Re: [OPSAWG] L3VPN BGP Threshold and BGP Session parameters (https://github.com/IETF-OPSAWG-WG/l3nm/issues/34 and https://github.com/IETF-OPSAWG-WG/l3nm/issues/35)
"Roque Gagliano (rogaglia)" <rogaglia@cisco.com> Fri, 24 July 2020 09:07 UTC
Return-Path: <rogaglia@cisco.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A0FE13A0C85 for <opsawg@ietfa.amsl.com>; Fri, 24 Jul 2020 02:07:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.619
X-Spam-Level:
X-Spam-Status: No, score=-9.619 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=F4lJ7o9o; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=SwJGwX/k
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ypclaeOPLNQM for <opsawg@ietfa.amsl.com>; Fri, 24 Jul 2020 02:07:17 -0700 (PDT)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D12313A0C84 for <opsawg@ietf.org>; Fri, 24 Jul 2020 02:07:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=108803; q=dns/txt; s=iport; t=1595581636; x=1596791236; h=from:to:subject:date:message-id:mime-version; bh=qAAc/bXfZadh2CJ7baVWQ+3FHxl/f4TYVzBBake/ALY=; b=F4lJ7o9oxg23H2NthURAjniZtyHLkVCumbhMfIY2wH2SCx29clRMmvhZ P/krVJBYQQ/LzVCyr/02ZjiOHice9An3KKgXO0aUcULfwvA+vSfw+/QCi Ik50gLpyQ4POHAZU0SMXQ50v1W98o3Y54i9tBWGTAg7GrT6iixl9MdMKq A=;
IronPort-PHdr: 9a23:yGod0RM/zeHr3yRy/pMl6mtXPHoupqn0MwgJ65Eul7NJdOG58o//OFDEvKwz3l/UVJrW6rRPjO+F+6zjWGlV55GHvThCdZFXTBYKhI0QmBBoG8+KD0D3bZuIJyw3FchPThlpqne8N0UGGNv3eFDT5Ha16G1aFhD2LwEgIOPzF8bbhNi20Obn/ZrVbk1IiTOxbKk0Ig+xqFDat9Idhs1pLaNixw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CoAAD0oxpf/49dJa1gHQEBAQEJARIBBQUBgXcHAQsBgSIvUQdvWC8sCoQpg0YDjVKYX4EugSUDVQsBAQEMAQEjCgIEAQGETAIXggoCJDUIDgIDAQELAQEFAQEBAgEGBG2FXAyFcQEGEhEdAQE4EQEIDgMDAQIhAQIHAgQwHQoEARIigwQBgX5NAy4BAwuiEwKBOYhhdoEygwEBAQWBMwGDcRiCDgMGgTgBgmuDVYIvhAQagUE/gTgcgk0+glwCgSwLFjKCdjOCLY9MgxKGVZwrCoJdiFaREwMen10YhUaMMIoskD6EJgIEAgQFAg4BAQWBVQI2gVdwFTsqAYI+UBcCDY4eERIUGIMiilUBdDcCBgEHAQEDCXyNI4E0AYEQAQE
X-IronPort-AV: E=Sophos;i="5.75,390,1589241600"; d="scan'208,217";a="802279332"
Received: from rcdn-core-7.cisco.com ([173.37.93.143]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 Jul 2020 09:07:10 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by rcdn-core-7.cisco.com (8.15.2/8.15.2) with ESMTPS id 06O94fx2012287 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 24 Jul 2020 09:07:10 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Jul 2020 04:07:08 -0500
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Jul 2020 04:07:08 -0500
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Fri, 24 Jul 2020 05:07:07 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=RWQ4U4SJeOdl6mLlcQfJJKrehX7CER++nVTCh+9gNO5QX6y+wOCYFJDuUS3h5kHXvTXW4WP0zMZplaLSHd5MGqCLZ6wlT89nYIzl8d4tfThJpYikI2INdSgc7Xdn/bPoOT8DIg42bqvEdZbDudXrThxoPqDFJPpE4iT0akYktKBDyKxP1Q/x4xUXTeh3zxY3SdQs3snG0XxM+86Jiql+6DpumE0L57dY3QY0tyDG3gd4fXiur4denDtcdD0eJnALOtXALLdqlBkm1H+9EGF4kgR63DLag1m72jNSa23EFLH5Z49hescm21TI9Ds25lF1AbxN43CIKv8D5cqUVOVZJA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=qAAc/bXfZadh2CJ7baVWQ+3FHxl/f4TYVzBBake/ALY=; b=LYuVOadgzoWbV1Y5X4GBIC6OaDzcKeZCLAe7NdIcanbYGpRme9TD4Wd7VPGhrTXD+eBPMyujVU4K54wdnIphRy1YOCUxv85Iccbl+w9xQGc1EdEpzZ+dpp04L3ZrIJZ0Q9VWHVrPoG0ciKeyrvMkA0RkENgcyHm3oFmbTBgylsNJPVMPFmqXqRDE2sDrX58Ig5a9UQeDRrG1NfRCUYyHoljGmXjQIQojDpTlVqEDyGOXOn34Vks0Nw2MRmRQ8qqD8gAW0V86tkV3CoheLRbH3LDmY9cUcwui0H2PDsyHchIFhhG2cKUIis7uocxOigrw7iGq5wYD+lcvDJUws3uRng==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=qAAc/bXfZadh2CJ7baVWQ+3FHxl/f4TYVzBBake/ALY=; b=SwJGwX/kgBIIXY5qyGDsYJZWXJn5Gg2XZfxXRXihVoh32FOVE5vSP8M2wuXDZJiRK3oTVV32NlWAkvDdX3r7uAwiLIsnEqk85f0IkEpvmGKmq5MjKsJC1Fq5EolRDgordo4MVIUwwrIpTUbK8OvEsoS4BXE0CPSYTVZnc9bJ3h4=
Received: from CY4PR11MB1703.namprd11.prod.outlook.com (2603:10b6:903:28::23) by CY4PR11MB1429.namprd11.prod.outlook.com (2603:10b6:910:9::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3216.23; Fri, 24 Jul 2020 09:07:05 +0000
Received: from CY4PR11MB1703.namprd11.prod.outlook.com ([fe80::3cd9:61dd:eb50:df8e]) by CY4PR11MB1703.namprd11.prod.outlook.com ([fe80::3cd9:61dd:eb50:df8e%3]) with mapi id 15.20.3216.024; Fri, 24 Jul 2020 09:07:05 +0000
From: "Roque Gagliano (rogaglia)" <rogaglia@cisco.com>
