Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC
Stig Venaas <stig@venaas.com> Fri, 17 August 2018 17:06 UTC
Return-Path: <stig@venaas.com>
X-Original-To: pim@ietfa.amsl.com
Delivered-To: pim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4E05130DD5 for <pim@ietfa.amsl.com>; Fri, 17 Aug 2018 10:06:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=venaas-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AL_9Uh27wKAY for <pim@ietfa.amsl.com>; Fri, 17 Aug 2018 10:06:29 -0700 (PDT)
Received: from mail-ed1-x541.google.com (mail-ed1-x541.google.com [IPv6:2a00:1450:4864:20::541]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88973130ED3 for <pim@ietf.org>; Fri, 17 Aug 2018 10:06:29 -0700 (PDT)
Received: by mail-ed1-x541.google.com with SMTP id j21-v6so4890098edp.10 for <pim@ietf.org>; Fri, 17 Aug 2018 10:06:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=venaas-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=TXIhRatG3cbf+WAodM2vmDFOGONdboVdl6yEY6CVIVE=; b=COfW5QsW+0sgjej52qIrLPsQXUJO30MoU3TAaSYTOIOy95jwx+5j7s10NAOeIrvVhS RKWhtFibPNlkvKjgvdwe2yJ6PkCJR6LfkIEamb+tCwU6zAKj/RlmFBUZs+c3QIBke/es nHt3Sq/kxrhzJcvaKueiZnvJXhRapiyhf7a2/DCfRrmcZbkPKsJeNE9iCXQSLT4FvM/+ QDjcNebJf9u4zBuR6mKTKKUlgwRBOPSqqKAldXBBbsKjUy5O1jno6OxFUjnQRltTFqen OhIZ8ckhUnYKf8nFwTQxsWz2DcvWnjqG1kJx91b+1N528wpsNbIXZ5uD/ZuLG4AlrF9o zjbw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=TXIhRatG3cbf+WAodM2vmDFOGONdboVdl6yEY6CVIVE=; b=d7tVdHJ8U9tAixGgELS1K5/CWAHR0DjBJZIgmQlvHII2FVtu2Hls/oYlIhMn33wANQ vE1il0LRS7y8Lx0s6sDM5+4FBV0CZexErK6/IfT46gQc0tl4Aw3OONH/IVKq4lAIuTyk 8VL36oFlHPQ2403sxekHFd1Mml2DFKtQRLMHi/FRWI1nW436v+KX5tEQhW6hRqES67z9 Q9w+noLIlPrpTUWRu0+uPR5ywviQbTeeD8NPQkNbT6pm/vr1GXcF5r0OnOyJRFn+R3hd B03WmetHIDFlpKai5QKwWRGFZmNpWnJ85ZjPZfLe1UfswDYYIN95/wevRbSBYjBFjtZm hRjA==
X-Gm-Message-State: AOUpUlH4Z4kCZgWwwlDyAufk9nHFIfjLmvqtpAVCfuoQA/KkPlDm2Bpe Ndy+bb1mIjZauSHgV2X8KiCAw82cfTJaE5nAPy1N2w==
X-Google-Smtp-Source: AA+uWPwJlVxf8VlC0pUeCvzEfT1zP6o0CfjVzIRb0HzhBheh4pYiGElYutBUzvwyoO82k/xY6KyDtlHLJRCgNmpdN6M=
X-Received: by 2002:a50:9069:: with SMTP id z38-v6mr44138084edz.79.1534525587999; Fri, 17 Aug 2018 10:06:27 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:aa7:c50b:0:0:0:0:0 with HTTP; Fri, 17 Aug 2018 10:06:27 -0700 (PDT)
In-Reply-To: <20180816032517.s73nbs57yplw3c6t@faui48f.informatik.uni-erlangen.de>
References: <8CCB28152EA2E14A96BBEDC15823481A1CCA37C6@sjceml521-mbx.china.huawei.com> <20180816032517.s73nbs57yplw3c6t@faui48f.informatik.uni-erlangen.de>
From: Stig Venaas <stig@venaas.com>
Date: Fri, 17 Aug 2018 10:06:27 -0700
Message-ID: <CAHANBtK3qh3eLCKd5WdvVJSoVHupPaCUPos773=vbfne5WV=Jg@mail.gmail.com>
To: Toerless Eckert <tte@cs.fau.de>
Cc: Michael McBride <Michael.McBride@huawei.com>, "pim@ietf.org" <pim@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/pim/rSy6dhRg2EYYNLdBz51ZkRLSe88>
Subject: Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC
X-BeenThere: pim@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Protocol Independent Multicast <pim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pim>, <mailto:pim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pim/>
List-Post: <mailto:pim@ietf.org>
List-Help: <mailto:pim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pim>, <mailto:pim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Aug 2018 17:06:31 -0000
Hi Toerless Appreciate getting good feedback. The WG is way too quiet. Please see inline. On Wed, Aug 15, 2018 at 8:25 PM, Toerless Eckert <tte@cs.fau.de> wrote: > > Had not read the document for Montreal, sorry. > Did not find discsussions on ML. Yes, it's been too quiet. > It would be good if one of the co-authors would do a > spell/grammer fixup on the document before passing it to IETF/IESG > review. Forces those reviewers to focus more on paylod feedback ;-)) > (btw: i am bad on my own documents on this as well). I'll get this done for sure. > Is the example topology in figure 1 an eBGP peering ? If so, please > say so in text, otherwise maybe explain a bit more. Will do. > What would be a reason to use a setup as in the example topology, > for unicast only, e.g.: in the absence of multicast ? I can