Re: [Idr] Regarding draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) 10:00am - 11:30am ET update
Robert Raszuk <robert@raszuk.net> Mon, 26 October 2015 19:45 UTC
Return-Path: <rraszuk@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D4251B30CB for <idr@ietfa.amsl.com>; Mon, 26 Oct 2015 12:45:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.977
X-Spam-Level:
X-Spam-Status: No, score=-0.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qQqjiVm6MC3X for <idr@ietfa.amsl.com>; Mon, 26 Oct 2015 12:45:41 -0700 (PDT)
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com [IPv6:2a00:1450:400c:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D66E01B30CA for <idr@ietf.org>; Mon, 26 Oct 2015 12:45:40 -0700 (PDT)
Received: by wikq8 with SMTP id q8so180602133wik.1 for <idr@ietf.org>; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=huIHUqy4qJkK3lGb/nTCMTM/fzh07fZ2OfupFqdUOec=; b=q0g4/Az6yMquqUZa3u4rzKOkJFXbXXsyXIkd0Dtp1lQD+BLl00La15OOl7r4jIS4Ju tYNIEyqXou6nOrnJx17ZJlRZmWb1GRUPRSwVOHHMwY6lysiZM1emyUIKCSRcEbrEMGjg BNhHVl2zZCTmJbG/+jcOBLDeOcImno+HDwyfmj7K23PILJsJFMTiZEVjlh2m3JaDj4M2 HxxxgaimMxYwj4JPwpW8ztWdPusDuwcDxlHN8k+DOwVDSlIDnS28rn7cE2TW54Rmow1I +eKoTheH+wyBCsbayvIzD3HYQjMSiKJgaWfyS/pVhydyZOb9q+0iOnQAW+yAowqXLpxp XQtA==
MIME-Version: 1.0
X-Received: by 10.180.90.175 with SMTP id bx15mr19453944wib.92.1445888739377; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
Sender: rraszuk@gmail.com
Received: by 10.194.114.199 with HTTP; Mon, 26 Oct 2015 12:45:39 -0700 (PDT)
In-Reply-To: <42E7A0B2-5765-4F40-B908-216A95688690@icloud.com>
References: <009b01d10f2e$5cc28820$16479860$@ndzh.com> <5A5B4DE12C0DAC44AF501CD9A2B01A8D8CA5C638@nkgeml506-mbx.china.huawei.com> <4D6BC339-51BE-4F90-8858-9B81859858F0@alcatel-lucent.com> <CA+b+ERnU_sXmxzoEj9M=V+6_izqO2ZBTgS0QCJ0HF1h6qqXL-A@mail.gmail.com> <2F377A27-8529-416E-A3E8-BF2B3B6C9C50@alcatel-lucent.com> <CA+b+ERmnkajGwDSEDcPwMXj_QqCwAHydRgDe=Oyg+otpDTqY5A@mail.gmail.com> <1445881659836-b092aa37-9aa8905c-fae8f9db@icloud.com> <CA+b+ERm8PaptB-ZYPWT8M-hhUkABR_h2SQQXZQWVXCOHDVBsPA@mail.gmail.com> <42E7A0B2-5765-4F40-B908-216A95688690@icloud.com>
Date: Mon, 26 Oct 2015 20:45:39 +0100
X-Google-Sender-Auth: 5R_4f6Eo-mWYyRQWnOAnL6cQQ3g
Message-ID: <CA+b+ERmi_Hbd15VRdZz_bTQKPXVYjQmPDaQX2tFvAQrvyJpNdg@mail.gmail.com>
From: Robert Raszuk <robert@raszuk.net>
To: Gunter Van De Velde <guntervandeveldecc@icloud.com>
Content-Type: multipart/alternative; boundary="f46d043c7d80b20d4705230734a8"
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/NsEjssiiJyQLzp-67Z-kW8ZgSQY>
Cc: idr wg <idr@ietf.org>, Susan Hares <shares@ndzh.com>, "John G. Scudder" <jgs@bgp.nu>
Subject: Re: [Idr] Regarding draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) 10:00am - 11:30am ET update
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Oct 2015 19:45:45 -0000
