Re: Update to BFD over VXLAN
Greg Mirsky <gregimirsky@gmail.com> Fri, 29 November 2019 21:22 UTC
Return-Path: <gregimirsky@gmail.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4188F120058; Fri, 29 Nov 2019 13:22:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KQkzKNszpDhp; Fri, 29 Nov 2019 13:22:06 -0800 (PST)
Received: from mail-lf1-x130.google.com (mail-lf1-x130.google.com [IPv6:2a00:1450:4864:20::130]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8E7DD120048; Fri, 29 Nov 2019 13:22:06 -0800 (PST)
Received: by mail-lf1-x130.google.com with SMTP id d6so23562215lfc.0; Fri, 29 Nov 2019 13:22:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=9ektwn9TbZaXR+VBVtRLiiVdPpp6jrgInyzDDLtZ0Yo=; b=Pa6hrsGfQxxPeKh30NQnMszGMLZi0VtLKOtBpkJSCK36avXH1jKUT2LPJv+lrAy/fk ljV3gKek+tXZLOZPo3gsWsFQCoSGV8wmWyMfhUx0BvFuR905CdqSrZNjuqZxNAZ/vVkc veQuk5U8mo2YXFEnQ7Tj5I0gOXcuqH+xAEYrzuxAiYzCn2PKqpyGQuxEqzVGcaF0oYUm Oa5hcUBLA+g21rlg8lqMjPLqAHmjAXj7rOnVKLSxIpsbQ8qkcZYONRd/N0zsUGKiyBev ZV2lQ4WguM9Y1/Y09xLqDOMHIIReoYfdqndejvxMCbuQxvdU9XJrruRDdSQbjafgq8Gd EGkw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=9ektwn9TbZaXR+VBVtRLiiVdPpp6jrgInyzDDLtZ0Yo=; b=QcEGA6eSpNPjpaCcFBtzCVhjUlHaMl97KQ8lop+8ZQhiiZblo14HdRBcbgJGnhm9KH cptFiFnzu2gZbOxYghp0AGEdIn/rYqaRRiVd8V24ax3eIgYJkhXhdw0UkI8Ppt2qkB/P G6WdLFsq/KLBgVtBg13xCwUN8CAkHRcE40CJAHZFwoMepL8zxUNlJsNl7SvDRbrEtn4q S2gKdJr6McHAhZswYqO0/spwNAwSIF5UGiNwoi1/e4u4HhwnJPoW5DaXFMSC3SBM9FnC E+rdXQPndNF/cvs6VHjKL2LP2DeTvqcVajTRHrtSiRY8LfUrR6wIS8KSR9SPj3dwMqjr 8XLQ==
X-Gm-Message-State: APjAAAWghSVcJy6BHPN7+QP6+IAEoGnc7SmZRSaY3lEtXeiN3rx7sMdW w8IwmLZIDGJNY33i2VvqXzwOft24VRWVAdsAdXk=
X-Google-Smtp-Source: APXvYqwkRMdCttXckovWHN7p4tDwQiqdpY+rAnbqox/AkHNhDwBFN09fYEfvtgk7PkfiXgL+KVnZ43UhPRazinuR1tc=
X-Received: by 2002:a05:6512:499:: with SMTP id v25mr34837078lfq.9.1575062524673; Fri, 29 Nov 2019 13:22:04 -0800 (PST)
MIME-Version: 1.0
References: <CA+RyBmWaeTZknMAdXBTeok3DOTUZdtKxnReD76ad9X9S+cROwQ@mail.gmail.com> <20191127203055.GC18175@pfrc.org>
In-Reply-To: <20191127203055.GC18175@pfrc.org>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Fri, 29 Nov 2019 13:21:53 -0800
Message-ID: <CA+RyBmUBW_Pf_pGtzhDFQgurpbVCtYvZR74iGpSVmT7u9goskA@mail.gmail.com>
Subject: Re: Update to BFD over VXLAN
To: Jeffrey Haas <jhaas@pfrc.org>
Cc: rtg-bfd WG <rtg-bfd@ietf.org>, bfd-chairs@ietf.org, Martin Vigoureux <martin.vigoureux@nokia.com>
Content-Type: multipart/alternative; boundary="000000000000484449059882d28d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/MOc7tR9qwtQdDwsWMz6_GA1Kxag>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Nov 2019 21:22:08 -0000
Hi Jeff, thank you for your suggestion. I've updated the text and will publish the new version of the draft shortly. Regards, Greg On Wed, Nov 27, 2019 at 12:26 PM Jeffrey Haas <jhaas@pfrc.org> wrote: > Greg, > > > On Wed, Nov 20, 2019 at 10:41:46AM +0800, Greg Mirsky wrote: > > Dear All, > > as was decided at the meeting, an explanation of using an address from > the > > Internal host loopback interface address range has been added into the > > Security Consideration section: > > NEW TEXT: > > This document recommends using an address from the Internal host > > loopback addresses range as the destination IP address in the inner > > IP header. Using such address prevents the forwarding of the > > encapsulated BFD control message by a transient node in case the > > VXLAN tunnel is broken as according to [RFC1812]: > > > > A router SHOULD NOT forward, except over a loopback interface, any > > packet that has a destination address on network 127. A router > > MAY have a switch that allows the network manager to disable these > > checks. If such a switch is provided, it MUST default to > > performing the checks. > > I think the text above is largely right. > > There's a slight level of ambiguity since elsewhere in the document, we > don't use the RFC 4379 notation, i.e. 0:0:0:0:0:FFFF:127/104: > > > : > : loopback addresses (127/8 range for IPv4 and > : 0:0:0:0:0:FFFF:7F00:0/104 range for IPv6). > > I think if you explicitly call it out in the 7400 format, we may be all > set. > > -- Jeff >
- Update to BFD over VXLAN Greg Mirsky
- Re: Update to BFD over VXLAN Jeffrey Haas
- Re: Update to BFD over VXLAN Greg Mirsky