IETF Logo Mail Archive

Re: [Idr] Yangdoctors early review of draft-ietf-idr-bgp-model-09

tom petch <ietfc@btconnect.com> Mon, 09 November 2020 17:28 UTC

Return-Path: <ietfc@btconnect.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 75DA63A1267; Mon, 9 Nov 2020 09:28:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MM9K6x3WhkkF; Mon, 9 Nov 2020 09:28:25 -0800 (PST)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80112.outbound.protection.outlook.com [40.107.8.112]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB2E33A126E; Mon, 9 Nov 2020 09:28:24 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jLKnoK42uexDOAVqc8P8ioKEKu26lcx9QX1szpSRnyNDG8YGiYL/L6pnyLbCV74RKT7UpkGTjlvzHE29U9I7Uzr4Nh5ikYAzeHxyY2wXb86laZA6/WI18O4yiS/uDVIYB14iPcIxa6YO9AJRFWzniNmZXMObgtYaCOIjbCM2nLdEodUSnGhEMQQggr95Cj4NvxVWCl9JmArtHW18T/RQEzjODGHmkbbVU7597PPyEPebyFU5IgDpaDmXgJcj9cjOzmXu7D4qjhWgpy7hJ39t3Owitv6HTj4MTiQMyoTJXjOd8L7sKGB93EZqBV8UbznasrLeo0CtpFW0pTHAEcnz7A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+e3q8CmNawshNHeJqSjGiLAeSFVeLuZZujt6aksgO0w=; b=gWJFsD1M0UaUyR4X2LLkxg3NUntf6ZnqDodh99MA3m66VaFogk53mFH66tggWtssKmPqa8sLXRo/JP8vkp/zV6xcaWQoNuegILRtAMpLz33tZIzWWQTwHjMK8zrZe0R0x+00q1623iga3IP5w3eEej4n8hhG/hV1U2/NaHefb2gz62x/w9qOnOx8LTbyRn7Em/kMqEckrKI7WkfJEr32ygEnJnB7aFURbS/lC/Ebna3qEfFOOETHgN9pLYNHvn2s1e89YesURs/baS8qCvp6BadpuZYVbXNCwelS2IiTq1H9mnVTfGy0e+ounk2XOdN4VqnlTcIgjdTyopNwvIZ+1Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+e3q8CmNawshNHeJqSjGiLAeSFVeLuZZujt6aksgO0w=; b=DrvyfWAWPLw8uVDewN1HFeuOmxxeQBZmYauH8xwvrnjYz5LcAKjawOyU3XFvQa8SNYGItyY9rXz6a7iQk7Vkadj/lf0n/vFrBvAp/x1BhZuCe4GmofHpyP5dQVt5YvEX1bCjAHipC9pJmurdpCaMb8g9UsTCz0piy8HrLzT/C/c=
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com (2603:10a6:20b:134::11) by AM6PR0702MB3798.eurprd07.prod.outlook.com (2603:10a6:209:3::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3541.10; Mon, 9 Nov 2020 17:28:21 +0000
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::ad44:1086:3767:a804]) by AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::ad44:1086:3767:a804%8]) with mapi id 15.20.3564.021; Mon, 9 Nov 2020 17:28:21 +0000
From: tom petch <ietfc@btconnect.com>
To: Jeffrey Haas <jhaas@pfrc.org>, Mahesh Jethanandani <mjethanandani@gmail.com>
CC: "draft-ietf-idr-bgp-model.all@ietf.org" <draft-ietf-idr-bgp-model.all@ietf.org>, "idr@ietf.org" <idr@ietf.org>
Thread-Topic: [Idr] Yangdoctors early review of draft-ietf-idr-bgp-model-09