To: Qin Wu <bill.wu@huawei.com>, opsawg <opsawg@ietf.org>
Thread-Topic: [OPSAWG] L3VPN BGP Threshold and BGP Session parameters (https://github.com/IETF-OPSAWG-WG/l3nm/issues/34 and https://github.com/IETF-OPSAWG-WG/l3nm/issues/35)
Thread-Index: AQHWYZnNYgGKeTX+fkm+G9MCH0VSzQ==
Date: Fri, 24 Jul 2020 09:07:05 +0000
Message-ID: <5004F771-693C-44A3-9F6E-CE25092F5E56@cisco.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.39.20071300
authentication-results: huawei.com; dkim=none (message not signed) header.d=none;huawei.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [31.10.167.155]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: fbcaf9f7-e4bb-4c23-e26e-08d82fb0efb5
x-ms-traffictypediagnostic: CY4PR11MB1429:
x-microsoft-antispam-prvs: <CY4PR11MB142915E921626B79BFA426CCD8770@CY4PR11MB1429.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: bY1R5C65++PuX3Gm4oTfoh+wf+A2rxEBqttdzfBFHhdUDbVBN7NcIVLFPvf4h4bbiRGFSF6XxHa8UOF64KvqdVlm3/v1qHWs9+gx5W9hNqo2tC3dYGDBUcaK1rUxf3jnVRORfR+gWwCG470fM3r5xZux2T024Ns+ph9PHuBiHPLFrMPHiRMvh0rq0TV2sP0ZqSZ37d1zm7XGn7fBtN/Wr7rW2Ign5YRHnK+l8qV/nXi6S41tQlAmHzPg3bnbqWD0JMbzmrSD8J6oyDbNNApGY7GbDjyHCCqpXgiLJVCLzbRfLnHp/9jj8fdyzJ+zCgA+2Obiwx5lovJi2vc4IvWoBhbHkZFtZ/KuYDsyLXVsKBHHZc1F7JOd6rFeSYCI+/uLWJRLV40pQ96uJhtp5h3URUDa0eySsv8etuq7ua8cWsprE2pJ544wg5Gmkb9g/nPf91UkqIn/ZGAggMdO/X8jUA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CY4PR11MB1703.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(39860400002)(396003)(366004)(346002)(376002)(136003)(76116006)(5660300002)(33656002)(36756003)(8936002)(2906002)(91956017)(8676002)(316002)(86362001)(6512007)(66946007)(83380400001)(6506007)(26005)(2616005)(66574015)(53546011)(478600001)(966005)(66476007)(66446008)(64756008)(66556008)(186003)(110136005)(71200400001)(6486002)(32563001)(579004)(559001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_5004F771693C44A39F6ECE25092F5E56ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CY4PR11MB1703.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: fbcaf9f7-e4bb-4c23-e26e-08d82fb0efb5
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jul 2020 09:07:05.4559 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 3+raQaFc4iZsAJ3HP9+YIk84tExr7hiIcsN5hLfKIwuszQe6pKNY1UZvaosX2/c6RTdX79jDC1usVVGbfH4UOA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR11MB1429
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.14, xch-aln-004.cisco.com
X-Outbound-Node: rcdn-core-7.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/cmlvpL9J61WAFvAz6N3GUlfBoKM>
Subject: Re: [OPSAWG] L3VPN BGP Threshold and BGP Session parameters (https://github.com/IETF-OPSAWG-WG/l3nm/issues/34 and https://github.com/IETF-OPSAWG-WG/l3nm/issues/35)
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jul 2020 09:07:20 -0000
Hi Qin, “Regarding bgp-max-prefix, I personal feel it is different from maximum-routes which is applicable to all protocols while bgp max prefix is bgp specific, threshold and action parameters only tie with bgp maximum prefix parameter.” I agree with your comment. Additionally, maybe a more interesting question is if we want to set these parameters per neighbor, per PE-node or per VPN/VRF. I would think that we should have then generic per VRF/PE as part of the profiles but having the option to overwrite per neighbor. One example is a headquarter vs a branch…you may not want to set the same prefix-limits to them. Regards, Roque From: OPSAWG <opsawg-bounces@ietf.org> on behalf of Qin Wu <bill.wu@huawei.com> Date: Friday, 24 July 2020 at 10:18 To: opsawg <opsawg@ietf.org> Subject: [OPSAWG] L3VPN BGP Threshold and BGP Session parameters (https://github.com/IETF-OPSAWG-WG/l3nm/issues/34 and https://github.com/IETF-OPSAWG-WG/l3nm/issues/35) Hi, All: We have been discussion additional BGP parameters such as L3VPN BGP threshold and BGP session parameters, which is corresponding to issue ticket #34 and #35 on L3NM model, And would like to have the following proposed change to L3NM model to resolve pending issue tickets: OLD TEXT: “ container bgp { when "derived-from-or-self(../type, 'l3vpn-ntw:bgp')" { description "Only applies when protocol is BGP."; } if-feature "rtg-bgp"; leaf peer-autonomous-system { type inet:as-number; mandatory true; description "Customer AS number in case the customer requests BGP routing."; } leaf local-autonomous-system { type inet:as-number; description "Local-AS overwrite."; } leaf-list address-family { type vpn-common:address-family; min-elements 1; description "If BGP is used on this site, this node contains a configured value. This node contains at least one address family to be activated."; } leaf-list neighbor { type inet:ip-address; description "IP address(es) of the BGP neighbor. An IPv4 and IPv6 neighbors may be indicated if two sessions will be used for IPv4 and IPv6."; } leaf multihop { type uint8; description "Describes the number of hops allowed between a given BGP neighbor and the PE router."; } uses security-params; uses vpn-common:service-status; leaf description { type string; description "Includes a description of the BGP session. Such description is meant to be used for diagnosis purposes. The semantic of the description is local to an implementation."; } ” NEW TEXT: “ container bgp { when "derived-from-or-self(../type, 'l3vpn-ntw:bgp')" { description "Only applies when protocol is BGP."; } if-feature "rtg-bgp"; leaf peer-autonomous-system { type inet:as-number; mandatory true; description "Customer AS number in case the customer requests BGP routing."; } leaf local-autonomous-system { type inet:as-number; description "Local-AS overwrite."; } leaf-list address-family { type vpn-common:address-family; min-elements 1; description "If BGP is used on this site, this node contains a configured value. This node contains at least one address family to be activated."; } leaf-list neighbor { type inet:ip-address; description "IP address(es) of the BGP neighbor. An IPv4 and IPv6 neighbors may be indicated if two sessions will be used for IPv4 and IPv6."; } leaf multihop { type uint8; description "Describes the number of hops allowed between a given BGP neighbor and the PE router."; } uses security-params; uses vpn-common:service-status; leaf description { type string; description "Includes a description of the BGP session. Such description is meant to be used for diagnosis purposes. The semantic of the description is local to an implementation."; } leaf as-override { type boolean; default false; description "Define whether AS override is enabled, i.e., replace the AS number of the peer specified in the AS Path attribute with the local AS number."; } leaf default-route { type boolean; default false; description "Define whether default route can be advertised to its peer."; } container bgp-timer { description "BGP timer specific configuration."; leaf keep-alive { type uint16; units "seconds"; default 60; description "keep alive timer configured for specific peer."; } leaf hold-time { type uint16; units "seconds"; default 180; description "Expected BGP hold time in seconds configured for specific peer."; } } container bgp-max-prefix { description "BGP maximum prefix configuration"; leaf max-prefix { type uint32; default 5000; description "Define maximum BGP prefix."; } leaf warning-threshold{ type decimal64 { fraction-digits 5; range "0..100"; } units percent; default 75; description "Define warning threshold value in percentage."; } leaf violate-action { type enumeration { enum warning { description "Only give warning message when limit is exceeded"; } enum discard-extra-paths { description "Discard extra paths when limit is exceeded"; } enum restart { description "Restart time interval"; } } description "BGP neighbour max-prefix violate action"; } leaf restart-interval { type uint16; units "minutes"; description "Time interval (min) after which peering session will be re-established"; } } “ Regarding bgp-max-prefix, I personal feel it is different from maximum-routes which is applicable to all protocols while bgp max prefix is bgp specific, threshold and action parameters only tie with bgp maximum prefix parameter. -Qin
- [OPSAWG] L3VPN BGP Threshold and BGP Session para… Qin Wu
- Re: [OPSAWG] L3VPN BGP Threshold and BGP Session … Roque Gagliano (rogaglia)
- Re: [OPSAWG] L3VPN BGP Threshold and BGP Session … Qin Wu