Re: New Version Notification for draft-ietf-bfd-vxlan-11.txt

"Carlos Pignataro (cpignata)" <cpignata@cisco.com> Tue, 05 May 2020 00:49 UTC

Return-Path: <cpignata@cisco.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9BAB3A132F; Mon, 4 May 2020 17:49:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.599
X-Spam-Level:
X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=kB2QXMZ2; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=jmpS689N
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bwjgkAa50Rxc; Mon, 4 May 2020 17:49:56 -0700 (PDT)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE23C3A132A; Mon, 4 May 2020 17:49:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=15527; q=dns/txt; s=iport; t=1588639789; x=1589849389; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=gMJ5g6mwk/X7g5Fq6ot1BDUMGXhiF8cnGkELbvWZ6+c=; b=kB2QXMZ2rJo08rCuSg/ynlZLhVn33e1wf36DL5q80f6bVwx0vKvyN1QP xLfLNxTTm3YMCrWuOe9QVJlXdpzp3MXIG43kMpaWD7XN/qvwGu+C7RPGY xqOq5ooKFDazraWd/69dz3ovekSaBXL5sP6jSUVhM5VQtClIFnwLt6GVb A=;
IronPort-PHdr: =?us-ascii?q?9a23=3ADJ4h8hWZGZDiWuC/qh9wQ8HcUuPV8LGuZFwc94?= =?us-ascii?q?YnhrRSc6+q45XlOgnF6O5wiEPSBNyHuf1BguvS9avnXD9I7ZWAtSUEd5pBH1?= =?us-ascii?q?8AhN4NlgMtSMiCFQXgLfHsYiB7eaYKVFJs83yhd0QAHsH4ag7dp3Sz6XgZHR?= =?us-ascii?q?CsfQZwL/7+T4jVicn/3uuu+prVNgNPgjf1Yb57IBis6wvLscxDiop5IaF3wR?= =?us-ascii?q?zM8XY=3D?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0C0AABkt7Be/5tdJa1mGgEBAQEBAQE?= =?us-ascii?q?BAQEDAQEBARIBAQEBAgIBAQEBggeBVCQtBW5YLyoKhBmDRgONR4l5iVmEY4F?= =?us-ascii?q?CgRADVAsBAQEMAQEjCgIEAQGERAIXgh0kOBMCAwEBCwEBBQEBAQIBBQRthVY?= =?us-ascii?q?MhXEBAQEBAxIRHQEBNQIBDwIBBgIRAwECKAMCAgIfERQJCAIEDgUigwQBgX5?= =?us-ascii?q?NAy4BDpdFkGcCgTmIYXaBMoMAAQEFgTYCDkFCgnYNC4IOCYE4gmOJYRqBQT+?= =?us-ascii?q?BESccgk0+gh5JAQECAQEYgQ8SJyENEYJUM4ItjkIigmWGGiSaBEoKgkiIGIg?= =?us-ascii?q?/gnWESh2CW4EMh1WRZJFvh3yCRo0+g0QCBAIEBQIOAQEFgT8qIoFWcBUaSwG?= =?us-ascii?q?CPgk1EhgNkEIMF4NPhRSFQnQCNQIGAQcBAQMJfI8GASYHgQYBgQ8BAQ?=
X-IronPort-AV: E=Sophos;i="5.73,354,1583193600"; d="scan'208,217";a="489423291"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 05 May 2020 00:49:48 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 0450nlbu002820 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 5 May 2020 00:49:48 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 4 May 2020 19:49:47 -0500
Received: from xhs-aln-001.cisco.com (173.37.135.118) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 4 May 2020 20:49:46 -0400
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 4 May 2020 19:49:46 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=OhZHx/LwQcno0itkiSM6T4ytvZScEW4I254fAyvV47OW0eVphIBg9/e4ECCfs85Psv8H9zoBWRKlQcWX7+PU6hdA4RIETU+TkkpGlvvJxfhh8tp9AbpDo9bA0LePKHFq8DgDlk4+8lFAqhPnc8MV2Vb3ow1ItSZm6M79zjbjpoNaKmGveXtwDkC9xHIKx00EUpyIhmPCLrhDCfBBVIkcMm3f2p2BWYTnPc18WiklUmP0n3du8+0TTdhiboViGrLK/wLdWD7AyK5qBvcMmPK47NvvZ1zjL3ViN/BDjAPTj5lcbcbJIJRWN406354K7a1D1d1Zai8UU/tUh1AT7HdkVg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gMJ5g6mwk/X7g5Fq6ot1BDUMGXhiF8cnGkELbvWZ6+c=; b=dYMB0wgthI+PdzneeU2ENg4BpQ3r7MQb9uhbNTnv4eZcOedQHQFFQOTKqZQ7A9PCIEx0uvrAO78R3OSIfU6R93jm/gltKmFMAawNxrbTI5Uh79GsSzOVmYd/271gLsE3MGn5CW0Ra3FJFUK60Q/NnjXX53QjCZProkvxvxegZ4c5E1lDgYv5Gjx3tYbbMhJyJa5x9PZ5tFMHPh9Kimg2IOphbHOZeo0Ah5hXFtg+bLVj+o6EjstYC0xZrR2QdcPbLgdWSpuKr8scT6h3ZGG+wrHlIHIe65hD0ledQM+k+e1eLKsQC06wrekP6pr/JBinHtabkExMA+cNqA/uOWUgYg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gMJ5g6mwk/X7g5Fq6ot1BDUMGXhiF8cnGkELbvWZ6+c=; b=jmpS689NAaADeH09g5KH/Hzk12vso0LzJeq9w5dEkiZz6rUD7TbrNQIEFksJUrQ2XVkPSe4iXwVLBHAbaNujiIXDzNQYo+1ejZcdY0zOIM/xBDpm76+ib2nZUrXfMFhhHz6aVJZVWHUy5mRZeDOFsmCBwCLOR8z5WgUlNMD0TMA=