Thread-Index: AQHWcz1Jgc5D7CDA5U6J1bxKoZzLYqmsc/kAgAmaXgCACoTNjQ==
Date: Mon, 09 Nov 2020 17:27:45 +0000
Message-ID: <AM7PR07MB62484B41F3D60A09923BDD95A0EA0@AM7PR07MB6248.eurprd07.prod.outlook.com>
References: <159752099321.32075.3042069364754449151@ietfa.amsl.com> <CFC9CFFA-2933-4A59-A6BB-BBA90D65EC16@gmail.com>, <20201103004356.GB28060@pfrc.org>
In-Reply-To: <20201103004356.GB28060@pfrc.org>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: pfrc.org; dkim=none (message not signed) header.d=none;pfrc.org; dmarc=none action=none header.from=btconnect.com;
x-originating-ip: [86.146.121.140]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8d1ab444-ca02-4980-0c9f-08d884d4dae7
x-ms-traffictypediagnostic: AM6PR0702MB3798:
x-microsoft-antispam-prvs: <AM6PR0702MB3798B84B2C3C8AB537755581A0EA0@AM6PR0702MB3798.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Rf6EmXnznpCnVrem66lJ3r7x6BF98lj3+A9+t6QJ7PnBrtV/124hlkNoSn0/cN3EqHHswf/YWqWWGC6AZjflRZQr9aGO0RrOY6yC9WMbcIGK8vc2tHLdGNeGavdYaocrz7Rql/wxp6Pt4C4Di9+ySozCKykmZ4BGVdzCu+sO4kxveXwuNLN7ldxNvDiiIu0FPr8MvlFE+p5tZt18Y+DuUz7mvr7JhNzgLqE4D7BseGd+FngivxdgTWwzy9lxpSabg0QqlH1zl78X2QprO6Hl4AU0ovwXM8phuhUB/3tzecTRimI2vtH8Yni/7WTR1GbYqARRVMgzTMQgoYf57hJpfLuVXay3Z+2h8XOBr26xUThn2CdeNujk63cGjjZh8DSJLqZ7SoVXeg0ds7lF1TD+LFASajWVajk2MlVDRDVb9UzwGthgPtatXnESun9eYkqRabYgKyCrYXktZ1//gf2BPLtkq5wtnba1oS+CxLsgrkU=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR07MB6248.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(6666004)(7696005)(71200400001)(54906003)(966005)(110136005)(498600001)(186003)(2906002)(66946007)(83380400001)(4326008)(33656002)(53546011)(6506007)(8676002)(8936002)(26005)(76116006)(55016002)(66446008)(91956017)(64756008)(66476007)(52536014)(66556008)(5660300002)(9686003)(86362001)(586874002)(359044002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR07MB6248.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8d1ab444-ca02-4980-0c9f-08d884d4dae7
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Nov 2020 17:27:45.5067 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lnviZ6ltf41ms/E4H1KIfWaF/V0pjagBXNSDRaUkdMcXT8g3URIoCqqvXggdRP+oDforqoIYx6i2tenixcBWvg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR0702MB3798
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/7wpn6ftyMtayy5VaL0bn8wB9_XA>
Subject: Re: [Idr] Yangdoctors early review of draft-ietf-idr-bgp-model-09
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Nov 2020 17:28:27 -0000


