IETF Logo Mail Archive

Re: [Idr] Link Local Next Hop Handling for BGP

Gyan Mishra <hayabusagsm@gmail.com> Wed, 10 November 2021 13:50 UTC

Return-Path: <hayabusagsm@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CAE83A0E9C for <idr@ietfa.amsl.com>; Wed, 10 Nov 2021 05:50:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.747
X-Spam-Level:
X-Spam-Status: No, score=-0.747 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DATE_IN_PAST_24_48=1.34, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cv2PxZuGXJ2p for <idr@ietfa.amsl.com>; Wed, 10 Nov 2021 05:50:16 -0800 (PST)
Received: from mail-pg1-x533.google.com (mail-pg1-x533.google.com [IPv6:2607:f8b0:4864:20::533]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34F9B3A0E5D for <idr@ietf.org>; Wed, 10 Nov 2021 05:50:16 -0800 (PST)
Received: by mail-pg1-x533.google.com with SMTP id g28so2321678pgg.3 for <idr@ietf.org>; Wed, 10 Nov 2021 05:50:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=l7pzMC/4vrfnNM/Qy3dNWRDa/PVhwYxHpOBZIg+sB/Q=; b=dFVT8q1ZttwZh1yEpsDD3kydgLNP7cnkJVx7hJS9cdiBkyFXtmnoiYG6xN/HnwUFKM NG0hXtSDEsGta2ga+uOWFmY39DlxVG5DmbWZOv1R+Z57uMDTlEcWzDinUgoYsAtR/Qi0 nUUnv9CTA04CkpGeXi+2shdn0iUanzxrOia164nUgqNH+gaGyf3nWnA3iQLKPydIbXLe 3NqUrYj/UuuSWXvPxCAt2GMx+qZN6t/rSUw4Z00GR7WEf6Adq7nEXIEdCOZTrKv2oKrN +4RHTEbvrPb3D8BeWcwAu1Ez70IM7WytpqdredyQDDV/8CES9SjEyuBl76S41G1lMDhP vEZQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=l7pzMC/4vrfnNM/Qy3dNWRDa/PVhwYxHpOBZIg+sB/Q=; b=pgwTj9hdeEliue+JfBBYWfdNxoCVpkLDcrq+G1dWG832WmJBtdTDf5lfm5G2PovkeI zmbVgxw56j8zUPGEPbzHIQ5MU/Nf0hhW4fdXC0DhtjRcuZ7vL1IA4v5U4UUdEUuqA4Jv dLqd3i1oePPmKQasSuDdAwJPBjccVuYQksSuWdtDoNCRRyU0G+zjKmtotZ+kcBOjSuKu 0lS2hCq/WrrOFbiwtE7liLx5/vSZPXmbePBd0OJhrWHiSSbi0uiiGlPz+J3kIfhCiOTM VRckWKrPZY1nafbCWkwsCjURGw4lrq/couetOaszgETBZxEyz1RJpSXSMu7CXcvlXGoM ymNg==
X-Gm-Message-State: AOAM532TGH6t9Zgc6f5kS7QCMVIiY3EbvlWU/ngSct+13ev6URL9wh2V xHSDdk7Og8AtPNA98xyIZxGIib/Bo9Bnhnx+cuY=
X-Google-Smtp-Source: ABdhPJw9g1MwjTfcfBY1PD9WttEgmP9NlIQOw6k6fVqN9g/uJ1w48sHA/BBSYeZRVLGd+P8hki+ObeArPBZpyvq4oKA=
X-Received: by 2002:a65:6411:: with SMTP id a17mr37713pgv.54.1636552211658; Wed, 10 Nov 2021 05:50:11 -0800 (PST)
MIME-Version: 1.0
References: <CAOj+MMHbuf8vXniv5VH-qh5KM=b6BkCPOzo381Em5OnAdkTBMg@mail.gmail.com> <34C16E5D-9F7D-4552-AA8A-47D680ECD3C1@gmail.com> <CABNhwV1ux31j-NJWOhC=oKPQ9cp0pxpTRuJHch1V2aocX8GO=g@mail.gmail.com> <20211110111444.GA16907@pfrc.org>
In-Reply-To: <20211110111444.GA16907@pfrc.org>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Mon, 08 Nov 2021 10:01:09 -0500
Message-ID: <CABNhwV3pLfiK9VTvaF=C60_rEF9Q16BYOoUdX7huaU48JDgMFQ@mail.gmail.com>
To: Jeffrey Haas <jhaas@pfrc.org>
Cc: Donatas Abraitis <donatas.abraitis@gmail.com>, IDR List <idr@ietf.org>, Robert Raszuk <robert@raszuk.net>
Content-Type: multipart/alternative; boundary="0000000000003b7fba05d06f8194"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/ys2iLr5-u234BCmuaPag86malec>
Subject: Re: [Idr] Link Local Next Hop Handling for BGP
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Nov 2021 13:50:21 -0000

