IETF Logo Mail Archive

Re: [Idr] WG Work item call - Opinions on work items (3/5/2016 to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt

Robert Raszuk <robert@raszuk.net> Mon, 07 March 2016 08:15 UTC

Return-Path: <rraszuk@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A0BA1B3736 for <idr@ietfa.amsl.com>; Mon, 7 Mar 2016 00:15:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RcCj9Ooa0sQ9 for <idr@ietfa.amsl.com>; Mon, 7 Mar 2016 00:15:10 -0800 (PST)
Received: from mail-lb0-x235.google.com (mail-lb0-x235.google.com [IPv6:2a00:1450:4010:c04::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CB1FA1B3735 for <idr@ietf.org>; Mon, 7 Mar 2016 00:15:09 -0800 (PST)
Received: by mail-lb0-x235.google.com with SMTP id k15so121388935lbg.0 for <idr@ietf.org>; Mon, 07 Mar 2016 00:15:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc; bh=h7p8GuU2nHX9LrX3eODR2XkYqKEixBMiN0sZ8/MR+Rw=; b=qjW5JI7RY+GCULSC9yvuVs7kpTfZ2OQtdQTXBf4ZxMN1OyrD/6dVA4CkeDKSCcKvTg V6qpUPnOb6c8ptjxm5zCVqRcy+tN5Qu3vy2xo2iEDg5N4531FdDrVVwuiVJ2KwGcAKag 9XjqRmg1hZcDs/lBXYn9mct2xkmyyndOtC+Db/jbSs+5QGIIJJoYSIetKWwMswoKPPbe 9sB37ECIkxxw6SaxPZHURVzMVvHp3RibbLeutCPZI/RJ6aaAh/wBwGCf9Qf6aC20g0sA ZSj7sHmkuAmBnv3OvON5jGDix271/T6N8+XoeM6Pk97OqOqDo/ZHO9noZVduZJDfviIH y6ng==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:sender:in-reply-to:references:date :message-id:subject:from:to:cc; bh=h7p8GuU2nHX9LrX3eODR2XkYqKEixBMiN0sZ8/MR+Rw=; b=nNO6FR1boWgkHPYdIQXj+i6c9jv+2okBbhF0RIwrGM6uHELf6hPNv2OJIz+hEVkilg DYpa19ORbEirCQHlaHiweuLy963EjIigSwaAOwwPWHb51UGeXu7xUMs36aPb0mmqOcjC E1Fmstnoej0Q0UtzG9K0yKfyEYHCW7yj1al0fCukYDMD2sFi0s706i6guM25OZJMaHPm 9NTbH8nbTsfJltU4Dd2s4bj5fPFRvtSNyhSEqFoyiGvhWK0xpsA2Uj/ubwR4NvR0YHEX LQl8wZuWGrCajBjQiLMiYtF8+TzGwm79R5/juIDfOQXmsk0yptgHsL22A80FHtB/tPjU EJeQ==
X-Gm-Message-State: AD7BkJI2TiwtMmUTENdaivb6+3vQ84KDaCxMVBV4VsOxQENLj/Mci8PygRCd9U6RuYIumX4o2yQeVi6dZT/L4w==
MIME-Version: 1.0
X-Received: by 10.25.155.194 with SMTP id d185mr7332612lfe.11.1457338507896; Mon, 07 Mar 2016 00:15:07 -0800 (PST)
Sender: rraszuk@gmail.com
Received: by 10.25.136.133 with HTTP; Mon, 7 Mar 2016 00:15:07 -0800 (PST)
In-Reply-To: <005801d177a6$dcd8fea0$968afbe0$@ndzh.com>
References: <000b01d17731$29d17230$7d745690$@ndzh.com> <FD1977C9-4898-4E01-BC88-0A9B7F29C56B@icloud.com> <005801d177a6$dcd8fea0$968afbe0$@ndzh.com>
Date: Mon, 07 Mar 2016 09:15:07 +0100
X-Google-Sender-Auth: DXW8WyUQzxOoBe1RuDXHjBNzOHs
Message-ID: <CA+b+ERmnMPG-F_CfwN4Y9o95phkjGw7RkWhmZuWNExdzzcKNxA@mail.gmail.com>
From: Robert Raszuk <robert@raszuk.net>
To: Susan Hares <shares@ndzh.com>
Content-Type: multipart/alternative; boundary="001a113fbdd414b0b4052d71101d"
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/ZM3p9deiqltPvrpnI61puB_LNPI>
Cc: idr wg <idr@ietf.org>
Subject: Re: [Idr] WG Work item call - Opinions on work items (3/5/2016 to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Mar 2016 08:15:13 -0000