> On PE1 the localised mapping of PATH_ID1 goes to Tunnel 1 > On PE2 the localised mapping of PATH_ID1 goes to Tunnel 2 That would be highly confusing operationally. > then the PATH_ID could seen as this VRF If so why not to use VRF which is already supported by all implementations? Having N ways to signal the same is never good idea. Moreover you are not to worry about new mapping entity on all PEs of PATH_IDs to forwarding. But at least you got my point :) Cheers, R. On Mon, Oct 26, 2015 at 8:33 PM, Gunter Van De Velde < guntervandeveldecc@icloud.com> wrote: > Ah… i think i see where the misunderstanding came from… > > Assume: > Flowspec rule 1 = [MATCH1] & [redirect_to_PATH_ID1] > > PATH_ID1 = redirect identifier to redirect_service_1 > > Redirect service has localised meaning: > On PE1 the localised mapping of PATH_ID1 goes to Tunnel 1 > On PE2 the localised mapping of PATH_ID1 goes to Tunnel 2 > Hence PATH_ID provides localised indirection, just like in the VRF case… > (the mapping of PATH_ID to the tunnel is done by a localised PATH_ID > indexed table) > > i.e. look at an extreme use-case example: assume a VRF has only a single > route (0/0) then the PATH_ID could > seen as this VRF…. it would result in exactly the same forwarding compared > to using VRF redirect > or PATH_ID redirect in this extreme case… > > > G/ > > > > > On 26 Oct 2015, at 20:10, Robert Raszuk <robert@raszuk.net> wrote: > > > I see no difference as with traditional flowspec where > > redirect is to VRF or even IP address... Its same situation > > there. > > I don't think it is same situation. > > Redirect to VRF provides local indirection. VRF can be the same on all PEs > where you map redirected data to whatever you like. > > Redirect to IP also is very different as the IP address typically > represents a single point (or anycast point) of processing device for all > redirected flows from all PEs. > > The draft in the subject however as you have also explained targets to > provide mapping to unique per PE PATH_IDs for the same flow. > > Perhaps you can illustrate on example how flowspec update coming from PE1 > via RR can influence for a given NLRI matching traffic to take different > PATH-IDs on PE2 and PE3. > > Cheers, > r. > > > > > On Mon, Oct 26, 2015 at 6:47 PM, Gunter Van De Velde < > guntervandeveldecc@icloud.com> wrote: > >> There is miscommunication somewhere. >> >> Why do i wanna send another PATH_ID in a new NLRI? That does indeed do >> what you indicate. However that is not the intention. >> >> I see no difference as with traditional flowspec where redirect is to VRF >> or even IP address... Its same situation there. >> >> G/ >> >> >> Sent using CloudMagic Email >> <https://cloudmagic.com/k/d/mailapp?ct=pa&cv=7.4.10&pv=6.0&source=email_footer_2> >> On Mon, Oct 26, 2015 at 6:35 PM, Robert Raszuk <robert@raszuk.net> wrote: >> >> Gunter, >> >> Sorry but I am afraid this does not work :(. >> >> BGP uses notion of implicit withdraw for a given NLRI. >> >> So for particular flow NLRI I can advertise only single PATH_ID as >> subsequent NLRI with different PATH_ID will be treated as withdraw of the >> former. >> >> So if indeed as you said "..each PE the redirect tunnel will share the >> unique PATH_ID .." that effectively means that for a given flow NLRI I can >> advertise redirect service to only one PE pretty much killing p2mp >> advantage of BGP and what's worse blocking from advertising the same flow >> NLRI with any different set of actions. >> >> Best, >> R. >> >> >> >> >> On Mon, Oct 26, 2015 at 6:15 PM, VAN DE VELDE, Gunter (Gunter) < >> gunter.van_de_velde@alcatel-lucent.com> wrote: >> >>> Robert, >>> >>> Yeah, BGP