IETF Logo Mail Archive

Re: [Lsr] Comments on Requested Codepoints for draft-li-lsr-isis-area-proxy

"Les Ginsberg (ginsberg)" <ginsberg@cisco.com> Sun, 21 June 2020 06:23 UTC

Return-Path: <ginsberg@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4F1D3A09A0; Sat, 20 Jun 2020 23:23:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=OjvUH2yB; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=K64r/P5r
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LxMMqJojhIGv; Sat, 20 Jun 2020 23:23:38 -0700 (PDT)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04F163A099C; Sat, 20 Jun 2020 23:23:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=30634; q=dns/txt; s=iport; t=1592720618; x=1593930218; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=eN0enZijtTWuZRBPVCXjJih9fqoexAyrzfPleXYJDik=; b=OjvUH2yBNFrrMgwmiGC7lW02wYNS+dM03BdYBuGFhItSS9ASUKRVHa0Y UqrdpCklwFjkUaYPRj+MC7fi1oyiIXgm/VYGcxUSyQFIu+uw+gnqWOQdz zgUg10EFAw9SPkKbPwE/lrCWNsrjUfHQCZR64TTb45r+DMGxExDGYFN40 U=;
IronPort-PHdr: 9a23:sRn3GxNmxTQ9A4je+y8l6mtXPHoupqn0MwgJ65Eul7NJdOG58o//OFDEvKw13kPOW5Sd7/MXw+bVsqW1X2sG7N7BtX0Za5VDWlcDjtlehA0vBsOJSCiZZP7nZiA3BoJOAVli+XzoLU9TCYD6Zg6arni79zVHHBL5OEJ8Lfj0HYiHicOx2qiy9pTfbh8OiiC6ZOZ5LQ69qkPascxFjA==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0C2AABf/O5e/4UNJK1mGgEBAQEBAQEBAQEDAQEBARIBAQEBAgIBAQEBggqBIy8jLgdvWC8shCSDRgONQIoAjlSCUgNVCwEBAQwBASUIAgQBAYRHAheCEQIkOBMCAwEBCwEBBQEBAQIBBgRthVsBC4VyAQEBAQMSEQoTAQEpDgEPAgEIEQQBASsCAgIfER0IAQEEDgUIFwODBYF+TQMuAQ6sAQKBOYhhdoEygwEBAQWBRkGDLg0Lgg4DBoE4gmeJfBqBQT+BVIJNPoEEAYEVQgIDAYEyKyuCZzOCLY8HDjSCYIY6iymPf0wKglqIQot8hQuee5ErihWCWJFbAgQCBAUCDgEBBYFqIoFWcBWDJFAXAg2OHgwXg06DRoFOhUEBdDcCBgEHAQEDCXyNP4JGAQE
X-IronPort-AV: E=Sophos;i="5.75,262,1589241600"; d="scan'208,217";a="525978109"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 21 Jun 2020 06:23:12 +0000
Received: from XCH-ALN-005.cisco.com (xch-aln-005.cisco.com [173.36.7.15]) by alln-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 05L6NCag021537 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sun, 21 Jun 2020 06:23:12 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-ALN-005.cisco.com (173.36.7.15) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 21 Jun 2020 01:23:12 -0500
Received: from xhs-aln-001.cisco.com (173.37.135.118) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Sun, 21 Jun 2020 02:23:11 -0400
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Sun, 21 Jun 2020 01:23:11 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SlwdTa14Ebya2DWx6TOHGnJ0AUgA7Vt0lBMutHth4+60s1+wpnqaT54NoQqgIKu3lyTu6wbMTuL9dYVIhUmbRi2obLDJA+g2ST5J2DKqFFoNUG9tzhJ+fLFfuLX7HMtz25OL0dEvDZY6Xuixqs6PSNa15I8cL8jYpRfwLlmZ/L5RT1HSzMW4e1LJtM1GQ0KdQcTepcPG9x8SqIt6XyhfLUxmStBaybTVr2+oEVSORNzjzoFjgEGYRbE2ztzF5tjh5FkW/pFZRRT+d/35oQfaqaPyLzG8MhPwKj3G4xbJsgi+vdwaInZQZA9tlPNpnEM7sV3vVjbBJO21ebmWCkoYtA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eN0enZijtTWuZRBPVCXjJih9fqoexAyrzfPleXYJDik=; b=KfViq6/3B9DoubpaA0c66NAB0k444/0ziAVsVjD2754OXlyZbdrp9bcPfGx8j0De5EDROKq5C/IR3ut5kLauSKZ/8KdJDJj9oCeZy94sHukdwy0o11RaZ6youBPrVS6ZrJMRQyZmw7VEkl4SH01c7dxtRrEsaUgrOtHg1GnEvWO2ksSmDmyvEMRCy4o4VlJmGynL3HWL9jWYeSK0/RG9XGRliqm1WtZBtdPmEWwcqEQgsQwyr43qgRbyWi20ZjmcOai2IUC91LsF7vdksmJ3IGk5V7zYWfCXxoFewTlZzk0f8KJvzpq4qb1OudqzWp5JSw+/5IVplQza3vOkoVxOTw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eN0enZijtTWuZRBPVCXjJih9fqoexAyrzfPleXYJDik=; b=K64r/P5r1lZID2CH7bSpd5mBeYFvCalTut4OWUNKo9NVLcdb/nlyH6Tle3amo9Y8j47QmOYMmfbQLYAUq86cBFBIXIaxS7owVmJj3sF3w02bCLwPsnmoBv9rrXiG+JJ7PRDjYQqiFbJT8Z+4t+qQtFHnJBbHpWwHSR+8hMbyYtg=
