Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan-09: (with DISCUSS and COMMENT)

"Carlos Pignataro (cpignata)" <cpignata@cisco.com> Tue, 17 December 2019 17:17 UTC

Return-Path: <cpignata@cisco.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C74C120BD8; Tue, 17 Dec 2019 09:17:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.499
X-Spam-Level:
X-Spam-Status: No, score=-14.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=YslOFipW; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=TzqVoYCv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 31UizYQoeUNU; Tue, 17 Dec 2019 09:17:16 -0800 (PST)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6183120B93; Tue, 17 Dec 2019 09:17:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12759; q=dns/txt; s=iport; t=1576603036; x=1577812636; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=YslOFipW7dg7R1Al5PnqXsnoGTO4z7C/+DYTyrCqb54wUxfBHLVgSQ+U 6xg+SXFUoBBySYOrRBxfxQ431j5QSj/oHhrIdEmS9T3Qhfs/AXl7VwlsK vPD1M3A9ud56iaAkO8O31jLN765lkc4Gx9dspny0Mix7mOuMmr5k4WYti U=;
IronPort-PHdr: =?us-ascii?q?9a23=3AgOLFAhPvvgiLdaDg4Icl6mtXPHoupqn0MwgJ65?= =?us-ascii?q?Eul7NJdOG58o//OFDEu6w/l0fHCIPc7f8My/HbtaztQyQh2d6AqzhDFf4ETB?= =?us-ascii?q?oZkYMTlg0kDtSCDBjwNP/laSUmFexJVURu+DewNk0GUMs=3D?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0DZAQCiDPld/51dJa1lGwEBAQEBAQE?= =?us-ascii?q?FAQEBEQEBAwMBAQGBfoFLUAVsWCAECxYUhASDRgOLD5YEhGGBQoEQA1QJAQE?= =?us-ascii?q?BDAEBJQgCAQGEQAIXggEkOBMCAw0BAQQBAQECAQUEbYU3DIVfAgEDEhEdAQE?= =?us-ascii?q?3AQ8CAQYCPwMCAgIwFAYLAgQOBSKDAAGBeU0DLgEOA5IdkGQCgTiIYXWBMoJ?= =?us-ascii?q?+AQEFgTUBE0GDDRiCFwMGgTaJT4JJGoFBP4ERJyCCTD6CZAIBAgGBLAEMBgE?= =?us-ascii?q?eLoJjMoIsjUWCcIVWiV+PHwqCNIcvij+EIhuCQ4d2hEGLT4NGk1eOVoMnAgQ?= =?us-ascii?q?CBAUCDgEBBYFpImdYEQhwFWUBgkE+EhEUjRI4gzuFFIU/dAGBJ44YDheCGwE?= =?us-ascii?q?B?=
X-IronPort-AV: E=Sophos;i="5.69,326,1571702400"; d="scan'208,217";a="394622892"
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 17 Dec 2019 17:17:15 +0000
Received: from XCH-ALN-001.cisco.com (xch-aln-001.cisco.com [173.36.7.11]) by rcdn-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id xBHHHEX8005011 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 17 Dec 2019 17:17:15 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-ALN-001.cisco.com (173.36.7.11) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 17 Dec 2019 11:17:14 -0600
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 17 Dec 2019 12:17:13 -0500
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 17 Dec 2019 12:17:13 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IIkAyv2ZQESDyFdUz/yZW6FCHQwjY0yzgWS+2baLtlkPBIEFMg1MCh9YwSbhfyU1MOe6F2FMUSP422uOOsjnyQrsE6BmLe7xooBujDbj9/KtKcEHsMV9WhDmFDuNJGuVKRPLkcNqt3kkNPrxE4MS91Ohr30Z3uwvHEb03SNWNdfCHErGKKzuz22Id70gvKnw73nRvsvngiRPu74DYwZw+yo5PksGZjL8KRhzSB4NVVUw9IfSDgAuyn5SR3dv+/5kHs0bOoJiYn+5nSyl/kg4GWfSmDbQ9xRD/EJTBw+vWTOZExhyvc/qJOPl9SAyOfXyU5Iiy2TOk7N5S3xIpo2n4A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=Ka+rbPYJFjJzqPfiWg34EeAfq7UHVGVkoBt0eJkp7KEmIqx24zcNbywr48w0IDbfwiIdJSKCByPtJGeR/rw1XHH3kSb+cDUaOmnLtNDPkx2wiqZDC7a9mWLSutpF/huFRKBPVqZoO+UzBQFunhH1Ia3ZiSI+hhmTsAMIauSueOPM9Z4zdyK7wPVYw3buCYSNn0AL9aM0Akg+Y2HkpuJ4/q5qCsAFtezU/oPjX3qLUQv72MZYXCohk7dIspa+BxClHcLFrABQuhJqd2setKJx/xUi7PS/XlLYsFHKZ2IW6ll7MgQQn/lrxXGHn1Dpl2qqh+90uERMFWTjnlSSa/O3eA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=TzqVoYCvfDo76wvL5MMF2THuURDX8LC6c4litIrWiFZUF5Hl2lG70bwUun9G0Ng5Xi4roi98ZujMHsMVmFCSSrrkpNKPtqfn0EqGIPFV1FJIXHMtuiZk9G9V26MFx9Waoe1eLHEqiTntQ6vHQ5z8bE9TjYl460pIHSmhaYhvUiQ=
