Re: [Idr] [spring] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)

"Ketan Talaulikar (ketant)" <ketant@cisco.com> Mon, 01 June 2020 14:56 UTC

Return-Path: <ketant@cisco.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 770963A1104; Mon, 1 Jun 2020 07:56:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=mthKdjbT; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=FvPZFMr5
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SL5XjoFuPe0P; Mon, 1 Jun 2020 07:56:16 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C8AA3A1103; Mon, 1 Jun 2020 07:56:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=290467; q=dns/txt; s=iport; t=1591023376; x=1592232976; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=q9+H4SASqLc6Nu43KaTd5jVoo1Rth5jOaD3YBiPASHM=; b=mthKdjbTtBQlwel1woZzvBfdywTfgXHzoaKI+0A8cS317a1x5PHhLKh0 1TLo+Zj0WSb78aVwtfzPswwJbxot8evq+Ba5bKX1Hbdd8Z5srOpGEvIgY ZZIG6+7fGEgOUHW4A0dw0Ax59RkCP+KAfAZ2P6WRefX/DnuarCGeplrCn s=;
X-Files: image001.png : 158645
IronPort-PHdr: 9a23:O7Q5ZBLLCwpJonZi/9mcpTVXNCE6p7X5OBIU4ZM7irVIN76u5InmIFeGvKk/g1rAXIGd4PVB2KLasKHlDGoH55vJ8HUPa4dFWBJNj8IK1xchD8iIBQyeTrbqYiU2Ed4EWApj+He2YkdQEcf6IVbVpy764TsbAB6qMw1zK6z8EZLTiMLi0ee09tXTbgxEiSD7b6l1KUC9rB7asY8dho4xJw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CkBAC6FdVe/5RdJa3AaXEFAQESAwIBBgSNCzrCD5AigbRWGQ0
X-IronPort-AV: E=Sophos;i="5.73,461,1583193600"; d="png'150?scan'150,208,217,150";a="760252190"
Received: from rcdn-core-12.cisco.com ([173.37.93.148]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 01 Jun 2020 14:56:15 +0000
Received: from XCH-ALN-002.cisco.com (xch-aln-002.cisco.com [173.36.7.12]) by rcdn-core-12.cisco.com (8.15.2/8.15.2) with ESMTPS id 051EuFxL032323 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 1 Jun 2020 14:56:15 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-002.cisco.com (173.36.7.12) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 1 Jun 2020 09:56:15 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 1 Jun 2020 09:56:14 -0500
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 1 Jun 2020 10:56:14 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=H7Ty+IRATZRg6RTe0GvbOlNvcfQz/sGxlIgbkxyhtK9SyttG5UI/1HVvWwMJGK8WScbg6QGHZCHb2ZuRrDn9sGP3y04nfmFE23jcQ88TvohwPIp54G6dQS2hkHOL1vCRxIQK6kG8B0SyJy66A3pyF2Lmw7QzLAL72pXM1fxHW0L02CB1JSBQQfAyudXyj/XZP3k3HOcn6NbOESHkOFGYfR8sGr/HBw5dLfRoREvT9IWUs9Ex7AHvezsR/BJr+VJMutDRTT+MOs4Pmubc3VVoIVurTWQka7/YgsyJW6FwE4UUIzQ8pjvK62BALD7FfYxcJpO+zTfTKvPkwS+SKjVSAg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NrijVLXKcfN+D5mqcQrFoPrK4Hl0BkOcR8n3mss03Us=; b=m64BiR9cSECc7aJZFxFupseJAXp8IEkLMfFTeNWCOo1/bWrZE6M0tQK4rdYbSDm0f2NbvlkwbsV9vCkgBfB8ZxO9/o93b4MdDWwkvpt3ZHxX+W1beNMSn7o+IiiD6F347RlmLOMAAWOHdCzCTV3iKWjb2SsmY8BTmEEQ2n2OU6GkBtghgIubov89lvdnIbjSx3rhA3rT76DskaoQKlK6nN8fcJHwYBq+Dze3bNL2aNlS6Y+ZsGjdvexcn/Aqg8djbGEpyjOiQ/anbFtkijUUh+zwo9PjN+E33Dxh+YBllIxGcGnyBeetavedajFVp4Rw19TVqGI/4d74sNYzpDYF6w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NrijVLXKcfN+D5mqcQrFoPrK4Hl0BkOcR8n3mss03Us=; b=FvPZFMr5vR0ecYh4mKm7VymWAyrunvPzrQwklf0Vr7ThdzEvzSCWPQK4qzp1oVeEN+vNQ2P6yp6IrJh/x3VnZizuAHI0/K1MCPA8kUsqGaANyy18fx9l2fTKltaWV7/h9WyZ3fmz76Q/trRoXMNMwKNx7xzxzzrblBlLrG6hG7s=
Received: from MW3PR11MB4570.namprd11.prod.outlook.com (2603:10b6:303:5f::22) by MW3PR11MB4761.namprd11.prod.outlook.com (2603:10b6:303:53::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3045.19; Mon, 1 Jun 2020 14:56:12 +0000
Received: from MW3PR11MB4570.namprd11.prod.outlook.com ([fe80::9552:d301:4b19:601c]) by MW3PR11MB4570.namprd11.prod.outlook.com ([fe80::9552:d301:4b19:601c%5]) with mapi id 15.20.3045.024; Mon, 1 Jun 2020 14:56:12 +0000
From: "Ketan Talaulikar (ketant)" <ketant@cisco.com>
To: Gyan Mishra <hayabusagsm@gmail.com>
CC: "Chengli (Cheng Li)" <c.l@huawei.com>, Fangsheng <fangsheng@huawei.com>, Robert Raszuk <robert@raszuk.net>, SPRING WG <spring@ietf.org>, Yangang <yangang@huawei.com>, "draft-ietf-spring-segment-routing-policy@ietf.org" <draft-ietf-spring-segment-routing-policy@ietf.org>, idr wg <idr@ietf.org>, stefano previdi <stefano@previdi.net>
Thread-Topic: [spring] [Idr] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)
Thread-Index: AdYek4MmKSUhOySlR86q9L0AexcDnQANyexgAAFPYwADjsRb8ABl7jKAAADuRQAAP4ULAAFNm0pAAM+NGwAAAwBPEA==
Date: Mon, 01 Jun 2020 14:56:12 +0000
Message-ID: <MW3PR11MB45703177C9621A1C06E79921C18A0@MW3PR11MB4570.namprd11.prod.outlook.com>
References: <C7C2E1C43D652C4E9E49FE7517C236CB029FAC88@dggeml529-mbx.china.huawei.com> <MW3PR11MB45702B49025A293583346F36C1AA0@MW3PR11MB4570.namprd11.prod.outlook.com> <CAOj+MMGbjvgn6VL3dKviuxzNNRk0pwFkBOTJUz15D8iSM9=-Rw@mail.gmail.com> <MW3PR11MB457083E56B77688CA68A2500C1B80@MW3PR11MB4570.namprd11.prod.outlook.com> <83bae48cc52d4a5da9a7ee76529a8d20@huawei.com> <CAOj+MMFs2fGy0ciyBJvoWng++oepamF8YxyO=QtR9yYWbazbqg@mail.gmail.com> <CABNhwV24xJ5jTfA2vzxS1ig8Wp2NbO1wiNeTJBc2Jd_yECE=xA@mail.gmail.com> <MW3PR11MB457015C0AB2FD65634EA0353C18E0@MW3PR11MB4570.namprd11.prod.outlook.com> <CABNhwV0CXK2dTqG9WSZ05yan4vbbPwLbNpbdscBky09MU8cbNw@mail.gmail.com>
In-Reply-To: <CABNhwV0CXK2dTqG9WSZ05yan4vbbPwLbNpbdscBky09MU8cbNw@mail.gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [72.163.220.9]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1417fdd8-850c-4108-9333-08d8063bed67
