Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan-09: (with DISCUSS and COMMENT)
"Carlos Pignataro (cpignata)" <cpignata@cisco.com> Tue, 17 December 2019 17:17 UTC
Return-Path: <cpignata@cisco.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C74C120BD8; Tue, 17 Dec 2019 09:17:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.499
X-Spam-Level:
X-Spam-Status: No, score=-14.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=YslOFipW; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=TzqVoYCv
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 31UizYQoeUNU; Tue, 17 Dec 2019 09:17:16 -0800 (PST)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6183120B93; Tue, 17 Dec 2019 09:17:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12759; q=dns/txt; s=iport; t=1576603036; x=1577812636; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=YslOFipW7dg7R1Al5PnqXsnoGTO4z7C/+DYTyrCqb54wUxfBHLVgSQ+U 6xg+SXFUoBBySYOrRBxfxQ431j5QSj/oHhrIdEmS9T3Qhfs/AXl7VwlsK vPD1M3A9ud56iaAkO8O31jLN765lkc4Gx9dspny0Mix7mOuMmr5k4WYti U=;
IronPort-PHdr: 9a23:gOLFAhPvvgiLdaDg4Icl6mtXPHoupqn0MwgJ65Eul7NJdOG58o//OFDEu6w/l0fHCIPc7f8My/HbtaztQyQh2d6AqzhDFf4ETBoZkYMTlg0kDtSCDBjwNP/laSUmFexJVURu+DewNk0GUMs=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DZAQCiDPld/51dJa1lGwEBAQEBAQEFAQEBEQEBAwMBAQGBfoFLUAVsWCAECxYUhASDRgOLD5YEhGGBQoEQA1QJAQEBDAEBJQgCAQGEQAIXggEkOBMCAw0BAQQBAQECAQUEbYU3DIVfAgEDEhEdAQE3AQ8CAQYCPwMCAgIwFAYLAgQOBSKDAAGBeU0DLgEOA5IdkGQCgTiIYXWBMoJ+AQEFgTUBE0GDDRiCFwMGgTaJT4JJGoFBP4ERJyCCTD6CZAIBAgGBLAEMBgEeLoJjMoIsjUWCcIVWiV+PHwqCNIcvij+EIhuCQ4d2hEGLT4NGk1eOVoMnAgQCBAUCDgEBBYFpImdYEQhwFWUBgkE+EhEUjRI4gzuFFIU/dAGBJ44YDheCGwEB
X-IronPort-AV: E=Sophos;i="5.69,326,1571702400"; d="scan'208,217";a="394622892"
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 17 Dec 2019 17:17:15 +0000
Received: from XCH-ALN-001.cisco.com (xch-aln-001.cisco.com [173.36.7.11]) by rcdn-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id xBHHHEX8005011 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 17 Dec 2019 17:17:15 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-ALN-001.cisco.com (173.36.7.11) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 17 Dec 2019 11:17:14 -0600
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 17 Dec 2019 12:17:13 -0500
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 17 Dec 2019 12:17:13 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IIkAyv2ZQESDyFdUz/yZW6FCHQwjY0yzgWS+2baLtlkPBIEFMg1MCh9YwSbhfyU1MOe6F2FMUSP422uOOsjnyQrsE6BmLe7xooBujDbj9/KtKcEHsMV9WhDmFDuNJGuVKRPLkcNqt3kkNPrxE4MS91Ohr30Z3uwvHEb03SNWNdfCHErGKKzuz22Id70gvKnw73nRvsvngiRPu74DYwZw+yo5PksGZjL8KRhzSB4NVVUw9IfSDgAuyn5SR3dv+/5kHs0bOoJiYn+5nSyl/kg4GWfSmDbQ9xRD/EJTBw+vWTOZExhyvc/qJOPl9SAyOfXyU5Iiy2TOk7N5S3xIpo2n4A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=Ka+rbPYJFjJzqPfiWg34EeAfq7UHVGVkoBt0eJkp7KEmIqx24zcNbywr48w0IDbfwiIdJSKCByPtJGeR/rw1XHH3kSb+cDUaOmnLtNDPkx2wiqZDC7a9mWLSutpF/huFRKBPVqZoO+UzBQFunhH1Ia3ZiSI+hhmTsAMIauSueOPM9Z4zdyK7wPVYw3buCYSNn0AL9aM0Akg+Y2HkpuJ4/q5qCsAFtezU/oPjX3qLUQv72MZYXCohk7dIspa+BxClHcLFrABQuhJqd2setKJx/xUi7PS/XlLYsFHKZ2IW6ll7MgQQn/lrxXGHn1Dpl2qqh+90uERMFWTjnlSSa/O3eA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HVkpn1DPXmnSS5s2R3lFpjqRAHWxJgMsFxR2gw4WaMc=; b=TzqVoYCvfDo76wvL5MMF2THuURDX8LC6c4litIrWiFZUF5Hl2lG70bwUun9G0Ng5Xi4roi98ZujMHsMVmFCSSrrkpNKPtqfn0EqGIPFV1FJIXHMtuiZk9G9V26MFx9Waoe1eLHEqiTntQ6vHQ5z8bE9TjYl460pIHSmhaYhvUiQ=
Received: from BN6PR11MB0034.namprd11.prod.outlook.com (10.161.156.160) by BN6PR11MB1729.namprd11.prod.outlook.com (10.175.98.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2538.20; Tue, 17 Dec 2019 17:17:11 +0000
Received: from BN6PR11MB0034.namprd11.prod.outlook.com ([fe80::d4cf:20e6:8706:d006]) by BN6PR11MB0034.namprd11.prod.outlook.com ([fe80::d4cf:20e6:8706:d006%5]) with mapi id 15.20.2538.019; Tue, 17 Dec 2019 17:17:11 +0000
From: "Carlos Pignataro (cpignata)" <cpignata@cisco.com>
To: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-bfd-vxlan@ietf.org" <draft-ietf-bfd-vxlan@ietf.org>, "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>, "bfd-chairs@ietf.org" <bfd-chairs@ietf.org>
Subject: Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan-09: (with DISCUSS and COMMENT)
Thread-Topic: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan-09: (with DISCUSS and COMMENT)
Thread-Index: AQHVtLc75ryADAJO5Ui6+24NC5naA6e+kjMA
Date: Tue, 17 Dec 2019 17:17:11 +0000
Message-ID: <CED2B858-AC55-4B0A-ADA2-AC46B628E6DA@cisco.com>
References: <157657269782.26511.12421406428553874826.idtracker@ietfa.amsl.com>
In-Reply-To: <157657269782.26511.12421406428553874826.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.40.2.2.4)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=cpignata@cisco.com;
x-originating-ip: [2600:1700:760:21aa:58d3:501c:4c4:1396]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0a73d951-3424-44a4-d89f-08d78314f46a
x-ms-traffictypediagnostic: BN6PR11MB1729:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BN6PR11MB17291936C17B5851F1E62060C7500@BN6PR11MB1729.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 02543CD7CD
