IETF Logo Mail Archive

Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03

"Kamran Raza (skraza)" <skraza@cisco.com> Tue, 24 July 2012 16:31 UTC

Return-Path: <skraza@cisco.com>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BA65321F8649 for <mpls@ietfa.amsl.com>; Tue, 24 Jul 2012 09:31:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.023
X-Spam-Level:
X-Spam-Status: No, score=-10.023 tagged_above=-999 required=5 tests=[AWL=0.575, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mTXMlS+207OC for <mpls@ietfa.amsl.com>; Tue, 24 Jul 2012 09:31:09 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) by ietfa.amsl.com (Postfix) with ESMTP id BC19221F8642 for <mpls@ietf.org>; Tue, 24 Jul 2012 09:31:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=skraza@cisco.com; l=42247; q=dns/txt; s=iport; t=1343147468; x=1344357068; h=from:to:cc:subject:date:message-id:in-reply-to: mime-version; bh=4y5bIpny66h+UO2EgipAMsF5fNqN4Ptc/kaYEFW4XKA=; b=mQGChXpWh02IPyo4JFOJzblDKWmb4FQugc+TG8NmKP+KA1E4EzmjeANQ GLS1xSNSuTpVeeujmEvYb12wt6Wp1qpinbubZifR0QhLcJpkC8tj/+7w7 fcKkdmvoPeWiC0sBbJ5FSJUmPJdrCclFm75akex3tb3Qu7lNxvbrg4wsV M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgEFABrNDlCtJXHA/2dsb2JhbABFgkq3L4EHgiABAQEDAQEBAQ8BGkELBQ0BCBEDAQEBIQEGLgsUCQgCBAENBRsHh2UGC5sPoD0Ei0uGdAOVSY4ngWaCX4Ff
X-IronPort-AV: E=Sophos; i="4.77,647,1336348800"; d="scan'208,217"; a="104836484"
Received: from rcdn-core2-5.cisco.com ([173.37.113.192]) by rcdn-iport-6.cisco.com with ESMTP; 24 Jul 2012 16:31:08 +0000
Received: from xhc-aln-x05.cisco.com (xhc-aln-x05.cisco.com [173.36.12.79]) by rcdn-core2-5.cisco.com (8.14.5/8.14.5) with ESMTP id q6OGV7tH031450 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 24 Jul 2012 16:31:07 GMT
Received: from xmb-aln-x03.cisco.com ([169.254.6.20]) by xhc-aln-x05.cisco.com ([173.36.12.79]) with mapi id 14.02.0298.004; Tue, 24 Jul 2012 11:31:07 -0500
From: "Kamran Raza (skraza)" <skraza@cisco.com>
To: "Dutta, Pranjal K (Pranjal)" <pranjal.dutta@alcatel-lucent.com>, Lizhong Jin <lizhong.jin@zte.com.cn>, "mpls@ietf.org" <mpls@ietf.org>, Thomas Nadeau <tnadeau@juniper.net>, "Giles Heron (giheron)" <giheron@cisco.com>
Thread-Topic: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03
Thread-Index: AQHNaLNdt7FHjgTC/k2FqT75bXOLOZc4p+kA///yLrCAABivgA==
Date: Tue, 24 Jul 2012 16:31:05 +0000
Message-ID: <CC344258.101DE%skraza@cisco.com>
In-Reply-To: <C584046466ED224CA92C1BC3313B963E09F2162ABC@INBANSXCHMBSA3.in.alcatel-lucent.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.10.0.110310
x-originating-ip: [10.86.247.159]
x-tm-as-product-ver: SMEX-10.2.0.1135-7.000.1014-19060.006
x-tm-as-result: No--32.118800-8.000000-31
x-tm-as-user-approved-sender: No
x-tm-as-user-blocked-sender: No
Content-Type: multipart/alternative; boundary="_000_CC344258101DEskrazaciscocom_"
MIME-Version: 1.0
Cc: Ross Callon <rcallon@juniper.net>
Subject: Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mpls>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jul 2012 16:31:10 -0000

Hi Pranjal,

>> Such liveliness can be tracked by running BFD over RSVP
But BFDoRSVP will be able to detect TE tunnel issues only, but not necessarily LDP's t-hello issues over TE tunnel.
What if T-adj becomes invalid due to LDP config/events [ e.g. Remote node no more accepting t-hellos ] ?


>> Did we mention in the draft that hello reduction is MUST for LdpoRsvp deployments?
No, and I also did not claim that you did :-)
I  am just commenting that such procedure may cause issues  with T-LDP over fwding interfaces.

Rgds.


From: "Dutta, Pranjal K (Pranjal)" <pranjal.dutta@alcatel-lucent.com<mailto:pranjal.dutta@alcatel-lucent.com>>
Date: Tue, 24 Jul 2012 21:40:31 +0530
To: "Syed Kamran Raza (skraza)" <skraza@cisco.com<mailto:skraza@cisco.com>>, Lizhong Jin <lizhong.jin@zte.com.cn<mailto:lizhong.jin@zte.com.cn>>, "mpls@ietf.org<mailto:mpls@ietf.org>" <mpls@ietf.org<mailto:mpls@ietf.org>>, Thomas Nadeau <tnadeau@juniper.net<mailto:tnadeau@juniper.net>>, "Giles Heron (giheron)" <giheron@cisco.com<mailto:giheron@cisco.com>>
Cc: Ross Callon <rcallon@juniper.net<mailto:rcallon@juniper.net>>
Subject: RE: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03

Pls. refer my answers inline.

