Re: [Idr] Possible to set up priority for Tunnels established by draft-ietf-idr-tunnel-encaps-09 ?
Robert Raszuk <robert@raszuk.net> Mon, 09 July 2018 21:12 UTC
Return-Path: <rraszuk@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D6139130DF0; Mon, 9 Jul 2018 14:12:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.39
X-Spam-Level:
X-Spam-Status: No, score=-1.39 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v9V0zbLF3wad; Mon, 9 Jul 2018 14:12:34 -0700 (PDT)
Received: from mail-pf0-x22d.google.com (mail-pf0-x22d.google.com [IPv6:2607:f8b0:400e:c00::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66518130E5D; Mon, 9 Jul 2018 14:12:34 -0700 (PDT)
Received: by mail-pf0-x22d.google.com with SMTP id c21-v6so9897453pfn.8; Mon, 09 Jul 2018 14:12:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=QYOWcjdYVQnP+ICe7H09z2aL2qD9nvKYoTIBcVVya3k=; b=k+utxmF5APo0HT+ghc3PR/1tWBPZQQoSkzE3rCsIXxVGM00fHxWSPoLz8EphouC7+6 /zRDSxDyNbV5/AVnHvMT4YPw92E086k7pnkhf6d0KQypzWJwnIfk8eR2Vr0TqEoacLA4 Dh/g9zPGqTfw3RYDrCgt4Ajh8xIyt75xC2Mnx4GikVJANmq6J5hkUN/ZqtofhyKCxzpg Nv9vKhpm5uQBKPDeJAKZHixWvIP3PA+EANS/HKq16eFZZufZOjqc6qbiMjwRlx3AzW0Q cSFLI1f/3ReyIHFr6KJgDk08frIa4e0HTU9BYnfahnjD1IV0/YrN6TszryACETQZ/bPm nbIw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=QYOWcjdYVQnP+ICe7H09z2aL2qD9nvKYoTIBcVVya3k=; b=hXS3ytb9pLabs5q05gfJOiMrdUwvJS9nz4JvqvpWlAWX8hPSTiv9UEIl9TAJebM54h tYwh0Y0T8jCnd6O6Pws1Z10yE+a2ncRCz+KK/i5AHQM77B+KB6a+Hv6UUrwlQeiNzFJl G4K83NUddS9FmhVLf8uH9IOuYNpLSYxH0FknvqKoLeNao/7XYA8yHIg0BYYszW8DA4iF rgZen9yWzLITLrmiRU09gkvyp9QyWyJYDswZKqDaB8JlBJQQaxJEybCNGRuTLuZC4xRB +CNenBJS+P+1ZknjHlVFETYRZj8IUGLbqDPzqLn25Yv5x6mEGjRScaN8syrVrEhtNA9I fzrg==
X-Gm-Message-State: APt69E0NxhDtIT93IhMemrJue3Yk4tB+xOSZdMUdrjAGbbBVZgXJ9yLT R6YShz+q6LopYKuAro3aLzte1wuv2zNnsAHweR0=
X-Google-Smtp-Source: AAOMgpfTBf/I9u99G2cBbAitfrBvkEznGbaJafcb1YsEYm7uLlAEDOn0IMH6newiAuRMPKFHLZBruFz/xLy2AQ8hVqI=
X-Received: by 2002:a65:498c:: with SMTP id r12-v6mr14414250pgs.112.1531170753782; Mon, 09 Jul 2018 14:12:33 -0700 (PDT)
MIME-Version: 1.0
Sender: rraszuk@gmail.com
Received: by 2002:a17:90a:37e7:0:0:0:0 with HTTP; Mon, 9 Jul 2018 14:12:32 -0700 (PDT)
In-Reply-To: <4A95BA014132FF49AE685FAB4B9F17F66B0A8C39@sjceml521-mbs.china.huawei.com>
References: <78D707C9-6DC2-459F-81E4-A53B46F1F019@gmail.com> <4A95BA014132FF49AE685FAB4B9F17F66B0A8C39@sjceml521-mbs.china.huawei.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Mon, 09 Jul 2018 23:12:32 +0200
X-Google-Sender-Auth: UfXRWymQ6D2ma_Yf2G9rk2nDUM4
Message-ID: <CA+b+ERnkB6ka_gwXe=T4LPxBDM11W7+N76g4OTJm4b12CdtQsQ@mail.gmail.com>
To: Linda Dunbar <linda.dunbar@huawei.com>
Cc: Jeff Tantsura <jefftant.ietf@gmail.com>, Eric C Rosen <erosen@juniper.net>, "idr@ietf.org" <idr@ietf.org>, "draft-ietf-idr-tunnel-encaps@ietf.org" <draft-ietf-idr-tunnel-encaps@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000dea8f205709778e8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/OwPZao552ZPK4eC38uARJaY3dwU>
Subject: Re: [Idr] Possible to set up priority for Tunnels established by draft-ietf-idr-tunnel-encaps-09 ?
