IETF Logo Mail Archive

Re: [Idr] Adoption of draft-varlashkin-bgp-nh-cost-02 as IDR WG document?

Shane Amante <shane@castlepoint.net> Mon, 21 November 2011 04:38 UTC

Return-Path: <shane@castlepoint.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D9CA11E8093 for <idr@ietfa.amsl.com>; Sun, 20 Nov 2011 20:38:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.373
X-Spam-Level:
X-Spam-Status: No, score=-2.373 tagged_above=-999 required=5 tests=[AWL=0.226, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M77A-MNRK0Tm for <idr@ietfa.amsl.com>; Sun, 20 Nov 2011 20:38:11 -0800 (PST)
Received: from dog.tcb.net (dog.tcb.net [64.78.150.133]) by ietfa.amsl.com (Postfix) with ESMTP id 7194E11E808D for <idr@ietf.org>; Sun, 20 Nov 2011 20:38:11 -0800 (PST)
Received: by dog.tcb.net (Postfix, from userid 0) id F02BB268063; Sun, 20 Nov 2011 21:38:00 -0700 (MST)
Received: from mbpw.castlepoint.net (65-102-206-76.hlrn.qwest.net [65.102.206.76]) (authenticated-user smtp) (TLSv1/SSLv3 AES128-SHA 128/128) by dog.tcb.net with SMTP; Sun, 20 Nov 2011 21:38:00 -0700 (MST) (envelope-from shane@castlepoint.net)
X-Avenger: version=0.7.8; receiver=dog.tcb.net; client-ip=65.102.206.76; client-port=60598; syn-fingerprint=65535:54:1:64:M1452,N,W1,N,N,T,S; data-bytes=0
Mime-Version: 1.0 (Apple Message framework v1251.1)
Content-Type: text/plain; charset="us-ascii"
From: Shane Amante <shane@castlepoint.net>
In-Reply-To: <7B61DC70-08D9-46C7-8C15-5DD339C61C2D@juniper.net>
Date: Sun, 20 Nov 2011 21:37:44 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <E8A8092A-6352-4A12-954A-B0D5E946BE6B@castlepoint.net>
References: <7B61DC70-08D9-46C7-8C15-5DD339C61C2D@juniper.net>
To: John Scudder <jgs@juniper.net>
X-Mailer: Apple Mail (2.1251.1)
Cc: "idr@ietf.org List" <idr@ietf.org>
Subject: Re: [Idr] Adoption of draft-varlashkin-bgp-nh-cost-02 as IDR WG document?
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Nov 2011 04:38:12 -0000

If this draft is adopted as a WG doc, I would like to see some refinements wrt the following:
1)  IIUC, the draft alludes to a situation where one can either send regular IGP Cost in the NH_SAFI attribute -or- "(not necessarily IGP cost, but whatever has been chosen to be carried in NH SAFI)".  See also Appendix A.2.  Although I see the "simplicity" of wanting to go with this latter direction (non-IGP cost in NH_SAFI), I think it has the potential to create some significant operational (and/or, implementation) hazards and thus should be considered for removal.  Unless, someone can convince us that it is, after all, "safe".  More specifically, I think:
    a)  If a node -- let's say it's another RR client in the same cluster -- does not understand (hasn't implemented) NH_SAFI, then how is it supposed to receive the NH value + "special cost", which presumably is needed at a bare minimum for routes to pass BGP's NEXT_HOP reachability check?  
        i)  At the very least, this makes an assumption and puts a burden on the RR client to have, at the very least, a less specific route for the NH in it's IGP (or traditional BGP) for that purpose, which should get documented in a Operational Considerations section.
        ii) What's potentially more concerning is that if RR clients in the same cluster are configured to be fully iBGP meshed, (not using client-to-client reflection on their RR), then if one of those RR clients can't see the NH_SAFI, then it could fall back on the IGP metric and make an inconsistent path selection and lead to forwarding loops.
    b)  Can an operator stick any value he/she wants for NEXT_HOP in that field of the NH_SAFI?  Or, must the implementation only send a NEXT_HOP in NH_SAFI, when it has a valid match (IPv4 /32 or IPv6 /128?) for that NEXT_HOP in their IGP routing table?
    c)  Is the NH_SAFI + "special cost" only supposed to be configured on the RR or on the RR-clients and sent to the RR?  (I think it's the latter).  Regardless, it should be recommended that the RR-client must always send a consistent NH_SAFI + "special cost" to it's redundant set of (upstream) RR's -- or, the RR's must be configured identically with the same NH_SAFI + "special cost" -- in order to ensure consistent path selection at the redundant set of RR's.

2)  I think the document could benefit from an "Applicability Statement" section, which:
    a)  More clearly articulates that this solution is primarily intended to be used in networks whose RR's don't have full visibility to IGP costs from the perspective of each of its clients due to well-known issues with lack of IGP visibility due to Inter-Area or Inter-Level summarization.
    b)  I don't think this draft is aimed at Inter-AS use, since presumably MED's are still sufficient in that case?  Either way, that should get clarified.

3)  I also think the document could benefit from an "Operational Considerations" section, which:
    a)  Discusses whether changes to "Administrative Distance" are needed at the RR's, specifically for the NH_SAFI addresses.  Are these going to be required (manually) by Operators or automatically through the implementators of NH_SAFI so that NH_SAFI are consistently selected for NH resolution compared to traditional IGP metric costs.  For example, on Cisco iBGP AD is 200 vs. IGP's such as OSPF or ISIS that are at 110 and 115, respectively.  (There is a very brief discussion already in Section 3 that talks about using NH_SAFI instead of IGP cost, but it's not clear if this is enforced through the implementation of NH_SAFI or if it will be required of the operator to manually tune AD's to get this 'right').
    b)  Recommendations that it would probably be advisable for operators to enable and tune SPF throttling in their networks and, more importantly, that implementations of NH_SAFI only flood "new" NH_SAFI information _after_ an SPF has occurred.  This would hopefully mitigate a vicious feedback loop from the IGP cranking through lots of SPF's and shoving that info into BGP toward an, already very busy, RR.

Thanks,

-shane


On Nov 16, 2011, at 2:06 AM, John Scudder wrote:
> Folks,
> 
> We have received a request from the authors to adopt draft-varlashkin-bgp-nh-cost-02 as an IDR WG document.  Please send your comments to the list.  The deadline for comments is December 5, 2011 at noon EST.
> 
> Thanks,
> 
> --John
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email