IETF Logo Mail Archive

Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09

Luigi Iannone <ggx@gigix.net> Thu, 05 May 2022 08:26 UTC

Return-Path: <ggx@gigix.net>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00746C159A1D for <lisp@ietfa.amsl.com>; Thu, 5 May 2022 01:26:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gigix-net.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B_lRBGjAx9Cw for <lisp@ietfa.amsl.com>; Thu, 5 May 2022 01:26:25 -0700 (PDT)
Received: from mail-wr1-x434.google.com (mail-wr1-x434.google.com [IPv6:2a00:1450:4864:20::434]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37289C159821 for <lisp@ietf.org>; Thu, 5 May 2022 01:26:24 -0700 (PDT)
Received: by mail-wr1-x434.google.com with SMTP id c11so5055016wrn.8 for <lisp@ietf.org>; Thu, 05 May 2022 01:26:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gigix-net.20210112.gappssmtp.com; s=20210112; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=JmSvCPKSi4qA5tXaDd7YNl/nUEybbnd8+ujUzo4iC2M=; b=XGNTtqN2bOsnV4BwJPF6cBMeuw1gcdJ31B1EXy7nKAQXHoDhQftmn5aFnuSoIzTspv mvQHo+V2+Z/ozi8LdOZYKXpLlrT0dbPHqtMFX9mQ2NBABmxBu4Rnf9kbbxs5Nj+epL7y Un763G+rV+Qbxn+ax5kB/UfCv7xSTlfBkGexyyfWQJHrsZznRYqaGXc7TtTNWxgqJsMe QtT8jVNCoLVT/kL0r5V+RpkSMDEgJtWiVtfquDtSnyppBLVYM34d1XrBvVQMp+emN28u alrFXXSG6UKd4KfaoILnImVmwHB/vJsimZ1s5DvTKmYL19MWMrmAwRc07WSLWLd6gK9+ 1tzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=JmSvCPKSi4qA5tXaDd7YNl/nUEybbnd8+ujUzo4iC2M=; b=Fmf5nhf2ExkNpA6wxYl0Jlg99rUlUojUILvkOCrk7qp3omSIzQHA15HPk8CL9HjQpd wgJv0tS3G6rGa24OQ/w51jmW+/UcvEO/UQd1iPTGxOJZmEr4jC4lS2BWbq/bCSafauk9 PYWGYy8atZN491CEmpMO5vwPhxDCoNxgmPTN9sw7n0sowWqV3sJweVSsFb3YROhZfqCV jzYdYmPtEOSKCqmh/1gRXEJf584+1/zaBtWq/C5GaWREBu8lscM+e1+8CWan9iKBwnzG 9ChnAlMBcfsmaUdCDxsPnWiGg0gKQAcuk3+7S1gdt+Joy8UpWaRc0gfKDQKGMmkzDmNF 6J5g==
X-Gm-Message-State: AOAM533jA4rOR2pgS8DFX/R4QsAYRMzHoVwSWt2hDdqnfEwXNCUzdfDm fg0xPsjGw92ZBZSvZrMBnoILUA==
X-Google-Smtp-Source: ABdhPJwftH8NRQEzr8br4QqWZJlJMlU+zeCUByZCzgELJLFN7HHrBNSDXLey/7heAgf4d0x0NaWhbg==
X-Received: by 2002:a05:6000:1a85:b0:20c:7ba1:737b with SMTP id f5-20020a0560001a8500b0020c7ba1737bmr7004897wry.209.1651739182948; Thu, 05 May 2022 01:26:22 -0700 (PDT)
Received: from smtpclient.apple ([2a01:e0a:1ec:470:8d2d:6076:c8a1:15c1]) by smtp.gmail.com with ESMTPSA id bw26-20020a0560001f9a00b0020ac8c19ecfsm670719wrb.3.2022.05.05.01.26.21 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 05 May 2022 01:26:22 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.80.82.1.1\))
From: Luigi Iannone <ggx@gigix.net>
In-Reply-To: <CAMMESsxvdN357YyJdSEcU8adTQcaGFQrHGVh+Lnz7p0kodUXQg@mail.gmail.com>
Date: Thu, 05 May 2022 10:26:21 +0200
Cc: draft-ietf-lisp-6834bis@ietf.org, lisp-chairs@ietf.org, "lisp@ietf.org list" <lisp@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <6F3D19B1-EF02-461D-9BAB-A5F2D9671A70@gigix.net>
References: <28A9284B-449C-438F-BDE9-31100E97493A@gigix.net> <8583C8DA-2597-4346-83BB-00005781C299@gigix.net> <CAMMESsxvdN357YyJdSEcU8adTQcaGFQrHGVh+Lnz7p0kodUXQg@mail.gmail.com>
To: Alvaro Retana <aretana.ietf@gmail.com>
X-Mailer: Apple Mail (2.3696.80.82.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/4sH_42BtUwKUvdDTHzqiniUimL4>
Subject: Re: [lisp] AD Review of draft-ietf-lisp-6834bis-09
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 May 2022 08:26:27 -0000

