Re: [mpls] Comments to draft-ietf-teas-rsvp-egress-protection
Gregory Mirsky <gregory.mirsky@ericsson.com> Wed, 02 December 2015 02:12 UTC
Return-Path: <gregory.mirsky@ericsson.com>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51EC01B3117; Tue, 1 Dec 2015 18:12:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -104.2
X-Spam-Level:
X-Spam-Status: No, score=-104.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SohmIGagXwVF; Tue, 1 Dec 2015 18:12:18 -0800 (PST)
Received: from usplmg20.ericsson.net (usplmg20.ericsson.net [198.24.6.45]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 526371B3116; Tue, 1 Dec 2015 18:12:17 -0800 (PST)
X-AuditID: c618062d-f79d16d000001b1c-aa-565e536bfd74
Received: from EUSAAHC002.ericsson.se (Unknown_Domain [147.117.188.78]) by usplmg20.ericsson.net (Symantec Mail Security) with SMTP id 3A.6F.06940.B635E565; Wed, 2 Dec 2015 03:11:55 +0100 (CET)
Received: from EUSAAMB103.ericsson.se ([147.117.188.120]) by EUSAAHC002.ericsson.se ([147.117.188.78]) with mapi id 14.03.0248.002; Tue, 1 Dec 2015 21:12:16 -0500
From: Gregory Mirsky <gregory.mirsky@ericsson.com>
To: Huaimo Chen <huaimo.chen@huawei.com>, "draft-ietf-teas-rsvp-egress-protection@tools.ietf.org" <draft-ietf-teas-rsvp-egress-protection@tools.ietf.org>, "teas-chairs@ietf.org" <teas-chairs@ietf.org>, "teas@ietf.org" <teas@ietf.org>
Thread-Topic: [mpls] Comments to draft-ietf-teas-rsvp-egress-protection
Thread-Index: AQHQdmHVRgLHg1W7rkaJKE/Q3gfump64OmSQ
Date: Wed, 02 Dec 2015 02:12:15 +0000
Message-ID: <7347100B5761DC41A166AC17F22DF1122194CF4D@eusaamb103.ericsson.se>
References: <7347100B5761DC41A166AC17F22DF1121B948D85@eusaamb103.ericsson.se> <5316A0AB3C851246A7CA5758973207D44E37F079@SJCEML701-CHM.china.huawei.com>
In-Reply-To: <5316A0AB3C851246A7CA5758973207D44E37F079@SJCEML701-CHM.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.117.188.9]
Content-Type: multipart/alternative; boundary="_000_7347100B5761DC41A166AC17F22DF1122194CF4Deusaamb103erics_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrIIsWRmVeSWpSXmKPExsUyuXSPn252cFyYweFNZhZT3/5kttj69Aqj xa2lK1ktPv/ZxmjRNHcXk0Xrjx0sDmweLUfesnosWfKTyePL5c9sAcxRXDYpqTmZZalF+nYJ XBnty1awFzw4zljx78wmlgbG32sYuxg5OSQETCS+HeligrDFJC7cW8/WxcjFISRwhFFi8cxu dghnGaPEje3rwarYBIwkXmzsAUuICHxklGh/tJIFJMEs4CVx6fk0ZhBbWMBNouXtH7C4iIC7 xP3m88wQtpFE+9PzYHEWARWJ8xPOsYLYvAK+Es82roZaPZNRYs/RqWDbOAXCJJa9h7AZge77 fmoNE8QycYlbT+ZD3S0gsWQPxAIJAVGJl4//sULYihL7+qezQ9TnS3zdfosZYpmgxMmZT1gm MIrOQjJqFpKyWUjKIOI6Egt2f2KDsLUlli18zQxjnznwmAlZfAEj+ypGjtLigpzcdCODTYzA iDwmwaa7g/H+dM9DjAIcjEo8vAVqcWFCrIllxZW5hxglOJiVRHi9ZIBCvCmJlVWpRfnxRaU5 qcWHGKU5WJTEeRkZGBiEBNITS1KzU1MLUotgskwcnFINjHoXoqqq0oW1ZT5zn/1k8MxayKNj rpi/TM7zj7ff7fugyCiRKHpfejrfNpPrEpNTO4vNI2p0Xb9qLT1wPPbDxL1v0rYEnY7dnHTX WGjVO65vXOq2ke0CfvXfTb+95nB9HO2kKb7+ocqCCy+lLfdeOflqInvPDZ7f6ts1RZiXxnDs iI/Mf7pyvhJLcUaioRZzUXEiAO/J4B7EAgAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/mpls/FT5NHb1wXOYF1Dq5yHyNkc7aFiQ>
Cc: "mpls@ietf.org" <mpls@ietf.org>, "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>
Subject: Re: [mpls] Comments to draft-ietf-teas-rsvp-egress-protection
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls/>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Dec 2015 02:12:23 -0000
Hi Huaimo, et. al,
apologies for such very late response. I've read the -02 version and below you'll find my notes to changes I've found. My responses to our discussion are in-line and tagged GIM>>.
Notes to -02 version:
* section 5.1 states
A backup egress SHOULD be configured on the ingress of an LSP to
protect a primary egress of the LSP.
Are there scenario when this SHOULD NOT be done, when the backup egress(es) are not configured?
