Re: [lisp] Benjamin Kaduk's Discuss on draft-ietf-lisp-rfc6830bis-28: (with DISCUSS and COMMENT)
Dino Farinacci <farinacci@gmail.com> Mon, 30 December 2019 23:03 UTC
Return-Path: <farinacci@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 296371200B8; Mon, 30 Dec 2019 15:03:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Lt3k0HGxeYNH; Mon, 30 Dec 2019 15:03:38 -0800 (PST)
Received: from mail-pf1-x434.google.com (mail-pf1-x434.google.com [IPv6:2607:f8b0:4864:20::434]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B0631200B1; Mon, 30 Dec 2019 15:03:38 -0800 (PST)
Received: by mail-pf1-x434.google.com with SMTP id i23so13508390pfo.2; Mon, 30 Dec 2019 15:03:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=UR9PA7g6VAuB5xZyeJQ+ZwrVuKX5h9iSSkwLZL0v9kc=; b=mlqErKjEK7PiVPE5Ivs9ZgBeaGJVDExmQ+5xBpmDY8Y8sBy1DPX9jCDyLKWyvLxLof 84NyEwjLm7v5Q/ZGMdrPxRInQgcrMwU0PRfmF4z6LJj8oQ5JPrbTTj05zXHl2+sIXYpG qMxtUDaQu6cBMtUCXcj1401ArKg0yRwNQucW6aFJ/QqOEkHa6WM/V2zcPFS9SDeVTKVL OdzcwPVOLHYGaEbQi4HPHdPdOGac9+ap5dtrDFtqiUFrHzqzBjMXCcEZjiQPisJFT3dk /yDG6d0y73TAzskr1sO0njKej+puJ+ZevUaHEoiEVZd3FcD1geifm275PMbrLhS+vVev YH+g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=UR9PA7g6VAuB5xZyeJQ+ZwrVuKX5h9iSSkwLZL0v9kc=; b=Sw/PPYNuvUa6O+eiut4IeJ8osWVk0MJwmU0DUA9y6+TLRfOWVrunQ2bQza4ClfDQBh zDgYScxe08sZmaum5YvHg+nJs640+A5PvLsX4ENIoLy5pz88GHEO9ljPEsp529OlsGXt U7rGjdjiYaXwRxLncmYfwWknRyNuTxXnJR78FiRUZbsB6GD0iS/Ji8cMqPm9QLacB2JQ ZDfgOTE6y7GToNEZiOCHhIsshbvWdvVrd2IOim4ctMnD6EsZ7oc2y8QITBryLnZTpPX/ 8Sanrb9xyqeDzHaq17ztMlLoferJmXDLqgHomAq1JSdodSWLA+efgAFfA/KnhH33ZaxW B+Dg==
X-Gm-Message-State: APjAAAX59OQ8b1DP0E8tKQI4f9z0wlyHbr1GmR6vVVU5o7ldSCPr3EYn y7+MnjmM6QBo6A4a4qRIbV4=
X-Google-Smtp-Source: APXvYqyOoQwO06yNBVtWATpyA49E5jKPk2+4kON+aZ9yr4Cv6k6RCQWE6rjnJC9gsQrjii8+8lC5Qg==
X-Received: by 2002:a05:6a00:11:: with SMTP id h17mr72821634pfk.209.1577747017673; Mon, 30 Dec 2019 15:03:37 -0800 (PST)
Received: from [10.97.50.239] ([96.72.181.209]) by smtp.gmail.com with ESMTPSA id b21sm54903952pfp.0.2019.12.30.15.03.36 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 30 Dec 2019 15:03:37 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3601.0.10\))
From: Dino Farinacci <farinacci@gmail.com>
In-Reply-To: <157774453448.4510.11290223681067982417.idtracker@ietfa.amsl.com>
Date: Mon, 30 Dec 2019 15:03:35 -0800
Cc: The IESG <iesg@ietf.org>, draft-ietf-lisp-rfc6830bis@ietf.org, Luigi Iannone <ggx@gigix.net>, lisp-chairs@ietf.org, lisp@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <284E65D4-9064-47AC-BACC-4DD64742B17D@gmail.com>
References: <157774453448.4510.11290223681067982417.idtracker@ietfa.amsl.com>
To: Benjamin Kaduk <kaduk@mit.edu>
X-Mailer: Apple Mail (2.3601.0.10)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/eSTp2NC_DVHNah7sV9XLH91TDTw>
Subject: Re: [lisp] Benjamin Kaduk's Discuss on draft-ietf-lisp-rfc6830bis-28: (with DISCUSS and COMMENT)
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Dec 2019 23:03:40 -0000