Hi Sue/Gunter,

On the topic of problem space, requirements ... etc aren't we reinventing
the wheel ? Aren't I2RS documents doing that already ?

https://datatracker.ietf.org/wg/i2rs/documents/

And if they do is BGP FSv2 the right approach to be used as I2RS channel ?

If yes I would question that simply based on the nature of BGP which is
p2mp distribution (even if augmented now for other reasons with RTC).

In most of the cases network elements need to get unique set of parameters
which just does not fit BGP distribution model. If so why BGP?

Is using port 179 and reuse of non AF/SAFI specific code the only reason?

Or is the problem perhaps due to no APIs and common message bus across
vendors and we are trying to fit BGP to become one in the fear that it will
take decade(s) for vendors to support new common network element mgmt/API
channel ?

If we go with FSv2 what is the "read" or telemetry channel from device
which will trigger proper FSv2 filter ? Is it again BGP ?

- -

On FSv1 I think we are ok to proceed. On the question of ordered actions or
not I think one may need to support both as likely there will be folks who
will need one or the other depending on what they are going to filter :)

Best,
r.


On Sun, Mar 6, 2016 at 1:51 PM, Susan Hares <shares@ndzh.com> wrote:

> Gunter:
>
>
>
> Thank you for being the first responder to the BGP-FS call for input.  My
> understanding is that you approve option 1, but are concerned about the
> scope of option 2.   Do you feel the actions need ordering for option 1?
>
>
>
> I will ask those who propose the SDN/NFV work to write their understanding
> of the use cases for the next IETF, and post it on the list.  In the last
> few interims, there seem to be a consensus of people indicating that the
> SDN/NFV was a valid use case.  However, interims are small discussion
> formats so the chairs have sent this call for input.
>
>
>
> On working toward a specific solution space: the IESG has encouraged
> parallel efforts between problem space development and solutions in order
> to aid rapid deployment of protocols.   The draft-hares-idr-flowspec-combo
>  is a summary of the problem space and solutions from the WG chair’s
> viewpoint.  Thank you for letting me know we need to add problem space
> details.
>
>
>
> Sue
>
>
>
> *From:* Idr [mailto:idr-bounces@ietf.org] *On Behalf Of *Gunter Van De
> Velde
> *Sent:* Sunday, March 06, 2016 4:34 AM
> *To:* Susan Hares
> *Cc:* idr@ietf.org
> *Subject:* Re: [Idr] WG Work item call - Opinions on work items (3/5/2016
> to 3/17/2016) and adoption of draft-hares-idr-flowspec-combo-01.txt
>
>
>
> My consern with the concept of BGP-FS version 2 is that it means jumping
> to solution space, even before having a rough agreement on the requirements
> and scope for a SDN policy distribution mechanism.
>
> An additional concern is about using BGP for NFV management as there may
> be more appropriate mechanisms available (outside BGP).
>
>
>
> If the intent is to truly use BGP as a mechanism to distribute SDN
> policies and and related management information, then what does that mean
> exactly? what does such protocol extension
>
> expose as capabilities? What are the use-cases that drive the need for
> existence of such technology? In that case it may be better to construct a
> tailor designed BGP Policy Distribution framework version 1 (BGP-PD version
> 1)
>
>
>
> I believe in keeping changes to RFC5575 to a minimum, and only extend to
> simple match/action capabilities that "drive indirection" and "network
> wide" rules.
>
