Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09
Luigi Iannone <ggx@gigix.net> Thu, 05 May 2022 08:26 UTC
Return-Path: <ggx@gigix.net>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00746C159A1D for <lisp@ietfa.amsl.com>; Thu, 5 May 2022 01:26:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gigix-net.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B_lRBGjAx9Cw for <lisp@ietfa.amsl.com>; Thu, 5 May 2022 01:26:25 -0700 (PDT)
Received: from mail-wr1-x434.google.com (mail-wr1-x434.google.com [IPv6:2a00:1450:4864:20::434]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37289C159821 for <lisp@ietf.org>; Thu, 5 May 2022 01:26:24 -0700 (PDT)
Received: by mail-wr1-x434.google.com with SMTP id c11so5055016wrn.8 for <lisp@ietf.org>; Thu, 05 May 2022 01:26:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gigix-net.20210112.gappssmtp.com; s=20210112; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=JmSvCPKSi4qA5tXaDd7YNl/nUEybbnd8+ujUzo4iC2M=; b=XGNTtqN2bOsnV4BwJPF6cBMeuw1gcdJ31B1EXy7nKAQXHoDhQftmn5aFnuSoIzTspv mvQHo+V2+Z/ozi8LdOZYKXpLlrT0dbPHqtMFX9mQ2NBABmxBu4Rnf9kbbxs5Nj+epL7y Un763G+rV+Qbxn+ax5kB/UfCv7xSTlfBkGexyyfWQJHrsZznRYqaGXc7TtTNWxgqJsMe QtT8jVNCoLVT/kL0r5V+RpkSMDEgJtWiVtfquDtSnyppBLVYM34d1XrBvVQMp+emN28u alrFXXSG6UKd4KfaoILnImVmwHB/vJsimZ1s5DvTKmYL19MWMrmAwRc07WSLWLd6gK9+ 1tzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=JmSvCPKSi4qA5tXaDd7YNl/nUEybbnd8+ujUzo4iC2M=; b=Fmf5nhf2ExkNpA6wxYl0Jlg99rUlUojUILvkOCrk7qp3omSIzQHA15HPk8CL9HjQpd wgJv0tS3G6rGa24OQ/w51jmW+/UcvEO/UQd1iPTGxOJZmEr4jC4lS2BWbq/bCSafauk9 PYWGYy8atZN491CEmpMO5vwPhxDCoNxgmPTN9sw7n0sowWqV3sJweVSsFb3YROhZfqCV jzYdYmPtEOSKCqmh/1gRXEJf584+1/zaBtWq/C5GaWREBu8lscM+e1+8CWan9iKBwnzG 9ChnAlMBcfsmaUdCDxsPnWiGg0gKQAcuk3+7S1gdt+Joy8UpWaRc0gfKDQKGMmkzDmNF 6J5g==
X-Gm-Message-State: AOAM533jA4rOR2pgS8DFX/R4QsAYRMzHoVwSWt2hDdqnfEwXNCUzdfDm fg0xPsjGw92ZBZSvZrMBnoILUA==
X-Google-Smtp-Source: ABdhPJwftH8NRQEzr8br4QqWZJlJMlU+zeCUByZCzgELJLFN7HHrBNSDXLey/7heAgf4d0x0NaWhbg==
X-Received: by 2002:a05:6000:1a85:b0:20c:7ba1:737b with SMTP id f5-20020a0560001a8500b0020c7ba1737bmr7004897wry.209.1651739182948; Thu, 05 May 2022 01:26:22 -0700 (PDT)
Received: from smtpclient.apple ([2a01:e0a:1ec:470:8d2d:6076:c8a1:15c1]) by smtp.gmail.com with ESMTPSA id bw26-20020a0560001f9a00b0020ac8c19ecfsm670719wrb.3.2022.05.05.01.26.21 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 05 May 2022 01:26:22 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.80.82.1.1\))
From: Luigi Iannone <ggx@gigix.net>
In-Reply-To: <CAMMESsxvdN357YyJdSEcU8adTQcaGFQrHGVh+Lnz7p0kodUXQg@mail.gmail.com>
Date: Thu, 05 May 2022 10:26:21 +0200
Cc: draft-ietf-lisp-6834bis@ietf.org, lisp-chairs@ietf.org, "lisp@ietf.org list" <lisp@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <6F3D19B1-EF02-461D-9BAB-A5F2D9671A70@gigix.net>
References: <28A9284B-449C-438F-BDE9-31100E97493A@gigix.net> <8583C8DA-2597-4346-83BB-00005781C299@gigix.net> <CAMMESsxvdN357YyJdSEcU8adTQcaGFQrHGVh+Lnz7p0kodUXQg@mail.gmail.com>
To: Alvaro Retana <aretana.ietf@gmail.com>
X-Mailer: Apple Mail (2.3696.80.82.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/4sH_42BtUwKUvdDTHzqiniUimL4>
Subject: Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 May 2022 08:26:27 -0000
HI Alvaro, Thanks, we will wait until IETF last call is over and incorporate your comments and any other comment we receive. Ciao L. > On 4 May 2022, at 22:24, Alvaro Retana <aretana.ietf@gmail.com> wrote: > > On May 4, 2022 at 2:54:43 AM, Luigi Iannone wrote: > > > Luigi: > > Hi! > >> A new revision of the 6834bis has been just submitted. >> This time considering all of your review! >> It hopefully addresses all of your concerns. >> Inline you can find detailed answers to the pints you raised. > > I have some comments (below). You can consider them with any other > Last Call comments you may receive. I