RE: Can Multihop BFD be protected using RLFA backup?

Alexander Vainshtein <Alexander.Vainshtein@ecitele.com> Thu, 17 January 2019 12:20 UTC

Return-Path: <Alexander.Vainshtein@ecitele.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6934C130F5B for <rtg-bfd@ietfa.amsl.com>; Thu, 17 Jan 2019 04:20:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.7
X-Spam-Level:
X-Spam-Status: No, score=-1.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=eci365.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m_YXNAT7zHzx for <rtg-bfd@ietfa.amsl.com>; Thu, 17 Jan 2019 04:20:11 -0800 (PST)
Received: from mail1.bemta26.messagelabs.com (mail1.bemta26.messagelabs.com [85.158.142.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E25D5130F59 for <rtg-bfd@ietf.org>; Thu, 17 Jan 2019 04:20:10 -0800 (PST)
Received: from [85.158.142.103] (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256 bits)) by server-1.bemta.az-a.eu-central-1.aws.symcld.net id 1A/7D-12934-8F2704C5; Thu, 17 Jan 2019 12:20:08 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA1VTa0hTYRj22zk7O8UWX3Pm29BoC7uy5SpIg3I VgXQjoguFUsd52obzaGdbaYEYKZlj3bDQpZlmBTOwyxCTjJQIF5LLICgwHd2FsrKLhl3OZXb5 8/J87/O8z/t8h+/QhHaE0tNskYflOcZlpCaTSwzWbNM33pqV+qs7PW38xsa0kfFWlPalI6q0E pk3A/2qzKamMUVm2aswtYnYqXRyOQVFu5WOK+/fKQtDUVRUU3uWKkVXn6FKNJkmcSMBHacuEO JBi48roK7hSOwwgOBiWY+yEk2iKbwcrjf3UyLW4cUQKvsu9QmcB93N7UjE8YLmxMcWoU8LmhU w2rtHlq+CSLRHJWISp0C4flCSa3A2XLjbRcq7qhRwtLpS8p+EN8NIWYMkQngafLt/RSHvSoSn L+olDBhD061eQsYJ8Pb5T6Wsz4GBl/IsYANUP6tVyTgZ+up90pUBH1ZBayw0YBN8OH2aEEMD3 gAfmvNkOAtCb7Jl+VMEw5fKY7vmw9DDkzHsgps+X8wmCe6Gr1HyQAMFj7vuSYQW26C7doSURT Mg6I+SsihCwPDnYeIEWhD453Iy5iDSV4EC0leaCuGaF2RACEXgedDSvlCWGKDKF1XJeC6U19a p/u2fR6ogSs/hnXaHJ59xukyW1FSTxbLYtEioS83MARNjZr0mG8t5eEZgzcx+t9ldnG9z5Zo5 1nMdCQ8td6/C24bOXLZ3oem0wpigwanWLO2UnILcYgfjduzivS7W3YWSaNoIms17BW4qz9rZo j1Ol/BaJ2ig1Uad5nWhQGvchUy+22mXqftoDX2nMVpH0KGBV0Jtl2pNzWuhvusUqpbkCjhWn6 j5JHpjcdjh5f5YT/wLfShZH69BcXFxWnUhy+c7Pf/zQyiRRsZ4jUF0UTs5z58EQ0I4hRAuMpg hhvMwfyl9KfJ+9JkysnaG7szptI12vum+/SmUQiDi0WrY1dh8xJ8xputY28un7CiY5q/ePudy VXnYsC7Yf9Cv37IsKeri4dy6B8y2rfcanzSUVMy+/fj5gvTwemuLPnlA93n7MZ36pf1H+2FL/ cpAz+A+WzDSdqikMu/rqYTEmerg+3Q/0lFG0u1gLPMJ3s38Bs18jx0GBAAA
X-Env-Sender: Alexander.Vainshtein@ecitele.com
X-Msg-Ref: server-25.tower-228.messagelabs.com!1547727604!327985!1
X-Originating-IP: [52.33.64.93]
X-SYMC-ESS-Client-Auth: mailfrom-relay-check=pass
X-StarScan-Received:
X-StarScan-Version: 9.31.5; banners=ecitele.com,-,-
X-VirusChecked: Checked
Received: (qmail 30585 invoked from network); 17 Jan 2019 12:20:06 -0000