> Thank you for all the updates in the -28; we're making great progress! Thanks Ben. Here are some brief answers. > My ballot on the -26 included: > > % The usage of the Instance ID does not seem to be adequately covered; from > % what I've been able to pick up so far it seems that both source and > % destination participants must agree on the meaning of an Instance ID, and > % the source and destination EIDs must be in the same Instance. This does > % not seem like it is compatible with Internet scale, especially if there are > % only 24 usable bits of Instance ID. The source and destination EIDs are scoped within an instance-ID. So all EIDs within a VPN (that is assigned a unique Instance-ID PER mapping system) are unique. Note it is 2^^32 Instance-IDs PER mapping system. Where 2^^24 can be used by any one ITR. > The -28 now says that the whole LISP deployment has to agree on the > meaning of Instance ID values (thank you!), but I'm still not entirely sure > if the source and destination EIDs need to belong to the same Instance. > If they do need to be in the same Instance, I think we should note that > (but if not, then the current text should be fine as-is). > My apologies if this was already covered and I just forgot. Agree. We can add that. They must be part of the same instance-ID. Extra-netting where they can be part of different ones is in the draft-ietf-lisp-vpn draft that is not currently on standards track. > Section 10.1 > > Some side discussion: in some sense, the echo nonce functionality is the > most reliable method for determining reachability, and yet we say that it > MAY be overridden by other methods. > There's also some potential conflict between the "will set the E-bit and > N-bit for every packet it sends while in the echo-nonce-request state" and > the later text about echoing the peer's nonce when both ETR and ITR go into > the echo-nonce-request state at the same time, since if the E-bit and N-bit > are sent on literally every packet sent, then it's not possible to send packets > that echo the peer's nonce (which would just set the N-bit but not the E-bit, > if I understand correctly). > > erroneously consider the Locator unreachable. An ITR SHOULD only set > the E-bit in an encapsulated data packet when it knows the ETR is > enabled for echo-noncing. This is conveyed by the E-bit in the RLOC- > probe Map-Reply message. > > Is this only in RLOC-probe Map-Reply messages (and not generic, including > mapping-driven, Map-Reply messages)? Specifically, my understanding was that Yes. > any Map-Reply could set the E-bit to indicate support for echo noncing, and so > there's not much point in us specifically qualifying that the E-bit is set in an > *RLOC-probe* Map-Reply (as opposed to just "a Map-Reply"). If this behavior > is specific to the RLOC-probe replies, I think that 6833bis needs > some clarification in Section 5.4. Agree. Because even when a map-server proxy-replies, it knows if the ETR registered with Echo-Nonce capable. So the information can be conveyed from multiple sources. Thanks again, Dino
- [lisp] Benjamin Kaduk's Discuss on draft-ietf-lis… Benjamin Kaduk via Datatracker
- Re: [lisp] Benjamin Kaduk's Discuss on draft-ietf… Dino Farinacci
- Re: [lisp] Benjamin Kaduk's Discuss on draft-ietf… Benjamin Kaduk
- Re: [lisp] Benjamin Kaduk's Discuss on draft-ietf… Dino Farinacci