Received: from BY5PR11MB4337.namprd11.prod.outlook.com (2603:10b6:a03:1c1::14) by BYAPR11MB3157.namprd11.prod.outlook.com (2603:10b6:a03:75::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3109.24; Sun, 21 Jun 2020 06:23:08 +0000
Received: from BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::744b:761f:b385:f1e2]) by BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::744b:761f:b385:f1e2%7]) with mapi id 15.20.3109.025; Sun, 21 Jun 2020 06:23:08 +0000
From: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
To: "tony.li@tony.li" <tony.li@tony.li>
CC: "draft-li-lsr-isis-area-proxy.authors@ietf.org" <draft-li-lsr-isis-area-proxy.authors@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: Comments on Requested Codepoints for draft-li-lsr-isis-area-proxy
Thread-Index: AdZHOuOSJsSZJI/1RpqA6MX1gMmczwACEYAAAAQI3yAAA1bPAAAL12DQ
Date: Sun, 21 Jun 2020 06:23:08 +0000
Message-ID: <BY5PR11MB4337A5745218D4C36D45ACDCC1960@BY5PR11MB4337.namprd11.prod.outlook.com>
References: <BY5PR11MB4337892CA6ADFD4F2E9B653FC1990@BY5PR11MB4337.namprd11.prod.outlook.com> <EB07BFF9-B4AF-41BE-94F0-25E229FA25FD@tony.li> <BY5PR11MB4337E58E8B775A7086281C21C1990@BY5PR11MB4337.namprd11.prod.outlook.com> <29A0CD92-1D33-4B06-B0CF-D17BE89A9B60@tony.li>
In-Reply-To: <29A0CD92-1D33-4B06-B0CF-D17BE89A9B60@tony.li>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: tony.li; dkim=none (message not signed) header.d=none;tony.li; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2602:306:36ca:6640:b409:59a0:81d9:1082]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5d71d443-4f58-411a-69b2-08d815ab90d6
x-ms-traffictypediagnostic: BYAPR11MB3157:
x-microsoft-antispam-prvs: <BYAPR11MB3157C9A703D61126144519DEC1960@BYAPR11MB3157.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 04410E544A
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: cwiRejX7NqgmS+YS/jykFJBnS+jgvhpfJmPkxzFeOhensnzb8HrFRF45An33GC+d3oii3jOOsedqzVtVQAhef8Qb0cmYek5P2ZCBCNf8irQyg2DFHaUJjkzOmChHrH+nPI3jkq8E+ZuAsyHr1pzYUUuW15GNJgsYwWgsHKq7P8P0qvqbI1snIN8NzA4C8gE4g9QWQq0xJXFbUAnXW2xNeFLhlmyDHlVg8rSeLQLv6ra2fJNRWZGH62SQWEzs1NZvwwNBOYE60rTUOXqQAveYBYuicEpbsjUWBGlaHbVCZyYNEyY6V9iFrQcFWffBtF0vkb1URNf8d6xHl2Q42BoFe7AXqkAb0oCm39RQKcZwnoRpHqJazhFGvgHpEWDF8tp2B6rD2Yge6TV5QqRbOYsYEA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4337.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(346002)(39860400002)(366004)(376002)(396003)(136003)(66446008)(83380400001)(66574015)(478600001)(4326008)(6916009)(86362001)(966005)(2906002)(8936002)(66946007)(52536014)(33656002)(53546011)(54906003)(66556008)(7696005)(64756008)(66476007)(71200400001)(166002)(186003)(9686003)(76116006)(5660300002)(8676002)(55016002)(6506007)(316002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BY5PR11MB4337A5745218D4C36D45ACDCC1960BY5PR11MB4337namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 5d71d443-4f58-411a-69b2-08d815ab90d6
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Jun 2020 06:23:08.5177 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5BCdq+d7bVMBOTu5HKQCxoxrAEoS/yPc/TxUOnId7zW9uJeM5tro1vduNfLbRC3pTNigVpZzYNsJINGDKjn9Cg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3157
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.15, xch-aln-005.cisco.com
X-Outbound-Node: alln-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/VT2AjTpxkcn4jn0eWSwVn5tsADw>
Subject: Re: [Lsr] Comments on Requested Codepoints for draft-li-lsr-isis-area-proxy
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Jun 2020 06:23:41 -0000

