Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Routing drafts
David Lamparter <equinox@diac24.net> Fri, 14 November 2014 03:55 UTC
Return-Path: <equinox@diac24.net>
X-Original-To: isis-wg@ietfa.amsl.com
Delivered-To: isis-wg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B59591A00DB for <isis-wg@ietfa.amsl.com>; Thu, 13 Nov 2014 19:55:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2ifaYcZ6Q-yb for <isis-wg@ietfa.amsl.com>; Thu, 13 Nov 2014 19:55:12 -0800 (PST)
Received: from eidolon.nox.tf (eidolon.nox.tf [IPv6:2a02:238:f02a:8e2f:1::]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E59F51A00BD for <isis-wg@ietf.org>; Thu, 13 Nov 2014 19:55:11 -0800 (PST)
Received: from equinox by eidolon.nox.tf with local (Exim 4.84) (envelope-from <equinox@diac24.net>) id 1Xp7yJ-001F6U-Nf; Fri, 14 Nov 2014 04:55:06 +0100
Date: Fri, 14 Nov 2014 04:54:55 +0100
From: David Lamparter <equinox@diac24.net>
To: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
Message-ID: <20141114035454.GJ157715@eidolon.nox.tf>
References: <20141020214128.GE236844@jupiter.n2.diac24.net> <F3ADE4747C9E124B89F0ED2180CC814F4ED5DA79@xmb-aln-x02.cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <F3ADE4747C9E124B89F0ED2180CC814F4ED5DA79@xmb-aln-x02.cisco.com>
User-Agent: Mutt/1.5.22 (2013-10-16)
Archived-At: http://mailarchive.ietf.org/arch/msg/isis-wg/1DDYf6lGFMRzIVXktBkJWfW6Upk
Cc: Hannes Gredler <hannes@juniper.net>, Chris Hopps <chopps@rawdofmt.org>, "isis-wg@ietf.org" <isis-wg@ietf.org>
Subject: Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Routing drafts
X-BeenThere: isis-wg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF IS-IS working group <isis-wg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/isis-wg>, <mailto:isis-wg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/isis-wg/>
List-Post: <mailto:isis-wg@ietf.org>
List-Help: <mailto:isis-wg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/isis-wg>, <mailto:isis-wg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Nov 2014 03:55:14 -0000
(response inline) On Fri, Nov 14, 2014 at 12:53:23AM +0000, Les Ginsberg (ginsberg) wrote: > David - > > I have read this draft twice now. > The first time I hated it. > The second time I merely disliked it. > If you take that as encouragement - don't. :-) > > After two readings I have a better appreciation of your motivations, > but I still think the proposal is undesirable and unnecessary. > > Hopefully we can agree that what you are attempting to create are > "topologies" - where the "identifier" for a given topology is both a > set of "critical sub-TLVs" and the MTID. Yes, this is essentially MT, with MTIDs extended by capability indications. > However if you want to support more than one topology you need more > than just consensus in the control plane as to what features are > supported. You also need multiple FIBs and the ability to mark and > classify packets so that forwarding is performed using the appropriate > FIB. No - and this is quite essential. We have one FIB, which is capable of dst-src routing, which happens to be backward compatible with dst routing by filling src as ::/0. (You haven't drawn the comparison, but for the merit of everyone on list let me delineate this against MT policy routing based on source addresses: we're _not_ running one topology per source prefix. The scenario is a lot of intradomain reachability, communicated classically without src prefix, and then a handful of dst-src prefixes for external connectivity, maybe a VPN or IPTV service.) Yes we can use MT instead of this capability-based delineation. This would mean installing routes from two MTIDs into one FIB. > And of course a way of agreeing on consistent classification > throughout the topology. This then introduces a large set on > constraints as to whether the routing protocol should advertise > whether it supports or does not support a particular critical sub-TLV. > It is not enough to know whether the protocol code itself understands > the code point. Issues such as: > > Does the forwarding plane support the forwarding paradigm? > Is the associated QOS policy supported? > Is the support consistemt across all possible forwarding engines with which the control may be integrated? > If a particular sub-TLV includes multiple capabilities (e.g. using flag bits) how do we indicate what subset of the functionality a particular code point might advertise we support? (Oh sure - we'll just forbid flags in critical sub-TLVs in favor of more code points and less efficient encoding??) Right, this all boils down to the capability signaling mechanism currently in the draft being too simple. This -00 is only designed to get dst-src interoperable with non-dst-src routers. For that, there's only one bit to care about: "is dst-src supported down from IS-IS into the FIB?" - so that's what it communciates. > And of course, none of this is a perfect solution to partial > deployment since it is still possible to partition the topology. Yes, if you have two dst-src islands connected by dst-only routers, that's not going to work. That's not a solvable problem within our constraints (= no tunneling.) > If we are going to reinvent a significant portion of the protocol I > would want a much higher ROI than I see in this proposal. Reinventing a significant portion of the protocol refers to the suggestion to calculate the topology based on the capability indication, I assume? If the feedback is to not mess with the topology and go install a blackhole instead, that's useful input. FWIW, I don't agree that it's reinventing a significant portion of IS-IS. In the end, it boils down to running the MT calculations with the ID conveyed not as a number but by a TLV set. > You don't need this to solve the initial problem which motivated you > to write this (SADR partial deployment). Existing RFC 5120 support and > using a reserved MTID for SADR would do just as well (though this > should not be interpreted as me recommending that you do that). That's one of the fallback options. Another is to go for a new "main" TLV type non-generically for a dst-src only. Yet another (the worst one, IMHO) is to signal capability in IIHs and not become adjacent with IS that don't have dst-src capability. > I suggest you abandon this work. All of it, or just the implicit MT, or something else? -David
- [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Routin… David Lamparter
- Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Ro… Les Ginsberg (ginsberg)
- Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Ro… David Lamparter
- Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Ro… Les Ginsberg (ginsberg)
- Re: [Isis-wg] IS-IS Critical Sub-TLV & Dst/Src-Ro… Acee Lindem (acee)