________________________________________
From: Idr <idr-bounces@ietf.org> on behalf of Jeffrey Haas <jhaas@pfrc.org>
Sent: 03 November 2020 00:43
To: Acee Lindem; Mahesh Jethanandani
Cc: yang-doctors@ietf.org; draft-ietf-idr-bgp-model.all@ietf.org; idr@ietf.org
Subject: Re: [Idr] Yangdoctors early review of draft-ietf-idr-bgp-model-09

Acee,


On Tue, Oct 27, 2020 at 03:05:06PM -0700, Mahesh Jethanandani wrote:
> >     3. Page 25, "case ipsec": What is the reference for usage of transport
> >        mode IPsec with BGP? Please elaborate in description.
>
> I see release notes from vendors on IPsec for BGP, but no references that I can cite. Did you have something specific in mind?

There is no reference here.  Multiple BGP implentations support running BGP
over an ipsec tunnel.  A previous prod during a prior review suggested that
if we had something to use from an IETF group doing yang work on ipsec for
protecting routing transport sessions might be applicable here.
<tp>

Jeff

I2NSF have produced an I-D, currently with the IESG, on configuring IPsec.  It is part of I2NSF which is a lot more than IPsec but it did attract a comment from IPSECME WG asking that it be changed to make it more widely applicable with, I think, an implication that IPSECME might be about to do something.

IPsec, indeed IPSECME, is not my stock in trade, more like TSL and SSH but it did make me look at all those old IKEv2 RFC and wonder who used them:-)

Tom Petch

> >     5. Page 29, "remote-helper": I'd support this to be renamed
> >        "graceful-restart-only" since "helper-only" is relative to the local
> >     peer.
>
> The enumeration definitions talk about the mode in terms of local and remote. Calling it ‘graceful-restart-only’ conveys a completely different meaning.

There's actually a few issues here:
- The restarting mode is per AFI-SAFI, while this container doesn't contain
  anything that contains per AFI-SAFI state.
- The local peer can know whether it's acting as a helper and whether it can
  retain forwarding for a given AFI/SAFI.
- We can know if the remote BGP speaker has advertised GR for a given
  AFI/SAFI, which tells us whether it supports GR and can help the local
  speaker with restarting.
- We can know if, on the last restart, forwarding was preserved for that
  AFI/SAFI.

Proposal: Replace leaf "mode" with:
list afi-safi-supported {
  key "afi-safi-name"
  leaf afi-safi-name {
    type identityref { base bt:afi-safi-type; }
  }
  leaf local-supported {
    type boolean;
  }
  leaf remote-supported {
    config false;
    type boolean;
  }
  leaf remote-forweard-preserved {
    type boolean;
    config false;
  }
}



>
> >     6. Page 30, "fsm-established-transitions": What is the difference with
> >        "established-transitions"? Is the description a cut-n-paste error?
>
> I will rename “established-transitions” to “peer-fsm-established-transitions”.
>
> >     7. Page 33, "backward-transition": This implies any backward transition.
> >        I'd suggest renaming to "established-state-lost"
> >     or "established-backward-transition".
>
> But backward-transition is defined as when the BGP new status is lower than the last one, not just from established -> idle.

Note from BGP MIB history: The original BGP MIB provided a trap on every
backward transition.  This meant a very noisy set of traps for sessions that
were repeatedly trying to connect.  Many vendors implemented knobs to
restrict this solely to transitions out of established.

I'd suggest the working group consider what it wants here.  We don't have to
repeat the mistakes of the past on this one.

> >    15. Page 72, "bgp-ext-community-type": Many of these string patterns are
> >        defined in RFC 8294. Also, it would be good to add the syntax of the
> >     pattern you are representing in the description.
>
> I will let my co-authors to comment on this.

RFC 8294 is narrowly focused on supporting a small cluster of VPN extended
communities.  The extended communities feature carries a number of
additional things.  A recent example would include the RPKI origin
validation community.  Others would be communities defined for
link-bandwidth and the BGP flowspec action communities.

The complete registry is here:

https://www.iana.org/assignments/bgp-extended-communities/bgp-extended-communities.xhtml

The issue thus comes where the general purpose registry for communities that
weren't defined in RFC 8294.  A similar issue comes down to how do we
maintain this list and add to it as we extend BGP by adding new extended
communities?

I agree that we should not repeat the items in RFC 8294.

Won't we need the extended communities typedef to be maintained in an IANA
registry to allow easy extension?

Error: the option to set-ext-community doesn't take this list.
Error: We don't have a RIB ext-community oper list.

> >    20. Page 78, "bgp-set-med-type": Please describe the syntax of the pattern
> >        in the description.
>
> I will defer this to my co-authors.

Set med in implementations typically permits additive/subtractive MEDs.  This
permits operations such as "set med = med + 5".

Syntax issue: the implementation is typically "set med", "set med additive
<value>" or "set med-igp".  Thus the syntax that's additive is only
applicable in some of these cases.

I believe we'll hae to restructure this.

_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr

v2.29.0 | Report a Bug | By Email | System Status