x-ms-traffictypediagnostic: MW3PR11MB4761:
x-microsoft-antispam-prvs: <MW3PR11MB47610B945302894FA38B7EE6C18A0@MW3PR11MB4761.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0421BF7135
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: HpO7Gr+JMbYW5KPjFkSifNo9uf7aHnj2PtCou0Yg5TwKHAbe6ft0knMgG/J7Ox9C/A1E8EtDg2BkonClui5zF4idaqTnEK5pcbamggqTzdAxK6qUU0RDerLWykm+t3fBi+SV00yV/2Li6PkJCWJ0NlhEczQYx111+/OYQg02njFl5ppL3C/pigrA/y9p+Fbu9GK2OVM3BA1oHJy2BbPm0ExoP3QeH9hKhbpPWwtb61TPwJOfAE2kVW56HzUiMLR3krYcHqSFerL8Si97KzA2Uw9WTX2IZOtgxh8bpGgpFCVvD9sQ+rlBKOGWaIIYpLXbXnRG/Qdwens/KZst1MSCzPOVbB+EDkOrMhGb7TYSVl2YdJMmZ5pFSvlK/ZR8qeszZKNLfn2iGStuF+rQ4mbjTw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MW3PR11MB4570.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(396003)(366004)(376002)(346002)(136003)(39860400002)(4326008)(966005)(33656002)(478600001)(8676002)(55016002)(9326002)(54906003)(30864003)(316002)(99936003)(5660300002)(2906002)(8936002)(6916009)(186003)(71200400001)(86362001)(83380400001)(66446008)(64756008)(66476007)(66616009)(66556008)(7696005)(6506007)(53546011)(26005)(52536014)(166002)(9686003)(66574014)(76116006)(66946007); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: OyiRB4H64j0sytesXMkc/Co6OwHuxIoqb+cwSLappo+6g0a1HOiW+9mdz5wq2VgLxaNoNRXZYigHC4Z9S2o2V3kkh2wY7Ea4DT+RBpzb15hkPnYzJmWG99g9DMjtoZRVeB7K9Dth2LERs3Q9ACIKzrGCmJ5v5/aHib2BjxJOfRzXHGUvWIQ9F2I4QkSVRFpoHfAwusyFKO5C7Cxg/hlnoBgyWMyPuEm5S2E+H5ImTOsF150fW8FX+WT6hhkbq6sqWb4R+B0kZDAT3O2MikulV9/kp3Xr0JKdU587SqBYqYaXZP3dvO8aay/p2En1ch8v4kykA2es20pe5SB0/YwMdO854+el0g89hcp8K2Cj1pcBq6ugr5It5Pv2Qw6iOA4NWZeUx3et5364VzaX7C6KYEQdH7KPG5db4/kW12E/SSEpXPqe5/AvwTN9u2KQcyrzJvYdEnITkISzhINBwdMFikW6CJwwPVowyQZQjzxteCE=
x-ms-exchange-transport-forked: True
Content-Type: multipart/related; boundary="_004_MW3PR11MB45703177C9621A1C06E79921C18A0MW3PR11MB4570namp_"; type="multipart/alternative"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 1417fdd8-850c-4108-9333-08d8063bed67
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Jun 2020 14:56:12.7625 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: YQiYpclYrJkFrqBkbDGwHcBBUDsPas47wKbilDSTb4oFWUo5amWrm1nvZ6/uzCJ7NI9TMKc3AERbY7hhy8hDtA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW3PR11MB4761
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.12, xch-aln-002.cisco.com
X-Outbound-Node: rcdn-core-12.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/dkVsf00RgYsgB8g6Hg6lPOx_2XQ>
Subject: Re: [Idr] [spring] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Jun 2020 14:56:20 -0000

