Re: [pim] pim-dr-improvement wglc

Greg Mirsky <gregimirsky@gmail.com> Tue, 29 January 2019 01:04 UTC

Return-Path: <gregimirsky@gmail.com>
X-Original-To: pim@ietfa.amsl.com
Delivered-To: pim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA6E2126DBF for <pim@ietfa.amsl.com>; Mon, 28 Jan 2019 17:04:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SNqYP7LMSuy3 for <pim@ietfa.amsl.com>; Mon, 28 Jan 2019 17:03:59 -0800 (PST)
Received: from mail-lj1-x233.google.com (mail-lj1-x233.google.com [IPv6:2a00:1450:4864:20::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2DEAD126CB6 for <pim@ietf.org>; Mon, 28 Jan 2019 17:03:59 -0800 (PST)
Received: by mail-lj1-x233.google.com with SMTP id c19-v6so15979069lja.5 for <pim@ietf.org>; Mon, 28 Jan 2019 17:03:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=P6cktCa1nzNMIIkPNvipd9VxCkgf39sq45A8f3lf5W4=; b=TfmnxQqogvp1btZlgQd7MoX7eiJCZgLoGhvmGSybwO8t1kGmSA72G8fAqMOVtAWIqQ Bvf7BjBZTh2sO3UN1vh5hjI2JEHbMqCYGO1Qdlr4g/3Uj9jwdg57kpPx7ekugLlD7xNS zg/OsXqCOF2PgLs0X+2EwUBLnSsyQgLyOp28vjZUoukLiI3Ip88XuphlX3KGUMrgDQp8 /Xy1PXVjfxZ7AbW6a1KZUgOiPMg1NsQ5e1hm23J2qOME/J0bSFCadQU62fCe8t3I4Ly1 ffTYpFgnj8kQ3AOVbeo1mVReUnMl9XDZ3j5wrg9CMBw4k8t/1FOZGMhA9IUMkPIu+59d fsCw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=P6cktCa1nzNMIIkPNvipd9VxCkgf39sq45A8f3lf5W4=; b=E243lUNh3LXR2AGFO3T2Zy9floOD1GXb+W7Q1ftrJwOFv2gwPAZCsT5XinYvj5zPcs TWQYy46dTGx24aMOwu1q8DgOaRRMITZhtxKD6hBG6XVWHY+bVp/hAiuzRfbmIAnvITbz hMrJYOi2DuyStGqUD/21ZBmz43ZIdqQlkS1m7tdd1CtviehfKTXAELy4cR5eKUtUdvQb roeb/bB3ggf1ukTTZDZznSIowrOE4czdxg1h9GB2keYeQeMkp59HnzJuY5/vcTIlzrlG so2oR8iruqwcNWUYM1ktaM+XNVe5x56/8h64bzzjwIOyALJ5/2dcnQfLiezgrpNkPPY6 TZrw==
X-Gm-Message-State: AJcUukebiEcPB6a8ypGBq8EtAtVn2U+tGYIsFCQHhHyK6ZaWP8oC0lwk wa5VvAIVLtMNoUf6Pip1bTk6s48DR060NSVymJXNNI/1
X-Google-Smtp-Source: ALg8bN7ESMkTFVJpQSr2kUG38w0gDfzAKAMXnWpdNrQZ3mFpB6qQx8ZJJbNxnsK4OQk+PDPSA4YH3XP6CftFZLV2JTk=
X-Received: by 2002:a2e:9f0b:: with SMTP id u11-v6mr17310253ljk.99.1548723837150; Mon, 28 Jan 2019 17:03:57 -0800 (PST)
MIME-Version: 1.0
References: <201901171709200751624@zte.com.cn> <8CCB28152EA2E14A96BBEDC15823481A1CE66B26@sjceml521-mbs.china.huawei.com>
In-Reply-To: <8CCB28152EA2E14A96BBEDC15823481A1CE66B26@sjceml521-mbs.china.huawei.com>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Tue, 29 Jan 2019 09:03:47 +0800
Message-ID: <CA+RyBmWz8nkKut_XJ8LyaAtefEZijoiD3eReYZPSKMNdN9rf_Q@mail.gmail.com>
To: Michael McBride <Michael.McBride@huawei.com>
Cc: "zhang.zheng@zte.com.cn" <zhang.zheng@zte.com.cn>, "jholland@akamai.com" <jholland@akamai.com>, "stig@venaas.com" <stig@venaas.com>, "pim@ietf.org" <pim@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000002b300505808e5e77"
Archived-At: <https://mailarchive.ietf.org/arch/msg/pim/4-oTQZK63WtgUMG70zaaMmYqeL8>
Subject: Re: [pim] pim-dr-improvement wglc
X-BeenThere: pim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Protocol Independent Multicast <pim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pim>, <mailto:pim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pim/>
List-Post: <mailto:pim@ietf.org>
List-Help: <mailto:pim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jan 2019 01:04:04 -0000

Hi Mike,
I believe that my comments got addressed by the new version. I confirm my
support to adopt this draft by PIM WG.

