IETF Logo Mail Archive

Re: [Lsr] Thoughts about PUAs - are we not over-engineering?

Anup MalenaaDu <anupkumart@gmail.com> Sat, 18 June 2022 04:55 UTC

Return-Path: <anupkumart@gmail.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6A30C15AAC9; Fri, 17 Jun 2022 21:55:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tJYMjjAoqUBm; Fri, 17 Jun 2022 21:55:22 -0700 (PDT)
Received: from mail-ej1-x62c.google.com (mail-ej1-x62c.google.com [IPv6:2a00:1450:4864:20::62c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CF14CC157B3B; Fri, 17 Jun 2022 21:55:21 -0700 (PDT)
Received: by mail-ej1-x62c.google.com with SMTP id gl15so12036538ejb.4; Fri, 17 Jun 2022 21:55:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ms//9lMVuWn4lbcV0Tdk+m3Oc377z2apCl5lYF86YL0=; b=J4fzaoyr2rLM9vDQONvuuJyt86jt4zYnRZbRQoZi52xZpm2ub+2ZvKlsnmejWv/Bo0 CbxqhMhXy7gxyC915z8qVON9MKCQT15yaNe9u9ozrSGfqHlLU9gSTrJ4hEyafzeTS8Il qcfvRSZxsciGpdPms2A4eS+uhg9HNfQK6BjZV3L0nMtggistOUNVo4yZqJv26+5im1uf ZOio5PpW/98iF6dNBp8z7LOVvtnlGEG580bkqz5qbhQr+olgBnuYZ8vzkhV03m0smQSY 2t1ftd1aPk4XqqUVNIkNl88Pggst6qDv1tNqr3fQsgUcXvxz19cqrE2n85PRqNvPmblA L22A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ms//9lMVuWn4lbcV0Tdk+m3Oc377z2apCl5lYF86YL0=; b=p/o+w6wUh0U+UtQCrfKtI1lqZEOVqh6v93zcSY7v7krL6S4YGkDVekFKaXyarh5Inr b4W8AEeiu1QM20EkwZrgOOq3zxO/JSzacDMlanND+tJ8S3gnnOEFSptBbmR6RUUnEZRG OkCrGFC1DhtIfHw4d7ZFZBlQRqBnxYayxUN/yK1qK2LsfsRTsbeTrEl69cdzaOo/eYu/ 690NvB/Zo2+nh71+ajW1oLHWagpXUB0s/0SXJj/MJQvLiyh2zofM7yEnSlumElAUaMF4 26KhuVjwI3PsR1gavePl/GuI4fpH7LZmXbo8UG6pPT4aLdDaA9dHiJf3kANNH3KpxCav DHTQ==
X-Gm-Message-State: AJIora8pTajhxcQqtlCxhxUivqGymeuv0onepPzwEtZK6WeXDhSlMnap 5GbrzVinwLzc9wEoOULztTBsKUI6AB6FVhSDpSA=
X-Google-Smtp-Source: AGRyM1vZUmDFuDpeDR/OFK2ZhgdUaMNlply6JbzFVp/LbjK10ttXA9RyUdOPxZN6O9ZJXf5pah6XTLPN3StW0JHUhDs=
X-Received: by 2002:a17:906:2252:b0:711:d2e6:9e7e with SMTP id 18-20020a170906225200b00711d2e69e7emr12604958ejr.161.1655528119840; Fri, 17 Jun 2022 21:55:19 -0700 (PDT)
MIME-Version: 1.0
References: <B726E706-4B31-4728-847A-B3AE56E84D7F@bell.ca>
In-Reply-To: <B726E706-4B31-4728-847A-B3AE56E84D7F@bell.ca>
From: Anup MalenaaDu <anupkumart@gmail.com>
Date: Sat, 18 Jun 2022 10:25:08 +0530
Message-ID: <CAHP=eyj1Hzfg_ktTae40_tS1hNqX+azvJx51f9hdUzxdhGavSw@mail.gmail.com>
To: "Voyer, Daniel" <daniel.voyer=40bell.ca@dmarc.ietf.org>
Cc: "Van De Velde, Gunter (Nokia - BE/Antwerp)" <gunter.van_de_velde@nokia.com>, Robert Raszuk <robert@raszuk.net>, Gyan Mishra <hayabusagsm@gmail.com>, "draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org" <draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org>, draft-wang-lsr-prefix-unreachable-annoucement <draft-wang-lsr-prefix-unreachable-annoucement@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007fb5f105e1b1ad9b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/S_Nq-AFhsO_PHZkqZ05-p8v9Ewc>
Subject: Re: [Lsr] Thoughts about PUAs - are we not over-engineering?
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 18 Jun 2022 04:55:25 -0000

Hi,

BGP uses BFD to track the remote PEs.
So, how does PUA really help?

To be precise,
1. what are the advantages of having PUAs for IGPs
2. what are the advantages for services like BGP, Tunnels, LSPs etc going
over IGPs

Thanks,
Anup

On Thu, Jun 16, 2022 at 7:41 PM Voyer, Daniel <daniel.voyer=
40bell.ca@dmarc.ietf.org> wrote:

> Hi Gunter, see [DV]
>
>
>
> *From: *"Van De Velde, Gunter (Nokia - BE/Antwerp)" <
> gunter.van_de_velde@nokia.com>
> *Date: *Thursday, June 16, 2022 at 6:38 AM
> *To: *Robert Raszuk <robert@raszuk.net>
> *Cc: *Gyan Mishra <hayabusagsm@gmail.com>, Dan Voyer <daniel.voyer@bell.ca>,
> "draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org" <
> draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org>,
> draft-wang-lsr-prefix-unreachable-annoucement <
> draft-wang-lsr-prefix-unreachable-annoucement@ietf.org>, "lsr@ietf.org" <
> lsr@ietf.org>
> *Subject: *[EXT]RE: [Lsr] Thoughts about PUAs - are we not
> over-engineering?
>
>
>
> Hi Robert, Peter, Bruno
>
>
>
> You wrote:
>
> “Aas there is no association between node_id (perhaps loopback) and SIDs
> (note that egress can use many SIDs) UPA really does not signal anything
> about SIDs reachability or liveness. “
>
>
>
> Sure, but UPA signals that a locator is unreachable, would that not result
> for the SRv6 SID to become unreachable as well?
>
>
>
> I understood that UPA have increased value add benefit when using with
> SRv6. If suddenly a locator becomes unreachable, then it I guess the
> associated 128 bit SIDs become unreachable too, causing an event for
> something to happen in the transport network to fix the problem.
>
>
>
> That being said, Peter makes a good point stating that UPA is not solving
> the problem of partitioning areas, and hence, maybe my use-case is not
> overly relevant.
>
>
>
> So progressing, an operator using ABR based summarization then there are
> few options:
>
>    1. No summarization at all at ABRs
>    2. Summarize on ABR all prefixes that can be summarized
>    3. Summarize all prefixes that are not associated with PEs and remain
>    advertising individual PE addresses
>    4. Summarize all prefixes and use UPA’s to advertise unreachability of
>    protected prefixes
>
>
>
> [DV] if “an operator using ABR based summarization” then option 1 is out,
> right ? Also, option 4 is the point of this draft – but furthermore, if an
> aggregation device, inside a domain, is also being summarized – as the
> entire domain get summarized – but this agg device doesn’t have any
> services, because it’s an aggregation device, “then it’s up to the operator
> designing the network to implement” a form of policy/filter. So if that agg
> device reload, due to a maintenance, we don’t care about the unreachability
> advertisement (adding unnecessary LSP in the LSDB).
>
>
>
> We all know that option 1 -3 work well and has been working well for long
> time. Behavior is very well understood
>
>
>
> With the new option 4, to add value, applications need to get what is
> being referenced as ‘vendor secret sauce’ … I can already see the fun
> caused by inconsistent behavior and interop issues due to under
> specification.
>
> [DV] not sure I am following your “secret sauce” point here. Following the RFC5305/RFC5308
> should be clear.
>
>
>
> The question I remain to have is if the UPA provide higher benefit as the
> tax it introduces. I can see operators suffer due to under specification,
> causing interop and inconsistent behaviors.
>
>
>
> I agree with Bruno’s statement “If you believe that all you need is
> RFC5305/RFC5308 I guess this means that we don't need
> draft-ppsenak-lsr-igp-ureach-prefix-announce”
>
>
>
> [DV] well, “draft-ppsenak-lsr-igp-ureach-prefix-announce”, is describing
> a use case/architecture and what you can do w/ RFC5305/RFC5308 – its
> “informational” 😊
>
>
>
> G/
>
>
>
>
>
> *From:* Robert Raszuk <robert@raszuk.net>
> *Sent:* Thursday, June 16, 2022 11:54 AM
> *To:* Van De Velde, Gunter (Nokia - BE/Antwerp) <
> gunter.van_de_velde@nokia.com>
> *Cc:* Gyan Mishra <hayabusagsm@gmail.com>; Voyer, Daniel <daniel.voyer=
> 40bell.ca@dmarc.ietf.org>;
> draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org;
> draft-wang-lsr-prefix-unreachable-annoucement <
> draft-wang-lsr-prefix-unreachable-annoucement@ietf.org>; lsr@ietf.org
> *Subject:* Re: [Lsr] Thoughts about PUAs - are we not over-engineering?
>
>
>
> Gunter,
>
>
>
> (1) Multiple-ABRs
>
>
>
> I was wondering for example if a ingress router receives a PUA signaling
> that a given locator becomes unreachable, does that actually really signals
> that the SID ‘really’ is unreachable for a router?
>
>
>
> Aas there is no association between node_id (perhaps loopback) and SIDs
> (note that egress can use many SIDs) UPA really does not signal anything
> about SIDs reachability or liveness.
>
>
>
>  For example (simple design to illustrate the corner-case):
>
>
>
> ingressPE#1---area#1---ABR#1---area---ABR#2---area#3---egressPE#2
>
>      |                                                      |
>
>      |                                                      |
>
>      +--------area#1---ABR#3---area---ABR#4---area#3--------+
>
>
>
> What if ABR#4 would loose connectivity to egressPE#2 and ABR#2 does not?
>
> In that case ABR#4 will originate a UPA/PUA and ABR#2 does not originate a
> PUA/UPA.
>
> How is ingressPE#1 supposed to handle this situation? The only thing
> ingressPE#1 see is that suddenly there is a PUA/UPA but reachability may
> not have changed at all and remains perfectly reacheable.
>
>
>
> Valid case. But PE1 should only switch when alternative backup path
> exists. If there is a single path it should do nothing in any case of
> receiving UPA. We have discussed that case before and as you know the
> formal answer was "out of scope" or "vendor's secret sauce" :).
>
>
>
> The justification here is that switching to healthy backup is better then
> continue using perhaps semi-sick path.
>
>
>
> Best,
>
> R.
>
>
> ------------------------------
>
> *External Email:** Please use caution when opening links and attachments
> / **Courriel externe:** Soyez prudent avec les liens et documents joints *
> _______________________________________________
> Lsr mailing list
> Lsr@ietf.org
> https://www.ietf.org/mailman/listinfo/lsr
>

v2.23.0 | Report a Bug | By Email