is indeed p2mp relationship… This is important to keep in >>> mind, and that it is exactly why PATH-ID makes sense. >>> >>> With 32-bit you have 2^32 and with 128-bit you have 2^128 unique >>> identifiers. That is quite a lot and will serve redirect policies in most >>> networks I would assume. >>> >>> In manual setup it is simple for a single PE: >>> >>> - Preconfigure the PE with a tunnel and map it to a given unique >>> PATH_ID >>> - This tunnel now exists, however it is not used >>> - Now the controller (i.e. vRR) sends a flow spec rule to identify >>> the traffic using this tunnel and steers traffic into this tunnel >>> >>> When you have multiple PE’s using a single redirect service: >>> >>> - Same setup as above, but on each PE the redirect tunnel will share >>> the unique PATH_ID reflecting the redirect tunnel service >>> - (there is no relationship that the destination is the same… just >>> the redirect service is the same) >>> >>> When you have 5000 of these Redirect services planned: >>> >>> - Manual config will make you go crazy very soon >>> - The above can be 100% orchestrated or a mix of manual/orchestrated >>> could be used >>> >>> >>> The benefit of redirect-to-PATH_ID facilitates that network redirect >>> service it decoupled from the tunnel creation/characteristics. hence the >>> setup of a mp2p tunnel is beyond the scope the path_ID redirect draft if >>> that happens to be the redirect service you had in mind. >>> >>> G/ >>> >>> >>> From: <rraszuk@gmail.com> on behalf of Robert Raszuk <robert@raszuk.net> >>> Date: Monday 26 October 2015 at 17:41 >>> To: Gunter Van de Velde <gunter.van_de_velde@alcatel-lucent.com> >>> Cc: Lizhenbin <lizhenbin@huawei.com>, Susan Hares <shares@ndzh.com>, " >>> idr@ietf.org" <idr@ietf.org>, "jgs@bgp.nu" <jgs@bgp.nu> >>> Subject: Re: [Idr] Regarding >>> draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) >>> 10:00am - 11:30am ET update >>> >>> Hi Gunter, >>> >>> Let's observe that BGP signalling is p2mp. >>> >>> Now let's also notice that as you correctly state TE tunnels are rather >>> custom crafted p2p entities. >>> >>> Then natural question comes to mind ... >>> >>> How good does it serve to signal identical PATH_ID to all head ends for >>> a given flow while what you need to do is to map it rather uniquely in the >>> network ? >>> >>> While in theory one could construct number of mp2p TE forwarding graphs >>> each with identical PATH_ID on a per flow basis I bet in practice this was >>> not the application you had in mind as its opex would be rather high as >>> compared to real practical usefulness :) >>> >>> Side question ... How are you going to provision mp2p TE ? Are you going >>> to dust-off some proposals for it from the past ? Example: >>> https://tools.ietf.org/html/draft-yasukawa-mpls-mp2p-rsvpte-06 >>> >>> Or was perhaps your plan to provision number of p2p TE tunnels from >>> PCE/Controller with the identical PATH_IDs ? >>> >>> Cheers, >>> R. >>> >>> >>> On Mon, Oct 26, 2015 at 5:26 PM, VAN DE VELDE, Gunter (Gunter) < >>> gunter.van_de_velde@alcatel-lucent.com> wrote: >>> >>>> Hi Robin, >>>> >>>> Thanks for your note. >>>> >>>> A tunnel is not always going over shortest path. Some tunnels are TE >>>> tunnels and are