Regards,
Greg

On Sat, Jan 26, 2019 at 7:27 AM Michael McBride <Michael.McBride@huawei.com>
wrote:

> Does this latest version address all of the comments from Greg and Jake?
> If so we will forward it on.
>
>
>
> Thanks
>
> mike
>
>
>
> *From:* pim [mailto:pim-bounces@ietf.org] *On Behalf Of *
> zhang.zheng@zte.com.cn
> *Sent:* Thursday, January 17, 2019 1:09 AM
> *To:* gregimirsky@gmail.com; jholland@akamai.com; stig@venaas.com
> *Cc:* pim@ietf.org
> *Subject:* Re: [pim] pim-dr-improvement wglc
>
>
>
> Hi Greg, Jake, Stig,
>
>
>
> Thank you very much for your careful review and suggestion!
>
> A new version of this draft has been submitted.
>
> The nits you mentioned are fixed. And I add more description in
> Compatibility section and Security Considerations section.
>
> Appreciate for your more view!
>
>
>
> PS. It seems like the previous email has been held for some reasons, so I
> resend this email. Sorry for the duplicate emails.
>
>
>
> Best regards,
>
> Sandy
>
>
>
> 原始邮件
>
> *发件人:*StigVenaas <stig@venaas.com>
>
> *收件人:*Holland, Jake <jholland@akamai.com>om>;
>
> *抄送人:*pim@ietf.org <pim@ietf.org>rg>;
>
> *日 **期 * *:*2019年01月16日 01:11
>
> *主 **题 **:Re: [pim] pim-dr-improvement wglc*
>
> Hi
>
> I overall agree with the other reviewers' comments. One high level
> concern I think needs to be addressed in the draft is how to detect
> that other neighbors support the mechanism, and how to behave if not
> all routers support it.
>
> One way of detecting support for the mechanism would be to check if
> neighbors announce the new options. In that case, what should be the
> content of the options if not all neighbors support it. Also, is it OK
> to use the mechanism if the neighbors not supporting it have a low DR
> priority, or is it better to require that all neighbors support it?
> What should be the behavior once all neighbors support it (a
> non-capable neighbor went away), or if a non-capable neighbor comes
> up?
>
> Section 4.2 should talk about primary address, not Router ID.
>
> Regards,
> Stig
>
> On Mon, Jan 14, 2019 at 2:08 PM Holland, Jake <jholland@akamai.com> wrote:
> >
> > Hi,
> >
> >
> >
> > I think the extension is a good idea and that this doc gives a good
> >
> > explanation of how it works. However, I think there’s some issues that
> >
> > should be addressed before publication as a Standards Track RFC.
> >
> >
> >
> >
> >
> > Major issues:
> >
> > 1. The security considerations section seems too thin. (The complete
> >
> > contents of the section are “For general PIM Security Considerations.”)
> >
> >
> >
> > 1.a. I think there are some security implications because of
> >
> > the new stickiness in the DR election process. For instance, in
> >
> > https://tools.ietf.org/html/rfc5015#section-5.1.1 when describing what
> >
> > happens when a DR has been impersonated, it implies there’s a
> >
> > mitigation (“[The impersonated] node typically will be able to detect
> >
> > the anomaly and, possibly, restart a new election.”)
> >
> >
> >
> > But because the DR is more sticky with this new extension, I think the
> >
> > kind of temporary disruption would have a more permanent effect that
> >
> > the impersonated node could not mitigate. I might be wrong about that
> >
> > being actually more dangerous, but it worries me that there’s no
> >
> > mention of issues like these in the security considerations section.
> >
> >
> >
> > I think for this point, it might be enough to just say that the
> >
> > election process may be more vulnerable to temporary disruption because
> >
> > the DR election is more persistent, and that this increases the
> >
> > importance of using source authentication to avoid DoS from malicious
> >
> > activity.
> >
> >
> >
> > 1.b. I think this probably should mention that BFD security
> >
> > considerations are applicable also, or the considerations for whatever
> >
> > DR failure detection mechanism is used.
> >
> >
> >
> > 2. There should probably be a reference to BFD, and perhaps other
