IETF Logo Mail Archive

Re: [Idr] Adoption and IPR call for draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)

Robert Raszuk <robert@raszuk.net> Mon, 29 August 2022 11:46 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 611CEC15256F for <idr@ietfa.amsl.com>; Mon, 29 Aug 2022 04:46:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id koTfn3csZQUX for <idr@ietfa.amsl.com>; Mon, 29 Aug 2022 04:46:00 -0700 (PDT)
Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A5DBC15256D for <idr@ietf.org>; Mon, 29 Aug 2022 04:46:00 -0700 (PDT)
Received: by mail-ej1-x62f.google.com with SMTP id u9so15141742ejy.5 for <idr@ietf.org>; Mon, 29 Aug 2022 04:45:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc; bh=OfmEc7uYsbpK/EVAKeU4jvNtYs4hJn3Uc8joLDfyIk4=; b=ClowpJ9iWWw9pQxpOIFApzIaGlmIxi6ZJh08MCSzC6QuSq1JwVv0zM7JzRYhwDVm+T nSG7WeedH7tuHwtz2XHv2uVfsTOQrOJPISi4xAsNp5HR22+AiRe3zDsQLV/JfMC9Eo+4 EJ1dyUWQIGXgFks2CwLf73P1MkTXBlBTAyjwlE4cuIT7XqcvUKz2JF15Erlu5ZafldEo IkbeZQfGW+jwglwlB5nCq20wB2nf72nqD3RTtE1etmDCIumvwzH++l0uup4Bgl9C06U2 qFfgrCpWHB5WMPP6rwXG11TBOtf96vtMLUnTxm9U+v20vR9tG1hvubdYBIDBi4m2KUvC PJuw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc; bh=OfmEc7uYsbpK/EVAKeU4jvNtYs4hJn3Uc8joLDfyIk4=; b=3SxGlMUP0x/Ga/brrBy+1U2rCLjRJZ4E6edJE+4qqxcEFManliJEVcRRNSkzyNopzn DVLh5bS6AAZx9oGUchEqZrb8Mb0NPj7VHQZf/iCyXLk5jpOyzmwkYF8Eg8/X1uRpYioj 32zISIc6AOewv/RaGgrwJiDkybsECk/gHD0SQsysokUS0p7QuqPlnrP/3rLqCvgNWA6L LULk8nXP6FGa3LSJKwVfU6MM6ih49lRxkGeV/yOEo2ZW+UjsjGu50qaHaDXbvX1PPD/K jNf2c3xX49ITSxx3s8ahAhtSsdDwu1GZN5rQ4SRvCJoHAxb7hhpZtqkkq/tVNx0cM8sC dN/w==
X-Gm-Message-State: ACgBeo19VSrPECftBxw6/d+xjINE26fhchSnkAW6FHoHziXjcyD+0+ni JvbhB0MkLuV2ULT84d6OdphoXkThbUERdxrKnJb4ng==
X-Google-Smtp-Source: AA6agR6MMlEDj4aCjZao+qb3xqgRocvpftcyhdAwEmhT/DwiPmAEqDTNGCrETLi9l6UbBiED7pKoprsCf3gOU0pi5jk=
X-Received: by 2002:a17:907:70c:b0:740:33f3:cbab with SMTP id xb12-20020a170907070c00b0074033f3cbabmr9448848ejb.600.1661773557771; Mon, 29 Aug 2022 04:45:57 -0700 (PDT)
MIME-Version: 1.0
References: <CAOj+MMELVifgg4Yj38kyncDGYzS5fJG-43_kRc7YLwJiTPANUA@mail.gmail.com> <23D1B383-F794-402E-AB1B-D966F8F3375B@tsinghua.org.cn> <CAOj+MMGs9gU=xC0UG4Xaiv5feo2U6VFXkdAxmk6arN_bxe_mSg@mail.gmail.com> <BYAPR08MB4872E197715724FC1E853725B3769@BYAPR08MB4872.namprd08.prod.outlook.com> <CAOj+MMEY=0iQ=vBGYJ=M=Pd=3gvjZVwWCZC_XPXzXDsD-7_a6A@mail.gmail.com> <2BAFBA3E-0927-48FE-950D-1208EBB2D0F8@pfrc.org>
In-Reply-To: <2BAFBA3E-0927-48FE-950D-1208EBB2D0F8@pfrc.org>
From: Robert Raszuk <robert@raszuk.net>
Date: Mon, 29 Aug 2022 13:45:46 +0200
Message-ID: <CAOj+MMHQinugoGq6sicsgrUZtzkn8c6rqkgnhVoE7Ojb=-wGaA@mail.gmail.com>
To: Jeffrey Haas <jhaas@pfrc.org>
Cc: Sue Hares <shares@ndzh.com>, "idr@ietf. org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000009bd00805e75fce12"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/RZJTed0Q8Xtn1KrUU_COrjD8_TA>
Subject: Re: [Idr] Adoption and IPR call for draft-wang-idr-vpn-prefix-orf-03.txt (8/16 to 8/30)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Aug 2022 11:46:04 -0000

Jeff,

> and instead focus on the technical correctness of the solution.

Technically the proposed solution in version -03 under adoption is
incorrect.

If the problem is detected it should be communicated to the src and
mitigated at the src not at the mid points.

Such communication could be done via mgmt plane or with the assistance of
routing protocol.

Best regards,
Robert


On Mon, Aug 29, 2022 at 1:17 PM Jeffrey Haas <jhaas@pfrc.org> wrote:

>
>
> On Aug 29, 2022, at 5:22 AM, Robert Raszuk <robert@raszuk.net> wrote:
>
> Sue,
>
> > You might consider that Aijun and others do not have the ability to
> quickly take the rogue PE out of the network.
>
> No one is suggesting that.
>
> The current methods to mitigate the issue are as stated number of times:
>
> * local drop of overflowing routes at the weak PE  (no new spec needed)
>
> * protection at the PE-CE boundary at the src PE (no new spec needed)
>
>
> Also known as local incoming policy?
>
> From RFC 5291:
>
> 1 <https://www.rfc-editor.org/rfc/rfc5291.html#section-1>.  Introduction
>
>    Currently, it is not uncommon for a BGP speaker [BGP-4 <https://www.rfc-editor.org/rfc/rfc5291.html#ref-BGP-4>] to receive,
>    and then filter out some unwanted routes from its peers based on its
>    local routing policy.  Since the generation and transmission of
>    routing updates by the sender, as well as the processing of routing
>    updates by the receiver consume resources, it may be beneficial if
>    the generation of such unwanted routing updates can be avoided in the
>    first place.
>
>
> You might not like the feature Robert, but it's exactly what ORF was
> designed for.
>
> It'd be beneficial to the working group to cease this endless questioning
> of the use case (that you don't like) and instead focus on the technical
> correctness of the solution.
>
> -- Jeff
>
>

v2.23.0 | Report a Bug | By Email