Received: from BN8PR11MB3635.namprd11.prod.outlook.com (2603:10b6:408:86::20) by BN8PR11MB3586.namprd11.prod.outlook.com (2603:10b6:408:84::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2958.20; Tue, 5 May 2020 00:49:44 +0000
Received: from BN8PR11MB3635.namprd11.prod.outlook.com ([fe80::9981:86d4:ca20:ff96]) by BN8PR11MB3635.namprd11.prod.outlook.com ([fe80::9981:86d4:ca20:ff96%7]) with mapi id 15.20.2958.029; Tue, 5 May 2020 00:49:44 +0000
From: "Carlos Pignataro (cpignata)" <cpignata@cisco.com>
To: Greg Mirsky <gregimirsky@gmail.com>
CC: rtg-bfd WG <rtg-bfd@ietf.org>, "bfd-chairs@ietf.org" <bfd-chairs@ietf.org>
Subject: Re: New Version Notification for draft-ietf-bfd-vxlan-11.txt
Thread-Topic: New Version Notification for draft-ietf-bfd-vxlan-11.txt
Thread-Index: AQHWImeYzdFcka0XZUWIye+P4kIMEKiYqU+A
Date: Tue, 5 May 2020 00:49:44 +0000
Message-ID: <039E96B8-40E5-46B4-A519-434C2AEEAE47@cisco.com>
References: <158863263846.21115.1621770081697874195@ietfa.amsl.com> <CA+RyBmWxv7E+LRejhnbW0CjRYb6VGpdEm5Hq92UYrKoz6qGaBA@mail.gmail.com>
In-Reply-To: <CA+RyBmWxv7E+LRejhnbW0CjRYb6VGpdEm5Hq92UYrKoz6qGaBA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.80.23.2.2)
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [108.203.7.63]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a6cfbdd0-38ff-443f-b9d5-08d7f08e33da
x-ms-traffictypediagnostic: BN8PR11MB3586:
x-microsoft-antispam-prvs: <BN8PR11MB35861A7B0010353588DD6161C7A70@BN8PR11MB3586.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0394259C80
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN8PR11MB3635.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(396003)(136003)(366004)(346002)(376002)(39860400002)(33430700001)(15650500001)(54906003)(5660300002)(86362001)(316002)(33440700001)(478600001)(8936002)(33656002)(71200400001)(2616005)(66574012)(966005)(8676002)(36756003)(2906002)(6512007)(6506007)(53546011)(66446008)(66476007)(6916009)(6486002)(64756008)(76116006)(66946007)(186003)(4326008)(26005)(66556008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: QTB7JvfEkn5bd8iHygeOl3+i4+iyGxyUGj6mv8jOZor5534CovQyJDrNvJjzatc0Y1oEBz9MUmQnz4Kkqa7K4pSiHYC9ZlsrThsbpPxHfK/F4XupkoAT3j5eIhWqIDDJqGFxQ98e56+KvhG2ZA8pdNWzA9VnkiiTeESn8bHYAxHf8DJYf/tAgrf688WhuT2QACsm7L2ubP51YIr5XabhKTuR2mwy89WczGIIjBaXdykktg7deJbsHmqeDSB0IObpk9P88PjG5SriocG33tPPQxKQpc74YuqhrvNwB3HLsg/Ufdp6ZHaZi//LQMeO88A68KhUFwy0Bd6WljmLmUlNAQ6iizHySPCP6gQ5ukca1D/xBxF8eI5TInIaf0Fn1FN9H2a2WxDlSSTdmuC9CoFc0hmJDJdjHPKfb0zi7J7NJDWjqnrDH3Rr11+ofZgaaZ9LE68WUPOjFw/CgACYOq5gW6cmvfHQmQCw7eGXOCL9qr/woKX7fIwZS16tw61GwM+4ZGRaCNN6uxBxUbDlotFpEIF/HzNVqeafudzYBsHz0bD+NrpuBUhjunvM2juPzUR1rwv5wJg7ubqxP28nt8lbluW1iFv9Nzefc4JBooK5Nw9AZ876afjuX4Wgp42NG3Tdwi4ITyWF9f1NmP3jYFvvUaN7u3tKco7W57KS+pVTyZa6lOBHy7hFKV682mHB5WW7fDRvF05J+r6chqM6vpLyrnIDuoOu2V7qsW8Tr6TzX0WQuSmgDFuA5O1H/gqzm5sqygA0+jn88HIgiEKBFLwA8hjKhU4iQHHQET8ULCP1XUk=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_039E96B840E546B4A519434C2AEEAE47ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: a6cfbdd0-38ff-443f-b9d5-08d7f08e33da
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 May 2020 00:49:44.1359 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: af0feQQ9sgCojlo1Dtv3jEOmUmhOiQf1aiWhP7DwBCSJJH4cDkE6JwX3g2YaT8Ce44NaCU/mZlMkMp3booFEdQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN8PR11MB3586
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: rcdn-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/CkS2SGzNxgIWDP0r9b5AvyL_mCE>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 May 2020 00:49:58 -0000

