IETF Logo Mail Archive

Re: [Lsr] I-D Action: draft-ietf-lsr-isis-area-proxy-03.txt

bruno.decraene@orange.com Mon, 07 September 2020 11:00 UTC

Return-Path: <bruno.decraene@orange.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 246A43A0B95 for <lsr@ietfa.amsl.com>; Mon, 7 Sep 2020 04:00:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4LH0mYFEA0FF for <lsr@ietfa.amsl.com>; Mon, 7 Sep 2020 04:00:09 -0700 (PDT)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.66.39]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 848F63A0B93 for <lsr@ietf.org>; Mon, 7 Sep 2020 04:00:08 -0700 (PDT)
Received: from opfedar05.francetelecom.fr (unknown [xx.xx.xx.7]) by opfedar27.francetelecom.fr (ESMTP service) with ESMTP id 4BlQKf6HBGz2xGj; Mon, 7 Sep 2020 13:00:06 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1599476406; bh=CWGtJpdDqSFjPI+xmsolF0cb8py63A3j2JlunFIEcGs=; h=From:To:Subject:Date:Message-ID:Content-Type:MIME-Version; b=qMfHf7KfbMCM5Q5wruw+tivoHOqF8CTLRwZq8CaDPnpbbmPH5fWXyv283HuwPJDAU AckX2XdGVqljUTA8/J9ZTE4oaymH6x6EM5uASAdg2yuM3G4VN9cbQJ7j0YXtxJ0Edq HzGCMIrFIyjgAmXn9H+4Jl7z9CxSVt+dKukuuNM65A2Yl9tUfWRH1l5PjtrDrX67N9 xHiL2q1sw8Y6/Z7Kftblszpnnyp4QhPM1iOxDoF5ZfweJRs07VHXUdxc5ZftDlFNJQ is4zmelaU7KDbb1HZ2l3e2Y8FDw4O3zJcaypN4+V8gFsVVmGL39s53jA2uH5Ve81Vn YfY2ajSFYuURw==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.38]) by opfedar05.francetelecom.fr (ESMTP service) with ESMTP id 4BlQKf5CG2z2xDk; Mon, 7 Sep 2020 13:00:06 +0200 (CEST)
From: bruno.decraene@orange.com
To: "tony.li@tony.li" <tony.li@tony.li>
CC: "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: [Lsr] I-D Action: draft-ietf-lsr-isis-area-proxy-03.txt
Thread-Index: AQHWgx1vCD4q5pTF5Uif9Xx/OFmpV6lc6+yQ
Date: Mon, 07 Sep 2020 11:00:05 +0000
Message-ID: <1887_1599476406_5F5612B6_1887_424_11_53C29892C857584299CBF5D05346208A48F5E4CC@OPEXCAUBM43.corporate.adroot.infra.ftgroup>
References: <159665865921.15026.2581762617571023706@ietfa.amsl.com> <476BCC1F-0C33-4DEA-84DF-365FB5CBA377@tony.li> <21324_1599222537_5F523309_21324_463_12_53C29892C857584299CBF5D05346208A48F586AF@OPEXCAUBM43.corporate.adroot.infra.ftgroup> <27306_1599228768_5F524B60_27306_466_34_53C29892C857584299CBF5D05346208A48F58942@OPEXCAUBM43.corporate.adroot.infra.ftgroup> <CE94541D-C326-40A1-A1E2-436E14B31A5A@tony.li>
In-Reply-To: <CE94541D-C326-40A1-A1E2-436E14B31A5A@tony.li>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.245]
Content-Type: multipart/alternative; boundary="_000_53C29892C857584299CBF5D05346208A48F5E4CCOPEXCAUBM43corp_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/LSKtSYZp3hIVgaIrFEZ5khB2VDg>
Subject: Re: [Lsr] I-D Action: draft-ietf-lsr-isis-area-proxy-03.txt
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Sep 2020 11:00:11 -0000

Hi Tony,

Thanks for your reply.
At this point, area proxy spec is clear with regards to nominal behavior. So indeed we are discussing error handling / transitions. (and thank you for considering those cases, much appreciated).