________________________________
From: Kamran Raza (skraza) [mailto:skraza@cisco.com]
Sent: Tuesday, July 24, 2012 8:52 AM
To: Lizhong Jin; Dutta, Pranjal K (Pranjal); mpls@ietf.org<mailto:mpls@ietf.org>; Thomas Nadeau; Giles Heron (giheron)
Cc: Ross Callon
Subject: Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03

Dear authors,

I've couple of comments:

1) I also have a concern along the same lines as stated by Lizhong:

>> Target Hello tracks the liveness of hello adjacency, while LDP keepalive tracks the liveness of session. Do you mean it is not necessary to track the liveness of hello adjacency, >> or substitute it with liveness tracking of session?

The reduction of T-LDP hellos may cause issues for targeted-adjacencies related to forwarding interfaces [ e.g. LDP over TE tunnel ]. LDP requires an adjacency to be **live** on an interface before MPLS [labeled] forwarding can be setup on the given forwarding interface. If we are using LDP-enabled TE tunnel as forwarding interface, then typically we install unlabeled (LDP) forwarding over TE tunnel interface if LDP's t-adj over TE tunnel goes down. With T-LDP reduction, we lose the ability to track the liveness of the t-adj and will be incorrectly using [labeled] LDP LSP over TE tunnel in the forwarding even when there are issues with this t-adj.

[Pranjal] Such liveliness can be tracked by running BFD over RSVP. I mentioned that the hello reduction procedures can be deployed case by case and
Is not mandatory. Did we mention in the draft that hello reduction is MUST for LdpoRsvp deployments? There are several cases in access,. Aggregation
Networks where LdpoRsvp is not deployed.

2) Re: "DoS attacks" as motivation for the tldp-reduc:
Your document states that:

"Unlike TCP sessions it is not always possible to

   provide per peer protection for UDP based hellos."

Given new procedures/draft on LDP hello auth (i.e. draft-zheng-mpls-ldp-hello-crypto-auth),
the above does not seem valid anymore, and hence is not a strong argument to support tldp-reduc, IMO.

[Pranjal] Not sure what is the point you are raising here. What about DoS attacks in networks from untrusted peers? How would you provide resilience
to existing trusted peer adjacencies (that is using ldp-crypto-auth) from spoofed attacks (without special techniques)? The draft does not claim  as a
solution against DoS attacks but probabilistically better resilience.

Rgds,

-- Kamran

From: Lizhong Jin <lizhong.jin@zte.com.cn<mailto:lizhong.jin@zte.com.cn>>
Date: Mon, 23 Jul 2012 17:12:36 +0800
To: "Dutta, Pranjal K (Pranjal)" <pranjal.dutta@alcatel-lucent.com<mailto:pranjal.dutta@alcatel-lucent.com>>, <mpls@ietf.org<mailto:mpls@ietf.org>>, Thomas Nadeau <tnadeau@juniper.net<mailto:tnadeau@juniper.net>>, Giles Heron <giheron@cisco.com<mailto:giheron@cisco.com>>
Cc: Ross Callon <rcallon@juniper.net<mailto:rcallon@juniper.net>>
Subject: Re: [mpls] MPLS-RT review of draft-pdutta-mpls-tldp-hello-reduce-03


Hi all,
I've reviewed this draft, and have two comments that need to be clarifed:
1. Target Hello tracks the liveness of hello adjacency, while LDP keepalive tracks the liveness of session. Do you mean it is not necessary to track the liveness of hello adjacency, or substitute it with liveness tracking of session? Hello address maybe different with trasport address.
2. Target hellos are not only used for liveness track, but also parameter negotiation and updating. When negotiated to infinite, what time interval would be used to send the updated hello (e.g, hello with new Optional Parameters in potential draft-pdutta-mpls-ldp-adj-capability) message? UDP hello is not reliable, would be renegotiated to configured hello hold time first?

Summary of review:
a. whether the document is coherent?
Good description on the motivation, need more detail in technical description (e.g, refer to my second comment).

b. is it useful?
Yes.

d. is technically sound ?
Need some clarification.

e. is ready to be considered for WG adoption ?
After clarification, it should be ready for WG adoption.

Regards
Lizhong


Ross Callon <rcallon@juniper.net<mailto:rcallon@juniper.net>> wrote 2012/07/18 05:49:55:

> Markus, Lizhong, Thomas;
>
> You have been selected as an MPLS Review team reviewers for
> draft-pdutta-mpls-tldp-hello-reduce-03
>
> Note to authors: You have been CC’d on this email so that you can know that
> this review is going on. However, please do not review your own document.
>
> Reviews should comment on whether the document is coherent, is it useful
> (ie, is it likely to be actually useful in operational networks), and is
> the document technically sound?  We are interested in knowing whether the
> document is ready to be considered for WG adoption (ie, it doesn’t have to
> be perfect at this point, but should be a good start).
>
> Reviews should be sent to the document authors, WG co-chairs and secretary,
> and CC’d to the MPLS WG email list. If necessary, comments may be sent
> privately to only the WG chairs.
>
> Are you able to review thisdraft by August 3, 2012 (ie, the end of the IETF
> meeting in Vancouver)? We understand that this is somewhat short notice and
> that you might have something else to do the week of the IETF, so let us
> know if you need slightly more time.
>
> Thanks, Ross
> (as MPLS WG chair)
>
> PS: I noticed that Tom Nadeau’s email address listed in the draft is
> out of date. This email is being CC’d to his updated address.
>   _______________________________________________ mpls mailing list mpls@ietf.org<mailto:mpls@ietf.org> https://www.ietf.org/mailman/listinfo/mpls

v2.23.0 | Report a Bug | By Email