答复: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
Haoweiguo <haoweiguo@huawei.com> Thu, 21 August 2014 02:11 UTC
Return-Path: <haoweiguo@huawei.com>
X-Original-To: l2vpn@ietfa.amsl.com
Delivered-To: l2vpn@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 626461A6FD7;
Wed, 20 Aug 2014 19:11:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.081
X-Spam-Level: *
X-Spam-Status: No, score=1.081 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, CHARSET_FARAWAY_HEADER=3.2,
MIME_8BIT_HEADER=0.3, MIME_CHARSET_FARAWAY=2.45,
RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.668, SPF_PASS=-0.001]
autolearn=ham
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id ddBAHr6biqtS; Wed, 20 Aug 2014 19:10:59 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17])
(using TLSv1 with cipher RC4-SHA (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 338C11A0084;
Wed, 20 Aug 2014 19:10:58 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml403-hub.china.huawei.com)
([172.18.7.190])
by lhrrg02-dlp.huawei.com (MOS 4.3.7-GA FastPath queued)
with ESMTP id BIL68632; Thu, 21 Aug 2014 02:10:56 +0000 (GMT)
Received: from NKGEML401-HUB.china.huawei.com (10.98.56.32) by
lhreml403-hub.china.huawei.com (10.201.5.217) with Microsoft SMTP Server
(TLS) id 14.3.158.1; Thu, 21 Aug 2014 03:10:56 +0100
Received: from NKGEML501-MBS.china.huawei.com ([169.254.2.209]) by
nkgeml401-hub.china.huawei.com ([10.98.56.32]) with mapi id 14.03.0158.001;
Thu, 21 Aug 2014 10:10:47 +0800
From: Haoweiguo <haoweiguo@huawei.com>
To: "UTTARO, JAMES" <ju1738@att.com>, "'idr@ietf.org'" <idr@ietf.org>,
"'l2vpn@ietf.org'" <l2vpn@ietf.org>
Subject: =?gb2312?B?tPC4tDogTmV3IFZlcnNpb24gTm90aWZpY2F0aW9uIGZvciBkcmFmdC1oYW8t?=
=?gb2312?Q?idr-flowspec-evpn-00.txt?=
Thread-Topic: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
Thread-Index: AQHPvAyV6atOnhH9DE6j9dLImcRrM5vYoV9zgADsHqCAAMQoQA==
Date: Thu, 21 Aug 2014 02:10:46 +0000
Message-ID: <DD5FC8DE455C3348B94340C0AB5517334F7F2339@nkgeml501-mbs.china.huawei.com>
References: <20140820002030.18902.50278.idtracker@ietfa.amsl.com>
<DD5FC8DE455C3348B94340C0AB5517334F7F21D1@nkgeml501-mbs.china.huawei.com>,
<B17A6910EEDD1F45980687268941550F06D74DB1@MISOUT7MSGUSRCD.ITServices.sbc.com>
In-Reply-To: <B17A6910EEDD1F45980687268941550F06D74DB1@MISOUT7MSGUSRCD.ITServices.sbc.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.135.23.94]
Content-Type: text/plain; charset="gb2312"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: http://mailarchive.ietf.org/arch/msg/l2vpn/E94xrAazixbSacjjhFEkGpmf4mM
Cc: liuweihang <liuweihang@huawei.com>
X-BeenThere: l2vpn@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Layer 2 Virtual Private Networks <l2vpn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/l2vpn>,
<mailto:l2vpn-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/l2vpn/>
List-Post: <mailto:l2vpn@ietf.org>
List-Help: <mailto:l2vpn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/l2vpn>,
<mailto:l2vpn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Aug 2014 02:11:06 -0000
Hi Jim,
Thanks for your comments. The BGP Flowspec procedures is illustrated as following:
EVPN FlowSpec Session EVPN FlowSpec Session
DDOS Detection Appliance--------------------------Egress PE-----------------------------Ingress PE------CE2
|
CE1
DDOS Detection Appliance establishes EVPN flowspec session with Egress PE, it detects DDOS attack traffic and generate ACL rule,
the ACL rule is announced to Egress PE through EVPN flowspec protocol, then the egress PE announces it to ingress PE,
finally ingress PE installs the ACL rule for traffic filtering.