deliberately not going over a shortest path. This is >>>> something that draft-rosen-idr-tunnel-encaps-00 will not help to >>>> signal because the tunnel-encap attribute indicates tunnel parameters used >>>> by the tail-end. >>>> >>>> If a redirect tunnel represents a particular redirect/steering service >>>> (better delay, less packet loss, non-SRLG, more BW, etc…) then it does >>>> become rather complex for BGP as signalling technology because a tunnel >>>> relationship is a unique between 'a headend' and ‘a tailed' device. It >>>> seems better to leave tunnel-setup to dedicated tunnel-setup mechanisms >>>> like PCEP, SR, etc…. >>>> >>>> The draft redirect-to-PATH_ID is providing the means to signal a >>>> flow-based redirect/steering service, and have each recipient router >>>> identify using local recursion for the PATH_IDs the corresponding >>>> tunnels/redirect-info. This allows for tunnel setup complexity to be taken >>>> away from BGP, while at the same time BGP is doing what it is very good at >>>> doing: "It signals a policy” in reliable fashion. >>>> >>>> Kind Regards, >>>> G/ >>>> >>>> >>>> >>>> From: Idr <idr-bounces@ietf.org> on behalf of Lizhenbin < >>>> lizhenbin@huawei.com> >>>> Date: Monday 26 October 2015 at 16:51 >>>> To: Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org> >>>> Cc: "jgs@bgp.nu" <jgs@bgp.nu> >>>> Subject: [Idr] Regarding >>>> draft-vandevelde-idr-flowspec-path-redirect//答复: IDR interim (10/26/2015) >>>> 10:00am - 11:30am ET update >>>> >>>> Hi Gunter, >>>> >>>> Regarding your presentation, I have following comments: >>>> >>>> Do you mean draft-hao-idr-flowspec-redirect-tunnel is to signal tunnel >>>> setup info? draft-hao-idr-flowspec-redirect-tunnel is to steer traffic to >>>> the tunnel instead of signal tunnel setup. >>>> >>>> I am not sure if the reuse of draft-rosen-idr-tunnel-encaps-00 in the >>>> draft make you confused? We just hope to just reuses the attributes of to >>>> specify the tunnel type to help steering >>>> >>>> the traffic to tunnel. If this is not a good way, maybe we can define >>>> new attributes. >>>> >>>> >>>> >>>> >>>> >>>> Best Regards, >>>> >>>> Robin >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> *发件人:* Idr [mailto:idr-bounces@ietf.org <idr-bounces@ietf.org>] *代表 *Susan >>>> Hares >>>> *发送时间:* 2015年10月25日 22:07 >>>> *收件人:* idr@ietf.org >>>> *抄送:* jgs@bgp.nu >>>> *主题:* [Idr] IDR interim (10/26/2015) 10:00am - 11:30am ET update >>>> >>>> >>>> >>>> IDR WG members: >>>> >>>> >>>> >>>> Below is an updated agenda for the IDR interim on 10/26/2015. >>>> >>>> >>>> >>>> Sue >>>> >>>> >>>> >>>> ------------ >>>> >>>> IDR interim October 26, 2015 >>>> >>>> 10:00 - 11:30am >>>> >>>> >>>> >>>> 1. Chair's slides [10:00-10:05] >>>> >>>> >>>> >>>> 1. draft-litkowski-idr-flowspec-interfaceset-01.txt >>>> >>>> speaker: Stephane Litowski >>>> >>>> Time: 10:05-10:15 >>>> >>>> >>>> https://datatracker.ietf.org/doc/draft-litkowski-idr-flowspec-interfaceset/ >>>> >>>> >>>> >>>> 2. draft-hao-idr-flowspec-redirect-tunnel-00 >>>> >>>> Speaker: Weiguo Hao >>>> >>>> Time: 10:15 - 10:25 >>>> >>>> >>>> http://datatracker.ietf.org/doc/draft-hao-idr-flowspec-redirect-tunnel/ >>>> >>>> >>>> >>>> >>>> >>>> 3. draft-vandevelde-idr-flowspec-path-redirect >>>> >>>> Speaker: Gunter Van De Velde >>>> >>>> Time: 10:25- 10:35 >>>> >>>> >>>> http://datatracker.ietf.org/doc/draft-vandevelde-idr-flowspec-path-redirect/ >>>> >>>> >>>> >>>> >>>> >>>> 4. Draft Name: draft-hao-idr-flowspec-nvo3-02 >>>> >>>> Speaker: Weiguo Hao >>>> >>>> Duration: 10:35-10:40 >>>> >>>> http://datatracker.ietf.org/doc/draft-hao-idr-flowspec-nvo3/ >>>> >>>> >>>> >>>> >>>> >>>> 5. draft-liang-idr-bgp-flowspec-label-01.txt. >>>> >>>> Speaker: >>>> >>>> Duration: 10:40-10:45 >>>> >>>> http://datatracker.ietf.org/doc/draft-liang-idr-bgp-flowspec-label/ >>>> >>>> >>>> >>>> 6. draft-liang-idr-bgp-flowspec-time >>>> >>>> presenter: Jianjie You >>>> >>>> time: 10:45-10:55 >>>> >>>> http://datatracker.ietf.org/doc/draft-liang-idr-bgp-flowspec-time/ >>>> >>>> >>>> >>>> 7. Draft Name: draft-li-idr-mpls-path-programming-02 >>>> >>>> Speaker: Zhenbin Li >>>> >>>> Duration: 10:55-11:05 >>>> >>>> http://datatracker.ietf.org/doc/draft-li-idr-mpls-path-programming/ >>>> >>>> >>>> >>>> 7. Draft Name: draft-li-idr-flowspec-rpd-01 >>>> >>>> Speaker: Shunwan Zhuang >>>> >>>> Duration: 11:05 - 11:15 >>>> >>>> http://datatracker.ietf.org/doc/draft-li-idr-flowspec-rpd/ >>>> >>>> >>>> >>>> 8. Discussion of Flowspec drafts >>>> >>>> 11:15 - 11:30am >>>> >>>> >>>> >>>> Meeting Web-ex information >>>> >>>> Monday, October 26, 2015 >>>> >>>> 10:00 am | Eastern Daylight Time (New York, GMT-04:00) | 2 hrs >>>> >>>> >>>> >>>> webex infor: >>>> >>>> https://ietf.webex.com/ietf/j.php?MTID=mae6cf241d3adf214033e599c3ff3143f >>>> >>>> >>>> >>>> Meeting number: 644 964 970 >>>> >>>> Meeting password: flow.in.nets >>>> >>>> >>>> >>>> >>>> >>>> Join by phone >>>> >>>> 1-877-668-4493 Call-in toll free number (US/Canada) >>>> >>>> 1-650-479-3208 Call-in toll number (US/Canada) >>>> >>>> Access code: 644 964 970 >>>> >>>> >>>> >>>> >>>> >>>> _______________________________________________ >>>> Idr mailing list >>>> Idr@ietf.org >>>> https://www.ietf.org/mailman/listinfo/idr >>>> >>>> >>> >> > >
- [Idr] IDR interim (10/26/2015) 10:00am - 11:30am … Susan Hares
- Re: [Idr] IDR interim (10/26/2015) 10:00am - 11:3… Jeffrey Haas
- Re: [Idr] IDR interim (10/26/2015) 10:00am - 11:3… Acee Lindem (acee)
- Re: [Idr] IDR interim (10/26/2015) 10:00am - 11:3… Susan Hares
- Re: [Idr] IDR interim (10/26/2015) 10:00am - 11:3… Jeffrey Haas
- [Idr] Regarding draft-vandevelde-idr-flowspec-pat… Lizhenbin
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… VAN DE VELDE, Gunter (Gunter)
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… VAN DE VELDE, Gunter (Gunter)
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Lucy yong
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Dongjie (Jimmy)
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… VAN DE VELDE, Gunter (Gunter)
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Susan Hares
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Susan Hares
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Lucy yong
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Susan Hares
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Robert Raszuk
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Gunter Van De Velde
- Re: [Idr] Regarding draft-vandevelde-idr-flowspec… Lucy yong