Re: [mpls] Working Group Last Call on draft-ietf-mpls-summary-frr-rsvpte

Tarek Saad <> Wed, 22 May 2019 21:56 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 8EDBC12008C; Wed, 22 May 2019 14:56:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -0.72
X-Spam-Status: No, score=-0.72 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id L9OP6dtKCm-s; Wed, 22 May 2019 14:56:50 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 068FE1200FB; Wed, 22 May 2019 14:56:49 -0700 (PDT)
Received: from pps.filterd ( []) by ( with SMTP id x4MLmqiG012510; Wed, 22 May 2019 14:56:45 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=lfxrvgx18IX+hs8n3TdPIxj3/Mx7ZNFHO4RZ49L7Zm4=; b=OGZp5gQfRn5QhYANyvZF0wmXgwlEGvPXuA3AtgwqqPsbQHr1/eGczOx1WdU59H+HZ3b9 tTtZGvEHDHh2MBAt8sr5hRdfE5PO1CNaxwgrUgAGGMI6wBs9NneFiCuGym//sYPEp+nJ 5rc6PgWcJDCtwaH4+7KSLItArVzcPB8ksrke7+sPAmXZHUrkmb/XCXVNC8n7uIw9+ICk XePVNkIX4XDUSIH9mwyIr2wkJYmu6GfcTL5xcUyP7Ao6yFVT//iF2R1RPPpYju+N9OqX 4QelLG0F57B3kMxEcA2biTxItmbbnyeX6Q5/A4cbFU1rEXnBN4b4Af4+g0nlQqArc+D8 Aw==
Received: from ( []) by with ESMTP id 2snbs888xb-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 22 May 2019 14:56:44 -0700
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1922.13; Wed, 22 May 2019 21:56:41 +0000
Received: from ([fe80::acfa:260b:d6ee:3a19]) by ([fe80::acfa:260b:d6ee:3a19%7]) with mapi id 15.20.1922.016; Wed, 22 May 2019 21:56:41 +0000
From: Tarek Saad <>
To: Alexander Okonnikov <>
CC: "Mike Taillon (mtaillon)" <>, Markus Jork <>, "" <>, "" <>, "" <>
Thread-Topic: [mpls] Working Group Last Call on draft-ietf-mpls-summary-frr-rsvpte
Date: Wed, 22 May 2019 21:56:40 +0000
Message-ID: <>
References: <LEJPR01MB0377540FAEC1EE9448740E78983A0@LEJPR01MB0377.DEUPRD01.PROD.OUTLOOK.DE> <> <> <> <> <> <> <> <> <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/
x-originating-ip: []
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 37fc5120-3366-4b63-3403-08d6df005f4d
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(4618075)(2017052603328)(7193020); SRVR:MN2PR05MB6383;
x-ms-traffictypediagnostic: MN2PR05MB6383:
x-ms-exchange-purlcount: 5
x-microsoft-antispam-prvs: <>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0045236D47
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39860400002)(136003)(346002)(376002)(396003)(366004)(51444003)(189003)(199004)(5070765005)(102836004)(6436002)(68736007)(478600001)(14454004)(76176011)(58126008)(99286004)(54906003)(966005)(53546011)(6506007)(606006)(53946003)(14444005)(256004)(236005)(73956011)(66066001)(53936002)(54896002)(66446008)(6486002)(229853002)(66946007)(6246003)(64756008)(66476007)(66556008)(25786009)(4326008)(86362001)(6306002)(6512007)(76116006)(91956017)(486006)(33656002)(446003)(30864003)(81156014)(81166006)(82746002)(8676002)(11346002)(186003)(71200400001)(36756003)(26005)(71190400001)(83716004)(2906002)(316002)(9326002)(5660300002)(6116002)(3846002)(8936002)(476003)(2616005)(6916009)(7736002); DIR:OUT; SFP:1102; SCL:1; SRVR:MN2PR05MB6383;; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None ( does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: OAsd/UscuO8AWmwUyA79unSlHfXjgfqs6JY1wZAwNGKkr95+TFAfHI9CSaIPQpzfgIMMpm2iUeliraWXBkIUfZ44DoSRp5/GYfBICGdv5mJpNJiwl10Oooyy49VaO1jUt0jAnKITOPGI85ceOaj+OINu5uCpcmYOUjKReN+iU3RN+P0YDcnKNxncmS+bz2ar8R0O0xWWJTpxE0T6wx0Hb+gJQcmdtYHO3zUTntgklojc3+6DYopvhqlSEy4fS86P7N1i0KLYJOlWJqgaP8oeID/ysrCT8TplvymzJwp/H0GboH1PTZLc4yD7T7bcCCyExvyCn7f1tQkvmfvbsabCGqHEA2qfhlRxM6Vcr3vGfUUV6EqnOJOD63qw2oCFHro1Y/n0Ojfh7RULsqbHafjikNi8FIKBB/o3k6c9E4i6K2c=
Content-Type: multipart/alternative; boundary="_000_835661AA13D34F33B0F0C97B47AEF310junipernet_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 37fc5120-3366-4b63-3403-08d6df005f4d
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 May 2019 21:56:40.9644 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR05MB6383
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-05-22_13:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1905220151
Archived-At: <>
Subject: Re: [mpls] Working Group Last Call on draft-ietf-mpls-summary-frr-rsvpte
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multi-Protocol Label Switching WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 22 May 2019 21:56:54 -0000

