IETF Logo Mail Archive

Re: [Idr] Part 3 of CAR/CT Adoption call (7/14/2022 to 7/27/2022) - Operational Differences

Robert Raszuk <robert@raszuk.net> Fri, 15 July 2022 09:26 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68676C188719 for <idr@ietfa.amsl.com>; Fri, 15 Jul 2022 02:26:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.105
X-Spam-Level:
X-Spam-Status: No, score=-7.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gex_2uYC-Agj for <idr@ietfa.amsl.com>; Fri, 15 Jul 2022 02:26:18 -0700 (PDT)
Received: from mail-lf1-x131.google.com (mail-lf1-x131.google.com [IPv6:2a00:1450:4864:20::131]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A83D9C14EB1E for <idr@ietf.org>; Fri, 15 Jul 2022 02:26:18 -0700 (PDT)
Received: by mail-lf1-x131.google.com with SMTP id u13so6911627lfn.5 for <idr@ietf.org>; Fri, 15 Jul 2022 02:26:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=LPGDhEbivjx3LSZNBzZp0Y0HOOD/a9NGN5LDuzYlhpQ=; b=LFT7mZnyuWVv5FjeGbiteDb4RcwRZR8KZ/pHR7DzIOy4/bgfmDAQxHmPOnqCgaDGtK fXqcCgHwJ9n7fcAyWnENRILJkrR0gIE784doZdShEbdttDYkLhMy5BlMmXZIyMIGWYhM EHv9I7hfwGP415ttmOvrGA1JFzfnzypjlP+vzUli1Rrf/M7gd+fAcqdLXHo9B6p2hA02 tGpKCuzx0Ljfq4381aUs4ppd5g1Zb2YC+C1ZaL/Pb6nb0dr6n4AH4Vln1Ix0yM14mDBw Q/Qxuo+LwusDhAvTOgN8vDA+LChwlDYxcNIgMVDZMVLqoAmJ5CRsT4Eux36TFiklJEht D2pw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=LPGDhEbivjx3LSZNBzZp0Y0HOOD/a9NGN5LDuzYlhpQ=; b=NMYyA77ecNug5fPFL4wBVEfKqjL1PcKfkcp7VUdJ5rpPVbCTlSOxO6zD/uC8UWpD9q NkcnNLw1z1EQd2xuATvh/rtDgfw0jKUf9cAbdqq3VS1R+VGtGsuhrvuaFV8v8vvJm75F r5bfdF70/Xvm83JWy+FVhE2rXabrKlh5kPapxRWVR2I5fjun91BU7sgG5J7uhUlmGcxY tWjlsS3jg1fLFZyWNcfs71bjOPSmhIOTiJssD4d3h2HSWgeAERcidSOfk6l1lPNFK1ka eEyN9BGlm9FUQ1b0NfxXCpLleZ5Y3vdqWSrIDjY8P3r26JkWr/eqOWGDNvwq1zBmi0z6 G29w==
X-Gm-Message-State: AJIora/4uyrrjraeEVdBKmq7x05wN1W0gEnwDW5mphzINYt1MKiggWFg 38UbyKDdp/246xv3JawawgbsTis2uljK9lCQvxL68w==
X-Google-Smtp-Source: AGRyM1vhgiohJiCffPingkDkfcN2iSMVjQ/UcqDtad9ptNXLfXrwg6ZnWhuWYz+scyUQVasQyjOFqTFhpLXbfWrzZCY=
X-Received: by 2002:a05:6512:238d:b0:489:e42f:ca04 with SMTP id c13-20020a056512238d00b00489e42fca04mr8029696lfv.475.1657877176050; Fri, 15 Jul 2022 02:26:16 -0700 (PDT)
MIME-Version: 1.0
References: <BYAPR08MB4872312AE7023B3DDA2E598AB3889@BYAPR08MB4872.namprd08.prod.outlook.com> <CAOj+MMHUgepA2fcMXG-0OB=OtTPWzgz10eSrq-YsFBCyVNfzNw@mail.gmail.com> <DM6PR05MB551401E5FA85057D8898DC51B0889@DM6PR05MB5514.namprd05.prod.outlook.com> <CAOj+MMGS47Pmu5rOQ=0WohU7XcOSeVOYqKzXGac1PBxrctdsEA@mail.gmail.com> <SJ0PR05MB86321C954129CD4AA9A08DAEA28B9@SJ0PR05MB8632.namprd05.prod.outlook.com>
In-Reply-To: <SJ0PR05MB86321C954129CD4AA9A08DAEA28B9@SJ0PR05MB8632.namprd05.prod.outlook.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Fri, 15 Jul 2022 11:26:05 +0200
Message-ID: <CAOj+MMH5aJFaNh7hJfVfPoRm82HAnZFdikcvXT8HKAMddk_wGw@mail.gmail.com>
To: Kaliraj Vairavakkalai <kaliraj@juniper.net>
Cc: Reshma Das <dreshma@juniper.net>, Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000028fdf305e3d49cd4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/fTFYwF54WRHcj7PDt2t7sOQg6vo>
Subject: Re: [Idr] Part 3 of CAR/CT Adoption call (7/14/2022 to 7/27/2022) - Operational Differences
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Jul 2022 09:26:22 -0000

