Re: [Idr] New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
<stephane.litkowski@orange.com> Fri, 22 August 2014 11:54 UTC
Return-Path: <stephane.litkowski@orange.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B15E51A02A5; Fri, 22 Aug 2014 04:54:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wI7sHPbxcNYJ; Fri, 22 Aug 2014 04:54:55 -0700 (PDT)
Received: from relais-inet.francetelecom.com (relais-ias245.francetelecom.com [80.12.204.245]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47C1D1A02A2; Fri, 22 Aug 2014 04:54:55 -0700 (PDT)
Received: from omfeda08.si.francetelecom.fr (unknown [xx.xx.xx.201]) by omfeda14.si.francetelecom.fr (ESMTP service) with ESMTP id B55872AC8BC; Fri, 22 Aug 2014 13:54:52 +0200 (CEST)
Received: from Exchangemail-eme2.itn.ftgroup (unknown [10.114.31.55]) by omfeda08.si.francetelecom.fr (ESMTP service) with ESMTP id 94E3838405A; Fri, 22 Aug 2014 13:54:52 +0200 (CEST)
Received: from OPEXCLILM34.corporate.adroot.infra.ftgroup ([169.254.4.43]) by OPEXCLILH03.corporate.adroot.infra.ftgroup ([10.114.31.55]) with mapi id 14.03.0195.001; Fri, 22 Aug 2014 13:54:52 +0200
From: stephane.litkowski@orange.com
To: Robert Raszuk <robert@raszuk.net>
Thread-Topic: [Idr] New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
Thread-Index: AQHPvfHz+vM3SQF4JESovaaEVhZ4H5vcgKvQ
Date: Fri, 22 Aug 2014 11:54:51 +0000
Message-ID: <19516_1408708492_53F72F8C_19516_6719_1_9E32478DFA9976438E7A22F69B08FF9207DBD1@OPEXCLILM34.corporate.adroot.infra.ftgroup>
References: <20140820002030.18902.50278.idtracker@ietfa.amsl.com> <DD5FC8DE455C3348B94340C0AB5517334F7F21D1@nkgeml501-mbs.china.huawei.com> <B17A6910EEDD1F45980687268941550F06D74DB1@MISOUT7MSGUSRCD.ITServices.sbc.com> <DD5FC8DE455C3348B94340C0AB5517334F7F2339@nkgeml501-mbs.china.huawei.com> <29476_1408695761_53F6FDD1_29476_12929_1_9E32478DFA9976438E7A22F69B08FF9207DB14@OPEXCLILM34.corporate.adroot.infra.ftgroup> <CA+b+ERknOzLm_ixQ_RGP2=x=FRestmhoL3P4m=6qRHy5xV8ygA@mail.gmail.com>
In-Reply-To: <CA+b+ERknOzLm_ixQ_RGP2=x=FRestmhoL3P4m=6qRHy5xV8ygA@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.168.234.3]
Content-Type: multipart/alternative; boundary="_000_9E32478DFA9976438E7A22F69B08FF9207DBD1OPEXCLILM34corpor_"
MIME-Version: 1.0
X-PMX-Version: 6.0.3.2322014, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2014.8.22.103021
Archived-At: http://mailarchive.ietf.org/arch/msg/idr/M-VFN2mpfDCnDmdLShdLUk9Yp9M
Cc: "l2vpn@ietf.org" <l2vpn@ietf.org>, "idr@ietf.org" <idr@ietf.org>, liuweihang <liuweihang@huawei.com>, "ju1738@att.com" <ju1738@att.com>
Subject: Re: [Idr] New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Aug 2014 11:55:00 -0000
Hi Robert, Pls find inline comments From: rraszuk@gmail.com [mailto:rraszuk@gmail.com] On Behalf Of Robert Raszuk Sent: Friday, August 22, 2014 12:15 To: LITKOWSKI Stephane SCE/IBNF Cc: ju1738@att.com; liuweihang; l2vpn@ietf.org; idr@ietf.org; Haoweiguo Subject: Re: [Idr] New Version Notification for draft-hao-idr-flowspec-evpn-00.txt Stephane, Is FS even comparable to openflow? [SLI] It may be used in a similar way … P2MP distribution has advantage when same type of information is required to be present in large number of locations. [SLI] Right, and there are plenty of applications beyond DDoS. I think the attempt to build directed arcs with RTC for more and more types of data is not right direction. [SLI] I don’t really see why you’re talking about RTC there … How about Opflex ? http://tools.ietf.org/html/draft-smith-opflex-00 [SLI] May be another tool in the tool chest … Best, R. On Aug 22, 2014 10:22 AM, <stephane.litkowski@orange.com<mailto:stephane.litkowski@orange.com>> wrote: Hi, I think this is a valuable addition, but I would like to see these MAC filters being applicable also to IPv4 plugs (FS IPv4 & VPNv4) Moreover , the new AFI/SAFI should not be restricted to EVPN, any L2 interface may be interested by such filter (VPLS, basic L2 switching ...). Route distinguisher may be is missing ... Now more globally, may be it's time to think more globally about the evolution of FS. I pretty see FS evolution largely beyond DDoS domain. FS is a very good protocol for SDN applications. The question behind is do we really need to work with multiple address families for each type of "service"/"interface type" to filter or do we need to have a more global model where we would be able to put any type of