Dear Greg,

I have not checked the diff and the new text regarding the Eth MAC and mgmt VNI.

However, these diffs also include a change that you did not mention: TTL / Hop Limit handling, which is one of the comments I had made.

In that context, thank you very much! since this update partially (although largely) addresses my comment.

Still missing:

         TTL or Hop Limit: MUST be set to 255 in accordance with the
         Generalized TTL Security Mechanism [RFC5881].

CMP: this is an incorrect citation. The GTSM is RFC 5082, not RFC 5881. I recommend adding a Reference to RFC 5082 (as I’d suggested before).

   Validation of TTL or Hop Limit of the inner IP packet is performed as
   described in Section 5 [RFC5881].

CMP: This is an oversimplification. S5 of RFC 5881 explains not only how to validate TTL/HL, but also about demultiplexing tulles in presence of auth and various header fields.

9.  Security Considerations

CMP: A discussion on the positive impact of using GTSM would help here.

11.  Acknowledgments

CMP: Both professional courtesy as well as proper record and provenance tracking suggest keeping an updated Acknowledgements section.

Best,

—
Carlos Pignataro, carlos@cisco.com<mailto:carlos@cisco.com>

“Sometimes I use big words that I do not fully understand, to make myself sound more photosynthesis."

2020/05/04 午後6:58、Greg Mirsky <gregimirsky@gmail.com<mailto:gregimirsky@gmail.com>>のメール:

Dear All,
my apologies for holding off this upload. The update is to address a
set of comments related to the use of destination Ethernet MAC in the
inner Ethernet frame that encapsulates a BFD control message. A new
section on the use of the Management VNI has been added and the
document now considers only the case of using the Management VNI to
transmitted receive BFD control messages.
Always welcome your questions and comments.

Regards,
Greg

---------- Forwarded message ---------
From: <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>
Date: Mon, May 4, 2020 at 3:50 PM
Subject: New Version Notification for draft-ietf-bfd-vxlan-11.txt
To: Mallik Mudigonda <mmudigon@cisco.com<mailto:mmudigon@cisco.com>>, Sudarsan Paragiri
<sudarsan.225@gmail.com<mailto:sudarsan.225@gmail.com>>, Greg Mirsky <gregimirsky@gmail.com<mailto:gregimirsky@gmail.com>>, Santosh
Pallagatti <santosh.pallagatti@gmail.com<mailto:santosh.pallagatti@gmail.com>>, Vengada Prasad Govindan
<venggovi@cisco.com<mailto:venggovi@cisco.com>>



A new version of I-D, draft-ietf-bfd-vxlan-11.txt
has been successfully submitted by Greg Mirsky and posted to the
IETF repository.

Name:           draft-ietf-bfd-vxlan
Revision:       11
Title:          BFD for VXLAN
Document date:  2020-05-04
Group:          bfd
Pages:          11
URL:            https://www.ietf.org/internet-drafts/draft-ietf-bfd-vxlan-11.txt
Status:         https://datatracker.ietf.org/doc/draft-ietf-bfd-vxlan/
Htmlized:       https://tools.ietf.org/html/draft-ietf-bfd-vxlan-11
Htmlized:       https://datatracker.ietf.org/doc/html/draft-ietf-bfd-vxlan
Diff:           https://www.ietf.org/rfcdiff?url2=draft-ietf-bfd-vxlan-11

Abstract:
  This document describes the use of the Bidirectional Forwarding
  Detection (BFD) protocol in point-to-point Virtual eXtensible Local
  Area Network (VXLAN) tunnels used to form an overlay network.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>.

The IETF Secretariat