IETF Logo Mail Archive

Re: [Idr] draft-litkowski-idr-flowspec-interfaceset => NLRI vs EXTCT (part 2)

Jeffrey Haas <jhaas@pfrc.org> Mon, 31 July 2017 19:43 UTC

Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDDBA13278C for <idr@ietfa.amsl.com>; Mon, 31 Jul 2017 12:43:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.903
X-Spam-Level:
X-Spam-Status: No, score=-1.903 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xufnRAaSk0pH for <idr@ietfa.amsl.com>; Mon, 31 Jul 2017 12:43:57 -0700 (PDT)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id 0C71A13170E for <idr@ietf.org>; Mon, 31 Jul 2017 12:43:57 -0700 (PDT)
Received: by slice.pfrc.org (Postfix, from userid 1001) id 8FE911E380; Mon, 31 Jul 2017 15:44:09 -0400 (EDT)
Date: Mon, 31 Jul 2017 15:44:09 -0400
From: Jeffrey Haas <jhaas@pfrc.org>
To: "Acee Lindem (acee)" <acee@cisco.com>
Cc: Robert Raszuk <robert@raszuk.net>, "Juan Alcaide (jalcaide)" <jalcaide@cisco.com>, idr wg <idr@ietf.org>
Message-ID: <20170731194409.GY24942@pfrc.org>
References: <9fa67eb0-8f99-a46f-aff1-d42a279ab833@cisco.com> <CA+b+ERmaARaPLQv-g58WGNJCDcKN3gdf-F9wnCwusw+jwX7paw@mail.gmail.com> <8dd3e766b58944a3b176fc743e478137@XCH-ALN-014.cisco.com> <CA+b+ERnDHgk6gVi3K1+yAbRaXoft2+xqNig=pTbgRsWRC98-zA@mail.gmail.com> <dd8e0cb4-56d3-524c-9f68-296e8457fcc9@cisco.com> <CA+b+ERmG=EQxJBuMaTD+oDdwcwZ0hCCjEsjNqD_A_jXYLgnw2Q@mail.gmail.com> <e8e834ec-5074-7d35-a06c-5837f2f39e12@cisco.com> <CA+b+ERkCfiEa=RfDaxkOz3Si-qp9axKcgDycW1+GqfKvTcsePw@mail.gmail.com> <D5A09F0B.BA519%acee@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <D5A09F0B.BA519%acee@cisco.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/T9uFhuhE-9-W6qH6i0TTX0qJt5k>
Subject: Re: [Idr] draft-litkowski-idr-flowspec-interfaceset => NLRI vs EXTCT (part 2)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Jul 2017 19:43:58 -0000

Acee,

On Fri, Jul 28, 2017 at 12:02:41PM +0000, Acee Lindem (acee) wrote:
> What was the reason for not making the interface-group part a new component type in the NLRI? It seems that making it just another Flow Spec match condition would  handle all these situations naturally.
> 
>  I remember that this was discussed but don’t recall whether it was backward compatibility or that the semantics of interface group-id was a better fit for an extended community.

A few motivations:
- Unknown components in the filter cannot match.
- The match elements in the filter (NLRI) might be as-transitive, but policy
  engines don't interact with such filters transitively very well in
  implementations we're familiar with.  However, pretty much everything can
  manipulate extended communities.

The first consideration is partially about incremental deployment.  You
either have the choice of shipping a filter across your network that may be
selectively restrictive per the intent of the group-id or completely
ignored.

The best answer, of course, is consistent deployment of the updated feature.
However, this is the course we'd chosen as part of the second consideration.

-- Jeff

v2.23.0 | Report a Bug | By Email