Re: [Idr] WG Work item call - Opinions on work items (3/5/2016 to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt
Gunter Van De Velde <guntervandeveldecc@icloud.com> Mon, 07 March 2016 09:28 UTC
Return-Path: <guntervandeveldecc@icloud.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 73B001B3D2A for <idr@ietfa.amsl.com>; Mon, 7 Mar 2016 01:28:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4MRv0RU1Gl5s for <idr@ietfa.amsl.com>; Mon, 7 Mar 2016 01:28:34 -0800 (PST)
Received: from st11p00im-asmtp001.me.com (st11p00im-asmtp001.me.com [17.172.80.95]) (using TLSv1.2 with cipher DHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 028F31B3D21 for <idr@ietf.org>; Mon, 7 Mar 2016 01:28:34 -0800 (PST)
Received: from [127.0.0.1] (ec2-52-70-63-169.compute-1.amazonaws.com [52.70.63.169]) by st11p00im-asmtp001.me.com (Oracle Communications Messaging Server 7.0.5.36.0 64bit (built Sep 8 2015)) with ESMTPSA id <0O3N00OTFWZKF700@st11p00im-asmtp001.me.com> for idr@ietf.org; Mon, 07 Mar 2016 09:28:33 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2016-03-07_06:,, signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 clxscore=1015 suspectscore=0 malwarescore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1510270003 definitions=main-1603070178
Content-type: multipart/alternative; boundary="----sinikael-?=_1-14573429121680.8666059907991439"
From: Gunter Van De Velde <guntervandeveldecc@icloud.com>
To: Robert Raszuk <robert@raszuk.net>
In-reply-to: <CA+b+ERmnMPG-F_CfwN4Y9o95phkjGw7RkWhmZuWNExdzzcKNxA@mail.gmail.com>
References: <000b01d17731$29d17230$7d745690$@ndzh.com> <FD1977C9-4898-4E01-BC88-0A9B7F29C56B@icloud.com> <005801d177a6$dcd8fea0$968afbe0$@ndzh.com> <CA+b+ERmnMPG-F_CfwN4Y9o95phkjGw7RkWhmZuWNExdzzcKNxA@mail.gmail.com>
Date: Mon, 07 Mar 2016 10:28:29 +0100
X-Cm-Message-Id: 145734291177548015b8c23f2dad32f5fa0f2bce037ebacf56dd49bfbd5e8903977550
X-Cm-Draft-Id: WyJhIiwxLCJkcmFmdF9pZCIsMTQ1NzM0MjkwOTc2NSwidiIsMV0=
X-Mailer: CloudMagic
Message-id: <1457342912410-3d4101f0-217d1e54-48c0f9c0@icloud.com>
MIME-version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/Mg4mONmJ5k8KgKVGdiUwOgfVyuA>
Cc: idr wg <idr@ietf.org>, Susan Hares <shares@ndzh.com>
Subject: Re: [Idr] WG Work item call - Opinions on work items (3/5/2016 to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Mar 2016 09:28:37 -0000
Indeed Robert, correct observation and roughly alined with mine on the question asking if BGP is best API for SDN policy distribution ... For any new feature potentially added to BGP FS (rfc5575) i feel that the p2mp and indirection property of BGP must be considered as a key component. Be well, G/ Sent using CloudMagic Email [https://cloudmagic.com/k/d/mailapp?ct=pa&cv=8.1.32&pv=6.0.1&source=email_footer_2] On Mon, Mar 07, 2016 at 9:15 AM, Robert Raszuk < robert@raszuk.net [robert@raszuk.net] > wrote: Hi Sue/Gunter, On the topic of problem space, requirements ... etc aren't we reinventing the wheel ? Aren't I2RS documents doing that already ? https://datatracker.ietf.org/wg/i2rs/documents/ [https://datatracker.ietf.org/wg/i2rs/documents/] And if they do is BGP FSv2 the right approach to be used as I2RS channel ? If yes I would question that simply based on the nature of BGP which is p2mp distribution (even if augmented now for other reasons with RTC). In most of the cases network elements need to get unique set of parameters which just does not fit BGP distribution model. If so why BGP? Is using port 179 and reuse of non AF/SAFI specific code the only reason? Or is the problem perhaps due to no APIs and common message bus across vendors and we are trying to fit BGP to become one in the fear that it will take decade(s) for vendors to support new common network element mgmt/API channel ? If we go with FSv2 what is the "read" or telemetry channel from device which will trigger proper FSv2 filter ? Is it again BGP ? - - On FSv1 I think we are ok to proceed. On the question of ordered actions or not I think one may need to support both as likely there will be folks who will need one or the other depending on what they are going to filter :) Best, r. On Sun, Mar 6, 2016 at 1:51 PM, Susan Hares < shares@ndzh.com [shares@ndzh.com] > wrote: Gunter: Thank you for being the first responder to the BGP-FS call for input. My understanding is that you approve option 1, but are concerned about the scope of option 2. Do you feel the actions need ordering for option 1? I will ask those who propose the SDN/NFV work to write their understanding of the use cases for the next IETF, and post it on the list. In the last few interims, there seem to be a consensus of people indicating that the SDN/NFV was a valid use case. However, interims are small discussion formats so the chairs have sent this call for input. On working toward a specific solution space: the IESG has encouraged parallel efforts between problem space development and solutions in order to aid rapid deployment of protocols. The draft-hares-idr-flowspec-combo is a summary of the problem space and solutions from the WG chair’s viewpoint. Thank you for letting me know we need to add problem space details. Sue From: Idr [mailto: idr-bounces@ietf.org [idr-bounces@ietf.org] ] On Behalf Of Gunter Van De Velde Sent: Sunday, March 06, 2016 4:34 AM To: Susan Hares Cc: idr@ietf.org [idr@ietf.org] Subject: Re: [Idr] WG Work item call - Opinions on work items (3/5/2016 to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt My consern with the concept of BGP-FS version 2 is that it means jumping to solution space, even before having a rough agreement on the requirements and scope for a SDN policy distribution mechanism. An additional concern is about using BGP for NFV management as there may be more appropriate mechanisms available (outside BGP). If the intent is to truly use BGP as a mechanism to distribute SDN policies and and related management information, then what does that mean exactly? what does such protocol extension expose as capabilities? What are the use-cases that drive the need for existence of such technology? In that case it may be better to construct a tailor designed BGP Policy Distribution framework version 1 (BGP-PD version 1) I believe in keeping changes to RFC5575 to a minimum, and only extend to simple match/action capabilities that "drive indirection" and "network wide" rules. I also believe that before trying to document a solution space for BGP based SDN policy distribution, that both the problem space and intended protocol properties exposed as consumable SDN API’s need to be discussed and agreed upon. In that light i feel that the concept of a BGP-FS version 2 is not the right approach. G/ On 05 Mar 2016, at 23:48, Susan Hares < shares@ndzh.com [shares@ndzh.com] > wrote: The interim on 3/7/2016 will have a discussion of revisions to the BGP Flow specification (BGP-FS) to add more features. There are two suggested options: 1) A minimal features to existing BGP-FS (option 1) Add a few new match filters to the BGP-FS NLRI and few new actions to the BGP-FS actions (in Extended communities). Actions would need to be done in a defined order. Each new actions would need to define conflicts with existing actions. Best use case: DoS attack prevention 2) Create a BGP-FS version 2 (option 2) Create a new BGP-FS NLRI (v2) with a field that indicates the ordering of the BGP NLRI. Add new BGP-FS actions with an order field in the BGP Wide Communities. Filters are done in the order defined in the filter. Actions are done in the order defined in the actions. Order numbers that tie are handled in a defined order. Best use case: SDN/NFV filter management A write-up on the issues and proposed solutions is contained in: draft-hares-idr-flowspec-combo-01.txt. [https://datatracker.ietf.org/doc/draft-hares-idr-flowspec-combo/] The WG can select both option 1 and option 2. This is a WG work item call for input to the chairs on the scope of the WG item. In you discussion of this topics, the chairs would appreciate if you would indicate if you would support IDR working on option 1, option 2 or both option 1 and 2. This WG call items also includes a call for draft-hares-idr-flowspec-combo-01.txt as a write-up of the work-item options. The WG may wish to split this draft into multiple drafts. The following drafts are being consider for either option: 1) draft-eddy-idr-flowspec-packet-rate 2) draft-hao-idr-flowspec-nv03 3) draft-hao-idr-flowspec-label 4) draft-liang-idr-bgp-flowspec-time 5) draft-litowski-idr-flowspec-interfaceset 6) draft-vandevelde-idr-flowspec-path-redirect 7) draft-li-idr-flowspec-rpd-01.txt 8) draft-wu-idr-flowspec-yang.cfg. If you wish to comment on any of these drafts, we will We will conclude the Call for WG opinions on 3/17/2016 so these authors can have a day to revise and submit their drafts before the draft deadline. Sue Hares and John Scudder PS: draft-li-idr-flowspec-rpd discusses limits on the distribution of the policy which has been recast in draft-hares-idr-flowspec-combo as a bgp-wide community of Container type 1 with an atom of BGP Flow Specification ordering. However, this draft is included in the list to be able to update the mechanism from this draft into that context. The yang model for BGP Flow specification is also included in this work item as it will need to be modified based on the approaches. The yang model is in draft-wu-idr-flowspec-yang-cfg. In your comments, please indicate if you feel these drafts or other drafts. _______________________________________________ Idr mailing list Idr@ietf.org [Idr@ietf.org] https://www.ietf.org/mailman/listinfo/idr [https://www.ietf.org/mailman/listinfo/idr] _______________________________________________ Idr mailing list Idr@ietf.org [Idr@ietf.org] https://www.ietf.org/mailman/listinfo/idr [https://www.ietf.org/mailman/listinfo/idr]
- [Idr] WG Work item call - Opinions on work items … Susan Hares
- Re: [Idr] WG Work item call - Opinions on work it… Gunter Van De Velde
- Re: [Idr] WG Work item call - Opinions on work it… Susan Hares
- Re: [Idr] WG Work item call - Opinions on work it… Robert Raszuk
- Re: [Idr] WG Work item call - Opinions on work it… Gunter Van De Velde
- Re: [Idr] WG Work item call - Opinions on work it… Susan Hares
- [Idr] 答复: WG Work item call - Opinions on work it… Dongjie (Jimmy)
- Re: [Idr] ??: WG Work item call - Opinions on wor… Lucy yong
- Re: [Idr] ??: WG Work item call - Opinions on wor… Haoweiguo
- Re: [Idr] ??: WG Work item call - Opinions on wor… Linda Dunbar
- Re: [Idr] WG Work item call - Opinions on work it… Acee Lindem (acee)
- Re: [Idr] WG Work item call - Opinions on work it… Susan Hares