Received: from BN6PR11MB0034.namprd11.prod.outlook.com (10.161.156.160) by BN6PR11MB1729.namprd11.prod.outlook.com (10.175.98.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2538.20; Tue, 17 Dec 2019 17:17:11 +0000
Received: from BN6PR11MB0034.namprd11.prod.outlook.com ([fe80::d4cf:20e6:8706:d006]) by BN6PR11MB0034.namprd11.prod.outlook.com ([fe80::d4cf:20e6:8706:d006%5]) with mapi id 15.20.2538.019; Tue, 17 Dec 2019 17:17:11 +0000
From: "Carlos Pignataro (cpignata)" <cpignata@cisco.com>
To: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-bfd-vxlan@ietf.org" <draft-ietf-bfd-vxlan@ietf.org>, "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>, "bfd-chairs@ietf.org" <bfd-chairs@ietf.org>
Subject: =?utf-8?B?UmU6IMOJcmljIFZ5bmNrZSdzIERpc2N1c3Mgb24gZHJhZnQtaWV0Zi1iZmQt?= =?utf-8?Q?vxlan-09:_(with_DISCUSS_and_COMMENT)?=
Thread-Topic: =?utf-8?B?w4lyaWMgVnluY2tlJ3MgRGlzY3VzcyBvbiBkcmFmdC1pZXRmLWJmZC12eGxh?= =?utf-8?Q?n-09:_(with_DISCUSS_and_COMMENT)?=
Thread-Index: AQHVtLc75ryADAJO5Ui6+24NC5naA6e+kjMA
Date: Tue, 17 Dec 2019 17:17:11 +0000
Message-ID: <CED2B858-AC55-4B0A-ADA2-AC46B628E6DA@cisco.com>
References: <157657269782.26511.12421406428553874826.idtracker@ietfa.amsl.com>
In-Reply-To: <157657269782.26511.12421406428553874826.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.40.2.2.4)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=cpignata@cisco.com;
x-originating-ip: [2600:1700:760:21aa:58d3:501c:4c4:1396]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0a73d951-3424-44a4-d89f-08d78314f46a
x-ms-traffictypediagnostic: BN6PR11MB1729:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BN6PR11MB17291936C17B5851F1E62060C7500@BN6PR11MB1729.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 02543CD7CD
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(39860400002)(376002)(346002)(396003)(501584002)(199004)(469094003)(189003)(33656002)(81166006)(6862004)(81156014)(5660300002)(8936002)(450100002)(2906002)(186003)(6636002)(36756003)(66556008)(2616005)(54906003)(966005)(37006003)(71200400001)(66476007)(6512007)(4326008)(478600001)(6486002)(86362001)(66446008)(316002)(66946007)(64756008)(6506007)(76116006)(91956017)(224303003)(21615005); DIR:OUT; SFP:1101; SCL:1; SRVR:BN6PR11MB1729; H:BN6PR11MB0034.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
Content-Type: multipart/alternative; boundary="_000_CED2B858AC554B0AADA2AC46B628E6DAciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 0a73d951-3424-44a4-d89f-08d78314f46a
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Dec 2019 17:17:11.6573 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tXzEF21r0xJU4M18AFNF3KmJuWxxeVtjgjy9t3BjrMNOc0aESM8mV/9QUHXsJZfQcriEYzuFlk9a+MeEr4CAnA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR11MB1729
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.11, xch-aln-001.cisco.com
X-Outbound-Node: rcdn-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/1VqoE0Y1h6skJq3MEwSBVaDC6gs>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Dec 2019 17:17:22 -0000

