Re: [Idr] I-D Action: draft-ietf-idr-flowspec-l2vpn-09.txt

Robert Raszuk <robert@raszuk.net> Thu, 03 January 2019 11:03 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E87A4130DF3 for <idr@ietfa.amsl.com>; Thu, 3 Jan 2019 03:03:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z7Fbu-yhpIa8 for <idr@ietfa.amsl.com>; Thu, 3 Jan 2019 03:03:26 -0800 (PST)
Received: from mail-qt1-x830.google.com (mail-qt1-x830.google.com [IPv6:2607:f8b0:4864:20::830]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0BFE5130DD9 for <idr@ietf.org>; Thu, 3 Jan 2019 03:03:26 -0800 (PST)
Received: by mail-qt1-x830.google.com with SMTP id l12so36385084qtf.8 for <idr@ietf.org>; Thu, 03 Jan 2019 03:03:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=rnRwNWLn3ZBcP8jTs4VEV8r+QOTzQ460YIuXB4bgo5k=; b=OkZ4Fm6/tmskX/CSNir5fdPE07tIIR/Az1VFt1XjAZpzohXoiFOnWZ4EmJXDwmP6SG dlg1rPCmt4a514ktwDXjWIj//t/hqH1/UBp06lWZR+daArRyH8XwzChpVf3XG9zV/5TC yP4mJi2zVbUANvCZGgD9PCahRTYs8jtaBpMd2NzrwjjaUDi1ohVeK9hJh/setKznCC84 Kp6ArRbFB8fgeD8pR5ZEHWH486MgPVEl/I80e7+0i4dJjsVzTkBVMON63fKynlYP3mfv uWWwQnAPHDT5eJVkHTEp7p+jxVUyIKyvsRGvcF2W/0++Jrzvu9IxMsOE0nB170rPjr0v +LwA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=rnRwNWLn3ZBcP8jTs4VEV8r+QOTzQ460YIuXB4bgo5k=; b=kjk5BYbKxmh8GJrZDFcPC16GTZyd9CXmp6oelftDFxPYPHHDkZeOJcgFkuj+1llErY YRRRsbNmMK7sYbC9Ajesv3SODCNvYRB42p5hZoDHm1ktaXUOt3Z3S5YSBYQOKgwdQcWh RMSOgodSlytuCUDq9WWHiKWNIWvporDiNSZTvVXuKL1+I/gucoCSplt0Abevseb4s7Nr Cdrk3SZzpfQpAtu2AOZcTY8wq4rnzfG6w1n1IXmolNXSIB2tN7TaxiDi2wjUxT5mV9hZ +IbIEKds5nmAVBYHkyu8ZPHf9pDfA2IGQ/DXo1fNH01fGjXmbPeuXi5nycrk0RsszppC ylYA==
X-Gm-Message-State: AJcUukefGW3pd0fCHd1jCFzTETkAgqxNVsYUuSRIwAKNrPWo+qoSuq9z mQHoAtVKLKjUs3bR3XCiosda9r0UadQIMkAMsnFOfG5rNDs=
X-Google-Smtp-Source: ALg8bN4q1Il1aP00AqF911ZJW49tOLnO7B6CEtbooSLF13iAU8n5xE4zioVvlCYelRTCTugFNkuZ7OVUmWfX9e35vMk=
X-Received: by 2002:a0c:baa8:: with SMTP id x40mr46816389qvf.18.1546513404930; Thu, 03 Jan 2019 03:03:24 -0800 (PST)
MIME-Version: 1.0
References: <154650798507.29744.11843661823190688795@ietfa.amsl.com>
In-Reply-To: <154650798507.29744.11843661823190688795@ietfa.amsl.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Thu, 3 Jan 2019 12:03:16 +0100
Message-ID: <CAOj+MMGPmUs4fAzDEwhq4z47r=TK78Kk-6Tp+KMHS0K4O=VdGg@mail.gmail.com>
To: "idr@ietf. org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000002441d0057e8bb60f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/wNbxkg-pjeQTaKjD_J37k_krHyA>
Subject: Re: [Idr] I-D Action: draft-ietf-idr-flowspec-l2vpn-09.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Jan 2019 11:03:40 -0000

Hi,

Two observations:

1.


The current draft extends exisiting SAFI 134 with new NLRI types.

That means that now we have new giant NLRI in SAFI 134.


Have any consideration been made to just define a new flow spec

SAFI instead for L2 filtering ? I am quite skeptical from implementation,

operational and deployment points of view to extend the existing SAFI and it

makes a gradual deployment a nightmare if not mission impossible.


Any change to NLRI format without signalling it with new capability is

far from good practice.


2.


The draft is pretty silent on adjusting validation procedures to make sure only

senders of the original L2 information may inject the L2 flow routes.


I would hope that this is basic omission and will be consider for addition into

next version of he draft.



Thx,

R.





On Thu, Jan 3, 2019 at 10:33 AM <internet-drafts@ietf.org> wrote:

>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Inter-Domain Routing WG of the IETF.
>
>         Title           : BGP Dissemination of L2VPN Flow Specification
> Rules
>         Authors         : Weiguo Hao
>                           Donald E. Eastlake, 3rd
>                           James Uttaro
>                           Stephane Litkowski
>                           Shunwan Zhuang
>         Filename        : draft-ietf-idr-flowspec-l2vpn-09.txt
>         Pages           : 13
>         Date            : 2019-01-03
>
> Abstract:
>    This document defines a BGP flow-spec extension to disseminate L2 VPN
>    Ethernet traffic filtering rules.  SAFI=134 in [RFC5575] is redefined
>    for this purpose.  A new subset of component types and extended
>    community also are defined.  A new subset of component types and new
>    extended community also are defined.
>
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-idr-flowspec-l2vpn/
>
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-idr-flowspec-l2vpn-09
> https://datatracker.ietf.org/doc/html/draft-ietf-idr-flowspec-l2vpn-09
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-idr-flowspec-l2vpn-09
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> I-D-Announce mailing list
> I-D-Announce@ietf.org
> https://www.ietf.org/mailman/listinfo/i-d-announce
> Internet-Draft directories: http://www.ietf.org/shadow.html
> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
>