HI Alvaro,

Thanks, we will wait until IETF last call is over and incorporate your comments and any other comment we receive.

Ciao

L.

 

> On 4 May 2022, at 22:24, Alvaro Retana <aretana.ietf@gmail.com> wrote:
> 
> On May 4, 2022 at 2:54:43 AM, Luigi Iannone wrote:
> 
> 
> Luigi:
> 
> Hi!
> 
>> A new revision of the 6834bis has been just submitted.
>> This time considering all of your review!
>> It hopefully addresses all of your concerns.
>> Inline you can find detailed answers to the pints you raised.
> 
> I have some comments (below).  You can consider them with any other
> Last Call comments you may receive.  I am starting the IETf Last Call.
> 
> Thanks!!
> 
> Alvaro.
> 
> 
> ...
>>> (1) Duplication and overlap
> ...
>> [LI] Having a look to 6830bis:
> 
> This is being discussed in the other thread with Dino.
> 
> 
> 
> ...
>>> (2) Document Structure
> ...
>>> Also, I suggest moving §8 to an Appendix.
>> 
>> [LI] Re-organized as suggested (thanks).
> 
> Please mention the appendix in the Introduction so people know to go
> take a look.
> 
> 
> 
> ...
>>> 169 Source Map-Version number: This Map-Version number of the EID-to-
>>> 170 RLOC mapping is used to select the source address (RLOC) of the
>>> 171 outer IP header of LISP-encapsulated packets.
> 
> §3/§4 now include definitions for the Source/Dest Map-Version numbers,
> which are pretty much the same.  Given that these sections are now
> adjacent, I don't think we need to define these terms defined twice.
> 
> 
> 
> ...
>>> 304 If one or both of the above conditions do not hold, the ETR can send
>>> 305 a Map-Request either to make the ITR aware that a new mapping is
>>> 306 available (see Section 5.1) or to update the mapping in the local
>>> 307 EID-to-RLOC Map-Cache (see Section 5.2).
>>> 
>>> [major] Should this behavior be Normative (MUST/SHOULD)? The text
>>> currently says that "the ETR can send"; if the text doesn't require
>>> (or at least recommend) an action then it looks like this document
>>> just talks about carrying extra numbers around that don't serve a
>>> specific purpose. I believe that §10 makes a good case for an action
>>> to be specified.
>> 
>> [LI] Good point. Updated to a SHOULD.
> 
> After reading the rest of the text again, in §7.1/§7.2, I want to
> change my suggestion.  The text now says:
> 
> 324	   An ETR receiving a LISP packet with Map-Version numbers SHOULD check
> 325	   the following predicates:
> 
> 327	   1.  The ITR that has sent the packet has an up-to-date mapping in its
> 328	       EID-to-RLOC Map-Cache for the destination EID and is performing
> 329	       encapsulation correctly.
> 
> 331	   2.  In the case of bidirectional traffic, the mapping in the local
> 332	       ETR EID-to-RLOC Map-Cache for the source EID is up to date.
> 
> 334	   If one or both of the above predicates do not hold, the ETR SHOULD
> 335	   send a Map-Request either to make the ITR aware that a new mapping is
> 336	   available (see Section 7.1) or to update the mapping in the local
> 337	   EID-to-RLOC Map-Cache (see Section 7.2).
> 
> This information is redundant with §7.1/§7.2.  And the action is not
> always the one mentioned above: §7.1/§7.2 contain more details.
> 
> I think we can either remove the text, or provide a (non-normative)
> preview of what comes on the next two sections.
> 
> Suggestion>
>    An ETR receiving a LISP packet with Map-Version numbers checks
>    the following predicates:
> 
>    1.  The ITR that has sent the packet has an up-to-date mapping in its
>        EID-to-RLOC Map-Cache for the destination EID and is performing
>        encapsulation correctly.  See Section 7.1 for details.
> 
>    2.  In the case of bidirectional traffic, the mapping in the local
>        ETR EID-to-RLOC Map-Cache for the source EID is up to date.  See
>        Section 7.2 for details.
> 
> 
> Note that both §7.1/§7.2 say that the check "SHOULD" be done.  When is
> it ok to not check?  Why is the check only a recommendation and not
> required?
> 
> 
> 
> ...
>>> [major] "ETR MAY drop packets"
>>> 
