Re: [Idr] WG LC on draft-ietf-idr-large-community-03.txt (10/17/2016 to 10/31/2016)

t.petch <ietfc@btconnect.com> Wed, 19 October 2016 10:53 UTC

Return-Path: <ietfc@btconnect.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74946129677 for <idr@ietfa.amsl.com>; Wed, 19 Oct 2016 03:53:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.922
X-Spam-Level:
X-Spam-Status: No, score=-1.922 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2l75d89IMSFX for <idr@ietfa.amsl.com>; Wed, 19 Oct 2016 03:53:40 -0700 (PDT)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-eopbgr20114.outbound.protection.outlook.com [40.107.2.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 59B85129594 for <idr@ietf.org>; Wed, 19 Oct 2016 03:53:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector1-btconnect-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=5l6XZcdpd3Z1BGWYmcVIerN0zAVPdVsNezPsafozAIA=; b=GM+tnLnPp6ZDAtyK2CJ5w1bJvgcYa7PY8DyZRUVrCaHnm/7+whL+fxI1vHNs6NccIAvPq6gGgM7uPPbVU9vaJFrnCJo6D5+5QE5DN2HLygI4rBOkDZBLCUja8VSa8uEmLI3OSNPjEerjSTEfBT7n4e5HH0fY9HLKnqF4000+KnE=
Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=ietfc@btconnect.com;
Received: from pc6 (81.159.102.255) by HE1PR0701MB3002.eurprd07.prod.outlook.com (10.168.93.136) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.669.5; Wed, 19 Oct 2016 10:53:37 +0000
Message-ID: <007201d229f6$b4ae9680$4001a8c0@gateway.2wire.net>
From: "t.petch" <ietfc@btconnect.com>
To: Jeffrey Haas <jhaas@pfrc.org>
References: <01f301d228b4$e3319ef0$a994dcd0$@ndzh.com> <20161017215134.GA464@pfrc.org> <20161018190851.GC15392@shrubbery.net> <20161018191521.GT95811@Vurt.local> <9EFC9BAA-F917-4C70-A139-1F69CAECF9C0@pfrc.org>
Date: Wed, 19 Oct 2016 11:47:05 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
X-Originating-IP: [81.159.102.255]
X-ClientProxiedBy: DB4PR05CA0033.eurprd05.prod.outlook.com (10.160.40.43) To HE1PR0701MB3002.eurprd07.prod.outlook.com (10.168.93.136)
X-MS-Office365-Filtering-Correlation-Id: 38fa3993-0466-4b53-b185-08d3f80e2e3f
X-Microsoft-Exchange-Diagnostics: 1; HE1PR0701MB3002; 2:AXeXxVjOUGKwpoic3HsZOXK5NlGpTLTr7aPL268dSVZ4uBbgiEIVQNr5NsX+8V3B33Fk4/aAK8XGrMnX56xDl1YPF2mrTemtyjWekgRjKVAR+G1Vktop/xwlAfwMBpv0u6cEPXKMlycY5p3xq8H7ZCHzkQJh0lvF9Sn1c81QOfTKmlw+uXddtnN/zQdtNkPWLk0rv8ygl0wR3VT6VrpiIQ==; 3:AxYqXGHNKbqOsjoEY28PMyFwygZUY5yHI1eIKvLTYs2hYvLLICBoVHU87WgrwyhXJMTAs6zz4rDkm4ony5yHbS88K3JjZ1dun32qqsiMA7pVzxtSPu1hd3vvRy/r/WxiLmTtxjUUFogZwl2xp4WWZg==; 25:cUwuEsKvghVgNlMvnN123D6mJ7UJUxmH0vl1/8L8ucayMOSlIkt8iJHkOIu4MX8r77cBHngpThsDyGUPe5RygUyPt4bCA/8ch095BNFF1DubTCZ/YM0UEAzluCEisjGPHD7m41koDXHGOc+7wjJ1/TCNdfDtuyj9S40d8uKqf/gjXIkkYTxCNg+ZS5qHjQ1iUfmyBgPQ8HKd7Wpb9g88g5EzEW5Nak5nLeR8C5zQVfAR7aoKPjLIDgEOWx2cnqYaQ+KL5u6GF5Ix024G2gr83CkbOwYl+ZNROBu1SOAcps8NM7S/fo7yp1ArSN5Unny6x3Gohe1dfPQV1W1f544l/gGozoiLEzrLSQA2i6nfwl1MLUuiQ7jgzMj+Te2WdJCw74dRdp8TUq9UycG5dWo2M0JDjxbOcyC0Ta/T2cEto8l9G2F9XycK240l3/tHo6a3