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(39860400002)(376002)(346002)(396003)(501584002)(199004)(469094003)(189003)(33656002)(81166006)(6862004)(81156014)(5660300002)(8936002)(450100002)(2906002)(186003)(6636002)(36756003)(66556008)(2616005)(54906003)(966005)(37006003)(71200400001)(66476007)(6512007)(4326008)(478600001)(6486002)(86362001)(66446008)(316002)(66946007)(64756008)(6506007)(76116006)(91956017)(224303003)(21615005); DIR:OUT; SFP:1101; SCL:1; SRVR:BN6PR11MB1729; H:BN6PR11MB0034.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
Content-Type: multipart/alternative; boundary="_000_CED2B858AC554B0AADA2AC46B628E6DAciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 0a73d951-3424-44a4-d89f-08d78314f46a
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Dec 2019 17:17:11.6573 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tXzEF21r0xJU4M18AFNF3KmJuWxxeVtjgjy9t3BjrMNOc0aESM8mV/9QUHXsJZfQcriEYzuFlk9a+MeEr4CAnA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR11MB1729
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.11, xch-aln-001.cisco.com
X-Outbound-Node: rcdn-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/1VqoE0Y1h6skJq3MEwSBVaDC6gs>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Dec 2019 17:17:22 -0000
Hi, Éric, Regarding you first DISCUSS element, I had brought up the same issue. See the 2nd point at https://mailarchive.ietf.org/arch/msg/rtg-bfd/BL9Ob66Yxie4wX13yZJELbYPLJs Thanks, Carlos. 2019/12/17 午前3:51、Éric Vyncke via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>>のメール: Éric Vyncke has entered the following ballot position for draft-ietf-bfd-vxlan-09: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-bfd-vxlan/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- Thank you for the work put into this document. I fully second Adam's COMMENT that should be fixed before publication (IMHO this is a DISCUSS). Answers to my COMMENTs below will be welcome, even if those COMMENTs are not blocking. As usual, an answer to the DISCUSS is required to clear my DISCUSS though. I hope that this helps to improve the document, Regards, -éric == DISCUSS == May be I am not familiar enough with BFD, but, RFC 5881 (the one defining BFD) specifies the use of TTL = Hop Limit = 255.. Why this document uses a value of 1 ? -- Section 3 -- IPv4-mapped IPv6 addresses are only to be used inside a host and should never be transmitted in real packets (including packets inside a tunnel) see section 4.2 of RFC 4038 (even if informational). As other IESG reviewers, I wonder why ::1/128 is not used? -- Section 8 -- The document specifies no IANA actions while the shepherd write-up talks about a IANA action. -- Section 9 -- This section is only about IPv4 (TTL and RFC 1812). Please address IPv6 as well. ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- == COMMENTS == RFC 5881 (BFD) states that it applies to IPv4/IPv6 tunnels, may I infer that this document is only required to address the Ethernet encapsulation ? I.e. specifying the Ethernet MAC addresses? -- Section 3 -- At first sight, I was surprized by having a BFD session per VXLAN VNI as it will create some scalability issue, but, I assume that this is to detect misconfiguration as well. If so, perhaps worth mentionnig the reasoning behind? In "the inner destination IP address SHOULD" it is unclear whether it is in the all BFD packets, or only the request one or ... ? -- Section 4 -- While probably defined in RFC7348, should "FCS" be renamed as "Outer Ethernet FCS" for consistency with the "Outer Ethernet Header" in figure 2 ? Why not using the Source MAC address as the Destination MAC address ? This would ensure that there is no conflict at the expense of "forcing" the transmission of the frame even if addressed to itself. Please consider rewriting the section about TTL/Hop Limit as it is not easy to parse/read. -- Section 9 -- It is unclear to me (see also Ben's comment) what is the 'attack vector' of sending packets with TTL=1 ?
- Éric Vyncke's Discuss on draft-ietf-bfd-vxlan-09:… Éric Vyncke via Datatracker
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Carlos Pignataro (cpignata)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Jeffrey Haas
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Carlos Pignataro (cpignata)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Jeffrey Haas
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Greg Mirsky
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Carlos Pignataro (cpignata)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Greg Mirsky
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Eric Vyncke (evyncke)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Eric Vyncke (evyncke)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Jeffrey Haas
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Carlos Pignataro (cpignata)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Jeffrey Haas
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Carlos Pignataro (cpignata)
- Re: Éric Vyncke's Discuss on draft-ietf-bfd-vxlan… Eric Vyncke (evyncke)