From memory, my understanding is the area proxy nominal behaviour requires:

-          All routers in the area are L1 & L2

-          All inside routers advertise the area proxy TLV

-          An area leader advertises the Area Proxy System Identifier Sub-TLV

If the above is not fulfilled, what is the expected behaviour? There is a priori 2 options:

-          A) Return to regular IS-IS behaviour. i.e. all L2 LSPs from inside routers are flooded to L2 outside routers

o   Pro: no new behaviour/code as this is regular IS-IS. Correct transit forwarding across the area.

o   Con: suddenly increase size of L2 LSDB

-          B) Keep filtering L2 LSP from inside routers

o   Pro: no sudden increase of L2 LSDB size

o   Con: transit traffic is partially dropped (if area LSP advertised while some routers are L1 only), no transit is possible (if area LSP is not advertised), or partial transit (some inside edge node do not advertise the area proxy TLV).

§  Lack of transit is not an issue if there is a backup proxy area (e.g. a proxy area a replace a big single chassis).  It’s likely an issue is there is no backup proxy area (e.g. the area has built-in redundancy (e.g. spife/leaf) hence there is no need for another/backup proxy area. Network operator needs to be well aware in order to choose the correct design (rather than experience a bad surprise)

That’s an open question.
As this point I do not have a preference, although naively I had “A” in mind. From your below answer, I think that you have “B” in mind.
A priori the choice may be dependent on the missing condition.
Possibly this could be clarified in a “operational consideration” or “error handling” section for network operator to be aware of the behaviour under failure/transition condition.
FYI, I’m considering such failure to be plausible over the years as all it need is one L1 router to boot and not advertise the area proxy TLV or be configured as L1 only.

Regards,
--Bruno
From: Lsr [mailto:lsr-bounces@ietf.org] On Behalf Of tony.li@tony.li
Sent: Saturday, September 5, 2020 2:43 AM
To: DECRAENE Bruno TGI/OLN <bruno.decraene@orange.com>
Cc: lsr@ietf.org
Subject: Re: [Lsr] I-D Action: draft-ietf-lsr-isis-area-proxy-03.txt


Hi Bruno,



“A Level 2 LSP that contains the Area Proxy TLV MUST NOT be flooded to an Outside Router. »
Agreed (so far)

“A Level 2 LSP with a source system identifier that is found in the Level 1 LSDB MUST NOT be flooded to an Outside Router.”
I’m not sure to agree.
If that LSP carries the Area Proxy TLV, the previous rule is enough.
If that LSP does not carry the Area Proxy TLV, then no Area Leader advertise the Area Proxy System Identifier Sub-TLV and hence the new Area Proxy is not enabled. In which case I feel that normal IS-IS flooding should occur, and L1-L2 nodes should have their L2 LSP flooded.
So, I would propose to remove that sentence which doesn’t seem needed.


This was intentional. We are trying to protect against a case where a router boots and has not yet processed its full configuration yet.  It could easily generate an LSP prior to adding the Area Proxy TLV.
This could also happen during the transition to Area Proxy, where an Inside Node has not yet been configured for Area Proxy.

We are trying to prevent flooding of its LSP to the Outside Area because that may confuse other L2 nodes.


“A Level 2 LSP that contains the Area Proxy TLV MUST NOT be flooded to an Outside Router. »
I think we additionally need that an Area Leader advertise the Area Proxy System Identifier Sub-TLV.


We already say:

          The Area Leader has several responsibilities.  First, it MUST
       inject the Area Proxy System Identifier into the Level 2
       LSDB.



Otherwise, hence the new Area Proxy is not enabled. I which case I feel that normal IS-IS flooding should occur, and L1-L2 nodes should have their L1 & L2 LSP flooded.
That condition would seem application to the whole section 5.2 or even to the whole section 5



Again, we want to restrict flooding if Area Proxy is configured, even if it’s not fully enabled.  Again, we’re just trying to make the transition as smooth as possible.


Tony



_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

v2.23.0 | Report a Bug | By Email