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Jul 2018 21:12:37 -0000
Because the NO_ADVERTISE is about the property of the NLRI - entire BGP UPDATE MSG get's blocked while in section 10 it is about just dropping a single attribute which happened to be attached to a perhaps still valid UPDATE MSG. On Mon, Jul 9, 2018 at 11:05 PM, Linda Dunbar <linda.dunbar@huawei.com> wrote: > Eric, > > > > Why not using “NO_ADVERTISE” in the Section 10 of > draft-ietf-idr-tunnel-encaps-09? > > > > > > Linda > > > > *From:* Jeff Tantsura [mailto:jefftant.ietf@gmail.com] > *Sent:* Monday, July 09, 2018 3:25 PM > *To:* Linda Dunbar <linda.dunbar@huawei.com>; Eric C Rosen < > erosen@juniper.net>; idr@ietf.org; draft-ietf-idr-tunnel-encaps@ietf.org > *Subject:* Re: [Idr] Possible to set up priority for Tunnels established > by draft-ietf-idr-tunnel-encaps-09 ? > > > > Hi Linda, > > > > Why would you want to build what you are trying to do into protocol? > > #1 local policy > > #2 NO_ADVERTISE does that exactly > > > > Cheers, > > Jeff > > > > *From: *Idr <idr-bounces@ietf.org> on behalf of Linda Dunbar < > linda.dunbar@huawei.com> > *Date: *Monday, July 9, 2018 at 13:14 > *To: *Eric C Rosen <erosen@juniper.net>, "idr@ietf.org" <idr@ietf.org>, " > draft-ietf-idr-tunnel-encaps@ietf.org" <draft-ietf-idr-tunnel-encaps@ > ietf.org> > *Subject: *[Idr] Possible to set up priority for Tunnels established by > draft-ietf-idr-tunnel-encaps-09 ? > > > > Eric, > > > > draft-ietf-idr-tunnel-encaps-09 discussed ways to resolve conflicts of > multiple UPDATE messages with Tunnel Encap attributes. > > > > Is it possible to have following capability? > > - Have a bit indicating a specific UPDATE is from authoritative > source, therefore overwrite all other Tunnel Attributes for the Prefix X to > avoid recursive next hop issues and tunnel selection at the receiving > Router? > > - Have a bit indicating that a specific UPDATE only contain Tunnel > attributes for the receiving Router, therefore can’t be forwarded? > > > > You said that SAFI 7 is deprecated because no one seemed interested in > using it. We are very interested in using it because > > - it can be easily distinguished from normal BGP UPDATE > > - The receiving router doesn’t have to “Filter” the tunnel > attributes before forwarding to others. > > - Can even be used for passing reconfigured IPsec keys to two ends > of a tunnel. > > > > Therefore we think SAFI 7 should be reserved. > > > > Thanks, Linda Dunbar > > > > *From:* Eric C Rosen [mailto:erosen@juniper.net <erosen@juniper.net>] > *Sent:* Tuesday, July 03, 2018 12:21 PM > *To:* Linda Dunbar <linda.dunbar@huawei.com>; idr@ietf.org; > draft-ietf-idr-tunnel-encaps@ietf.org > *Subject:* Re: What are side effect for having Encap SAFI? can > draft-ietf-idr-tunnel-encaps-09 preserve trigger tunnel creation before > VPN is established? > > > > On 7/2/2018 6:31 PM, Linda Dunbar wrote: > > Eric, IDR group, > > > > It is indicated that RFC5512 is to be replaced by > draft-ietf-idr-tunnel-encaps. But draft-ietf-idr-tunnel-encaps-09 stated > that it deprecates the > > Encapsulation SAFI. > > > > We find the Encapsulation SAFI is quite useful for CPE based EVPN. For > example, a Controller (say RR) can send an update with Encapsulation SAFI > to two end points to trigger a tunnel establishment between them. > > What are side effect for having Encap SAFI? Can we preserve it in > draft-ietf-idr-tunnel-encaps? > > > > Thanks, Linda Dunbar > > > > > SAFI 7 was deprecated because no one seemed interested in using it, it > creates additional operational issues, there is no real need for it, and it > was discouraging folks from actually using the Tunnel Encapsulation > attribute. This is discussed briefly in section 1.2 of the draft. > > You can get a similar effect by using the technique described in section 7 > of the draft. > > If PE1 is the egress point of a tunnel, have PE1 originate an UPDATE whose > NLRI is PE1's loopback address. Put the Tunnel Encapsulation attribute > (with PE1 as remote endpoint) on this UPDATE. (The next hop field of this > UPDATE doesn't really matter, as long as it is resolvable.) When PE1 > originates VPN routes, it sets the next hop to be its loopback address. > Per section 7, this will result in packets being sent to PE1 though the > specified tunnel. > > > > _______________________________________________ Idr mailing list > Idr@ietf.org https://www.ietf.org/mailman/listinfo/idr > > _______________________________________________ > Idr mailing list > Idr@ietf.org > https://www.ietf.org/mailman/listinfo/idr > >
- Re: [Idr] Possible to set up priority for Tunnels… Eric C Rosen
- Re: [Idr] Possible to set up priority for Tunnels… Eric C Rosen
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Keyur Patel
- Re: [Idr] Possible to set up priority for Tunnels… Robert Raszuk
- Re: [Idr] Possible to set up priority for Tunnels… Robert Raszuk
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Jeff Tantsura
- Re: [Idr] Possible to set up priority for Tunnels… Robert Raszuk
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Jeff Tantsura
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Jeff Tantsura
- [Idr] Possible to set up priority for Tunnels est… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Robert Raszuk
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Robert Raszuk
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar
- Re: [Idr] Possible to set up priority for Tunnels… Linda Dunbar