IETF Logo Mail Archive

Re: [Idr] Regarding draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) 10:00am - 11:30am ET update

Robert Raszuk <robert@raszuk.net> Mon, 26 October 2015 19:45 UTC

Return-Path: <rraszuk@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D4251B30CB for <idr@ietfa.amsl.com>; Mon, 26 Oct 2015 12:45:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.977
X-Spam-Level:
X-Spam-Status: No, score=-0.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qQqjiVm6MC3X for <idr@ietfa.amsl.com>; Mon, 26 Oct 2015 12:45:41 -0700 (PDT)
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com [IPv6:2a00:1450:400c:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D66E01B30CA for <idr@ietf.org>; Mon, 26 Oct 2015 12:45:40 -0700 (PDT)
Received: by wikq8 with SMTP id q8so180602133wik.1 for <idr@ietf.org>; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=huIHUqy4qJkK3lGb/nTCMTM/fzh07fZ2OfupFqdUOec=; b=q0g4/Az6yMquqUZa3u4rzKOkJFXbXXsyXIkd0Dtp1lQD+BLl00La15OOl7r4jIS4Ju tYNIEyqXou6nOrnJx17ZJlRZmWb1GRUPRSwVOHHMwY6lysiZM1emyUIKCSRcEbrEMGjg BNhHVl2zZCTmJbG/+jcOBLDeOcImno+HDwyfmj7K23PILJsJFMTiZEVjlh2m3JaDj4M2 HxxxgaimMxYwj4JPwpW8ztWdPusDuwcDxlHN8k+DOwVDSlIDnS28rn7cE2TW54Rmow1I +eKoTheH+wyBCsbayvIzD3HYQjMSiKJgaWfyS/pVhydyZOb9q+0iOnQAW+yAowqXLpxp XQtA==
MIME-Version: 1.0
X-Received: by 10.180.90.175 with SMTP id bx15mr19453944wib.92.1445888739377; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
Sender: rraszuk@gmail.com
Received: by 10.194.114.199 with HTTP; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
In-Reply-To: <42E7A0B2-5765-4F40-B908-216A95688690@icloud.com>
References: <009b01d10f2e$5cc28820$16479860$@ndzh.com> <5A5B4DE12C0DAC44AF501CD9A2B01A8D8CA5C638@nkgeml506-mbx.china.huawei.com> <4D6BC339-51BE-4F90-8858-9B81859858F0@alcatel-lucent.com> <CA+b+ERnU_sXmxzoEj9M=V+6_izqO2ZBTgS0QCJ0HF1h6qqXL-A@mail.gmail.com> <2F377A27-8529-416E-A3E8-BF2B3B6C9C50@alcatel-lucent.com> <CA+b+ERmnkajGwDSEDcPwMXj_QqCwAHydRgDe=Oyg+otpDTqY5A@mail.gmail.com> <1445881659836-b092aa37-9aa8905c-fae8f9db@icloud.com> <CA+b+ERm8PaptB-ZYPWT8M-hhUkABR_h2SQQXZQWVXCOHDVBsPA@mail.gmail.com> <42E7A0B2-5765-4F40-B908-216A95688690@icloud.com>
Date: Mon, 26 Oct 2015 20:45:39 +0100
X-Google-Sender-Auth: 5R_4f6Eo-mWYyRQWnOAnL6cQQ3g
Message-ID: <CA+b+ERmi_Hbd15VRdZz_bTQKPXVYjQmPDaQX2tFvAQrvyJpNdg@mail.gmail.com>
From: Robert Raszuk <robert@raszuk.net>
To: Gunter Van De Velde <guntervandeveldecc@icloud.com>
Content-Type: multipart/alternative; boundary="f46d043c7d80b20d4705230734a8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/NsEjssiiJyQLzp-67Z-kW8ZgSQY>
Cc: idr wg <idr@ietf.org>, Susan Hares <shares@ndzh.com>, "John G. Scudder" <jgs@bgp.nu>
Subject: Re: [Idr] Regarding draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) 10:00am - 11:30am ET update
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Oct 2015 19:45:45 -0000

> On PE1 the localised mapping of PATH_ID1 goes to Tunnel 1
> On PE2 the localised mapping of PATH_ID1 goes to Tunnel 2

That would be highly confusing operationally.

> then the PATH_ID could seen as this VRF

If so why not to use VRF which is already supported by all implementations?
Having N ways to signal the same is never good idea.

Moreover you are not to worry about new mapping entity on all PEs of
PATH_IDs to forwarding.

But at least you got my point :)

Cheers,
R.




