IETF Logo Mail Archive

Re: [Lsr] Thoughts about PUAs - are we not over-engineering?

"Van De Velde, Gunter (Nokia - BE/Antwerp)" <gunter.van_de_velde@nokia.com> Wed, 15 June 2022 09:02 UTC

Return-Path: <gunter.van_de_velde@nokia.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76A0FC14CF09 for <lsr@ietfa.amsl.com>; Wed, 15 Jun 2022 02:02:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.652
X-Spam-Level:
X-Spam-Status: No, score=-7.652 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nokia.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4qihe8xlJ3la for <lsr@ietfa.amsl.com>; Wed, 15 Jun 2022 02:02:30 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-vi1eur04on070f.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0e::70f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B240C14F725 for <lsr@ietf.org>; Wed, 15 Jun 2022 02:02:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Pk6IIm4+nykGBq7dXGDZQn617ZUUwU3X1hyDk+DNcK+ey3eb9REg5QAKdjsemdPNAx8xNvFvFfl5ULaS+ggdJfkODD2883+r2r2LDrBV0kqE9+3okjeSjPWe5R9D4lUGE3VyVJMxaekS+VnfGHckggBbzbChMlfPEEbPS2Vs9WYKZNNEHCbyQtV1Y2+i2xpEL1ouSmvoIqLYpPaUXCPl+/nrbU25kbFTlm7DL3jHsXG2QAcQ6kir7FJVpm/u5fGbzrOii1nDxH/2JItf+/5oWYwtTyujTyicT0+VLUg1EZpVb6tPNROzSKdAP7bgd8YdjGdaJIMNSJbKlacf0Oij9g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=jEq/rHB534O54OzS5QPnHRdDiTMvpMJPIAa8FdLrCYc=; b=TZ62LS9AfEQjTHIPfKrXNPpSryqInsXPkKW/BMFpjWm0qHU5yKm4iFwcHkxM/DO+LQ271AgQT91jCJvrnn8xhl708uBwkYZiu8ybq9szhpRb/VH/HRIkMy/7oni07kCgFWR++iwQ45DHxQZbzNHgZI9CHy5jul+9wI4lHOQE/ZtRNyNfNdNg/W0XknsM5woowG5Zod0Pdm52Ai+MOSwEPJJPOWBisba1NLG3DWmw7Ac2hsOZ63ec62vgtnDQj9Vj0Q8+y0QRcvNmG7hPdqpz/8QuD7YmGZhagqbZpDa4Cz2CkTMes2oA3eEPwLGiO05ATzXHqae9JXIVb9ns3EzBNg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nokia.com; dmarc=pass action=none header.from=nokia.com; dkim=pass header.d=nokia.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nokia.onmicrosoft.com; s=selector1-nokia-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jEq/rHB534O54OzS5QPnHRdDiTMvpMJPIAa8FdLrCYc=; b=iuljQ+1RMcp/n2guXHCjLjUunjuMmI9e9Zs2O85gSP62yJ0VsQzKfw5WwrzXqSN9auv5okXZXd7UEdTynnNKx4ntjBMiVk/0QnQun3NEwoIjFrazWtiesI+db4KKZEErfwwvQh2VSo/zargTK+ijxdX6eH62zmzoIANRVHxD5mk=
Received: from AM0PR07MB6386.eurprd07.prod.outlook.com (2603:10a6:20b:144::23) by AM9PR07MB7267.eurprd07.prod.outlook.com (2603:10a6:20b:2c3::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5353.5; Wed, 15 Jun 2022 09:02:21 +0000
