IETF Logo Mail Archive

Re: [Idr] I-D Action: draft-ietf-idr-rpd-05.txt

Robert Raszuk <robert@raszuk.net> Sat, 04 July 2020 10:18 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CBBC83A08F6 for <idr@ietfa.amsl.com>; Sat, 4 Jul 2020 03:18:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UOVyX-ilxA8s for <idr@ietfa.amsl.com>; Sat, 4 Jul 2020 03:18:21 -0700 (PDT)
Received: from mail-ed1-x536.google.com (mail-ed1-x536.google.com [IPv6:2a00:1450:4864:20::536]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EBC4F3A08EE for <idr@ietf.org>; Sat, 4 Jul 2020 03:18:20 -0700 (PDT)
Received: by mail-ed1-x536.google.com with SMTP id by13so20121703edb.11 for <idr@ietf.org>; Sat, 04 Jul 2020 03:18:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=tby4JwujQNR4PkdugUCwS6XZhup7+H/KDjkDGsHtPJ8=; b=DcU/FTiOrK0e6h6q5OACQ8J2z6Q6nrXc+e77NHn0y/UmY+bOTtnBVGWavasNWO2yNb LMypvY3+uxKdKdjbSeSTJ8ynI9E7cbaOHsqW7GV37hdIIC79KmlLCYAHeTizGaIPjAnM o2LE32dwvdgDecW+7eWVz3agJI9SXltS9S25fo0qMvrvVn/Sa79IKB4L3MRDnZHLeeJz kITQ9jVIU89WCFSXK/YVutiMDR2M9cZUVKTiXqVyLMxz2yGnp+Flwl+Jtr2ujoCw2/7M 2mpfiEWuormkNK2xqFfxzYwkcNaqCb25CXMOIMU8UIZE2GmWkEngkZ/3s+WRDDlN95bn 2QTQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=tby4JwujQNR4PkdugUCwS6XZhup7+H/KDjkDGsHtPJ8=; b=rm6R8CjxlFuecPnSy4j1YLAOva9hC19ZF/DdZjVaCkP3g0XKSL2iM2oSAbNbuUP7Ye d8SqajW7uOVohr6XUTi+GSx9rZ3HIG12AOEnkzRW8EyDp5mUWcEsVOs58eZzN5Mdm3I6 WS5clizA2i4O4kSLxPUh2ekDDP+g8ednWeqJelJ3zQVDlx9anSq1DNmlrOZN9xAgsUwS 9GEPtczhlu9fistfG/H++7JYYposfTT/eXOM19l1c36LKdodz9mxuvFpMQU9kgReOk71 nVrlMLnDM8ol4r3EH/DtzxNC9UcBlz/D+6mp12w3NRdDYMQ008UN+pM7ePCrnKJlYAG5 etAA==
X-Gm-Message-State: AOAM531bEHl20hquNjSaE3x/zssxK//Kd5qblkCyNPfQLplChtis9Xh2 bjtxtOmg5woukcq3OUXr/dxZNSSY2zN+PRPT8ZaC2Q==
X-Google-Smtp-Source: ABdhPJyx6237qoxRFkRKb52eCsEd7x/hEDlWQr4/2VlOyYrPaXNS/FmwWrGHOa8Wfo98rO9RSvdjhK3vNQE3Mg065Js=
X-Received: by 2002:a05:6402:1c86:: with SMTP id cy6mr31541669edb.30.1593857899093; Sat, 04 Jul 2020 03:18:19 -0700 (PDT)
MIME-Version: 1.0
References: <159174295808.20598.10881535719552756514@ietfa.amsl.com> <CABNhwV0BzBWXmcn+ge9AXBZ69bg_3ht74YoFW8rRLi5A5pjdsw@mail.gmail.com> <CABNhwV2FDXpR3dOZwnJTp_P_iC+Hi8W2NtRXjLcNJJo6M4bXxg@mail.gmail.com> <MN2PR13MB3117DD76779455FEEC34968CF2940@MN2PR13MB3117.namprd13.prod.outlook.com> <MN2PR13MB31177858AB89433F8086D46AF26E0@MN2PR13MB3117.namprd13.prod.outlook.com> <4d4f462181b247f8ae657767a5a8f25a@huawei.com> <MN2PR13MB31178D45D9B276C509891DB5F26F0@MN2PR13MB3117.namprd13.prod.outlook.com> <BY5PR13MB3110FE2D86251F504C0067C2F26C0@BY5PR13MB3110.namprd13.prod.outlook.com> <CAOj+MMFLyxfuxyz8RLhk7JhH0k_V-ttM=U2nYwxZ6sQOpH_rpQ@mail.gmail.com> <MN2PR13MB3117E2AB96EB471E6993AB27F26B0@MN2PR13MB3117.namprd13.prod.outlook.com>
In-Reply-To: <MN2PR13MB3117E2AB96EB471E6993AB27F26B0@MN2PR13MB3117.namprd13.prod.outlook.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Sat, 04 Jul 2020 12:18:10 +0200
Message-ID: <CAOj+MMHX_F8B2j1GXPSee4xHk1biSO_N=vgdw=FStNaBMRF5wA@mail.gmail.com>
To: Huaimo Chen <huaimo.chen@futurewei.com>
Cc: "idr@ietf.org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e5f9c305a99af553"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/pvDJW6AdtVIYjuYST6HtjkMqljU>
Subject: Re: [Idr] I-D Action: draft-ietf-idr-rpd-05.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Jul 2020 10:18:23 -0000