On Mon, Oct 26, 2015 at 8:33 PM, Gunter Van De Velde <
guntervandeveldecc@icloud.com> wrote:

> Ah… i think i see where the misunderstanding came from…
>
> Assume:
> Flowspec rule 1 = [MATCH1] & [redirect_to_PATH_ID1]
>
> PATH_ID1 = redirect identifier to redirect_service_1
>
> Redirect service has localised meaning:
> On PE1 the localised mapping of PATH_ID1 goes to Tunnel 1
> On PE2 the localised mapping of PATH_ID1 goes to Tunnel 2
> Hence PATH_ID provides localised indirection, just like in the VRF case…
> (the mapping of PATH_ID to the tunnel is done by a localised PATH_ID
> indexed table)
>
> i.e. look at an extreme use-case example: assume a VRF has only a single
> route (0/0) then the PATH_ID could
> seen as this VRF…. it would result in exactly the same forwarding compared
> to using VRF redirect
> or PATH_ID redirect in this extreme case…
>
>
> G/
>
>
>
>
> On 26 Oct 2015, at 20:10, Robert Raszuk <robert@raszuk.net> wrote:
>
> > I see no difference as with traditional flowspec where
> > redirect is to VRF or even IP address... Its same situation
> > there.
>
> I don't think it is same situation.
>
> Redirect to VRF provides local indirection. VRF can be the same on all PEs
> where you map redirected data to whatever you like.
>
> Redirect to IP also is very different as the IP address typically
> represents a single point (or anycast point) of processing device for all
> redirected flows from all PEs.
>
> The draft in the subject however as you have also explained targets to
> provide mapping to unique per PE PATH_IDs for the same flow.
>
> Perhaps you can illustrate on example how flowspec update coming from PE1
> via RR can influence for a given NLRI matching traffic to take different
> PATH-IDs on PE2 and PE3.
>
> Cheers,
> r.
>
>
>
>
> On Mon, Oct 26, 2015 at 6:47 PM, Gunter Van De Velde <
> guntervandeveldecc@icloud.com> wrote:
>
>> There is miscommunication somewhere.
>>
>> Why do i wanna send another PATH_ID in a new NLRI? That does indeed do
>> what you indicate. However that is not the intention.
>>
>> I see no difference as with traditional flowspec where redirect is to VRF
>> or even IP address... Its same situation there.
>>
>> G/
>>
>>
>> Sent using CloudMagic Email
>> <https://cloudmagic.com/k/d/mailapp?ct=pa&cv=7.4.10&pv=6.0&source=email_footer_2>
>> On Mon, Oct 26, 2015 at 6:35 PM, Robert Raszuk <robert@raszuk.net> wrote:
>>
>> Gunter,
>>
>> Sorry but I am afraid this does not work :(.
>>
>> BGP uses notion of implicit withdraw for a given NLRI.
>>
>> So for particular flow NLRI I can advertise only single PATH_ID as
>> subsequent NLRI with different PATH_ID will be treated as withdraw of the
>> former.
>>
>> So if indeed as you said "..each PE the redirect tunnel will share the
>> unique PATH_ID .." that effectively means that for a given flow NLRI I can
>> advertise redirect service to only one PE pretty much killing p2mp
>> advantage of BGP and what's worse blocking from advertising the same flow
>> NLRI with any different set of actions.
>>
>> Best,
>> R.
>>
>>
>>
>>
>> On Mon, Oct 26, 2015 at 6:15 PM, VAN DE VELDE, Gunter (Gunter) <
>> gunter.van_de_velde@alcatel-lucent.com> wrote:
>>
>>> Robert,
>>>
>>> Yeah, BGP is indeed p2mp relationship… This is important to keep in
>>> mind, and that it is exactly why PATH-ID makes sense.
>>>
>>> With 32-bit you have 2^32 and with 128-bit you have 2^128 unique
>>> identifiers. That is quite a lot and will serve redirect policies in most
>>> networks I would assume.
>>>
>>> In manual setup it is simple for a single PE:
>>>
>>>    - Preconfigure the PE with a tunnel and map it to a given unique
>>>    PATH_ID
>>>    - This tunnel now exists, however it is not used
>>>    -  Now the controller (i.e. vRR) sends a flow spec rule to identify
>>>    the traffic using this tunnel and steers traffic into this tunnel
>>>
>>> When you have multiple PE’s using a single redirect service:
>>>
>>>    - Same setup as above, but on each PE the redirect tunnel will share
