Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-17 -> Updated Version -18 and Flowspec v6
Jeffrey Haas <jhaas@pfrc.org> Wed, 18 December 2019 16:50 UTC
Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 66B561209F5; Wed, 18 Dec 2019 08:50:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t969BAFCiQkN; Wed, 18 Dec 2019 08:50:09 -0800 (PST)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id 4B41B1208B9; Wed, 18 Dec 2019 08:50:06 -0800 (PST)
Received: by slice.pfrc.org (Postfix, from userid 1001) id C10CA1E2F6; Wed, 18 Dec 2019 11:54:35 -0500 (EST)
Date: Wed, 18 Dec 2019 11:54:35 -0500
From: Jeffrey Haas <jhaas@pfrc.org>
To: Alvaro Retana <aretana.ietf@gmail.com>
Cc: Christoph Loibl <c@tix.at>, idr-chairs@ietf.org, "idr@ietf. org" <idr@ietf.org>, draft-ietf-idr-rfc5575bis@ietf.org
Message-ID: <20191218165435.GA6488@pfrc.org>
References: <CAMMESsxHXUB_jQk7E9FkeNef2C7DDcbiEvnROFdbEjAVtMqcFA@mail.gmail.com> <F9C8F51F-FB7C-4530-93EA-BF188D007C98@tix.at> <CAMMESsxDYo2JPQ=tw3m9EQrDwyGCjWMem_oiH4WZy4FHRBOFtQ@mail.gmail.com> <20191217220936.GE4858@pfrc.org> <44C0D224-1C71-4B88-B3D9-A12F417AD3F0@tix.at> <20191218121235.GF4858@pfrc.org> <CAMMESsz+cLgPxZeQHNfDuZpiSY992Vm5YnEzc9LK1aOSjrA8rw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <CAMMESsz+cLgPxZeQHNfDuZpiSY992Vm5YnEzc9LK1aOSjrA8rw@mail.gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/nprYPhQIVRpyGxxsoyTYO6ZEFY4>
Subject: Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-17 -> Updated Version -18 and Flowspec v6
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Dec 2019 16:50:11 -0000
Alvaro, [choosing the most terse response] On Wed, Dec 18, 2019 at 08:17:05AM -0800, Alvaro Retana wrote: > > On Wed, Dec 18, 2019 at 08:11:37AM +0100, Christoph Loibl wrote: > > > > You can't parse it, therefore it's malformed. > > Jeff: I interpreted this response as agreeing that if the NLRI can't > be parsed then it should be discarded (even maybe buying the Typed > NLRI argument). It sounds like we're agreeing. Is that true? [...] > Personal opinion: If we (WG) don't buy into the Typed NLRI-like > argument, then we deal with the "entire NLRI field", but we're also > stuck with AFI/SAFI disable (or session reset). If we buy into the > Typed NLRI-like argument, then it seems like we have the option to > specify either discard behavior. IMO, the typed NLRI argument was poorly thought through. It effectively devolves into a form of the issues above. The issue in both cases is that it's impossible to tell that you're dealing with garbage or not. The choice made in that section was discard with exactly the same risks I mentioned. If the WG converges on discard, so be it. If an implementation and a network roll the dice in a lucky fashion, they only encounter such issues for well-formed unknowns that are discarded. If not, they get to manually bounce their peering session. The fix for flowspec really should be flowspec v2 or capabilities based fix for later extensions. The fix for the typed NLRI is effectively similar. -- Jeff
- [Idr] AD Review of draft-ietf-idr-rfc5575bis-17 Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Dongjie (Jimmy)
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Susan Hares
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Robert Raszuk
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Susan Hares
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Susan Hares
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Robert Raszuk
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Jeffrey Haas
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Jeffrey Haas
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Jeffrey Haas
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Jeffrey Haas
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Christoph Loibl
- Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-… Alvaro Retana