Received: from us-west-2b.mta.dlp.protect.symantec.com (HELO EUR02-VE1-obe.outbound.protection.outlook.com) (52.33.64.93) by server-25.tower-228.messagelabs.com with AES256-SHA256 encrypted SMTP; 17 Jan 2019 12:20:06 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ECI365.onmicrosoft.com; s=selector1-ecitele-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=VV13Y6kn2N1Gw4OZHBRcfhEgnDbe61fxkcDC5i7dBeU=; b=e5VOApkmgQ1gFlaKmRdF+z5YljydIW3vB+vctroGexaohfSicps9yqPbNaUjsxva5STV/Uqr6ShZ2Py+0NyILtzqVx/zJmU4ykadx7VEAovQN24TjEEGAlgXvgn/1PSRGLrrKDU+jMHtqD30p5hFqCmdaymHCBP/pR0VsujBVp0=
Received: from AM0PR03MB3828.eurprd03.prod.outlook.com (52.135.146.29) by AM0PR03MB4548.eurprd03.prod.outlook.com (20.177.40.81) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1537.27; Thu, 17 Jan 2019 12:20:02 +0000
Received: from AM0PR03MB3828.eurprd03.prod.outlook.com ([fe80::11d6:b959:e9f4:efd3]) by AM0PR03MB3828.eurprd03.prod.outlook.com ([fe80::11d6:b959:e9f4:efd3%5]) with mapi id 15.20.1516.019; Thu, 17 Jan 2019 12:20:02 +0000
From: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
To: Muthu Arul Mozhi Perumal <muthu.arul@gmail.com>
CC: "rtg-bfd@ietf.org" <rtg-bfd@ietf.org>, "stephane.litkowski@orange.com" <stephane.litkowski@orange.com>
Subject: RE: Can Multihop BFD be protected using RLFA backup?
Thread-Topic: Can Multihop BFD be protected using RLFA backup?
Thread-Index: AQHUrkVV9YV4BPwDHkKBLTtSD2VPtqWzOX+AgAASM4CAABBLYA==
Date: Thu, 17 Jan 2019 12:20:02 +0000
Message-ID: <AM0PR03MB3828BFEFB211011F62A105AD9D830@AM0PR03MB3828.eurprd03.prod.outlook.com>
References: <CAKz0y8xNcx9AmS-kx4nM1YXnqk8+PDPrPrdBhMs4jtYVegoz8g@mail.gmail.com> <25009_1547719034_5C40517A_25009_420_1_9E32478DFA9976438E7A22F69B08FF924B78E8A2@OPEXCLILMA4.corporate.adroot.infra.ftgroup> <CAKz0y8yuVJ7t31OKKm7F1G1aGYMOyFqdE=5JWjWeBBTH_-9OQQ@mail.gmail.com>
In-Reply-To: <CAKz0y8yuVJ7t31OKKm7F1G1aGYMOyFqdE=5JWjWeBBTH_-9OQQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.234.241.1]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM0PR03MB4548; 6:m04yKqkpf/cbovwU1RXqDXAWthe1kEs5kfjsNKh7QXJfArAQ5nk3qsBaem5SAse53njsq3KfOsi4UsdHtEQnfWzI85331T7SOGiugVPoB2Lfh9kvDF+JKU99rO2iAD+8V3euZUnHr0AlvW4imYrZKPIVa8B3/LhblyJvBRdJOIPJEsenb/VKjbVmfC0rVVR5ctyp/ct2KzMCWAcE9VQ0OgzJ9V+nMBJOYZkKuFeaU5eqrMbvtJjgu0zJ+sve/R1h2t3Y34aeQL7zlJG+lio/VO4eSufTkmc0srNQZUr1R7Hh10XZ0rE3SSAPBTBMriO04JK1IrqegiygajblSYXqY0BOpYVPt3sA1xbWZFngl0oXaFrJ8+7j+uGwXnmro/v1g3CuTf99nA7VGTR8rCsyuN5jkPxYXMvTtu4KRtBoS4teiRLuIifpVKGdpYaPpHjb0ZQ2TrXlA4a7rOFe0LkMxw==; 5:RjD5YxSEojDGcnU8TlH7ywnDYnWwDGxYsgDh9laWJ6X+S3DIfrKGaAOvdgtU1mSx0sefxUF7QzGMQeZKeXn0B57fxruttobCTKVgealWQaIwR15SqGrpMIKEKxEItCfd3LP+AJzXoJeF68SRVPygAO/d1KbhGKYaGvt029PAgLEL4N8SLmVUoD+xDbERqe59CrH/wnED/ZQAZbqmBl+0fw==; 7:LxLzVABJ619exdXL+SBkCF+yvPW/MoF46rPU2Pejg6YfHoa9HprmonEoYm8yASy7fVAmrHmmKG4ZCKi2RlxJ4gyFpGcvG77rIELpuhHGaNFqpkio5Q/hAzuIfPnK9Xd5hXpar1409JpmlVz0tyYzNw==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: e8107aaf-7e7c-4be2-e9e8-08d67c761b52