> I also believe that before trying to document a solution space for BGP
> based SDN policy distribution, that both the problem space and intended
> protocol properties exposed as consumable SDN API’s need to be discussed
> and agreed upon. In that light i feel that the concept of a BGP-FS version
> 2 is not the right approach.
>
>
>
> G/
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> On 05 Mar 2016, at 23:48, Susan Hares <shares@ndzh.com> wrote:
>
>
>
> The interim on 3/7/2016 will have a discussion of revisions to the BGP
> Flow specification (BGP-FS) to add more features.  There are two suggested
> options:
>
> 1)      A minimal features to existing BGP-FS (option 1)
>
> Add a few new match filters to the BGP-FS NLRI and few new actions to the
> BGP-FS actions (in Extended communities).  Actions would need to be done in
> a defined order. Each new actions would need to define conflicts with
> existing actions.
>
>
>
> Best use case:  DoS attack prevention
>
>
>
> 2)      Create a BGP-FS version 2 (option 2)
>
> Create a new BGP-FS NLRI (v2) with a field that indicates the ordering of
> the BGP NLRI.  Add new BGP-FS actions with an order field in the BGP Wide
> Communities.  Filters are done in the order defined in the filter.  Actions
> are done in the order defined in the actions.   Order numbers that tie are
> handled in a defined order.
>
>
>
> Best use case: SDN/NFV filter management
>
>
>
> A write-up on the issues and proposed solutions is contained in:
>
> draft-hares-idr-flowspec-combo-01.txt.
> <https://datatracker.ietf.org/doc/draft-hares-idr-flowspec-combo/>   The
> WG can select both option 1 and option 2.  This is a WG work item call for
> input to the chairs on the scope of the WG item.  In you discussion of this
> topics, the chairs would appreciate if you would indicate if you would
> support IDR working on option 1, option 2 or both option 1 and 2.  This WG
> call items also includes a call for draft-hares-idr-flowspec-combo-01.txt
> as a write-up of the work-item options.  The WG may wish to split this
> draft into multiple drafts.
>
>
>
> The following drafts are being consider for either option:
>
> 1)      draft-eddy-idr-flowspec-packet-rate
>
> 2)      draft-hao-idr-flowspec-nv03
>
> 3)      draft-hao-idr-flowspec-label
>
> 4)      draft-liang-idr-bgp-flowspec-time
>
> 5)      draft-litowski-idr-flowspec-interfaceset
>
> 6)      draft-vandevelde-idr-flowspec-path-redirect
>
> 7)      draft-li-idr-flowspec-rpd-01.txt
>
> 8)      draft-wu-idr-flowspec-yang.cfg.
>
>
>
> If you wish to comment on any of these drafts, we will
>
>
>
> We will conclude the Call for WG opinions on 3/17/2016 so these authors
> can have a day to revise and submit their drafts before the draft deadline.
>
>
>
>
> Sue Hares and John Scudder
>
>
>
> PS:
>
> draft-li-idr-flowspec-rpd discusses limits on the distribution of the
> policy which has been recast in draft-hares-idr-flowspec-combo as a
> bgp-wide community of Container type 1 with an atom of BGP Flow
> Specification ordering. However,  this draft is included in the list to be
> able to update the mechanism from this draft into that context.
>
>
>
> The yang model for BGP Flow specification is also included in this work
> item as it will need to be modified based on the approaches.  The yang
> model is in draft-wu-idr-flowspec-yang-cfg.  In your comments, please
> indicate if you feel these drafts or other drafts.
>
>
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>
>
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>
>

v2.23.0 | Report a Bug | By Email