[mpls] Roman Danyliw's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

Roman Danyliw via Datatracker <noreply@ietf.org> Tue, 03 September 2024 16:04 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: mpls@ietf.org
Delivered-To: mpls@ietfa.amsl.com
Received: from [10.244.2.118] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id 22462C1840FF; Tue, 3 Sep 2024 09:04:15 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 12.23.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172537945478.1453798.9504671532523699278@dt-datatracker-68b7b78cf9-q8rsp>
Date: Tue, 03 Sep 2024 09:04:14 -0700
Message-ID-Hash: TWDHURBXBZ5MM5E2UUQUARRM4KHKXVXT
X-Message-ID-Hash: TWDHURBXBZ5MM5E2UUQUARRM4KHKXVXT
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-mpls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-mpls-inband-pm-encapsulation@ietf.org, mpls-chairs@ietf.org, mpls@ietf.org, tsaad@cisco.com
X-Mailman-Version: 3.3.9rc4
Reply-To: Roman Danyliw <rdd@cert.org>
Subject: [mpls] Roman Danyliw's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/mpls/JM8x4VME-S5QotgVv_Dk9n-FNO0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Owner: <mailto:mpls-owner@ietf.org>
List-Post: <mailto:mpls@ietf.org>
List-Subscribe: <mailto:mpls-join@ietf.org>
List-Unsubscribe: <mailto:mpls-leave@ietf.org>

Roman Danyliw has entered the following ballot position for
draft-ietf-mpls-inband-pm-encapsulation-15: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ 
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-mpls-inband-pm-encapsulation/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

** Section 8.

There appears be conflicting guidance on how to handle packets on the
administrative domain boundary.

   (a) The Flow-ID
   label MUST NOT be signaled and distributed outside the administrative
   domain.

   (b) To prevent packets carrying Flow-ID labels from leaking from one
   domain to another, domain boundary nodes SHOULD deploy policies
   (e.g., ACL) to filter out these packets.

   (c) Specifically, at the
   sending edge, the domain boundary node SHOULD filter out the packets
   that carry the Flow-ID Label Indicator and are sent to other domains.

   (d) At the receiving edge, the domain boundary node SHOULD drop the
   packets that carry the Flow-ID Label Indicator and are from other
   domains.

Why is the SHOULD in (b), (c) and (d) not a MUST?

If (a) mandates that there is no signaling of the Flow-ID outside of the
administrative domain, (b) and (c) should be mandatory to enforce that policy.

If (d) uses a weaker “SHOULD”, what would the receiving edge do with the packet
if not drop it?


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

** For the responsible AD and WG chairs: I observe that this document doesn’t
fit neatly into the work items described in the “The current WG focus areas and
work items” section of https://datatracker.ietf.org/doc/charter-ietf-mpls/07/

** Section 6.
   How the ingress node knows the FLC and FRLD of all
   the on-path nodes is outside the scope of this document.  However,
   [I-D.xzc-lsr-mpls-flc-frld] provides a method to achieve this.

Why make a reference to an expired, individual submission if the methodology is
out of scope?