Hi Huaimo,

If I am reading your response correctly regarding point #1 then you are
really turning BGP into p2p configuration push. That is not what BGP is
for. I recommend we do not do that.

That BGP update will be sent to *every* BGP speaker in the domain talking
your new SAFI unless you go to next level and use prefix ORF to push all of
your peers IP address to say RR. This is getting very very ugly.

Note pls that you already can share policy among many peers by either
listing peers explicitely in the wide community or include there their
ASN(s). The peer IP address as key in the NLRI will break all of this
completely.

I recommend you reconsider.

Thx,
R.









On Sat, Jul 4, 2020 at 4:37 AM Huaimo Chen <huaimo.chen@futurewei.com>
wrote:

> Hi Robert,
>
>     Thank you very much for your comments.
>
>     Our answers/explanations are inline below with prefix [HC].
>
> Best Regards,
> Huaimo on behalf of authors
> ------------------------------
> *From:* Robert Raszuk <robert@raszuk.net>
> *Sent:* Wednesday, July 1, 2020 5:21 AM
> *To:* Huaimo Chen <huaimo.chen@futurewei.com>
> *Cc:* idr@ietf.org <idr@ietf.org>
> *Subject:* Re: [Idr] I-D Action: draft-ietf-idr-rpd-05.txt
>
> Hi,
>
> I have two small suggestions about this document.
>
> 1.
>
> I think current suggestion of NLRI content to include peer IP address is
> very unfortunate. I would recommend to replace it with either sender IP
> address or policy group ID.
>
> Why ? As the target of the policy will be already included in the wide
> communities and may conflict or extend the currently defined NLRI value.
>
> For example if you ask to apply policy X to ASN 100 it does not matter
> what peer address is.
>
> If you need policy to be applicable to a specific peering point just also
> encode it consistently within the wide community itself.
>
> [HC]: When a router A receives a policy X (say from a controller), router
> A may have a few other peers. The peer IP address indicates a specific peer
> (of router A) among these few peers to which the policy applies if the
> address is not 0. If the address is 0, the policy applies to all these
> peers. Using the peer IP address to indicate a specific peer for the policy
> can eliminate the unnecessary work that the others do to process and filter
> the policy. This may improve the efficiency.
>
> 2.
>
> While the text is clear that such policy would apply to inbound and
> outbound peers I think it would be good to state that this is about
> external policy propagation.
>
> Unless you also intend to push internal policies which would be a
> completely different game.
>
> [HC]: We will state something like it is about external policy propagation
> in general.
>
> Many thx,
> R.
>
>

v2.23.0 | Report a Bug | By Email