Hi Alexander,

Thanks much for your inputs and comments. We have uploaded a new revision of the draft at: which addresses the points you raise below.
The diffs are

Please have a look, and let us know if you have further comments.

The updates include

  *   Added explicit tunnel sender address in the B-SFRR-Active ASSOCIATION ID and its respective handling by the MP
  *   Added IPv4 and IPv6 versions of the B-SFRR-Active ASSOCIATION ID
  *   Some minor edits


From: Alexander Okonnikov <>
Date: Thursday, May 16, 2019 at 7:43 AM
To: Tarek Saad <>
Cc: "Mike Taillon (mtaillon)" <>, Markus Jork <>, "" <>, "" <>, "" <>
Subject: Re: [mpls] Working Group Last Call on draft-ietf-mpls-summary-frr-rsvpte

Hi Tarek,

Thank you for answer. Yes, I'm fine with proposed update.

I have some comments regarding choosing address for RSVP_HOP and SENDER_TEMPLATE on PLR and MP.

1) The draft doesn't say that PLR should choose the same Sender address for SENDER_TEMPLATE of backup LSPs as chosen one for corresponding bypass tunnel. Hence it could be that two will be different. It will cause to use different sender address for SENDER_TEMPLATE by PLR and MP.

2) The draft doesn't say that address in RSVP_HOP for backup LSPs and address in SENDER_TEMPLATE for corresponding bypass tunnel should be different. Hence, it could be that addresses in RSVP_HOP of SFRR-Active and in SENDER_TEMPLATE of bypass tunnel are the same. In case when PLR is head-end, it could pose problem for MP in part of choosing sender address for SENDER_TEMPLATE of backup LSP. It could be presumed that address for RSVP_HOP in SFRR-Active is taken from egress transit interface for originated bypass tunnel, and address for SENDER_TEMPLATE of bypass tunnel is loopback address of PLR, and thus they will be different. But in case of unnumbered interface on PLR, that is used as egress by bypass tunnel, election of address for RSVP_HOP is not so straightforward. It could be well possible that for RSVP_HOP of backup LSPs the same loopback address of PLR will be chosen as for SENDER_TEMPLATE of bypass tunnel. Also, RFC 4090 doesn't prescribe how PLR chooses address for RSVP_HOP.