Received: from AM0PR07MB6386.eurprd07.prod.outlook.com ([fe80::8d52:6c9e:86f2:d305]) by AM0PR07MB6386.eurprd07.prod.outlook.com ([fe80::8d52:6c9e:86f2:d305%6]) with mapi id 15.20.5353.014; Wed, 15 Jun 2022 09:02:21 +0000
From: "Van De Velde, Gunter (Nokia - BE/Antwerp)" <gunter.van_de_velde@nokia.com>
To: Robert Raszuk <robert@raszuk.net>
CC: lsr <lsr@ietf.org>, "draft-ppsenak-lsr-igp-ureach-prefix@ietf.org" <draft-ppsenak-lsr-igp-ureach-prefix@ietf.org>, "draft-wang-lsr-prefix-unreachable@ietf.org" <draft-wang-lsr-prefix-unreachable@ietf.org>
Thread-Topic: [Lsr] Thoughts about PUAs - are we not over-engineering?
Thread-Index: Adh/zPh4Y/SpJPjaRJe30Bd2YQgaiAAB0gQAADBTIUA=
Date: Wed, 15 Jun 2022 09:02:21 +0000
Message-ID: <AM0PR07MB6386453C35D9648ADA0C7FFCE0AD9@AM0PR07MB6386.eurprd07.prod.outlook.com>
References: <AM0PR07MB63863359D147F9EC0FF67689E0AA9@AM0PR07MB6386.eurprd07.prod.outlook.com> <CAOj+MMEwFYGMvx1fZRb0t=0W-dziE4_CJKwqPeqF+FghjjqJxA@mail.gmail.com>
In-Reply-To: <CAOj+MMEwFYGMvx1fZRb0t=0W-dziE4_CJKwqPeqF+FghjjqJxA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=nokia.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 50d376fe-50be-4ead-aeaf-08da4eadc211
x-ms-traffictypediagnostic: AM9PR07MB7267:EE_
x-microsoft-antispam-prvs: <AM9PR07MB72675EDD6439735909D724DBE0AD9@AM9PR07MB7267.eurprd07.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB6386.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(366004)(54906003)(6916009)(76116006)(9686003)(66476007)(8936002)(8676002)(64756008)(66446008)(66556008)(316002)(4326008)(52536014)(66946007)(71200400001)(86362001)(38100700002)(166002)(82960400001)(6506007)(7696005)(53546011)(83380400001)(966005)(122000001)(38070700005)(2906002)(33656002)(55016003)(508600001)(186003)(5660300002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 2
x-ms-exchange-antispam-messagedata-0: L5IvnMnTNRGsCzB4KOiM/BW+sG01uJCwMUoyQofK7o+PpaNRambTy61Wvp8sJWVNiYjfVla/Vfs32wd3qMG2ScCSaveXEnC43KqojTbJkL+eHi/ObgZtLJZGz2h3EEU7YpUSvxZXXCV9fNZIFRgkokOoKwiykpGfjJHrt0JIEnMnAGBmlPeLYUAfAxLh8AO9X4e0PgmhLSayPKAmYH29s+ZQwCqh1p0gBURCid5FbuJtmS90CERJr5RF5NbFU1QMnwR+cQRNG8iMeW/2PXexHjX++FQnEkiwVpBxuiuntfiFuB0DzDRcjFvdhi8B4Yp4/hLACZV2MS/gb6sOK8cU248x1GQDemnPPYerd6Yvvu3AkUlnj5ftAIKg7fUdGF0azkl38ExiKedrrsOTv+PPaQeH5pKll0G0u2wMGq8oH06ymToEtuW4tLrq3L3RHc66BzGd1FDxKegsr+cpSzPKjYtLMlXRU9U+0v7dLwmohdunl3GZFRi+GDQUSCq2sPKJ/6ycKfdME3SepHrvmXna0umwm/r3NjkB2VWOM0zK6ZUUDnZW/9wvTEl25K+A5SncIGdeEua4sLOsX2yeEfYV7Kct/80CwxSeZCmk2bFst+GLtmDInBCOclKLzpmjm9AqUa4jLoXPbupHHWimkJNdZ8k8rXh0molV7ziWXXgugFbnpUni0ulTdLmQF6j9lyFHKrPS9MBaUF99Vij+J+aNTc3DrFLWvN31Me+aMCeDKNs81LqbCe2A4+L5MxscJb5iweNUJP9aA7oNna5tj3ggki6PkfxKsuQxRzxlFWObS9lQQ27YuH8NCYv56qKTUCPBOJgQ9y+J2fgEwSu+/n1jAF4sgY+4NPaFTyZQW/MNgwcrWwsvMyq0M92vsH60oNOppeGlQ0rFsRG9KmX56wQTTr9kO4Pa6CaVw+M9pUh1Ck6XmNE9DONDQrNC/z27Kr27vfgwCByyhztSu5NKnQ9BHdot8yB+fRci7Dh3vVdVTyVf8RpS6ToclybZ16+Zt7DH33REzaXqylmqqDA5ssqvT0Yhj4zP/+/Bp8dhNGqpt0zSObcqZnf9r/mmatfL//dTbm0LLV3PS1XckCB6FhtWbGnxa32EbnRBjDMG6mzXYC39dZm0+yXfTsBgeypz9GKn1oxhsWMZ1sE2tE55E+EhPsU34UHh5eKccZZPtXEa3L7AoZTo/I4jb7WDOdew5Z3colwVPJVnqe+mZGPNYf3HD/ckWLK2xyBchx50XQqqQFua5sb9QPpQkAeMLCGfFeL72M1N2joWN+yOJfBE/R63dTmiTu9OvlNudM3kMH504KFgy8M35L+4htswUvEVUfbliHWRzCMjZ0WKGpK1HUfmtSNGTWZz9TpT4gspA/uNuxHxzX6OZFO5NeA0Gbaobzj+IH3k7whRZlOS0haHTICn6KKHaMLyJDYAgx0zE/sNuB3eOpoxvhwqdCqzIxMD2apiPFrRfqIe8Huo4YIwKTyaCEvwZDu3CbtfeVMYqLMFcld5Ryr7T30eRjOrGY7BJQmPrJ9fbhVsI4JXNuntZGdrDc4SRb8cC2qfxXMjJc/9LWrjxGVCX2qm2uym76dvTM4r2Sjoop0s+B55CZriICtkuPlYtDnpEB7HV4IgCxuTMWLGpip0mLotayJwnn+GUkRB1rN3BFeQAfpMmiB/QMZAPeS4uZCQJhWjyAhPPoAk55CXhqiNJZtRhq53qmTe0W0jH3H0+gG8fyDg6iRS+hNBqi+InZL01R0ZaoDxtt0s5hAllaxgZ9s+AiEGtAR7t45VsbBQKPfS
x-ms-exchange-antispam-messagedata-1: +Nm3xWFq+XD7S/zarTMfkr5gIHJvJwNols4=
Content-Type: multipart/alternative; boundary="_000_AM0PR07MB6386453C35D9648ADA0C7FFCE0AD9AM0PR07MB6386eurp_"
MIME-Version: 1.0
X-OriginatorOrg: nokia.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR07MB6386.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 50d376fe-50be-4ead-aeaf-08da4eadc211
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Jun 2022 09:02:21.7971 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: I+hbdqLvdYdIoEraxkilZ4NAmwAtefSGqa/cHlf6PdErS8wVG2N2eHu3+O2mbSjem3vveT3M+MaMeuLxDc6tzk2XYDzOgPOS98ng7BlUGLs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR07MB7267
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/8iZbb0YKUvYY3E9vL6Ob_0CQZQ4>
Subject: Re: [Lsr] Thoughts about PUAs - are we not over-engineering?
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jun 2022 09:02:32 -0000