>>>    the unique PATH_ID reflecting the redirect tunnel service
>>>    - (there is no relationship that the destination is the same… just
>>>    the redirect service is the same)
>>>
>>> When you have 5000 of these Redirect services planned:
>>>
>>>    - Manual config will make you go crazy very soon
>>>    - The above can be 100% orchestrated or a mix of manual/orchestrated
>>>    could be used
>>>
>>>
>>> The benefit of redirect-to-PATH_ID facilitates that network redirect
>>> service it decoupled from the tunnel creation/characteristics. hence the
>>> setup of a mp2p tunnel is beyond the scope the path_ID redirect draft if
>>> that happens to be the redirect service you had in mind.
>>>
>>> G/
>>>
>>>
>>> From: <rraszuk@gmail.com> on behalf of Robert Raszuk <robert@raszuk.net>
>>> Date: Monday 26 October 2015 at 17:41
>>> To: Gunter Van de Velde <gunter.van_de_velde@alcatel-lucent.com>
>>> Cc: Lizhenbin <lizhenbin@huawei.com>, Susan Hares <shares@ndzh.com>, "
>>> idr@ietf.org" <idr@ietf.org>, "jgs@bgp.nu" <jgs@bgp.nu>
>>> Subject: Re: [Idr] Regarding
>>> draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015)
>>> 10:00am - 11:30am ET update
>>>
>>> Hi Gunter,
>>>
>>> Let's observe that BGP signalling is p2mp.
>>>
>>> Now let's also notice that as you correctly state TE tunnels are rather
>>> custom crafted p2p entities.
>>>
>>> Then natural question comes to mind ...
>>>
>>> How good does it serve to signal identical PATH_ID to all head ends for
>>> a given flow while what you need to do is to map it rather uniquely in the
>>> network ?
>>>
>>> While in theory one could construct number of mp2p TE forwarding graphs
>>> each with identical PATH_ID on a per flow basis I bet in practice this was
>>> not the application you had in mind as its opex would be rather high as
>>> compared to real practical usefulness :)
>>>
>>> Side question ... How are you going to provision mp2p TE ? Are you going
>>> to dust-off some proposals for it from the past ? Example:
>>> https://tools.ietf.org/html/draft-yasukawa-mpls-mp2p-rsvpte-06
>>>
>>> Or was perhaps your plan to provision number of p2p TE tunnels from
>>> PCE/Controller with the identical PATH_IDs ?
>>>
>>> Cheers,
>>> R.
>>>
>>>
>>> On Mon, Oct 26, 2015 at 5:26 PM, VAN DE VELDE, Gunter (Gunter) <
>>> gunter.van_de_velde@alcatel-lucent.com> wrote:
>>>
>>>> Hi Robin,
>>>>
>>>> Thanks for your note.
>>>>
>>>> A tunnel is not always going over shortest path. Some tunnels are TE
>>>> tunnels and are deliberately not going over a shortest path. This is
>>>> something that draft-rosen-idr-tunnel-encaps-00 will not help to
>>>> signal because the tunnel-encap attribute indicates tunnel parameters used
>>>> by the tail-end.
>>>>
>>>> If a redirect tunnel represents a particular redirect/steering service
>>>> (better delay, less packet loss, non-SRLG, more BW, etc…) then it does
>>>> become rather complex for BGP as signalling technology because a tunnel
>>>> relationship is a unique between 'a headend' and ‘a tailed' device. It
>>>> seems better to leave tunnel-setup to dedicated tunnel-setup mechanisms
>>>> like PCEP, SR, etc….
>>>>
>>>> The draft redirect-to-PATH_ID is providing the means to signal a
>>>> flow-based redirect/steering service, and have each recipient router
>>>> identify using local recursion for the PATH_IDs the corresponding
>>>> tunnels/redirect-info. This allows for tunnel setup complexity to be taken
>>>> away from BGP, while at the same time BGP is doing what it is very good at
>>>> doing: "It signals a policy” in reliable fashion.
>>>>
>>>> Kind Regards,
>>>> G/
>>>>
>>>>
>>>>
>>>> From:  Idr <idr-bounces@ietf.org> on behalf of Lizhenbin <
>>>> lizhenbin@huawei.com>
>>>> Date: Monday 26 October 2015 at 16:51
>>>> To: Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org>
>>>> Cc: "jgs@bgp.nu" <jgs@bgp.nu>
>>>> Subject: [Idr] Regarding
>>>> draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015)
>>>> 10:00am - 11:30am ET update
>>>>