Hi Gyan,

Yes, that is correct.

Thanks,
Ketan

From: Gyan Mishra <hayabusagsm@gmail.com>
Sent: 01 June 2020 19:03
To: Ketan Talaulikar (ketant) <ketant@cisco.com>
Cc: Chengli (Cheng Li) <c.l@huawei.com>; Fangsheng <fangsheng@huawei.com>; Robert Raszuk <robert@raszuk.net>; SPRING WG <spring@ietf.org>; Yangang <yangang@huawei.com>; draft-ietf-spring-segment-routing-policy@ietf.org; idr wg <idr@ietf.org>; stefano previdi <stefano@previdi.net>
Subject: Re: [spring] [Idr] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)



On Thu, May 28, 2020 at 6:32 AM Ketan Talaulikar (ketant) <ketant@cisco.com<mailto:ketant@cisco.com>> wrote:
Hi Gyan,

Could I refer you to the examples in https://tools.ietf.org/html/draft-filsfils-spring-sr-policy-considerations-05#section-4 as that might clarify the various options for signalling redundant information (both as different BGP NLRI, via redundant BGP paths, or via multiple protocol sources).
 Gyan> Thanks Ketan.  So this scenario would be example 2 recommended with “auto RD” type 1 unique by loopback so both paths are installed in BGP sent to SR-TE for instantiation which now picks greater candidate path number as Active path.
Thanks,
Ketan

From: Gyan Mishra <hayabusagsm@gmail.com<mailto:hayabusagsm@gmail.com>>
Sent: 22 May 2020 00:48
To: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
Cc: Chengli (Cheng Li) <c.l@huawei.com<mailto:c.l@huawei.com>>; Fangsheng <fangsheng@huawei.com<mailto:fangsheng@huawei.com>>; Ketan Talaulikar (ketant) <ketant@cisco.com<mailto:ketant@cisco.com>>; SPRING WG <spring@ietf.org<mailto:spring@ietf.org>>; Yangang <yangang@huawei.com<mailto:yangang@huawei.com>>; draft-ietf-spring-segment-routing-policy@ietf.org<mailto:draft-ietf-spring-segment-routing-policy@ietf.org>; idr wg <idr@ietf.org<mailto:idr@ietf.org>>; stefano previdi <stefano@previdi.net<mailto:stefano@previdi.net>>
Subject: Re: [spring] [Idr] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)


On Wed, May 20, 2020 at 8:59 AM Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>> wrote:
Hi,

> the node-address is generated by CSG1

I don't think CSG1 needs to "generate" anything. Peers which send you particular policy are well known at CSG1.

> The process described above will result in a waste of redundant candidate paths on CSG1,

Well what you call "waste" I call redundancy. Sure keeping extra paths requires some cost, but building redundancy in control plane pays off.

    Gyan> I agree with Robert that the additional candidate path sent by the RR could be used for redundancy.   However, I think the context of  SR TE is that each candidate path is a single path option not multiple as the redundancy is provided by different candidate paths.  That is the issue I am guessing.


Thx,
R.




On Wed, May 20, 2020 at 2:32 PM Fangsheng <fangsheng@huawei.com<mailto:fangsheng@huawei.com>> wrote:
Hi Robert,
Take the following picture as an example, I think you can understand our problem more easily.
The controller needs to notify the headend CSG1 through BGP SR Policy to create a candidate path of SR Policy. This BGP SR Policy route will be advertised to CSG1 through RR1 and RR2.
According to the definition in draft, the key of a candidate path is <Protocol-Origin, originator, discriminator>, where originator = <ASN, node-address>, so a complete candidate path key is <Protocol-Origin, ASN, node-address , discriminator>.
However, in this specific example, the node-address is generated by CSG1, and because CSG1 receives BGP SR Policy routes from RR1 and RR2, respectively, CSG1 will get two different node-addresses. CSG1 thinks that it is necessary to create two  candidate paths, and the controller does not know what the node-address CSG1 will eventually generate. Maybe:
Candidate path 1’ key:  <BGP,RR1’s ASN, RR1’ BGP Router ID, discriminator1>
Candidate path 2’ key:  <BGP,RR2’s ASN, RR2’ BGP Router ID, discriminator2>
The process described above will result in a waste of redundant candidate paths on CSG1,
At the same time, when CSG1 needs to announce the SR Policy information to the controller through BGP LS, it needs to carry the keys of the candidate path in it, and the controller cannot recognize these keys.