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:HE1PR0701MB3002;
X-Microsoft-Exchange-Diagnostics: 1; HE1PR0701MB3002; 31:UWfYGeaU25NVbjJJiDXtF/qsTXURXT1ej707fTrenOGPwb1TsmboQZH5f80AR7QkWSzz8ECXQi0cy4XaRzDMVJ90kPihmqS3SGYdeAaIDo54Df0n2Z/soh7jc2kHicjgG4FXHInZ8BkVzxrxI1LqdxTt67lWf5RXv0P/BoxCfVvofTavpCuYZaHgQIftlzeCkQSwmWkpGa9+cqkbKfEU1NqD6xkuuzotnhHHrBpbvykENZShNw+jK8KDckZ7swoK; 4:3KRvWYla6LxfueGG1kxn5gKprOe9ejq+ulLZgSw0tQYfSDUZ+c6pJFuDhJPRRo3GXHwo5w31qHbP7A9KpBoFwn3Xyon6z7HY5t0KiBAvPqSS+pyUW/G/R0IpEyb6kCYjLZvVS8npKdTYiTD23nRaFypv3vXpWueMd4fmqz6Z9GOboUU9cp2az06YZzaCCHuYhzKn5ILYDvfQdiAl7n00CXuHViCBik7ifGX6QA1XgXET1rqLpxr1vaatONKQIQF7Y2e+kpScv6FdipFmu4c6RKJACZAwkWBXvY/4xUarldw8itPx97fN/30i8W2/Mx/Uv7NxzKkaZUeyXneZXxkMwhjjRT/d+/zqn75lzncaCE0t0Wz8fQFhg09wxSnQ2jkPKmoNjr2x91wmHIReA/xUlk3QNwOa6UcBMKgOMzOViAyf6TvcLWrV065UdkTEd+oJ
X-Microsoft-Antispam-PRVS: <HE1PR0701MB300221A5DF48A8F1060D47A4A0D20@HE1PR0701MB3002.eurprd07.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(192374486261705);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040176)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001); SRVR:HE1PR0701MB3002; BCL:0; PCL:0; RULEID:; SRVR:HE1PR0701MB3002;
X-Forefront-PRVS: 0100732B76
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10019020)(4630300001)(6009001)(7916002)(24454002)(51444003)(377454003)(199003)(5423002)(189002)(13464003)(47776003)(66066001)(50986999)(77096005)(76176999)(586003)(1456003)(1556002)(50466002)(101416001)(81686999)(14496001)(44716002)(62236002)(86362001)(5660300001)(97736004)(110136003)(105586002)(106356001)(44736004)(116806002)(230783001)(93886004)(305945005)(189998001)(50226002)(68736007)(81816999)(81156014)(6916009)(6666003)(33646002)(7846002)(7736002)(81166006)(19580395003)(92566002)(3846002)(84392002)(230700001)(6116002)(4720700003)(23756003)(4326007)(2906002)(8676002)(61296003)(9686002)(19580405001)(42186005)(74416001)(7726001)(7756004); DIR:OUT; SFP:1102; SCL:1; SRVR:HE1PR0701MB3002; H:pc6; FPR:; SPF:None; PTR:InfoNoRecords; A:0; MX:1; LANG:en;
Received-SPF: None (protection.outlook.com: btconnect.com does not designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: 1; HE1PR0701MB3002; 