think > of two reasons only: one is that you want to avoid IPv4 address > space use, aka: make your IPv4 forwarders unnumbered on the interface > for simplifiction. The other one is that three is some form of > benefit of just having a single address familiy BGP connection. Yes, it is to minimize control plane and maybe management overhead. For whichever reason people have decided to deploy RFC 5549 for unicast, they wish to use the reachability information for multicast. They prefer not to change their unicast deployment to support multicast. > I am asking, because as soon as you bring in IP multicast, the solution > proposes that you now must have an IPv4 address to support PIM on the > interface. And if one goal of the setup was to be unnumbered on IPv4, > then that goal would be violated. And once you do have IPv4 addressing, > its unclear to me what the benefit is to only haven an IPv6 peering > with mixed address families vs. simple separate IPv4 vs. IPv6 peerings > that match the forwrding plane. > > Or the other way around: If you want to get rid of IPv4 signaling, why > then do we not better define how to send PIM joins for IPv4 > groups/channels via PIM IPv6 ? If i remember it correctly, all > the address elements in PIM messages do explicitly indicate the AF > as well. Sure, and this is maybe something we should do. I think networks that use 5549 would be quite happy if this was possible. This draft is just a minor improvement to at least allow them to simplify unicast. > Another concern is that it may be somewhat risky to introduce this option > such a long time after the option was specified but not used. As in: > this might be a great attack vector to crash a neighboring, badly > implemented PIM neighbor acting extremely surprised seeing such an > unexpected AF. For "friedly" evolution of signaling, it might be > better to use a new code point instead. Note that this option is widely implemented for IPv6, so it is being used. I doubt IPv4 implementations support it though, unless there is an AF independent implementation that includes this in their AFI code. If they ignore the option, then they won't be affected by this. If they did implement it for IPv4 but don't check the AF (not that 7761 does not require the AF to match the AF of the pim packet), then in the worst case they end up with a list of wrong/invalid IPv4 addresses. I think this is unlikely though, and it should not cause a crash. That one hello option has unexpected content, should not cause a crash. If it does, then that is a severe security issue and a broken implementation. Finally, the use of this option is in line with 7761. It is just an informational document saying that it can be useful to use a different AF for the address list option from the AF of the pim packet. Since this is already shipping, it would be good to have it documented. And hopefully if other vendors have customers asking for a solution for RFC 5549 deployment, they will then consider solving it in the same way. Thanks, Stig > Cheers > Toerless > > On Tue, Aug 14, 2018 at 01:23:36AM +0000, Michael McBride wrote: >> Hello folks, >> >> Today begins a two week wglc for informational draft: https://tools.ietf.org/html/draft-ietf-pim-ipv4-prefix-over-ipv6-nh-02. Please give it a read (it's 4 pages) and provide feedback on it's readiness to be sent to the IESG for publication. In Montreal we had 3 in favor, none against. What say you? >> >> Thanks, >> mike > >> _______________________________________________ >> pim mailing list >> pim@ietf.org >> https://www.ietf.org/mailman/listinfo/pim > > > -- > --- > tte@cs.fau.de > > _______________________________________________ > pim mailing list > pim@ietf.org > https://www.ietf.org/mailman/listinfo/pim
- [pim] pim-ipv4-prefix-over-ipv6-nh WGLC Michael McBride
- Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC Toerless Eckert
- Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC Stig Venaas
- Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC Toerless Eckert
- Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC Leonard Giuliano
- Re: [pim] pim-ipv4-prefix-over-ipv6-nh WGLC zhang.zheng