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600109)(711020)(4618075)(2017052603328)(7153060)(7193020); SRVR:AM0PR03MB4548;
x-ms-traffictypediagnostic: AM0PR03MB4548:
x-microsoft-antispam-prvs: <AM0PR03MB4548C1703C93F85BDE0CF4059D830@AM0PR03MB4548.eurprd03.prod.outlook.com>
x-forefront-prvs: 0920602B08
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(136003)(376002)(39860400002)(396003)(346002)(53754006)(189003)(199004)(51444003)(39060400002)(6436002)(2906002)(229853002)(106356001)(4326008)(55016002)(7696005)(105586002)(25786009)(5024004)(14444005)(86362001)(256004)(8936002)(8676002)(26005)(6506007)(53546011)(102836004)(6116002)(486006)(790700001)(6246003)(76176011)(3846002)(71190400001)(71200400001)(97736004)(81166006)(81156014)(186003)(14454004)(72206003)(478600001)(236005)(54896002)(6916009)(6306002)(9686003)(53936002)(476003)(446003)(99286004)(66066001)(11346002)(33656002)(66574012)(54906003)(68736007)(74316002)(5660300001)(316002)(7736002); DIR:OUT; SFP:1102; SCL:1; SRVR:AM0PR03MB4548; H:AM0PR03MB3828.eurprd03.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ecitele.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: L1jNyCg7IDCh7pqDLqrr6BPe4aIoOCeXeI6NimNwB4NWdljShZcngM8P8mGDBmz1KP0XlpQvfkUyMpqKEZUYrAPQ3GZHj37Itc8aS19lV8PCVLrvGHSOsE7wrc7PyPhH9t690UAbzlhwRM9uZ7JflLA5D+K9ibUiq0VCFETOTNZ1qKJRkxCB3FgF9PCYjtTBcqAFclAqwIkd1pj0+D7Ux+nEKbR34Hwd3edRJAyrlcUFJRLb2RRn2z0uNqjd1yYQBxlzNR3d2tPccVUhR3x9xzY273zfzE8KBYgpL9F82SeCS18imnfgYqKPxpHO3unadHKsueZ4nEIfTKL03/d9vI7vuF/cfPUyoNrct7poiT6ZincZTZzZ6/CymTA/G/PlAHxRTCjKI7UEtfEfvPvD+rxrbq190Ylsgqmox3MdgN0=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_AM0PR03MB3828BFEFB211011F62A105AD9D830AM0PR03MB3828eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ecitele.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e8107aaf-7e7c-4be2-e9e8-08d67c761b52
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jan 2019 12:20:02.4066 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2c514a61-08de-4519-b4c0-921fef62c42a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR03MB4548
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/2GEz46E6wJ4jAX6TNIsV7H-7chU>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Jan 2019 12:20:15 -0000