23:pFsFht3SHyVcDgyBFfGAj2n0so+87Yt5s8lhsUvIubC20M3yzupObPtbJhme2cvvQvsBAt1j+5FBG264CX8naVEKIUgKNSB/vvo66kzgLDoPx5U9ALnL6qMnDTGRusSMolTe4FaV0M+aZdxUWjb9rIB9Pj3TXuc71AGK3+50x6GM/bQox/hhyR9gGjeqs8tuOLFKg7ZynSpM2uYgdfXsiDSFrQz9O8as9sc8zyZekI238oUIF/MvA5zKQBbm4npuCmRifbINLdfWs3tAx11lXqVkLJbZZ1kXsxaidteCiKuylar0U1cse5tOnWlI+omusoc4IenYgrxq3XA87AvReGMHtcA5IZE5qhUPS8lYnTWVv+qX0sbMtmVBh1DUNXnQ4GFPQkO4tkmO8AkSHuJygjE1hsBZ6CPdYL06XDXgp76NmCxj61ipQ46XGN39Vaz1end5cqjW8cPrPloaJT2c/3Ng248aqxtSuP5G++9TIu6FAVmnZJPSbQhuo4/uCq4QEtaf5lGcLAADiGdjuCy/KWUqn3+jYFeOlGMIeATO6H6AdqpfeFqkRd5YtQmwm200p7UUXrWUr08bGfW9vljwTtYIIgXvcBLgCfmd4rhQraxRujqm5KW6ZN2zF6043w8lhRFSovj+bSQkNWUbu4j2jj0fiABiA/6NhIJ8C0hdcoFKPqjDrCHfKgn6Ofw4Qq5K6vwj5sFSylSDCM/eJbcPysLDwuB/0ELtUvGgojKRnC5AyGxGO1gVq2o2y8hXaheLwYkxYpQ34gchDjvaCflOWbNubHXQCOgKezYYd0f33VWc3kU1P3knAZlMJ7yrpFBKy3lpYPQm3faLb/o61F/BCLmYLzJEYurhigLk4n0777kxaszK2gd9ufkhXwbORKjzHp3uKR9l1R2//99ELOu4tkm0pYn3AKJWJdnJpb4I2dTaZ4YWeDoULSerH7741UlRzGDP1rjKW9ZnepcgoYpYPB/Ywzk0AV5XurZssTWW45oE6yv2K0c8GHt4C0P2VTSEA0WuSVG0HINNkADo+4GfxHxtW2QWZNO+A/6lbxemy1geYME8FuTMU5NhMMVDBmMZ0hfuRz2vZkYhbsRoqixEZ7hTKoW25ucDpr7hHD+MIAFYQDttvDHt4/ZZFty6MPEV72UcqwmJeUdGTxd6tsgt93mj2plT0lpVNk3AxTPCXD1KNOzDgDmJbVds27noFKY3F/ND6NC4QI6Q14I8J+8PMojANCQloldGxKY2WEO7h+vGWwT2+QQ2Ch6ixJtko9TB7mlvZ7nP8kTM3oXmyaG1kTLf2t2y+M9d0tqvw181lAzbfK4Ab0zf14UW0uxmexZjG93Id8PRvkUsuACGnc8HVLmQKe8AqnC3xD/jBHB5KXH5lQ0DDlhdP3o70Hq3rdK1Wa+e2753+uApvjgL5CrGXt8qNBdo3m+h5Foa7NZNaReYYNSHH3qUBoRcgxeUsUhN38J4ck4faqP64FvrXgRkGFE03+Qcy93xZDfQ+sa4xXE=
X-Microsoft-Exchange-Diagnostics: 1; HE1PR0701MB3002; 6:TUNsE34thEx4pFIn9gw4Ueuwn9Xr+agfmHoFZgrwruVNZ0jYITNBSMeHvw3/PoPzvhYVJGS1mxkd6bf5DKrR/2hKa1hTQVO1mb3F1xLi8YKn4OhHgG9IaHeD8HNs03fVvvUf6KqfM1u9lyHV+Z5qbE8yapKAfs6ZG1/wQV8JLUL03KNVX4m85s7H3d755blML7EZbfOxto3qlDaELtywShfLzEAtunQaGh1n9om0YrMHuu8jWTggLfWg09+ogNQ982CWOBStrQmV/O9SfZe421sD6rHro/tpdgyi80VhvbdCd+WU3u0HNCnWK4kbMHDf; 5:586mGppIyY5mhtyBOiOmqYuuouBTaLo/hL7CnYqtVw5Pf4xOCMXCu4BbK5g3ynt9at+HxEvfj8H2vnfuEfLui80+o43sWSy1TfhqF38gWVWBnrcA4eK3mYajZrfenmdoAK99vonfrA+sK3ihTDNGww==; 24:cWM22hIsmFXtSTbTnpPSjtx5b2p3KbZ00RedqPIWucCKTCSQbEtygp9Ys/3RL04KzlpkWJI0QNXMu46Fk2CC0mmc1aCCL3OPX49ggcy1Hdw=; 7:tBBua3998jsh1vNGLfmDGUkBHXKxIq3ivjsQ4WVvyNQcVwMorhxMbnPoNcvmI+mgF0O5jtN9Lv2fbBl/3hC2Mve2EW0dVphpb+PdIKcC93HhzRtZqkcg52+Dk2RPUBwr63PDzXQo4rA2DYjjV0uFnLFDJxZ2FLj4D/gupVcZXbwGY/1RTjqejNaAE07VV9JnRRzlHExD7UtwqsZc+WUC3Rjjkb6SJK704M5ZJxb+agczSiXUCVb7/M2Mi4j0NBRKi+MdnzMqBEZUC8BXblNv8hlsjnJhXyVQq/OMCmXPNqAxMLWa/ydu2fv6YTT/4p7e0thPVwp8YcMNQORnkkkYKPn5iTUADvXvFQW6l5ZPLzA=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Oct 2016 10:53:37.3274 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB3002
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/QnvAduOO8gDIkqjxfrkLCPkJKtQ>
Cc: IETF IDR WG <idr@ietf.org>, Sue Hares <shares@ndzh.com>
Subject: Re: [Idr] WG LC on draft-ietf-idr-large-community-03.txt (10/17/2016 to 10/31/2016)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Oct 2016 10:53:42 -0000