am starting the IETf Last Call. > > Thanks!! > > Alvaro. > > > ... >>> (1) Duplication and overlap > ... >> [LI] Having a look to 6830bis: > > This is being discussed in the other thread with Dino. > > > > ... >>> (2) Document Structure > ... >>> Also, I suggest moving §8 to an Appendix. >> >> [LI] Re-organized as suggested (thanks). > > Please mention the appendix in the Introduction so people know to go > take a look. > > > > ... >>> 169 Source Map-Version number: This Map-Version number of the EID-to- >>> 170 RLOC mapping is used to select the source address (RLOC) of the >>> 171 outer IP header of LISP-encapsulated packets. > > §3/§4 now include definitions for the Source/Dest Map-Version numbers, > which are pretty much the same. Given that these sections are now > adjacent, I don't think we need to define these terms defined twice. > > > > ... >>> 304 If one or both of the above conditions do not hold, the ETR can send >>> 305 a Map-Request either to make the ITR aware that a new mapping is >>> 306 available (see Section 5.1) or to update the mapping in the local >>> 307 EID-to-RLOC Map-Cache (see Section 5.2). >>> >>> [major] Should this behavior be Normative (MUST/SHOULD)? The text >>> currently says that "the ETR can send"; if the text doesn't require >>> (or at least recommend) an action then it looks like this document >>> just talks about carrying extra numbers around that don't serve a >>> specific purpose. I believe that §10 makes a good case for an action >>> to be specified. >> >> [LI] Good point. Updated to a SHOULD. > > After reading the rest of the text again, in §7.1/§7.2, I want to > change my suggestion. The text now says: > > 324 An ETR receiving a LISP packet with Map-Version numbers SHOULD check > 325 the following predicates: > > 327 1. The ITR that has sent the packet has an up-to-date mapping in its > 328 EID-to-RLOC Map-Cache for the destination EID and is performing > 329 encapsulation correctly. > > 331 2. In the case of bidirectional traffic, the mapping in the local > 332 ETR EID-to-RLOC Map-Cache for the source EID is up to date. > > 334 If one or both of the above predicates do not hold, the ETR SHOULD > 335 send a Map-Request either to make the ITR aware that a new mapping is > 336 available (see Section 7.1) or to update the mapping in the local > 337 EID-to-RLOC Map-Cache (see Section 7.2). > > This information is redundant with §7.1/§7.2. And the action is not > always the one mentioned above: §7.1/§7.2 contain more details. > > I think we can either remove the text, or provide a (non-normative) > preview of what comes on the next two sections. > > Suggestion> > An ETR receiving a LISP packet with Map-Version numbers checks > the following predicates: > > 1. The ITR that has sent the packet has an up-to-date mapping in its > EID-to-RLOC Map-Cache for the destination EID and is performing > encapsulation correctly. See Section 7.1 for details. > > 2. In the case of bidirectional traffic, the mapping in the local > ETR EID-to-RLOC Map-Cache for the source EID is up to date. See > Section 7.2 for details. > > > Note that both §7.1/§7.2 say that the check "SHOULD" be done. When is > it ok to not check? Why is the check only a recommendation and not > required? > > > > ... >>> [major] "ETR MAY drop packets" >>> >>> Why is this an optional action and not required? What should the ETR >>> take into account when deciding if the packets are to be dropped or >>> not? >> >> [LI] The GW discussed this point. The outcome was to give the operator the >> choice whether it prefers to drop the traffic for safety or take a risk and >> avoid dropping traffic (quid to drop the inner packet at the final >> destination). >> >> However, SHOULD is more correct as assertion. The text has been updated . > > ok. > > The text now says: > > According to rate limitation policy