IETF Logo Mail Archive

Re: [Idr] New draft - Flowspec Path Redirect

Gunter Van De Velde <guntervandeveldecc@icloud.com> Wed, 23 September 2015 12:43 UTC

Return-Path: <guntervandeveldecc@icloud.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1E8C91B29F6 for <idr@ietfa.amsl.com>; Wed, 23 Sep 2015 05:43:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EvaAsHUB9ZUm for <idr@ietfa.amsl.com>; Wed, 23 Sep 2015 05:43:36 -0700 (PDT)
Received: from st11p00im-asmtp004.me.com (st11p00im-asmtp004.me.com [17.172.80.98]) (using TLSv1.2 with cipher DHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CBF691B29F3 for <idr@ietf.org>; Wed, 23 Sep 2015 05:43:35 -0700 (PDT)
Received: from [127.0.0.1] (ec2-54-210-254-137.compute-1.amazonaws.com [54.210.254.137]) by st11p00im-asmtp004.me.com (Oracle Communications Messaging Server 7.0.5.35.0 64bit (built Mar 31 2015)) with ESMTPSA id <0NV400JBBRCLXM10@st11p00im-asmtp004.me.com> for idr@ietf.org; Wed, 23 Sep 2015 12:43:35 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:,, definitions=2015-09-23_05:,, signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 kscore.is_bulkscore=0 compositescore=0.949661703524398 phishscore=0 kscore.is_spamscore=0 rbsscore=0.949661703524398 recipient_to_sender_totalscore=0 spamscore=0 urlsuspectscore=0.949661703524398 adultscore=0 kscore.compositescore=0 circleOfTrustscore=0 suspectscore=0 recipient_domain_to_sender_totalscore=0 bulkscore=0 recipient_domain_to_sender_domain_totalscore=0 recipient_to_sender_domain_totalscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1412110000 definitions=main-1509230186
Content-type: multipart/alternative; boundary="----sinikael-?=_1-14430122139220.24250778672285378"
From: Gunter Van De Velde <guntervandeveldecc@icloud.com>
To: Robert Raszuk <robert@raszuk.net>
In-reply-to: <CA+b+ERnumHNcnVChLdKtDGOYrNF=7pOdQYJjy7neZGjdgmRevA@mail.gmail.com>
References: <D0CC3567-AE4A-4770-B31A-0BFEB72CA577@alcatel-lucent.com> <CA+b+ERnumHNcnVChLdKtDGOYrNF=7pOdQYJjy7neZGjdgmRevA@mail.gmail.com>
Date: Wed, 23 Sep 2015 14:43:32 +0200
X-Cm-Message-Id: 14430122138384591f86f6640dd616c3ff8f9f2b82b05da756029e75ccbed608685887
X-Cm-Draft-Id: WyJhIiwxLCJkcmFmdF9pZCIsMTQ0MzAxMjIxMjM5MywidiIsMV0=
X-Mailer: CloudMagic
Message-id: <1443012214100-ee262a98-e0b3d938-ce50dc4d@icloud.com>
MIME-version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/idr/ps0zVNsO09fRWWESLJY3YZlNBEc>
Cc: idr@ietf.org, "VAN DE VELDE, Gunter (Gunter)" <gunter.van_de_velde@alcatel-lucent.com>
Subject: Re: [Idr] New draft - Flowspec Path Redirect
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Sep 2015 12:43:38 -0000

Interresting question... I see few options to address this. (And fwiw, i left
this currently intentionally out the text to see if some ideas pop-up to confirm
or deny the ideas the authors had on this topic)

The one which currently to me resonates most is to treat the path-id similar as
a traditional bgp next-hop address... Meaning, that if the receiving router
does't have a "valid" entry in the locallised path-id table it treats flowspec
rule as withdraw.

Decision on what is considered "valid" is at first glance a local router
decision.

If you have another proposal i would be happy to learn and see if it resonates.

Ciao,
G/



Sent using CloudMagic Email
[https://cloudmagic.com/k/d/mailapp?ct=pa&cv=7.3.5&pv=5.1.1&source=email_footer_2] On Wed, Sep 23, 2015 at 10:56 AM, Robert Raszuk < robert@raszuk.net [robert@raszuk.net] > wrote:
Hey Gunter,

Let me ask you a question (which in fact also applies to redirect to
next hop draft).

What is the expected system action when the redirect path is down
(assuming you have tools to detect it) or next hop you are redirecting
it to is unreachable ?

I read your draft but other then definition of the encoding I was not
able to find answers for this.

The original RFC5575 recommended redirect to local VRF which is just
as loopback normally up and within that VRF your orchestration can
redirect to next hop or path with whatever encapsulation you like.

Here you (and redirect to next hop folks) are making a shortcut
however in both works I have not seen a proper discussion nor
definition of set of procedures which need to be executed upon your
redirect entity failure.

I suggest both documents are updated with that before we proceed
further with both proposals.

Cheers,
R.






On Wed, Sep 23, 2015 at 10:18 AM, VAN DE VELDE, Gunter (Gunter)
<gunter.van_de_velde@alcatel-lucent.com> wrote:
> Hi Folks,
>
> We have created a new draft to allow the capability to have Flowspec signal
> a redirect to tunnel/LSP.
>
> https://tools.ietf.org/html/draft-vandevelde-idr-flowspec-path-redirect-00
>
> The base principle is to use the indirection capability of BGP for path
> redirection.
>
> This proposal defines a new flowspec community to signal a redirect
> ‘path-id’. This path-id is is either a 128bit or 32bit value
> Assumed is that recipient router supporting path-id redirect have a
> localised path-id indexed table containing LSP/tunnel encapsulation
> information.
> Existing technology can be used to construct/create this table (LDP, SR,
> RSVP, manual-config, etc…) on a recipient router. The LSP/tunnel encap table
> is indexed using 32 or 128 bit values.
>
> Flowspec path-id community is used to activate a redirect LSP/tunnel and
> provide by indirection the LSP/tunnel information for the flowspec
> identified traffic towards the LSP/tunnel.
>
> Benefits:
>
> no need for signalling labels or extra encap in BGP
> Each path-id indexed LSP/tunnel table is a localised construct
> existing technology is used to construct the path-id indexed localised table
> Compatibility with technologies already using 32 or 128 bit identifiers for
> paths and sessions
> Easy for flow spec to signal as it introduces no need to signal labels etc…
> no conflicts with existing label exchange technologies
>
> Feedback welcome.
>
> G/
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>

_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email