Tony –

We don’t have to resolve this now.
One of my motivations for sending this was related to Early Allocation of code points. Since you have already asked once, I am assuming that if WG adoption is achieved it will be swiftly followed by an early allocation request – and as one of the Designated Experts I wanted to share my concerns sooner rather than later.

A few more responses inline.

From: Tony Li <tony1athome@gmail.com> On Behalf Of tony.li@tony.li
Sent: Saturday, June 20, 2020 5:13 PM
To: Les Ginsberg (ginsberg) <ginsberg@cisco.com>
Cc: draft-li-lsr-isis-area-proxy.authors@ietf.org; lsr@ietf.org
Subject: Re: Comments on Requested Codepoints for draft-li-lsr-isis-area-proxy


Hi Les,

Putting the Inside Node TLV aside for the moment, it would seem to me to be advantageous (in a modest way) to have all information relating to Area Proxy contained in one advertisement. Using Router Capabilities TLV would accomplish that.


I agree that the information should be contained, this is why we opted to put it all into one top level TLV.  Recall that only the Area Leader is advertising the Area Proxy TLV, while all inside nodes need the capability.

[Les:] My proposal does not alter what information is sent by Area leaders/non-Area leaders – just the container in which the information appears.


Your concern about “burdening” the Router Capabilities TLV seems unwarranted.


Given that we have 64k top level code points, I’m equally confused about your concern.

[Les:] Today, we only have 255 top level codepoints.
64K codepoints will only become available when the industry moves to RFC 7356 based implementations and includes the 16 bit TLV Type/Length option.
While I would obviously like to see this happen, as it isn’t backwards compatible I expect we are still some years away from a “tectonic shift”.
And your draft does not propose moving to RFC 7356 as part of the feature (and I am not suggesting that it should).

At least part of the reason we still have sufficient available top level code points is that we do our collective best to use them judiciously.