3) The draft says that all protected LSPs, that share the same egress link and are protected by the same bypass tunnel, are assigned to the same bypass group. It is not a problem, if mentioned above inconsitencies will be addressed. Otherwise, there could be problem, because, based on current text, all backup LSPs of the same group should share SENDER_TEMPLATE (i.e. Sender Address in SENDER_TEMPLATE). Though on MP there will be two groups of backup LSPs in the same bypass group: that take address for SENDER_TEMPLATE from SENDER_TEMPLATE of bypass tunnel (transit protected LSP), and that take address for SENDER_TEMPLATE from RSVP_HOP of SFRR-Active (for protected LSPs originated on PLR). For the latter SENDER_TEMPLATE on PLR and MP will be different.

4) The draft says that RSVP_HOP and SENDER_TEMPLATE for backup LSPs of the same bypass group should be the same. I guess that it should say that Sender Address in SENDER_TEMPLATE should be common, rather than SENDER_TEMPLATE itself. SENDER_TEMPLATE will be different for each backup LSP due to different LSP_IDs.

Hence, I would like to see details of choosing addresses for RSVP_HOP and SENDER_TEMPLATE of backup LSPs to be cleaned. Also, I think that it would be better to signal Sender Address for backup LSPs in SFRR-Active explicitly, rather than derive it by MP indirectly from SENDER_TEMPLATE of bypass tunnel.

Thank you.

14 мая 2019 г., в 18:16, Tarek Saad <<>> написал(а):

Hi Alexander,

Thanks for your suggestions and comments. We discussed this further amongst authors. We think the PLR has to do a proactive check of the MTU on the bypass tunnel for proper FRR to work correctly at all times.
We will introduce an addition in section 3.3.1 of the I-D to describe this:

“When using procedures defined in this document, the PLR MUST ensure bypass tunnel assignment can satisfy the protected LSP MTU requirements post FRR. This is to avoid any packets from getting dropped due to exceeding the MTU size of the bypass tunnel after FRR.”

Let us know if this addresses your concerns.


From: Alexander Okonnikov <<>>
Date: Tuesday, May 14, 2019 at 8:21 AM
To: "Mike Taillon (mtaillon)" <<>>
Cc: Markus Jork <<>>, "<>" <<>>, "<>" <<>>, "<>" <<>>
Subject: Re: [mpls] Working Group Last Call on draft-ietf-mpls-summary-frr-rsvpte
Resent-From: <<>>
Resent-To: <<>>, Tarek Saad <<>>, Rakesh Gandhi <<>>, <<>>, <<>>, <<>>
Resent-Date: Tuesday, May 14, 2019 at 8:21 AM

Hi Mike,

If we don't talk about gap in procedure of Path messages merging by MP, then I don't see other gaps in RFC 4090. But I see that gap with MTU adjusting appears with introduction of Summary FRR.

Current behavior is follow:

1) PLR sends backup LSP Path to MP with actual MTU in ADSPEC;
2) MP sends backup LSP Resv to PLR with actual MTU in FLOWSPEC (derived from ADSPEC);
3) PLR merges FLOWSPECs of protected and backup Resv messages (according to RFC 2210) and sends Resv upstream with actual MTU in FLOWSPEC.

New behavior with Summary FRR:

1) PLR sends SFRR-Active Path to MP;
2) MP does summary refresh for backup LSPs;
3) PLR sends Resv with unchanged MTU of protected LSP upstream, as before failure. This is because FLOWSPEC for backup LSP has not been updated, and resulting FLOWSPEC thus has not been updated.

I cannot agree that head-end not need to be aware about path MTU changes. If head-end is irrespective to actual path MTU, it could cause blackholing of packets that are larger than actual path MTU. Also, I'm not aware about implementations of PLR that take into account MTU in SENDER_TSPEC of protected LSPs and choose bypass tunnels accordingly. My knowledge that many of them agnostic to this.

Thank you.

13 мая 2019 г., в 20:38, Mike Taillon (mtaillon) <<>> написал(а):

Hi Alexander

By gap, I mean its not mentioned/covered at all.