Hi Kaliraj,

As described above, main difference between option (c) and (b) is that
>
> there is no service-route (SAFI 128) state at ASBRs. The ASBRs are
>
> “Transport ASBRs” that carry BGP-LU (SAFI 4) or BGP-CT (SAFI 76) routes.
>
>
>
> So, there is no ambiguity that SAFI 76 is a Transport-layer family, that
>
> enables Inter-AS option (c) solution.
>


The fundamental difference between SAFI 128 Option C vs Option B is that in
the former next hop is not changed between ASNs while in the latter it is.

I do not see any reason why not to say that CT uses Option-B especially
based on the fact that ASBR do maintain state and do rewrite next hop.

You seem to be stuck with Option C which simply is not what CT is doing.
Why ?

And also you keep bringing SAFI 4 over and over to the discussion which is
completely irrelevant to the subject.


> But CT does not like ADD-PATHs - so how are you planning to solve this
> original L3VPN distribution issue ?
>
>
>
> Further, about Addpath, CT doesn’t dislike Addpath 😊. BGP-CT does use
> Addpath to avoid
>
> the redundant ASBR path-hiding problem you describe, as stated in the
> following sections:
>
>
>
>
> https://datatracker.ietf.org/doc/html/draft-kaliraj-idr-bgp-classful-transport-planes-17#section-10.6
>
>
>
>
>
>
> https://datatracker.ietf.org/doc/html/draft-kaliraj-idr-bgp-classful-transport-planes-17#section-18.3
>
>
>
>    Addpath is enabled for BGP CT family on the sessions between RR27 and
>
>    ASBRs, ABRs such that routes for 1.1.1.1:10:1.1.1.1 with the nexthops
>
>    ASBR21 and ASBR22 are reflected to ABR23, ABR24 without any path
>
>    hiding.  Thus giving ABR23 visibiity of both available nexthops for
>
>    Gold SLA.
>
>
>
> We just don’t think Add-path-ID is a good end-to-end distinguisher.
> Because it is per-session scoped.
>
> RD plays a better role of being an end-to-end distinguisher.
>


So you confirm that your solution when deployed inter-as requires
ADD-PATHs. Cool. We are making progress.

You also need to educate all of your customers that without ADD-PATHs use
the CT solution becomes single point of failure. And that is easier said
then done. ADD-PATHs has been supported for SAFI 1 for a while but not
necessarily for SAFI 128. So new code is needed which I am sure will be
part of OS which includes SAFI 76.

Note that path hiding on the RRs can also be addressed using BGP Diverse
Path RFC 6774 without the need to use ADD-PATHs.

I mention this here as those customers mobilized globally to support CT
must be aware that analogy to SAFI 128 is not identical when it comes to
SAFI 76.

As far as your last comment of ADD-PATHs being session scoped and using
this as counterargument let's observe that for transport layer where you
set next hop on transport anchors actually per session scope makes much
more sense as opposed to carry luggage from other ASNs into your domain.

Kind regards,
Robert

v2.23.0 | Report a Bug | By Email