filter any where and apply multiple actions (openflow like FS). Compared to openflow, FS has the magic to enable multipoint distribution of actions. Best Regards, Stephane -----Original Message----- From: Idr [mailto:idr-bounces@ietf.org<mailto:idr-bounces@ietf.org>] On Behalf Of Haoweiguo Sent: Thursday, August 21, 2014 04:11 To: UTTARO, JAMES; 'idr@ietf.org<mailto:idr@ietf.org>'; 'l2vpn@ietf.org<mailto:l2vpn@ietf.org>' Cc: liuweihang Subject: [Idr] 答复: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt Hi Jim, Thanks for your comments. The BGP Flowspec procedures is illustrated as following: EVPN FlowSpec Session EVPN FlowSpec Session DDOS Detection Appliance--------------------------Egress PE-----------------------------Ingress PE------CE2 | CE1 DDOS Detection Appliance establishes EVPN flowspec session with Egress PE, it detects DDOS attack traffic and generate ACL rule, the ACL rule is announced to Egress PE through EVPN flowspec protocol, then the egress PE announces it to ingress PE, finally ingress PE installs the ACL rule for traffic filtering. DDOS Detection Appliance only needs to support EVPN flowspec function, it doesn't need to support basic EVPN function. Thanks weiguo ________________________________________ 发件人: UTTARO, JAMES [ju1738@att.com<mailto:ju1738@att.com>] 发送时间: 2014年8月21日 0:29 收件人: Haoweiguo; 'idr@ietf.org<mailto:idr@ietf.org>'; 'l2vpn@ietf.org<mailto:l2vpn@ietf.org>' 抄送: liuweihang 主题: RE: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt Weiguo, I would like to better understand how a remote PE will "learn" that it needs to deliver a FS path to the ingress PE?? It cannot come from the CE as that is data plane learning. I would think that all FS paths have to be disseminated by a centralized controller. Jim Uttaro -----Original Message----- From: Idr [mailto:idr-bounces@ietf.org<mailto:idr-bounces@ietf.org>] On Behalf Of Haoweiguo Sent: Tuesday, August 19, 2014 8:31 PM To: idr@ietf.org<mailto:idr@ietf.org>; l2vpn@ietf.org<mailto:l2vpn@ietf.org> Cc: liuweihang Subject: [Idr] 答复: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt Hi All, We have submitted a draft of " Dissemination of Flow Specification Rules for EVPN". I will appriciate if you can give us some suggestions and comments. Thanks weiguo ________________________________________ 发件人: internet-drafts@ietf.org<mailto:internet-drafts@ietf.org> [internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>] 发送时间: 2014年8月20日 8:20 收件人: Zhuangshunwan; Haoweiguo; liuweihang; Zhuangshunwan; liuweihang; Haoweiguo 主题: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt A new version of I-D, draft-hao-idr-flowspec-evpn-00.txt has been successfully submitted by Weiguo Hao and posted to the IETF repository. Name: draft-hao-idr-flowspec-evpn Revision: 00 Title: Dissemination of Flow Specification Rules for EVPN Document date: 2014-08-20 Group: Individual Submission Pages: 7 URL: http://www.ietf.org/internet-drafts/draft-hao-idr-flowspec-evpn-00.txt Status: https://datatracker.ietf.org/doc/draft-hao-idr-flowspec-evpn/ Htmlized: http://tools.ietf.org/html/draft-hao-idr-flowspec-evpn-00 Abstract: This document defines BGP flow-spec extension for Ethernet traffic filtering in EVPN network. A new BGP NLRI type (AFI=25, SAFI=TBD) value is proposed to identify EVPN flow-spec application. A new subset of component types and extended community also are defined. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>. The IETF Secretariat _______________________________________________ Idr mailing list Idr@ietf.org<mailto:Idr@ietf.org> https://www.ietf.org/mailman/listinfo/idr _______________________________________________ Idr mailing list Idr@ietf.org<mailto:Idr@ietf.org> https://www.ietf.org/mailman/listinfo/idr _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you. _______________________________________________ Idr mailing list Idr@ietf.org<mailto:Idr@ietf.org> https://www.ietf.org/mailman/listinfo/idr _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- Re: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… Dongjie (Jimmy)
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- Re: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- [Idr] 答复: New Version Notification for draft-hao-… Haoweiguo
- Re: [Idr] New Version Notification for draft-hao-… Bertrand Duvivier (bduvivie)
- Re: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk