IETF Logo Mail Archive

Re: Robert Wilton's Discuss on draft-ietf-bfd-unsolicited-11: (with DISCUSS and COMMENT)

Reshad Rahman <reshad@yahoo.com> Mon, 02 January 2023 23:58 UTC

Return-Path: <reshad@yahoo.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BAB0FC152572 for <rtg-bfd@ietfa.amsl.com>; Mon, 2 Jan 2023 15:58:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CTRUtQxkiC_a for <rtg-bfd@ietfa.amsl.com>; Mon, 2 Jan 2023 15:58:43 -0800 (PST)
Received: from sonic307-3.consmr.mail.bf2.yahoo.com (sonic307-3.consmr.mail.bf2.yahoo.com [74.6.134.42]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C12C4C14F73D for <rtg-bfd@ietf.org>; Mon, 2 Jan 2023 15:58:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1672703921; bh=hy0S0w9f8Mh9jHfQm3Cfdv1PSdkLb5HD/H0y1I8csGw=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject:Reply-To; b=K+iHTwenZubYGeznznsBxfcXuxZ0RgAY6RuNLa4BW95pkn+5XShcJylq5gndk1QKAAbJ/OgjV7tELARqhA+ddc9Rk1mz+MYzMeH+fiCeplYOiyxvB4syZUxNMOLruriF5eV9t2JpKITxurhFjtOZXFtUngrYgDKlny384fNkoTb13xf3zvPaFuFueQVJy484Im57dZNuGn+Rtfvcv8rQaZh+y3MouyuPQaSMRcgaJcuPscLhz1k2lrfl9fKzSVjRCbzevT2li+52L4FzUKgssDcS5mERyV31dY4hL9gpXT0lOr7WqhPX9Au5cCxGENXHZpwvmx6umGGTNnce98f9OA==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1672703921; bh=ZTWgTeIvLnpGGoa6DUVG4MRIsRbQl8+f8Ama64LvIH5=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=QZAP5+Pss3B7N/6g9mtxKW+GvHUVPSPxLHGMJBRqmINkDMtKSpfrqqEd+eLS00K7EBNkogzYtiVrd77pECdNg0Ktg3WEadyy2EwpeeLzci7iSnLakJ578BGqqvIwcbZdtRydPVn9H5usOnlpNRQi8OyW/BzDUdy+O5cq3dAWS3z1EiarLVQKjSTNF4ZrkD4EJ5sfblRq43tFi/PVC+RUq87LFJn9jWCkMmjCzkwcYeken6tTjCLeb891qviaqedXWPpOfZawLJpUXmpDKXgtg80/rOLS+AJ39PCsTWbGt08Xor+RZqs5YSXh0l/xmAeIm3lif/wlNvJf4v068Y2lvw==
X-YMail-OSG: AjT7XXgVM1l05q5QKynXtfgz9YXjvZYioPS042yEEfqNJRFDXr8PkyRy.3KPYVj bZBGaRFYjN9Q0lrXw59z1vKxlNxvuOfD7ly9hc1SIArnVA4SGI.0xXedrjn_IRbBGzVUy9LmpWTd _JwQgyREw.tqeANUGxSP.gW4yThdywFTjtOEZNjDTjh9J2Uo6OnT3oHGQfCFIeq3ZsmMqDPfo4xJ 2d0acrlOFxqbnYK79wfSBbdMCLhcR3IsTLPkRJX.m0pm4QZYRyYATU5fBdy0OH3ni7f_L2ds19yt v54hO2xK8pKAUHbGht8jXTRsQuCcSK5mpLRy8aHc2Hn8HKi1QdqNpK_xDGiEPD2zcZvvK.Co2SWq YNFo2iMoznJd8_B3h0UNEl3N6LsYjSUl3X_gdbRizaN1i3REKi2XA67ISU9FB4QGBF4UULZxtYCz EryRm7lEFzZex1LUBm_W1ErvcwV.AU9LyRPn0pe2xzlIxCA2t8DcPLWs47FHKVwtIKOonzUrSwrf im9HuxbIMP23i4qgvN.u29ZOzn2WJ.rpEu8oZ704bFxtgsfqA3vgSOSl1P69QToTsveYssBm3wXX GKsDNkgFwTt1qpmhRXxuZrvWTL97KGO5_lzwTQ8yMfX05jigRVRP1YDhpTpxJQWFxqzTpnYEWDDw XiDgMW3KXY20RM0qPX6Be.VxLcH9aGEWbKe9HOSrgCVfk_pwSohE95pRAMWSH2Um9CGA9pPPupqE gTakeomn8TsodtssQOOeEqEhKThu4poinIC9hcwdvdydnLk0BPjv0Ak6OC87czcEmiLuSfHMYsFU _xfPemZW4uSa2slWeZUw_hDYBzLqdTzc3.YMvnt17J5MXtN6IvCcHeZfB0uucDXD8iNMJ1pJVpFj mg3Slth7A8Vls.0mOKQ9lcH_KG3RVOtahTc0ZhlzIbpVWi.OFrQCh5QSOMD_j6utyRXyRNKw.8nw vimcOU0BFOJ3CklbLLav.YhAj02yiGx1iE4Ro_8_QLafhI7sahRNZ0nFxqIpMKbD9R31cFcIOOTo cFZnwC3tkJiOSfalFijG.RaJBlCWhUGrjltGA0pEbUNrg1T8niqQ46qsJAu0Udrvqpp4rj8aEX9z MKkidb92QFz31BZcoLN3FuQSqpOBZoXhPIEqW_dcfNMMOSCG84aGZiFFLIk3EVQz38EBM8nF356. t7WnqRRMQhIAhmSI0QDhJ3BHHj3qAxDyhGGbvpfOAl9OvLOjtiz0HBC.NdjHkrgCkimJ_Q9xWcnt vWu3PasAR_lChp8a5jNBMJVPBvARMIud2JqocsyusXFKNdDY1wUSoM39oWrPOoayldKDD4B3m1lB WEO9AFW41bb4XkM2wbUGPAyHNkX1dx6V1_FC.eemVXRwawMeGNyxetVQVnime9dCK.ogIjdKPNr4 Rkgzyjd_yoTLYXhrooY9oabe2fEO.Dk56xiiI5lrNCeqpO2Q5E8WE2lBx5aQlxJIleCYduk1qwzT dT_v8AfFpy1UJ0o17Q2hF6uYcvaIL7jXoCfEhIpCfFH_YJ5B7ZYq4KioEjxALdno9BxZK7tmEDVj pScWRccrSB_yDjhcQpbesTYT5olVbwCW0HG6V.ZLKBXI8MGYvMk9b4d0HNIdls7Rn6mq8GhYPPsO ooMFnuM8u3ehsAjPdbhIlq0SJu.OpYEoRfivwkNKbzeBxEI9MJPNaYWWh4NyBil17X1lsL3sm_ij EGS.aWoQ7e7BNRkb6A13_OBbXw2qEOWi0x0QU.MLuuLGqAocnguSb1qbrIoRxaz89aFg6i7qh3oK Gk7ViJ7Ap0IkH9P1ovMkODM83bXWIr0wTbGZDTRrI6OXy3E1LM1n3mYmGQ1fQQQgzsoeizT8cRWZ PvWpTaWWL.fcjzft.9dSvMQ_E4.RVuWzpUzxR8QCJHmfW7E6pyZ0zH5XmSPJmAcrY1EGLPIDuTHK dNyMccrPyKtrO7Xa5rLIh15igC1B1ZmyPhX5FgCfUdOU.8V4d6_L7ohwhJdywjnCTW7a0t_sPVlO p3qRpr6ZRlF1adrnqub4tX7QgGHx_WSCrbt.8bZDmOGYvskz82HLAYmsnXuw9oQImczw_H0XQ3IF 4PhuZVriEE3sfNDiV.vRkz86IgGEIWWU3IFkxmv_NG05ZXjK5v4TokJjQ8gfF90NDtQilVjOxzDG mmJkv7jEPkfiBBYK7vaoXlWSGOXAXmeYVqBfLe7KaXnI8A4_wcn9cf1IfywujqRCOHMee0KJJNCX EYfRvDKK_GComTlEHl.GsFcSVksJoFQaAmp05obe8W0vmPoo5AJKXtIV2A4CkFpejd1MT3ipyzq2 DCfE7O782TBTAmZFQ0RImEcPq
X-Sonic-MF: <reshad@yahoo.com>
Received: from sonic.gate.mail.ne1.yahoo.com by sonic307.consmr.mail.bf2.yahoo.com with HTTP; Mon, 2 Jan 2023 23:58:41 +0000
Date: Mon, 02 Jan 2023 23:48:37 +0000
From: Reshad Rahman <reshad@yahoo.com>
Reply-To: Reshad Rahman <reshad@yahoo.com>
To: The IESG <iesg@ietf.org>, Robert Wilton <rwilton@cisco.com>
Cc: "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>, "bfd-chairs@ietf.org" <bfd-chairs@ietf.org>, "draft-ietf-bfd-unsolicited@ietf.org" <draft-ietf-bfd-unsolicited@ietf.org>
Message-ID: <532271170.2229561.1672703317533@mail.yahoo.com>
In-Reply-To: <167086459809.47152.7191645317039213428@ietfa.amsl.com>
References: <167086459809.47152.7191645317039213428@ietfa.amsl.com>
Subject: Re: Robert Wilton's Discuss on draft-ietf-bfd-unsolicited-11: (with DISCUSS and COMMENT)
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_2229560_235396687.1672703317529"
X-Mailer: WebService/1.1.20982 YMailNorrin
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/j29BeTTGG2e3ezjhSnTC6dJjFQY>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jan 2023 23:58:46 -0000

 Hi,
Rob, thanks for the feedback. Please see inline.
    On Monday, December 12, 2022, 12:03:23 PM EST, Robert Wilton via Datatracker <noreply@ietf.org> wrote:  
 
 Robert Wilton has entered the following ballot position for
draft-ietf-bfd-unsolicited-11: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ 
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-bfd-unsolicited/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

Hi,

Thanks for this document.

Please see my comments below for more details, but I'm balloting discuss on 3
points: (1) The document is somewhat unclear as to whether the configuration is
applied hierarchically (I presume that it is, if not then my second discuss
point is not valid and can be ignored). (2) As specified, I don't think that
the hierarchical configuration will work, because the interface level leaf
"defaults" will override an explicit value configured globally.  I.e.,
logically, the interface level leaf, if in scope, will always have a value. (3)
The document should provide an instance-data example in the appendix to
illustrate the use of this configuration.

Regards,
Rob


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Moderate level comments:

(1) p 3, sec 2.  Procedures for Unsolicited BFD

  When the passive side receives a BFD Control packet from the active
  side with 0 as "Your Discriminator" and does not find an existing BFD
  session, the passive side MAY create a matching BFD session toward
  the active side, if permitted by local configuration and policy.

I'm surprised that this is only a MAY and not a SHOULD or MUST.  I.e., if the
local configuration & policy allows passive BFD sessions why would they not be
created?
<RR> I'll change this to a SHOULD with the text suggested from Jeff.
(2) p 4, sec 4.1.  Unsolicited BFD Hierarchy

  *  Globally, i.e. for all interfaces.  This requires support for the
      "unsolicited-params-global" feature.
  *  For specific interfaces.  This requires support for the
      "unsolicited-params-per-interface" feature.

>From this description, it is unclear to me whether the features enabling global
or per-interface configuration are meant to be an either/or (in which case, the
constraint could probably be expressed in the features), or whether a server is
allowed to support configuration both globally and override the global
configuration with interface specific configuration.  My subsequent discuss
comments assume the latter.  Either way, it would be helpful for this text in
this section (and probably the YANG module) to be a bit more explicit on this
regard.

(3) p 8, sec 4.2.  Unsolicited BFD Module

      augment "/rt:routing/rt:control-plane-protocols/"
            + "rt:control-plane-protocol/bfd:bfd/bfd-ip-sh:ip-sh/"
            + "bfd-ip-sh:interfaces" {
        if-feature bfd-unsol:unsolicited-params-per-interface;
        description
          "Augmentation for BFD unsolicited on IP single-hop interface";
        container unsolicited {
          description
            "BFD IP single-hop interface unsolicited top level
            container";
          leaf enabled {
            type boolean;
            default false;

I'm not sure that you want a default value specified in the YANG here since
this would have precedence over any explicitly configured global default value.

(4) p 8, sec 4.2.  Unsolicited BFD Module

            description
              "BFD unsolicited enabled on this interface.";
          }
          uses bfd-types:base-cfg-parms;

You have the same issue here as above, in that the default values directly
associated with the leaves in this grouping will always take precedence over
any configured global value.  I.e., the configuration, if properly implemented
cannot be hierarchical.  The pragmatic solution is to copy the used grouping
inline here and delete the default statements.  This has the advantage that the
descriptions can also make the hierarchical behavior of the configuration
explicit.

<RR> 2, 3 and 4 will be addressed as per other email response.
(5) p 9, sec 4.2.  Unsolicited BFD Module

    augment "/rt:routing/rt:control-plane-protocols/"
          + "rt:control-plane-protocol/bfd:bfd/bfd-ip-sh:ip-sh/"
          + "bfd-ip-sh:sessions/bfd-ip-sh:session" {
      description
        "Augmentation for BFD unsolicited on IP single-hop session";
        leaf role {
          type bfd-unsol:role;
          config false;
          description
            "Role of local system during BFD session initialization.";
        }
    }
  }
  <CODE ENDS>

Please add an instance data example to an appendix to illustrate the use of
this YANG model.  This helps readers and can further emphasize the hierarchical
nature of the configuration.

<RR> Will do.
Minor level comments:

(6) p 3, sec 2.  Procedures for Unsolicited BFD

  Passive unsolicited BFD support MUST be disabled by default, and MUST
  require explicit configuration to be enabled.  On the passive side,
  the desired BFD parameters SHOULD be configurable.  The passive side
  MAY also choose to use the parameters that the active side uses in
  its BFD Control packets.  The "My Discriminator", however, MUST be
  chosen to allow multiple unsolicited BFD sessions.

Rather then configured values on the passive side, did the authors consider
setting minimum configuration limits?  E.g., rather than define desired
send/receive limits, instead, configure lower bounds on what the minimum tx
interval may be (to prevent DDOS attacks).

<RR> Jeff has replied for this already.
Nit level comments:

(7) p 3, sec 2.  Procedures for Unsolicited BFD

  The passive side MUST then start sending BFD Control packets and
  perform the necessary procedure for bringing up, maintaining and
  tearing down the BFD session.  If the BFD session fails to get
  established within certain specified time, or if an established BFD
  session goes down, the passive side SHOULD stop sending BFD Control
  packets and MAY delete the BFD session created until BFD Control
  packets are initiated by the active side again.

Nit, within certain specified => within a specified

(8) p 6, sec 4.2.  Unsolicited BFD Module

        Copyright (c) 2021 IETF Trust and the persons
        identified as authors of the code.  All rights reserved.

This copyright statement will need to be fixed.

<RR> I'll address nits 7 and 8.
Regards,Reshad.

v2.23.0 | Report a Bug | By Email