I remain unhappy with this I-D.

I find it ironic that the messages for this Last Call should be
interspersed with those relating to what goes wrong when someone
somewhere else in the world uses a field in an unexpected way.  This
reinforces my belief that this I-D should be more forceful in calling
out the dangers (eg MUST instead of SHOULD).

I think that this I-D is factually incorrect, or at least open to
misinterpretation,  when it says
'[RFC1997] BGP Communities attributes are four-octet values split into
   two two-octet words.  The most significant word is usually
   interpreted as an Autonomous System Number (ASN) '

RFC1997 says
'The community attribute values ranging from 0x0000000 through
   0x0000FFFF and 0xFFFF0000 through 0xFFFFFFFF are hereby reserved.

   The rest of the community attribute values shall be encoded using an
   autonomous system number in the first two octets.  '

Note the use of 'shall'.  Had that been written after RFC2119 then it
would have been IMO 'MUST' or 'SHALL' not the weasily 'SHOULD' so this
I-D is weakening the meaning compared to RFC1997.

If this I-D were to say that RFC1997 specified a 'MUST' (in effect) but
that 20 years of experience showed that it need not be that strong, that
ambiguities of interpretation have never been a problem for routing,
pehaps by adding a note in the Security Considerations, then I would
accept that.  As it stands, I think that this I-D is risky (and would be
even if everyone who reads it knows what the IETF means by 'SHOULD' - I
think that this is not the case and that those outside the IETF will
read 'SHOULD' as a stronger enforcement than it is).

So, interspersed with those e-mails about other fields that have
unexpected values, I oppose this going forward just yet.

The question of reserved values is another can of worms.  If they are
not reserved, then clearly they are an example of 'SHOULD' not meaning
'MUST' so they need reserving, but then, as Jeff is pointing out, you
open up the question of translation (something I flagged earlier as an
open issue).

Tom Petch

----- Original Message -----
From: "Jeffrey Haas" <jhaas@pfrc.org>
Sent: Tuesday, October 18, 2016 9:38 PM

> On Oct 18, 2016, at 3:15 PM, Job Snijders <job@ntt.net> wrote:
>
>> Part of the idea behind reserving 65535:*:* was to reserve a space
that
>> could later be used for well-knowns, if that was desired - but to not
>> spend time now arguing about details of what well-knowns are
necessary.
>>
>> 0:*:* and 4294967295:*:* mimics rfc1997 and the reserved ASNs.
>
> Jeff argues that a justification should be added. Maybe someone can
> pitch in one or two sentences that explain why these are reserved?

That's certainly part of it.  While I think many people can see the
reason why you might want to do such a reservation, to do so you should
have a practical reason in the document.

For the 65535:*:* case, for symmetry with RFC 1997, you'd probably want
to note that if it's used for that symmetry that either the existing
well known community registry is used at IANA or that a new one would
need to be created.  Alternatively, you just say the work is expected
and defer to a future document.

Note by doing this, you're setting up some expectations about
translation of communities from one space to another.  FWIW, I don't
recommend this and simply suggest that you recommend *not* using these
for common use in case someone decides that they want to do so.  I know
your organization and others such as Deutsche Telecom have some thoughts
about what translation infrastructure might look like, and such
mechanisms would have impact.

With regard to the 0: and max-uint32: cases, after dealing with the
headaches associated with helping with documents such as the as0 and RFC
7300 and putting in some restrictions in the configuration... followed
by having to take them away, I'm very reluctant to put in anything
beyond "we think it's a bad idea to use these, so pretty please don't"

-- Jeff (ask me about my RFC 7300 hate mail over beer...)