And if this is such strong requirement, then the same is applicable to the next sentence that currently reads as "...optional egress backup descriptor list for protecting egresses of the LSP". I think that the descriptor list SHOULD be included in the Path message by the ingress.
* section 5.2 states:
If the transit node is the upstream node of a primary egress to be
protected, it determines the backup egress, obtains a path for the
backup LSP and sets up the backup LSP along the path.
Which, in my view, contradicts with the statement in section 5.1 that backup egress(es) SHOULD be configured at LSP ingress.
Regards,
Greg
From: Huaimo Chen [mailto:huaimo.chen@huawei.com]
Sent: Monday, April 13, 2015 8:19 PM
To: Gregory Mirsky; draft-ietf-teas-rsvp-egress-protection@tools.ietf.org; teas-chairs@ietf.org; teas@ietf.org
Cc: mpls@ietf.org; rtg-bfd@ietf.org
Subject: RE: [mpls] Comments to draft-ietf-teas-rsvp-egress-protection
Hi Greg,
Thanks for your comments.
My answers/explanations are inline below.
Best Regards,
Huaimo
From: mpls [mailto:mpls-bounces@ietf.org] On Behalf Of Gregory Mirsky
Sent: Monday, April 13, 2015 2:58 PM
To: draft-ietf-teas-rsvp-egress-protection@tools.ietf.org<mailto:draft-ietf-teas-rsvp-egress-protection@tools.ietf.org>; teas-chairs@ietf.org<mailto:teas-chairs@ietf.org>; teas@ietf.org<mailto:teas@ietf.org>
Cc: mpls@ietf.org<mailto:mpls@ietf.org>; rtg-bfd@ietf.org<mailto:rtg-bfd@ietf.org>
Subject: [mpls] Comments to draft-ietf-teas-rsvp-egress-protection
Dear Editors,
please kindly consider my comments to the current version of this work:
* Introduction
o The third paragraph mentions that an end-to-end protection may be slower to detect failure and perform switchover then an arbitrary local protection method. I believe that that is not the case and, as been demonstrated by deployments of G.8031, G.8032 and RFC 6378 end-to-end provides sub-50 msec switchover and G.8013/Y.1731 and RFC 5884 failure detection is 10 msec.
[Huaimo] It seems that the statement in the paragraph is true. For a global protection (or an end-to-end protection), it may take more time since the time includes the propagation time and processing time. The propagation time may depend on the size of the network. In general, the bigger the network, the longer the propagation delay. The processing time may comprise the related processing time on every node along the path from the egress node to a node interesting the failure and doing switchover.
GIM>> I think that distance, whether in number of intermediate hops or miles, does not affect guaranteed defect detection time when continuity check protocol being used. In that case detection time depends only on definition of Loss of Continuity defect for the given protocol. For example, in CFM it is period of time between 3.25 and 3.5 CCM intervals when no CCM received from remote MEP. BFD is little different and DetectMultiplier can be negotiated between end points of the given BFD session. But regardless of these differences, using CFM or BFD enables detection of LoC defect within 10 ms regardless of the distance between end-points.
o The last in Section 1.1 suggests that node R3 may detect failure of the node L1 through monitoring BFD session between two nodes. Firstly, if this is multi-hop BFD session over IP network, then there's no guarantee that its path is co-routed with the LSP segment R1-L3. Secondly, if it is assumed that RFC 5884 may be used, I have to remind, that RFC 5884 operates between LSP end points and R1 is not end point. Thus, Sub-Path Maintenance Entity (SPME) co-routed with the segment R1-L3 MUST be established.
[Huaimo] It seems that R3 is the upstream node of L1 and there is no multi-hop BFD session between R3 and L1.
This current version of the document focuses on extending the protection of RFC 4090 from a transit node to an egress node. It seems that it is better to have another document for others if needed.
GIM>> I couldn't find in the document statement that the PLR R3 MUST be upstream to the egress. If this is the requirement, then it must be explicitly stated as, in my view, it is restrictive and limits number of networks where proposed method can be used.
* Section 5.2
o The third paragraph assumes that if a PLR cannot establish LSP to any listed LSR in the EGRESS_BACKUP object it SHOULD select it locally and record it in the EGRESS_BACKUP object. I believe that that implies that a PLR, i.e. any LSR in the MPLS domain is aware of all services, i.e. CEs, as that is required when selecting backup egress. That is serious security concern and must be properly addressed in Security Considerations section of the draft.
[Huaimo] This paragraph says that the upstream node of the primary egress knows/determines that there is not any backup egress given for the primary egress. In this case, the upstream node selects a backup egress according to a local policy. The upstream node may not need to be aware of any services or CEs.
GIM>> As commented above to section 5.2, this contradicts statement made in section 5.1 that backup egress(es) SHOULD be configured at LSP ingress.
Regards,
Greg
- [mpls] Comments to draft-ietf-teas-rsvp-egress-pr… Gregory Mirsky
- Re: [mpls] Comments to draft-ietf-teas-rsvp-egres… Huaimo Chen
- Re: [mpls] Comments to draft-ietf-teas-rsvp-egres… Gregory Mirsky
- Re: [mpls] Comments to draft-ietf-teas-rsvp-egres… Huaimo Chen