[cid:image001.png@01D63853.7CB81C50]

To solve these problems,  We recommend carrying the Route Origin Community (defined in RFC 4360) directly when the controller advertises BGP routes.
In this way, the key  of the CP is determined by the controller and will not change during the advertisement of BGP routes.




发件人: Ketan Talaulikar (ketant) [mailto:ketant@cisco.com<mailto:ketant@cisco.com>]
发送时间: 2020年5月18日 20:00
收件人: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
抄送: Chengli (Cheng Li) <c.l@huawei.com<mailto:c.l@huawei.com>>; draft-ietf-spring-segment-routing-policy@ietf.org<mailto:draft-ietf-spring-segment-routing-policy@ietf.org>; idr wg <idr@ietf.org<mailto:idr@ietf.org>>; SPRING WG <spring@ietf.org<mailto:spring@ietf.org>>; Fangsheng <fangsheng@huawei.com<mailto:fangsheng@huawei.com>>; stefano previdi <stefano@previdi.net<mailto:stefano@previdi.net>>
主题: RE: [Idr] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)

Hi Robert,

You are right that the “Originator” is not used in BGP best path and is just for a tie-breaking logic in SRTE between paths from different protocols and controllers. I doubt if there is a functional issue here.

I thought that Chengli was bringing in some new/different requirement for the “Originator” field for some deployment design. I haven’t seen a response/clarification from him as yet, and so perhaps I misunderstood him in which case we are ok here.

Thanks,
Ketan

From: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
Sent: 30 April 2020 14:46
To: Ketan Talaulikar (ketant) <ketant@cisco.com<mailto:ketant@cisco.com>>
Cc: Chengli (Cheng Li) <chengli13@huawei.com<mailto:chengli13@huawei.com>>; draft-ietf-spring-segment-routing-policy@ietf.org<mailto:draft-ietf-spring-segment-routing-policy@ietf.org>; idr wg <idr@ietf.org<mailto:idr@ietf.org>>; SPRING WG <spring@ietf.org<mailto:spring@ietf.org>>; Fangsheng <fangsheng@huawei.com<mailto:fangsheng@huawei.com>>; stefano previdi <stefano@previdi.net<mailto:stefano@previdi.net>>
Subject: Re: [Idr] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)

Hi Chengli and Ketan,

Well I think (perhaps to your surprise) the current text is actually correct.

See the overall idea of section 2.4 is not to define the real source of the candidate path. That is done in section 2.5 The idea here is to keep multiple *paths or versions* of the candidate paths in the local system uniquely.

See if you continue reading section 2.6 demystifies the real objective:


   The tuple <Protocol-Origin, originator, discriminator> uniquely

   identifies a candidate path.



So the real originator is encoded in discriminator and here it just means the peer candidate path was

received from. And if you read on this entire exercise only servers best path selection as described in section 2.9.



.... the following order until only one valid best path is selected:



   1.  Higher value of Protocol-Origin is selected.



   2.  If specified by configuration, prefer the existing installed

       path.



   3.  Lower value of originator is selected.



   4.  Finally, the higher value of discriminator is selected.

+

      The originator allows an operator to have multiple redundant

      controllers and still maintain a deterministic behaviour over

      which of them are preferred even if they are providing the same

      candidate paths for the same SR policies to the headend.

Thx,
R.

