft has been actively discussed by the WG over the past
>> months, and all the comments raised in the IDR list have been addressed,
>> now it is a result of the joint efforts of the WG and worth continuing to
>> optimize it as a WG draft.
>>
>> The solution would help to quickly isolate a faulty VPN and avoid further
>> deterioration of the network operation status.
>>
>> I am unaware of other undisclosed IPR for this draft.
>>
>>
>>
>> Best Regards
>>
>> Shunwan
>>
>>
>>
>>
>>
>> *From:* Idr [mailto:idr-bounces@ietf.org] *On Behalf Of *Susan Hares
>> *Sent:* Tuesday, August 16, 2022 11:56 PM
>> *To:* idr@ietf.org
>> *Subject:* [Idr] Adoption and IPR call for
>> draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)
>>
>>
>>
>> This begins a 2 week WG Adoption call for
>> draft-wang-idr-vpn-prefix-orf-03.txt
>>
>> https://datatracker.ietf.org/doc/draft-wang-idr-vpn-prefix-orf/
>> <https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/draft-wang-idr-vpn-prefix-orf/__;!!BhdT!ldABksoTX4ZcjR7ustBB-6Br7ALCA-0ovGEa4nQwptA-Ly5ULxnLlHqXUFgjtKPYCDfuwxIXRSI$>
>>
>>
>>
>> The authors believe that they have addressed the concerns raised in
>>
>> the previous 2 WG adoption calls.
>>
>>
>>
>> The WG should consider if:
>>
>>
>>
>> 1) The revised text answers the previous concerns regarding
>>
>> the scope of this draft?
>>
>>
>>
>> 2) Does the revised text provide a useful function for
>>
>> networks?
>>
>>
>>
>> 3) Are there any additional concerns regarding the new text?
>>
>>
>>
>> Each of the authors should send an IPR statement for
>>
>> this version of the draft.
>>
>>
>>
>> The adoption call was moved to 8/29 to 8/30 to allow questions
>>
>> to be asked at the IDR interim meeting on 8/29/2022 (10am – 12pm EDT).
>>
>>
>>
>> Cheers, Sue Hares
>>
>> _______________________________________________
>> Idr mailing list
>> Idr@ietf.org
>> https://www.ietf.org/mailman/listinfo/idr
>> <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/idr__;!!BhdT!ldABksoTX4ZcjR7ustBB-6Br7ALCA-0ovGEa4nQwptA-Ly5ULxnLlHqXUFgjtKPYCDfunxv7nkg$>
>>
>> _______________________________________________
>> Idr mailing list
>> Idr@ietf.org
>> https://www.ietf.org/mailman/listinfo/idr
>>
>

v2.23.0 | Report a Bug | By Email