Hi Robert,

I agree with you that the operator problem space is not limited to multi-area/levels with IGP summarisation.

With the PUA/UPA proposals I get the feeling that LSR WG is jumping into the deep-end and is re-vectoring the IGP to carry opaque information not used for SPF/cSPF.
I believe we should be conservative for such and if LSR WG progresses with such decision.

It could very well be that re-vectoring is the best solution, but I guess we need to agree first on understanding the operator problem space.

G/

From: Robert Raszuk <robert@raszuk.net>
Sent: Tuesday, June 14, 2022 11:51 AM
To: Van De Velde, Gunter (Nokia - BE/Antwerp) <gunter.van_de_velde@nokia.com>
Cc: lsr <lsr@ietf.org>; draft-ppsenak-lsr-igp-ureach-prefix-announce@ietf.org; draft-wang-lsr-prefix-unreachable-annoucement <draft-wang-lsr-prefix-unreachable-annoucement@ietf.org>
Subject: Re: [Lsr] Thoughts about PUAs - are we not over-engineering?

Hello Gunter,

I agree with pretty much all you said except the conclusion - do nothing :).

To me if you need to accelerate connectivity restoration upon an unlikely event like a complete PE failure the right vehicle to signal this is within the service layer itself. Let's keep in mind that links do fail a lot in the networks - routers do not (or they do it is multiple orders of magnitude less frequent event). Especially links on the PE-CE boundaries do fail a lot.

Removal of next hop reachability can be done with BGP and based on BGP native recursion will have the exact same effect as presented ideas. Moreover it will be stateful for the endpoints which again to me is a feature not a bug.

Some suggested to define a new extension in BGP to signal it even without using double recursion - well one of them has been proposed in the past - https://www.ietf.org/archive/id/draft-raszuk-aggr-withdraw-00.txt At that time the feedback received was that native BGP withdraws are fast enough so no need to bother. Well those native withdrawals are working today as well as some claim that specific implementations can withdraw RD:* when PE hosting such RDs fail and RDs are allocated in a unique per VRF fashion.

Then we have the DROID proposal which again may look like overkill for this very problem, but if you consider the bigger picture of what networks control plane pub-sub signalling needs, it establishes the foundation for such.

Many thanks,
Robert


On Tue, Jun 14, 2022 at 10:59 AM Van De Velde, Gunter (Nokia - BE/Antwerp) <gunter.van_de_velde@nokia.com<mailto:gunter.van_de_velde@nokia.com>> wrote:
Hi All,

When reading both proposals about PUA's:
* draft-ppsenak-lsr-igp-ureach-prefix-announce-00
* draft-wang-lsr-prefix-unreachable-annoucement-09

The identified problem space seems a correct observation, and indeed summaries hide remote area network instabilities. It is one of the perceived benefits of using summaries. The place in the network where this hiding takes the most impact upon convergence is at service nodes (PE's for L3/L2/transport) where due to the summarization its difficult to detect that the transport tunnel end-point suddenly becomes unreachable. My concern however is if it really is a problem that is worthy for LSR WG to solve.

To me the "draft draft-wang-lsr-prefix-unreachable-annoucement-09" is not a preferred solution due to the expectation that all nodes in an area must be upgraded to support the IGP capability. From this operational perspective the draft "draft-ppsenak-lsr-igp-ureach-prefix-announce-00" is more elegant, as only the A(S)BR's and particular PEs must be upgraded to support PUA's. I do have concerns about the number of PUA advertisements in hierarchically summarized networks (/24 (site) -> /20 (region) -> /16 (core)). More specific, in the /16 backbone area, how many of these PUAs will be floating around creating LSP LSDB update churns? How to control the potentially exponential number of observed PUAs from floating everywhere? (will this lead to OSPF type NSSA areas where areas will be purged from these PUAs for scaling stability?)

Long story short, should we not take a step back and re-think this identified problem space? Is the proposed solution space not more evil as the problem space? We do summarization because it brings stability and reduce the number of link state updates within an area. And now with PUA we re-introduce additional link state updates (PUAs), we blow up the LSDB with information opaque to SPF best-path calculation. In addition there is suggestion of new state-machinery to track the igp reachability of 'protected' prefixes and there is maybe desire to contain or filter updates cross inter-area boundaries. And finally, how will we represent and track PUA in the RTM?

What is wrong with simply not doing summaries and forget about these PUAs to pinch holes in the summary prefixes? this worked very well during last two decennia. Are we not over-engineering with PUAs?

G/

_______________________________________________
Lsr mailing list
Lsr@ietf.org<mailto:Lsr@ietf.org>
https://www.ietf.org/mailman/listinfo/lsr

v2.23.0 | Report a Bug | By Email