Multiple Router Capability TLVs are allowed (indeed even required to support different flooding scopes) – so TLV space is not limited.


I expect that we will have numerous bug reports when we start to cross the TLV boundary.  I’m not in favor of pushing this.

 [Les:] We already enough info to advertise that one Router Capability TLV is not enough. Implementations that cannot handle multiple Router Capability TLVs are already busted.
Area Proxy by itself won’t force this to be exposed.

Returning to Inside Node TLV, I share your concern about advertising Router Capabilities TLV in pseudo-node LSP. But what does it mean to advertise the Inside Node TLV in a pseudo-node LSP?


It’s a clear indication that the pseudonode is intended to be inside.



Presumably you need some capability indicator because even on boundary circuits the DIS will use the native systemid rather than the proxy systemid and therefore you cannot tell based on pseudonode-id alone what type of circuit this is.


Correct. The DIS would have a very difficult time using the proxy systemid and assigning a unique circuit id for the pseduonode.  Some other system on the other side of the area could be making exactly the same choice, leading to a collision.  Thus, it seems simpler to use the native system id and explicitly signal that the pseudonode is inside.  I’ve become a pretty big fan of explicit signaling, as it’s more robust.

[Les:] Yes, I understand  and agree with your choice. There is no good way to manage the pseudo-node ID space in a distributed manner.


Would this argue for advertising “this is a boundary circuit” in pseudo-node LSPs for boundary circuits rather than advertising “inside” on all inside pseudo-nodes?


You could do it that way.  It inverts the semantics and inverts the deployment.  Logically, it should have the same effect.  However, it then is seen by outside nodes.  Since they need not support Area Proxy, this seemed like a riskier approach, thus we opted for marking inside pseudonodes.

[Les:] My point was largely motivated by the statement in the draft:

“Area Proxy Boundary multi-access circuits (i.e.  Ethernets in LAN
   mode) with multiple Inside Edge Routers on them are not supported.”

So it seems advantageous to be able to prevent this from happening – which requires some signaling on the circuit in question.


And do you need the “boundary circuit” indication in L2 IIHs (and perhaps P2P IIH as well??) as protection against improperly forming adjacencies on boundary circuits?


Not required if there is consistent configuration.  All inside nodes will be using the proxy system ID in their IIH.  If a node is inconsistently configured, then it is difficult to prevent at least one side from trying to form the adjacency.

[Les:] Yes – the key point here is “consistent configuration”. It seems useful to be able to detect/report mismatched configurations – which is why I thought advertising the new capability explicitly could be helpful.
Trying to form an adjacency that shouldn’t be formed isn’t a significant problem. The more significant problem is if the adjacency were to come up when it should not.


Regarding the Area SID advertisement, I take the point that this concept might be useful more generically, but as it is key to have the correct scope for the SID, it is hard to see how the advertisement could be used apart from the context (Area Proxy in this case). So advertising it separately doesn’t seem useful.


To me, it seems like it is a useful anycast SID anytime there is hierarchy present.  It seems somewhat useful to be able to create paths that say things a bit more abstractly: Take the path from San Francisco, through Los Angeles, Dallas, St. Louis, and then Atlanta to get to Washington. This would allow higher level TE without worrying about more specific details. This also opens up the possibility of hierarhcical TE, which we may wish to explore for the sake of scalability.

[Les:] Again, I am not arguing that point. I am saying for this to be useful requires knowing what set of routers are using the advertisement – which requires the association with IER capability for Area Proxy.

   Les


Regarding consistent SRGBs, you might find https://datatracker.ietf.org/doc/draft-ietf-spring-mpls-anycast-segments/ worth reading as something attempting to address a similar problem. It isn’t easy.


Thank you for the pointer, I will review.

I appreciate your comments.  I wish that they had been much earlier in the process.  I will take them much more seriously if and when the document is adopted by the WG.

Tony

v2.23.0 | Report a Bug | By Email