Hi, Éric,

Regarding you first DISCUSS element, I had brought up the same issue. See the 2nd point at https://mailarchive.ietf.org/arch/msg/rtg-bfd/BL9Ob66Yxie4wX13yZJELbYPLJs

Thanks,

Carlos.

2019/12/17 午前3:51、Éric Vyncke via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>>のメール:

Éric Vyncke has entered the following ballot position for
draft-ietf-bfd-vxlan-09: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-bfd-vxlan/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------


Thank you for the work put into this document.

I fully second Adam's COMMENT that should be fixed before publication (IMHO
this is a DISCUSS).

Answers to my COMMENTs below will be welcome, even if those COMMENTs are not
blocking.

As usual, an answer to the DISCUSS is required to clear my DISCUSS though.

I hope that this helps to improve the document,

Regards,

-éric

== DISCUSS ==

May be I am not familiar enough with BFD, but, RFC 5881 (the one defining BFD)
specifies the use of TTL = Hop Limit = 255.. Why this document uses a value of
1 ?

-- Section 3 --
IPv4-mapped IPv6 addresses are only to be used inside a host and should never
be transmitted in real packets (including packets inside a tunnel) see section
4.2 of RFC 4038 (even if informational). As other IESG reviewers, I wonder why
::1/128 is not used?

-- Section 8 --
The document specifies no IANA actions while the shepherd write-up talks about
a IANA action.

-- Section 9 --
This section is only about IPv4 (TTL and RFC 1812). Please address IPv6 as well.


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

== COMMENTS ==

RFC 5881 (BFD) states that it applies to IPv4/IPv6 tunnels, may I infer that
this document is only required to address the Ethernet encapsulation ? I.e.
specifying the Ethernet MAC addresses?

-- Section 3 --
At first sight, I was surprized by having a BFD session per VXLAN VNI as it
will create some scalability issue, but, I assume that this is to detect
misconfiguration as well. If so, perhaps worth mentionnig the reasoning behind?

In "the inner destination IP address SHOULD" it is unclear whether it is in the
all BFD packets, or only the request one or ... ?

-- Section 4 --
While probably defined in RFC7348, should "FCS" be renamed as "Outer Ethernet
FCS" for consistency with the "Outer Ethernet Header" in figure 2 ?

Why not using the Source MAC address as the Destination MAC address ? This
would ensure that there is no conflict at the expense of "forcing" the
transmission of the frame even if addressed to itself.

Please consider rewriting the section about TTL/Hop Limit as it is not easy to
parse/read.

-- Section 9 --
It is unclear to me (see also Ben's comment) what is the 'attack vector' of
sending packets with TTL=1 ?