IETF Logo Mail Archive

Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

"Wanghaibo (Rainsword)" <rainsword.wang@huawei.com> Sat, 08 October 2022 13:38 UTC

Return-Path: <rainsword.wang@huawei.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E306BC14CE34 for <idr@ietfa.amsl.com>; Sat, 8 Oct 2022 06:38:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.907
X-Spam-Level:
X-Spam-Status: No, score=-6.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2jw_6OLzfoKo for <idr@ietfa.amsl.com>; Sat, 8 Oct 2022 06:38:33 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1FBD3C14F74F for <idr@ietf.org>; Sat, 8 Oct 2022 06:38:33 -0700 (PDT)
Received: from fraeml741-chm.china.huawei.com (unknown [172.18.147.207]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4Ml5nT1TqHz688J2; Sat, 8 Oct 2022 21:37:01 +0800 (CST)
Received: from kwepemi500003.china.huawei.com (7.221.188.51) by fraeml741-chm.china.huawei.com (10.206.15.222) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.31; Sat, 8 Oct 2022 15:38:29 +0200
Received: from kwepemi500002.china.huawei.com (7.221.188.171) by kwepemi500003.china.huawei.com (7.221.188.51) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.31; Sat, 8 Oct 2022 21:38:27 +0800
Received: from kwepemi500002.china.huawei.com ([7.221.188.171]) by kwepemi500002.china.huawei.com ([7.221.188.171]) with mapi id 15.01.2375.031; Sat, 8 Oct 2022 21:38:27 +0800
From: "Wanghaibo (Rainsword)" <rainsword.wang@huawei.com>
To: Robert Raszuk <robert@raszuk.net>
CC: Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org>, "Van De Velde, Gunter (Nokia - BE/Antwerp)" <gunter.van_de_velde@nokia.com>
Thread-Topic: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)
Thread-Index: AQHY2r2qvDvI4bVh3EGSyzZ8zldceq4DmhqAgADmw4A=
Date: Sat, 08 Oct 2022 13:38:27 +0000
Message-ID: <6d15609d01454e09aa6a8f8c2f55dd59@huawei.com>
References: <BYAPR08MB4872EEE329BDDDCC0F387B17B3559@BYAPR08MB4872.namprd08.prod.outlook.com> <c76e223fd52942e7b8b2924f1de340c6@huawei.com> <CAOj+MMGpfAyQsJPM4fRf5D+wKgR9jqr3GD6Rwgc1ATHQnF9v1Q@mail.gmail.com>
In-Reply-To: <CAOj+MMGpfAyQsJPM4fRf5D+wKgR9jqr3GD6Rwgc1ATHQnF9v1Q@mail.gmail.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.108.202.204]
Content-Type: multipart/alternative; boundary="_000_6d15609d01454e09aa6a8f8c2f55dd59huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/zz2FqJ0j1qU1iw5OS3IzucyB3z8>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Oct 2022 13:38:35 -0000

Hi Robert,

In SAFI 134, RT is normally used for VRF filtering in VPN scenarios. IP-based RT may also be used for receiver node filtering. In this case, extra RT-based policies is needed on the receiver nodes.

It's same for SAFI 133, extra policies need to be configured on network nodes. While operators prefer an automatic approach.

SR-Policy is a new address family for transport tunnels only. RTs are introduced only for receiver node filtering. While for address families which are related to VPN services, the use of RTs has been specified, matching of any one of the RTs with a local VRF would result in the route being imported, no matter whether the receiver node is matched or not.

We need to consider a general mechanism for the receiver node filtering for different address families. The new Node-Target EC is introduced for this purpose.  It can also be used combined with RT for receiver node & VRF filtering without any ambiguity.

Regards,
Haibo

From: Robert Raszuk [mailto:robert@raszuk.net]
Sent: Saturday, October 8, 2022 3:52 PM
To: Wanghaibo (Rainsword) <rainsword.wang@huawei.com>
Cc: Susan Hares <shares@ndzh.com>; idr@ietf.org; Van De Velde, Gunter (Nokia - BE/Antwerp) <gunter.van_de_velde@nokia.com>
Subject: Re: [Idr] draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

Haibo,

> .. directly filtering the receiver based on the RT.
> However, this method is not applicable to some old address families, such as Flowspec.

That is incorrect.

Since day one of RFC5575 - FlowSpec uses RT to filter it's UPDATEs. Please see description for SAFI 134. It is also RTC compatible.

Note that RT filtering can also be applied to SAFI 133.

Thx,
Robert.


On Sat, Oct 8, 2022 at 4:28 AM Wanghaibo (Rainsword) <rainsword.wang=40huawei.com@dmarc.ietf.org<mailto:40huawei.com@dmarc.ietf.org>> wrote:
Hi Sue and WG,

I support the adoption of this draft.

Currently, more and more information is delivered by using the extended BGP address family through the controller.
Different from traditional BGP flooding, this mode requires filtering at the receive end. For example, the SR-Policy defines the method of directly filtering the receiver based on the RT.
However, this method is not applicable to some old address families, such as Flowspec. Therefore, it is necessary to introduce a common filtering mechanism at the receive end.

Best Regards,
Haibo

From: Susan Hares [mailto:shares@ndzh.com<mailto:shares@ndzh.com>]
Sent: Wednesday, September 28, 2022 1:30 AM
To: idr@ietf.org<mailto:idr@ietf.org>
Cc: Dongjie (Jimmy) <jie.dong@huawei.com<mailto:jie.dong@huawei.com>>; Van De Velde, Gunter (Nokia - BE/Antwerp) <gunter.van_de_velde@nokia.com<mailto:gunter.van_de_velde@nokia.com>>; Zhuangshunwan <zhuangshunwan@huawei.com<mailto:zhuangshunwan@huawei.com>>
Subject: draft-dong-idr-node-target-ext-comm-05.txt - WG Adoption and IPR call (9/27 to 10/11/2022)

This begins a 2 week WG adoption and IPR call for draft-dong-idr-node-target-ext-comm-05.txt.
https://datatracker.ietf.org/doc/draft-dong-idr-node-target-ext-comm/

The authors should respond to this email with an IPR statement.

The WG should consider in their discussion:
1) Will this new  transitive extended community help
in operational networks?

2) What conflicts does this new Extended Community have
with other functions in general BGP route distribution or
VPNs (EVPN, IPVPN)?

3) do you have any concern about the text in the draft?

Cheerily, Sue
_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email