> >
> > fast failure detection mechanisms, if they’re recommended.
> >
> >
> >
> > More generally, it seems to me that the speed of DR failure detection
> >
> > is of critical importance in using this mechanism, so the one brief
> >
> > mention (which doesn't explain the pros and cons of faster detection or
> >
> > make any recommendations about technologies to use) seems like it
> >
> > skims past a key point without explaining it in depth.
> >
> >
> >
> >
> >
> > Minor/editorial issues:
> >
> >
> >
> > 1. In section 3.2, it probably should talk about the IP version in the
> >
> > PIM message, instead of IP version supported by the network. The way
> >
> > it’s written, it seems to make it impossible to run a dual-stacked
> >
> > network with 2 instances of PIM, but I don’t think that’s the intent.
> >
> >
> >
> > 2. Should the reference to 2328 be informative instead of normative? It
> >
> > seems like it’s only used as an example.
> >
> >
> >
> > 3. The IANA considerations section should follow the guidelines from
> >
> > RFC 8126 section 1.3 (exact name of the registry, for instance). It
> >
> > also seems useful to make 2 separate values, TBD1 and TBD2 instead of
> >
> > using TBD for both.
> >
> >
> >
> > 4. “SW” is not defined in the diagram in Figure 1. I think the 2 SW
> >
> > boxes are Layer 2 switches on the same LAN, but I’m not certain.
> >
> >
> >
> > 5. In section 4, I think "MUST not" in the last paragraph should have
> >
> > NOT capitalized?
> >
> >
> >
> > 6. I don't understand the meaning of "The treatment" as the title
> >
> > for section 4.5.
> >
> >
> >
> > 7. There are a lot of English language nits. I saw that Greg covered
> >
> > several of them, so I’ll just mention the ones I saw in sections he
> >
> > didn’t cover:
> >
> >
> >
> > section 1:
> >
> > “can be adjust to” -> “can be adjusted to”
> >
> > “Still, may multicast packets” – should this be “many” instead of “may”?
> >
> > “new comers” is one word (this appears several times in the doc)
> >
>
> > I’m not certain, but I think each time the word “Ethernet” is used, “LAN” was intended?
> >
> > “new comers which has a higher”: has->have
> >
> >
> >
> > ... (skipping sections Greg Mirsky covered) ...
> >
> >
> >
> > section 4.5:
> >
> > “are start to work on the same time”
> >
> > “when a new router start to work” -> starts to work
> >
> > “fails or manually adjustment” -> fails or is manually adjusted
> >
> >
> >
> > I had to stop early before finishing a catalogue of all the rest of the
> >
> > issues I could find, but because of the very high density of nits, I’ll
> >
> > suggest it might be a good idea to try using an English-language
> >
> > proofreading service that works with technical documents.
> >
> >
> >
> > This is not an endorsement, and I’ve never used their services, but as
> >
> > an example of the kind of service I mean, here’s one I found in a few
> >
> > moments with a search engine:
> >
> > https://www.proof-reading-service.com/
> >
> >
> >
> >
> >
> > Thanks for this work, it seems like a useful extension.
> >
> >
> >
> > Best,
> >
> > Jake
> >
> >
> >
> >
> >
> > From: Michael McBride <Michael.McBride@huawei.com>
> > Date: 2019-01-08 at 10:29
> > To: "pim@ietf.org" <pim@ietf.org>
> > Subject: [pim] pim-dr-improvement wglc
> >
> >
> >
> > Happy New Year!
> >
> >
> >
>
> > Today begins a two week wglc for draft-ietf-pim-dr-improvement-06. In Bangkok, 4 people indicated that they had read the draft and each agreed it’s ready for wglc. Let’s please read the draft one more time and confirm, on this list, that it’s ready to be sent to iesg.
> >
> >
> >
> > https://tools.ietf.org/html/draft-ietf-pim-dr-improvement-06
> >
> >
> >
> > thanks,
> >
> > mike
> >
> > _______________________________________________
> > pim mailing list
> > pim@ietf.org
> > https://www.ietf.org/mailman/listinfo/pim
>
> _______________________________________________
> pim mailing list
> pim@ietf.org
> https://www.ietf.org/mailman/listinfo/pim
>
>
>