>>> Why is this an optional action and not required? What should the ETR
>>> take into account when deciding if the packets are to be dropped or
>>> not?
>> 
>> [LI] The GW discussed this point. The outcome was to give the operator the
>> choice whether it prefers to drop the traffic for safety or take a risk and
>> avoid dropping traffic (quid to drop the inner packet at the final
>> destination).
>> 
>> However, SHOULD is more correct as assertion. The text has been updated .
> 
> ok.
> 
> The text now says:
> 
>        According to rate limitation policy defined in [I-D.ietf-lisp-
>        rfc6833bis] for Map-Request messages, after 10 retries Map-Requests
>        are sent every 30 seconds, if in the meantime the Dest Map-Version
>        number in the packets is not updated, the ETR SHOULD drop packets
>        with a stale Map-Version number, unless the traffic is considered
>        safe (e.g. in private deployments this can indicate an issue in the
>        ITR, but not malicious traffic).
> 
> "in the meantime ...the ETR SHOULD drop packets...unless the traffic
> is considered safe"
> 
> The ETR may continue sending Map-Request messages "forever" -- they
> will be rate limited.  Using "in the meantime" sounds as if there was
> an end, but the only end is if the Dest Map-Version number is finally
> updated and things go back to normal.
> 
> When is it ok for the ETR to not drop packets?  I understand that we
> want to give the operator a choice, but the "traffic is considered
> safe" example may open up more questions: what is a safe deployment,
> how is safety/security achieved/etc.
> 
> Suggestion>
>    According to the rate-limiting requirements defined in
>    [I-D.ietf-lisp-rfc6833bis], Map-Requests are sent every 30 seconds
>    after 10 retries.  If the Dest Map-Version number is not updated,
>    the ETR SHOULD drop those packets.  Operators can configure exceptions
>    to this recommendation, which are outside the scope of this document.
> 
> 
> 
> ...
>>> [major] "all packets...SHOULD be silently dropped"
>>> 
>>> Why is this action recommended and not required? When is it ok for
>>> the the packets to not be dropped?
>> 
>> [LI] like for a previous point, if the traffic is considered safe it can
>> avoid drop.
>> Text has been updated.
> 
> As above, let's avoid talking about "safe".
> 
> The rest of the paragraph makes the case that "this is not valid
> behavior with respect to the specifications," which is different than
> that case above when the ETR was still sending Map-Requests.  IOW, it
> seems to me that there is no "safe" scenario.
> 
> 
> 
> ...
>>> 396 2. The packet arrives with a Source Map-Version number greater
>>> 397 (i.e., newer) than the one stored in the local EID-to-RLOC Map-
>>> 398 Cache. This means that the ETR has in its EID-to-RLOC Map-Cache
>>> 399 a stale mapping that needs to be updated. A Map-Request SHOULD
>>> 400 be sent to get the new mapping for the source EID. This is a
>>> 401 normal Map-Request message sent through the mapping system and
>>> 402 MUST respect the specifications in [I-D.ietf-lisp-rfc6833bis],
>>> 403 including rate-limitation policies.
>>> 
>>> [major] "Map-Request SHOULD be sent"
>>> 
>>> Why is this action recommended and not required? When is it ok for
>>> the ETR to not send a Map-Request (in response to this event)?
>> 
>> [LI] It is now a MUST.
> 
> No...-10 still uses SHOULD.
> 
> 
> 
> ...
>>> [major] "the packet MAY be silently dropped"
>>> 
>>> Why is this action optional and not required? The rest of the
>>> paragraph talks about how this "case is not valid with respect to the
>>> specifications" -- I then don't understand why it would only be
>>> optional to drop the packet.
>> 
>> [LI] Correct, it is a SHOULD with explanation about exceptions.
> 
> If "not valid with respect to the specifications" it feels like there
> should be no exceptions.
> 
> 
> 
> ...
>>> [major] s/LISP header/LISP-specific header
>> 
>> [LI] Fixed.
> 
> There are still a couple of unchanged instances.
> 
> []

v2.23.0 | Report a Bug | By Email