DDOS Detection Appliance only needs to support EVPN flowspec function, it doesn't need to support basic EVPN function.
Thanks
weiguo
________________________________________
发件人: UTTARO, JAMES [ju1738@att.com]
发送时间: 2014年8月21日 0:29
收件人: Haoweiguo; 'idr@ietf.org'.org'; 'l2vpn@ietf.org'
抄送: liuweihang
主题: RE: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
Weiguo,
I would like to better understand how a remote PE will "learn" that it needs to deliver a FS path to the ingress PE?? It cannot come from the CE as that is data plane learning. I would think that all FS paths have to be disseminated by a centralized controller.
Jim Uttaro
-----Original Message-----
From: Idr [mailto:idr-bounces@ietf.org] On Behalf Of Haoweiguo
Sent: Tuesday, August 19, 2014 8:31 PM
To: idr@ietf.org; l2vpn@ietf.org
Cc: liuweihang
Subject: [Idr] 答复: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
Hi All,
We have submitted a draft of " Dissemination of Flow Specification Rules for EVPN". I will appriciate if you can give us some suggestions and comments.
Thanks
weiguo
________________________________________
发件人: internet-drafts@ietf.org [internet-drafts@ietf.org]
发送时间: 2014年8月20日 8:20
收件人: Zhuangshunwan; Haoweiguo; liuweihang; Zhuangshunwan; liuweihang; Haoweiguo
主题: New Version Notification for draft-hao-idr-flowspec-evpn-00.txt
A new version of I-D, draft-hao-idr-flowspec-evpn-00.txt
has been successfully submitted by Weiguo Hao and posted to the
IETF repository.
Name: draft-hao-idr-flowspec-evpn
Revision: 00
Title: Dissemination of Flow Specification Rules for EVPN
Document date: 2014-08-20
Group: Individual Submission
Pages: 7
URL: http://www.ietf.org/internet-drafts/draft-hao-idr-flowspec-evpn-00.txt
Status: https://datatracker.ietf.org/doc/draft-hao-idr-flowspec-evpn/
Htmlized: http://tools.ietf.org/html/draft-hao-idr-flowspec-evpn-00
Abstract:
This document defines BGP flow-spec extension for Ethernet traffic
filtering in EVPN network. A new BGP NLRI type (AFI=25, SAFI=TBD)
value is proposed to identify EVPN flow-spec application. A new
subset of component types and extended community also are defined.
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
The IETF Secretariat
_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr
- 答复: New Version Notification for draft-hao-idr-fl… Haoweiguo
- RE: New Version Notification for draft-hao-idr-fl… UTTARO, JAMES
- 答复: New Version Notification for draft-hao-idr-fl… Haoweiguo
- RE: New Version Notification for draft-hao-idr-fl… stephane.litkowski
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- RE: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- RE: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- RE: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- RE: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- RE: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- RE: New Version Notification for draft-hao-idr-fl… UTTARO, JAMES
- 答复: New Version Notification for draft-hao-idr-fl… Haoweiguo
- RE: [Idr] New Version Notification for draft-hao-… Dongjie (Jimmy)
- 答复: [Idr] New Version Notification for draft-hao-… Haoweiguo
- RE: [Idr] New Version Notification for draft-hao-… UTTARO, JAMES
- RE: [Idr] New Version Notification for draft-hao-… stephane.litkowski
- RE: New Version Notification for draft-hao-idr-fl… stephane.litkowski
- 答复: [Idr] New Version Notification for draft-hao-… Haoweiguo
- 答复: New Version Notification for draft-hao-idr-fl… Haoweiguo
- RE: New Version Notification for draft-hao-idr-fl… stephane.litkowski
- 答复: New Version Notification for draft-hao-idr-fl… Haoweiguo
- RE: New Version Notification for draft-hao-idr-fl… UTTARO, JAMES
- Re: [Idr] New Version Notification for draft-hao-… Robert Raszuk
- RE: New Version Notification for draft-hao-idr-fl… Bertrand Duvivier (bduvivie)