On Thu, Apr 30, 2020 at 10:46 AM Ketan Talaulikar (ketant) <ketant=40cisco.com@dmarc.ietf.org<mailto:40cisco.com@dmarc.ietf.org>> wrote:
Hi Cheng,

I assume you are recommending the use of Route Origin Extended Community (https://tools.ietf.org/html/rfc4360#section-5) for conveying the “Originator” when the SR Policy update is propagated over eBGP sessions via other eBGP/iBGP sessions instead of direct peering with the headend.

I believe it does address the scenario you describe given that it is expected that SR Policy propagation via BGP is happening within a single administrative domain even if it comprises of multiple ASes.

Also copying the IDR WG for inputs since this would likely need to be updated in draft-ietf-idr-segment-routing-te-policy.

Thanks,
Ketan

From: spring <spring-bounces@ietf.org<mailto:spring-bounces@ietf.org>> On Behalf Of Chengli (Cheng Li)
Sent: 30 April 2020 07:34
To: draft-ietf-spring-segment-routing-policy@ietf.org<mailto:draft-ietf-spring-segment-routing-policy@ietf.org>
Cc: SPRING WG <spring@ietf.org<mailto:spring@ietf.org>>; huruizhao <huruizhao@huawei.com<mailto:huruizhao@huawei.com>>; Fangsheng <fangsheng@huawei.com<mailto:fangsheng@huawei.com>>
Subject: [spring] Comments: Route Origin Community in SR Policy(draft-ietf-spring-segment-routing-policy)

Hi authors,

In section 2.4 of [draft-ietf-spring-segment-routing-policy-06], introduced how the node-address of "Originator of CP(Candidate Path)" is generated when the Protocol-Origin is BGP. It says:
    “Protocol-Origin is BGP SR Policy, it is provided by the BGP component on the headend and is:
     o  the BGP Router ID and ASN of the node/controller signalling the candidate path when it has a BGP session to the headend, OR
     o  the BGP Router ID of the eBGP peer signalling the candidate path  along with ASN of origin when the signalling is done via one or  more intermediate eBGP routers, OR
     o  the BGP Originator ID [RFC4456] and the ASN of the node/controller  when the signalling is done via one or more route-reflectors over  iBGP session.”

In the operator's network, in order to reduce the number of  BGP sessions in controller and achieve scalability, the controller only establishes eBGP peer with the RR. And the RR establishes iBGP peers with the headends.. As mentioned in the draft, the headend will use the RR's Router ID as the CP's node-address (the signaling is done via route transmission from RR to the headend instead of route reflection).  The headend needs to carry the CP's key when reporting the SR Policy status to the controller through BGP-LS. And there is a problem that the controller may not recognize the key because the node-address is generated by the RR node.

For network robustness, two or more RRs are usually deployed. This will introduce another problem.. When the same CP advertised by the controller is delivered to the headend through different RRs, the headend cannot distinguish whether it is the same CP because the node-address in the CPs' key  comes from different RRs.

To solve these problems,  We recommend carrying the Route Origin Community (defined in RFC 4360) directly when the controller advertises BGP routes.  In this way, the key  of the CP is determined by the controller and will not change during the advertisement of BGP routes.

Thanks,
Cheng
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr
_______________________________________________
spring mailing list
spring@ietf.org<mailto:spring@ietf.org>
https://www.ietf.org/mailman/listinfo/spring
--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<http://www.verizon.com/>

Gyan Mishra

Network Solutions Architect

M 301 502-1347
13101 Columbia Pike<https://www.google.com/maps/search/13101+Columbia+Pike+%0D%0A+Silver+Spring,+MD?entry=gmail&source=g>
Silver Spring, MD<https://www.google.com/maps/search/13101+Columbia+Pike+%0D%0A+Silver+Spring,+MD?entry=gmail&source=g>

--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<http://www.verizon.com/>

Gyan Mishra

Network Solutions Architect

M 301 502-1347
13101 Columbia Pike
Silver Spring, MD