To give alternate perspective, I disagree with trying to merge state of primary and backup LSP.
And would think it unncessary for either the MP or the headend to be aware, or make any MTU changes post FRR.

I do agree with your last statement where PLR should ensure the MTU of backup can accomdate the primary LSP MTU (plus any encap added to transport over the backup LSP).
And surely most implementations are already doing this, or FRR wouldn’t be that successful...

Do you not agree this issue/gap is out of scope of (ie. not specific to ) this document ?


On May 13, 2019, at 11:31 AM, Alexander Okonnikov <<>> wrote:

Hi Mike,

Do you mean the gap in merging of Path messages by MP in part of choosing ADSPEC of protected LSP rather than merging ADSPECs (choosing minimal MTU, particularly)? Oh, agree. Though if we would assume that MP did perform merging of ADSPEC (and probably other objects where applicable), there would be problem with signaling backup LSP MTU to MP after failure.

I agree that guaranting enough MTU size on all links in the network is good practice, but in reality it not always could be provided, or could be provided with significant penalty on manageability.

Per my understanding, reliable solution would be for head-end:

1) to specify minimum LSP MTU as a constraint (like resource affinities, BW, etc.) for CSPF and take link MTUs from TEDB into consideration, and

2) to signal to downstream LSRs minimum LSP MTU (by virtue of SENDER_TSPEC, like BW), such that PLRs would be able to make decision about availability of bypass tunnels, which can accomodate requested MTU.

Thank you!

9 мая 2019 г., в 15:28, Mike Taillon (mtaillon) <<>> написал(а):

Hi Alexander,

I beleive MTU handling post FRR is not covered in base RFC4090 and is therefore an existing gap.
It kinda defeats the purpose if headend needs to adjust MTU after FRR to prevent drops… and would presume most deployments assume that backup MTU can accomandate MTU of primary LSP (plus any added MP labels).

Issue deserves discussion, but think its out of scope from this document.


On May 7, 2019, at 4:54 PM, Alexander Okonnikov <<>> wrote:

Hi authors,

As far as Summary FRR LSPs are not being signaled via Path messages over bypass tunnel after failure, information on head-ends about actual path MTU of protected LSPs can be corrupted. For example, path MTU of protected LSP is 1500 bytes (provided that ADSPEC is used), and path MTU of bypass tunnel is, for example, 1500 bytes. As far as Path messages for protected LSPs are not being sent over bypass tunnel, MP will use ADSPEC received in Path messages of those protected LSPs previoulsy (before they have been rerouted onto bypass tunnel), i.e. 1500 bytes in place of 1496 bytes. To avoid this problem PLR would have to signal path MTU of its bypass tunnel in B-SFRR-Active object (alternatively, MP could inherit this value from ADSPEC of PSB of the bypass tunnel), and 2) MP would have to choose minimal of MTU values from ADSPEC objects while merging Summary FRR protected LSP. But, even in this case MP will have to generate trigger Path messages (with updated ADSPEC) for protected LSPs and then, after receiving Resv messages with updated FLOWSPEC, send them to PLR. I.e. summary refresh in MP->PLR direction with high probability will be inapplicable, due to trigger messages.


7 мая 2019 г., в 23:46, Markus Jork <<>> написал(а):

As a co-author,  I believe this document is ready for publication.

On Apr 30, 2019, at 4:33 AM,<> wrote:

Working Group,

This mail initiates the two weeks working group last call on draft-ietf-mpls-summary-frr-rsvpte which is considered mature and ready for a final working group review.

Please read this document if you haven't read the most recent version yet, and send your comments to the mpls wg mailing list (<>), not later than 17th of May.

There is one IPR disclosure against draft-ietf-mpls-summary-frr-rsvpte

This working group last call ends May 17th, 2019 (there is at least in some countries a public holiday this week, therefore the call is a bit longer than usual).

Best regards


mpls mailing list<><>