defined in [I-D.ietf-lisp- > rfc6833bis] for Map-Request messages, after 10 retries Map-Requests > are sent every 30 seconds, if in the meantime the Dest Map-Version > number in the packets is not updated, the ETR SHOULD drop packets > with a stale Map-Version number, unless the traffic is considered > safe (e.g. in private deployments this can indicate an issue in the > ITR, but not malicious traffic). > > "in the meantime ...the ETR SHOULD drop packets...unless the traffic > is considered safe" > > The ETR may continue sending Map-Request messages "forever" -- they > will be rate limited. Using "in the meantime" sounds as if there was > an end, but the only end is if the Dest Map-Version number is finally > updated and things go back to normal. > > When is it ok for the ETR to not drop packets? I understand that we > want to give the operator a choice, but the "traffic is considered > safe" example may open up more questions: what is a safe deployment, > how is safety/security achieved/etc. > > Suggestion> > According to the rate-limiting requirements defined in > [I-D.ietf-lisp-rfc6833bis], Map-Requests are sent every 30 seconds > after 10 retries. If the Dest Map-Version number is not updated, > the ETR SHOULD drop those packets. Operators can configure exceptions > to this recommendation, which are outside the scope of this document. > > > > ... >>> [major] "all packets...SHOULD be silently dropped" >>> >>> Why is this action recommended and not required? When is it ok for >>> the the packets to not be dropped? >> >> [LI] like for a previous point, if the traffic is considered safe it can >> avoid drop. >> Text has been updated. > > As above, let's avoid talking about "safe". > > The rest of the paragraph makes the case that "this is not valid > behavior with respect to the specifications," which is different than > that case above when the ETR was still sending Map-Requests. IOW, it > seems to me that there is no "safe" scenario. > > > > ... >>> 396 2. The packet arrives with a Source Map-Version number greater >>> 397 (i.e., newer) than the one stored in the local EID-to-RLOC Map- >>> 398 Cache. This means that the ETR has in its EID-to-RLOC Map-Cache >>> 399 a stale mapping that needs to be updated. A Map-Request SHOULD >>> 400 be sent to get the new mapping for the source EID. This is a >>> 401 normal Map-Request message sent through the mapping system and >>> 402 MUST respect the specifications in [I-D.ietf-lisp-rfc6833bis], >>> 403 including rate-limitation policies. >>> >>> [major] "Map-Request SHOULD be sent" >>> >>> Why is this action recommended and not required? When is it ok for >>> the ETR to not send a Map-Request (in response to this event)? >> >> [LI] It is now a MUST. > > No...-10 still uses SHOULD. > > > > ... >>> [major] "the packet MAY be silently dropped" >>> >>> Why is this action optional and not required? The rest of the >>> paragraph talks about how this "case is not valid with respect to the >>> specifications" -- I then don't understand why it would only be >>> optional to drop the packet. >> >> [LI] Correct, it is a SHOULD with explanation about exceptions. > > If "not valid with respect to the specifications" it feels like there > should be no exceptions. > > > > ... >>> [major] s/LISP header/LISP-specific header >> >> [LI] Fixed. > > There are still a couple of unchanged instances. > > []
- [lisp] AD Review of draft-ietf-lisp-6834bis-09 Luigi Iannone
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Dino Farinacci
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Alvaro Retana
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Luigi Iannone
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Luigi Iannone
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Alvaro Retana
- Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09 Luigi Iannone