IETF Logo Mail Archive

Re: [Idr] community of the day - common header

Jared Mauch <jared@puck.Nether.net> Thu, 08 September 2016 23:18 UTC

Return-Path: <jared@puck.nether.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E35F212B2E0 for <idr@ietfa.amsl.com>; Thu, 8 Sep 2016 16:18:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.71
X-Spam-Level:
X-Spam-Status: No, score=-5.71 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.508, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lUt5o1N2UGUV for <idr@ietfa.amsl.com>; Thu, 8 Sep 2016 16:18:42 -0700 (PDT)
Received: from puck.nether.net (puck.nether.net [204.42.254.5]) by ietfa.amsl.com (Postfix) with ESMTP id 263B312B218 for <idr@ietf.org>; Thu, 8 Sep 2016 16:18:41 -0700 (PDT)
Received: by puck.nether.net (Postfix, from userid 162) id D5EB8540930; Thu, 8 Sep 2016 19:18:40 -0400 (EDT)
Date: Thu, 08 Sep 2016 19:18:40 -0400
From: Jared Mauch <jared@puck.Nether.net>
To: Jeffrey Haas <jhaas@pfrc.org>
Message-ID: <20160908231840.GB16775@puck.nether.net>
References: <20160908214031.GA23544@pfrc.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20160908214031.GA23544@pfrc.org>
User-Agent: Mutt/1.7.0 (2016-08-17)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/LqGSUpu9BISjHsMXIcjVBxLYsqI>
Cc: idr@ietf.org
Subject: Re: [Idr] community of the day - common header
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Sep 2016 23:18:44 -0000

On Thu, Sep 08, 2016 at 05:40:31PM -0400, Jeffrey Haas wrote:
> [A portion of this conversation was held not only in the halls at the recent
> Berlin IETF, but at the IDR mic.]
> 
> I'm generally agnostic about the idea of the encoding of a 4:4 style
> community.  The fact that the 4:4 encoding in the wide-comms draft was able
> to shift from TLV (atom) based to flattened as seen in -03 should make it
> obvious that the wide comms draft authors also sees that particular point
> agnosticly.
> 
> The one point that I did push on heavily in earlier discussions is that
> future community (route coloring) mechanisms should stop burning path
> attributes for each new type.  I strongly believe that a new common header
> for future community mechanisms is needed:
> 
> - We shouldn't be burning path attributes for it.  While the code space for
>   it isn't being exhausted fast, it means the only way to discard
>   unparseable attributes (implementation doesn't support) is a general path
>   attribute filtering mechanism.  Such filtering mechanisms are hazardous to
>   the incremental deployment of new BGP features.

	Is there a particular shortcoming in rfc7606 that creates this
[moral] hazard, or are you speaking of the difficulty of writing
the code as referenced below?

> - By using a common header, undesireable classes of communities can be
>   filtered simply by type.  This can be done without any knowledge of the
>   format.

	We already have the collateral damage of filtering of attributes
in the operational space.  The cut+paste SDN model employed by most
providers results in things like the filtering of attribute 128 which will
effectively be permanent for networks.  The same is true for the maximum
as-path limits in place.  BGP fails fast and fails hard, but as the networks
became harder for operators to upgrade the ability to deploy fixed code
is extremely limited.  A 15 year old router could be upgraded much
faster than most modern devices.
	
> To offer an example of why such behaviors are desirable, early deployments
> of extended communities caused unfortunate effects far away from the
> attaching router because intermediate routers didn't understand the
> attributes.  This is a fundamental deployment issue of optional-transitive
> unknown attributes.

	There is inherent risk when introducing anything new.  Bugs happen
and they get fixed, this is part of the process.  As networks became more
business critical and are depended upon, it's much harder to make changes.

> I'm not particularly fond of the theater that has gone into this discussion
> - and good will has been burned by that theater.  But regardless of the
> proposal to implement 4:4, 4:4:4, N:4 ipv6:4 or whatever we invent next
> month, let's nip this bit of deployment madness.
> 
> A proposal for a common header is contained in section 3.1 of the wide
> communities draft.

	If the document has converged, what review is still necessary?
The comments in the past 24-48 hours on-list have made it apparent
to me much of the existing wide work was "field of dreams", if we can
inventory it, they will come [and use it].  This has not seen a benefit
for those networks facing the need, and resulted in extra efforts for
people who did not get a 2-byte ASN to use common tools.

<operational reality follows>

Any code received today will take me ~12 months to deploy.  If wide
communities is ready to WGLC and ship with 3.1, I'd like to see movement
immediately so we can test and plan accordingly.  ~6+ years is quite a
long gestation period for the IETF.

	- Jared


P.S. Jeff, lets get together in person next week if you have time.


-- 
Jared Mauch  | pgp key available via finger from jared@puck.nether.net
clue++;      | http://puck.nether.net/~jared/  My statements are only mine.

v2.23.0 | Report a Bug | By Email