IETF Logo Mail Archive

Re: [Idr] New Version Notification for draft-wang-idr-rd-orf-03.txt

Robert Raszuk <robert@raszuk.net> Fri, 28 August 2020 07:19 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 142943A1617 for <idr@ietfa.amsl.com>; Fri, 28 Aug 2020 00:19:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GZu3F7ymaIZv for <idr@ietfa.amsl.com>; Fri, 28 Aug 2020 00:19:00 -0700 (PDT)
Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 72CB43A1443 for <idr@ietf.org>; Fri, 28 Aug 2020 00:19:00 -0700 (PDT)
Received: by mail-ej1-x62f.google.com with SMTP id m22so175145eje.10 for <idr@ietf.org>; Fri, 28 Aug 2020 00:19:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Eg0qRTovgRa/vgqFTG7LgGnr0adxh54LPP4NI1f9wwo=; b=LkHOiLFHkelGiGJ946oYoj8oK4o10oolRFNRN7mCyOjcQ9YEz4YXiIhloyTvgofVWp EZf55XgVe4D1v7pww8Y7CR3EIlDI/1LwwW67rm7WX/nKXPX6IYmQIJvqjixUPKUbbnK/ sBqlQTIv/I1LImUz5t6Fw3xjeVHMTIbMdAp+1bdnYaMCqRIcAk9uNGyFcztn6p+KwO5Y kDgeudizPNlhpUtkay2VQkze8hhasoc8Zbjp8VgAWkVbl98Q6/IibGMF1YJXXjaOnrGc I6VvfsSBhdASepj1UX67SYL8v0OuOaNTdaUJDCUCxcG68Miobj21+rIhBo8Qn7eDKydz gXaQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Eg0qRTovgRa/vgqFTG7LgGnr0adxh54LPP4NI1f9wwo=; b=JcAzBeyp4jip4Oooux4+h0wvSJm99gpkVKd9otbKSpQWzsT2i7wrCdW1GnojMfdMlN xuE3SbHBXKOOZg1P6kVSJt/6QbgUUcHUHhE8SFrVRuJNCPr499YDzToik/b8dYAGPR9Y 0zFBHdF8oKtLafZKUDpP6mkGxSdp7omTcrSVaAlHK7822sCSdJe0tmgGrQNq6pf/yMCO 7P6BNfLakPrhmIBF8DqXZa80hmYF2FcuXste6ZMsZGkfywFxKMV62gNG7fnFlBr2oGrK iJt4srbD+ff9bfumCLgw4yvxryE2jwbdVN1iIalZ/B/W+SgLG4rHnUpKS4now2LOL0Ro Uzmg==
X-Gm-Message-State: AOAM530wgFZjgXUuDBEYLU9uAVs+TrXziXKaebmn6pPkM7GCestfHVKM 5tTSANiApXkg5VqhUdNF/dpCrGnl+TSbJgr63QGkzIrjJIY=
X-Google-Smtp-Source: ABdhPJyZ8iQqhf2dnKcxiHcOoyGLFECnQ/ADo3EFraBbtC9oZD5QnJ554PZ/R4gITY/y0IbB+3Cp0O7nlPGe9teH3Q4=
X-Received: by 2002:a17:906:970e:: with SMTP id k14mr423058ejx.417.1598599138950; Fri, 28 Aug 2020 00:18:58 -0700 (PDT)
MIME-Version: 1.0
References: <tencent_EA7B36E1CC8F28E736B6F6623DB239F57907@qq.com> <CAOj+MME8i2D1BP8A1fRcye0D+VySMi==wzr_uhmCBm2ydSonLQ@mail.gmail.com> <BYAPR08MB549321A7ECCCA03536557FBD85540@BYAPR08MB5493.namprd08.prod.outlook.com> <008c01d67c0f$de3cd290$9ab677b0$@tsinghua.org.cn> <CAOj+MMGFBc64=3e6_bcVeh4aPEn5y1Jxu_cB7x2w1R1-K8f5Ww@mail.gmail.com> <006801d67cd5$81c8b120$855a1360$@tsinghua.org.cn>
In-Reply-To: <006801d67cd5$81c8b120$855a1360$@tsinghua.org.cn>
From: Robert Raszuk <robert@raszuk.net>
Date: Fri, 28 Aug 2020 09:18:50 +0200
Message-ID: <CAOj+MMHFW+ZZkqNDycu16kC_SiSVPJdKRh42OUOnO5dGx+=q_Q@mail.gmail.com>
To: Aijun Wang <wangaijun@tsinghua.org.cn>
Cc: "Fomin, Sergey (Nokia - US/Mountain View)" <sergey.fomin@nokia.com>, idr <idr@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d0d46f05adeadda7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/chU3jeHrT6yIV7cgy0NakaEhuG4>
Subject: Re: [Idr] New Version Notification for draft-wang-idr-rd-orf-03.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2020 07:19:02 -0000

>
> By day one design L3VPNs or L2VPNs are overloading all PEs to parse and
> drop all BGP updates which do not carry routes containing at least one
> intersecting RT.
>
> *[WAJ]  But until now, various filter policies for the unnecessary BGP
> updates has been added, do you agree?*
>

There is a difference between "unnecessary" and those which are caused by
wrong service deployment.

*[WAJ] Yes, RD-ORF can also be used within the device, but push the policy
> to its upstream peer or final to the overwhelming source is better.*
>

This is one of the biggest issue I have with this draft. ORF is not
transitive and you are making it transitive (even if you pretend it is
not).

I am not against automated filtering (where it make sense), but if so pls
do it correctly. Define a new SAFI just like we did with RTC, call it RDC
(RD Constrained) and use it at your own risk to break VPNs in your network.

While there custom update generation especially based on more then one
constraint has a high cost. You need to generate update per each such peer
individually walking full vpnv4 table. Dropping is cheap. Replication is
cheap. Keep this in mind pls so your vendor's implementation engineers have
easy life :).

Cheers,
R.

v2.23.0 | Report a Bug | By Email