Jeffrey

On Wed, Nov 10, 2021 at 6:14 AM Jeffrey Haas <jhaas@pfrc.org> wrote:

> Gyan,
>
> On Sun, Nov 07, 2021 at 11:54:25PM -0500, Gyan Mishra wrote:
> > Some history with IPv6 and why with all routing protocols the next hop is
> > set to LL is due to on-link nature of direct adjacency and  ND process
> > ICMPv6 ND NS/NA process where the ICMPv6 packets are sent with source
> > address is Link Local w/ Destination Solicit Node Multicast or target
> > address DAD process.
> >
> > For directly adjacent neighbors on a P2P link the  Link local cache is
> > built first then the GUI. In my experience I have not run into any issues
> > where the LL cache was not built and the GUI was which would break
> > forwarding.
> >
> > I would think that is a router bug as that is rare and should never
> happen.
>
> To add speculation, consider the case of a third-party nexthop.  In such
> cases, having the link-local means you can avoid some of the churn where
> the
> ND cache wasn't in sync for a nexthop you've learned for a host you may not
> have exchanged any traffic with.
>

Gyan>  Understood the motivation.  Would that be moreso router to router
peering or  DC NVO3 overlay extension BGP to host VM scenario or both.

>
> > I have deployed  implementations where we have hardcoded the LL to be
> more
> > intuitive then the default EUI64  MAC based address default and that has
> > worked well setting the LL to the GUI address.  Caveat in hardcoding the
> LL
> > on each interface is you cannot write into the 50 bits all 0s in the
> fe80::
> > prefix so the IID portion that is hardcoded have to make sure its
> fe80::(64
> > bits) or it breaks ND process.  Making the next hop intuitive is really
> > nice as it makes it easier for operations to identify the neighbor device
> > in troubleshooting then looking at a EUI64 next hop.
>
> Once upon a time, Linux used to encode its interface ID for ipv6 link local
> in those "must be zero" bits in its data structures.  I've not read that
> source in years so it may have changed. :-)
>
>    Gyan> RFC 4291 states the 54 bits proceeding the fe80:: must be 0's.  I
have seen not having that 0 break ND and a nightmare to troubleshoot

2.5.6 <https://datatracker.ietf.org/doc/html/rfc4291#section-2.5.6>.
Link-Local IPv6 Unicast Addresses

   Link-Local addresses are for use on a single link.  Link-Local
   addresses have the following format:

   |   10     |
   |  bits    |         54 bits         |          64 bits           |
   +----------+-------------------------+----------------------------+
   |1111111010|           0             |       interface ID         |
   +----------+-------------------------+----------------------------+

   Link-Local addresses are designed to be used for addressing on a
   single link for purposes such as automatic address configuration,
   neighbor discovery, or when no routers are present.

   Routers must not forward any packets with Link-Local source or
   destination addresses to other links.



> > As far as using LL for IGP on all p2p links in a DC that works very well
> &
> > does simplify deployment.  Cisco has a knob "ipv6-enable" which enables
> > processing of IPv6 packets without an IPv6 address configured.  Juniper
> has
> > a similar knob.  From an operations perspective this does yield issues
> with
> > hop by hop ping & trace as the LL is only locally reachable.
>
> My memory is RFC 8335 was intended to address some of this.
>
> Gyan> Excellent!
>


> -- Jeff
>


-- 

<http://www.verizon.com/>

*Gyan Mishra*

*Network Solutions A**rchitect *

*Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>*



*M 301 502-1347*

v2.23.0 | Report a Bug | By Email