>>>> Hi Gunter,
>>>>
>>>> Regarding your presentation, I have following comments:
>>>>
>>>> Do you mean draft-hao-idr-flowspec-redirect-tunnel is to signal tunnel
>>>> setup info? draft-hao-idr-flowspec-redirect-tunnel is to steer traffic to
>>>> the tunnel instead of signal tunnel setup.
>>>>
>>>> I am not sure if the reuse of draft-rosen-idr-tunnel-encaps-00 in the
>>>> draft make you confused? We just hope to  just reuses the attributes of to
>>>> specify the tunnel type to help steering
>>>>
>>>> the traffic to tunnel. If this is not a good way, maybe we can define
>>>> new attributes.
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> Best Regards,
>>>>
>>>> Robin
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> *发件人:* Idr [mailto:idr-bounces@ietf.org <idr-bounces@ietf.org>] *代表 *Susan
>>>> Hares
>>>> *发送时间:* 2015年10月25日 22:07
>>>> *收件人:* idr@ietf.org
>>>> *抄送:* jgs@bgp.nu
>>>> *主题:* [Idr] IDR interim (10/26/2015) 10:00am - 11:30am ET update
>>>>
>>>>
>>>>
>>>> IDR WG members:
>>>>
>>>>
>>>>
>>>> Below is an updated agenda for the IDR interim on 10/26/2015.
>>>>
>>>>
>>>>
>>>> Sue
>>>>
>>>>
>>>>
>>>> ------------
>>>>
>>>> IDR interim October 26, 2015
>>>>
>>>> 10:00 - 11:30am
>>>>
>>>>
>>>>
>>>> 1. Chair's slides [10:00-10:05]
>>>>
>>>>
>>>>
>>>> 1. draft-litkowski-idr-flowspec-interfaceset-01.txt
>>>>
>>>>    speaker: Stephane Litowski
>>>>
>>>>    Time: 10:05-10:15
>>>>
>>>>
>>>> https://datatracker.ietf.org/doc/draft-litkowski-idr-flowspec-interfaceset/
>>>>
>>>>
>>>>
>>>> 2. draft-hao-idr-flowspec-redirect-tunnel-00
>>>>
>>>>    Speaker: Weiguo Hao
>>>>
>>>>    Time: 10:15 - 10:25
>>>>
>>>>
>>>> http://datatracker.ietf.org/doc/draft-hao-idr-flowspec-redirect-tunnel/
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> 3. draft-vandevelde-idr-flowspec-path-redirect
>>>>
>>>>    Speaker: Gunter Van De Velde
>>>>
>>>>    Time: 10:25- 10:35
>>>>
>>>>
>>>> http://datatracker.ietf.org/doc/draft-vandevelde-idr-flowspec-path-redirect/
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> 4. Draft Name: draft-hao-idr-flowspec-nvo3-02
>>>>
>>>>    Speaker: Weiguo Hao
>>>>
>>>>    Duration: 10:35-10:40
>>>>
>>>>    http://datatracker.ietf.org/doc/draft-hao-idr-flowspec-nvo3/
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> 5. draft-liang-idr-bgp-flowspec-label-01.txt.
>>>>
>>>>    Speaker:
>>>>
>>>>    Duration: 10:40-10:45
>>>>
>>>>   http://datatracker.ietf.org/doc/draft-liang-idr-bgp-flowspec-label/
>>>>
>>>>
>>>>
>>>> 6. draft-liang-idr-bgp-flowspec-time
>>>>
>>>>    presenter: Jianjie You
>>>>
>>>>    time: 10:45-10:55
>>>>
>>>>    http://datatracker.ietf.org/doc/draft-liang-idr-bgp-flowspec-time/
>>>>
>>>>
>>>>
>>>> 7. Draft Name: draft-li-idr-mpls-path-programming-02
>>>>
>>>>    Speaker: Zhenbin Li
>>>>
>>>>    Duration: 10:55-11:05
>>>>
>>>>    http://datatracker.ietf.org/doc/draft-li-idr-mpls-path-programming/
>>>>
>>>>
>>>>
>>>> 7. Draft Name: draft-li-idr-flowspec-rpd-01
>>>>
>>>>    Speaker: Shunwan Zhuang
>>>>
>>>>    Duration: 11:05 - 11:15
>>>>
>>>>    http://datatracker.ietf.org/doc/draft-li-idr-flowspec-rpd/
>>>>
>>>>
>>>>
>>>> 8.  Discussion of Flowspec drafts
>>>>
>>>>     11:15 - 11:30am
>>>>
>>>>
>>>>
>>>>  Meeting Web-ex information
>>>>
>>>>  Monday, October 26, 2015
>>>>
>>>> 10:00 am  |  Eastern Daylight Time (New York, GMT-04:00)  |  2 hrs
>>>>
>>>>
>>>>
>>>> webex infor:
>>>>
>>>> https://ietf.webex.com/ietf/j.php?MTID=mae6cf241d3adf214033e599c3ff3143f
>>>>
>>>>
>>>>
>>>> Meeting number:            644 964 970
>>>>
>>>> Meeting password:         flow.in.nets
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> Join by phone
>>>>
>>>> 1-877-668-4493 Call-in toll free number (US/Canada)
>>>>
>>>> 1-650-479-3208 Call-in toll number (US/Canada)
>>>>
>>>> Access code: 644 964 970
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> Idr mailing list
>>>> Idr@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/idr
>>>>
>>>>
>>>
>>
>
>

v2.23.0 | Report a Bug | By Email