Muthu,
Regarding the question in your 2nd email “Do we know of any implementation that provides RLFA FRR protection to multihop BFD packets?”
My employer (ECI Telecom) has implemented multi-hop IP BFD protected by IP FRR (including local and remote LFA) with encapsulation that follows RFC 5883.
(As explained by Stephane, IP FRR does not differentiate between multi-hop IP BFD and any other native IP traffic to the protected destination).
Multi-hop IP BFD is used for reliable and reasonably fast detection of failure of iBGP peers that, in its turn,  can trigger appropriate protection mechanisms.

Regards,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com

From: Rtg-bfd <rtg-bfd-bounces@ietf.org> On Behalf Of Muthu Arul Mozhi Perumal
Sent: Thursday, January 17, 2019 1:02 PM
To: stephane.litkowski@orange.com
Cc: rtg-bfd@ietf.org
Subject: Re: Can Multihop BFD be protected using RLFA backup?

Hi Stephane,

Thanks for your response. Please see inline..

On Thu, Jan 17, 2019 at 3:27 PM <stephane.litkowski@orange.com<mailto:stephane.litkowski@orange.com>> wrote:
Hi,

I think that the fact that “control” packets can benefit of FRR is really implementation dependent. It is also linked to the place where BFD packets are created (RP or LC).
From a theoretical point of view, nothing prevents FRR to be used as for any packet generated by the router itself.

Do we know of any implementation that provides RLFA FRR protection to multihop BFD packets?

Regarding the encapsulation, if your BFD client is using RFC5883, this will not change during FRR, the FRR will just push labels on top independently.

The primary reason for my question on encapsulations is because RFC 4379 has the foll. as one of the reasons for using the destination address in 127/8 range for IPv4 (0:0:0:0:0:FFFF:7F00/104 range for IPv6) for diagnostic packets sent over MPLS LSP:
   1. Although the LSP in question may be broken in unknown ways, the
      likelihood of a diagnostic packet being delivered to a user of an
      MPLS service MUST be held to an absolute minimum.

Since multihop BFD uses a routable destination address, wondering whether there would be any issues if multihop BFD packets are sent over the RLFA backup path without following RFC 5884 encapsulation..

Regards,
Muthu

Again, the possibility to get FRR is really implementation dependent, as the forwarding decision of the BFD packet may not be taken by the network processor of the LC.

Brgds,

From: Rtg-bfd [mailto:rtg-bfd-bounces@ietf.org<mailto:rtg-bfd-bounces@ietf.org>] On Behalf Of Muthu Arul Mozhi Perumal
Sent: Thursday, January 17, 2019 10:16
To: rtg-bfd@ietf.org<mailto:rtg-bfd@ietf.org>
Subject: Can Multihop BFD be protected using RLFA backup?

Hi All,

Multihop BFD (RFC 5883) packets are sent over UDP/IP. The encapsulation used is identical to single hop BFD (RFC 5881) except that the UDP destination port is set to 4784.

Now, suppose on the ingress node there is no IP/LFA backup path for the destination address tracked by multihop BFD, but there exists an an RLFA backup path to that destination. In this case, is multihop BFD expected to be protected using the RLFA backup path i.e should multihop BFD packets be sent over the RLFA backup path if the primary path goes down?

If multihop BFD packets are to be sent over the RLFA backup path, what encapsulation should the ingress use? The encapsulation specified in RFC 5883 or the encapsulation specified in RFC 5884 (MPLS BFD)?

Please let me know you opinion.

Regards,
Muthu

_________________________________________________________________________________________________________________________



Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc

pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler

a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,

Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.



This message and its attachments may contain confidential or privileged information that may be protected by law;

they should not be distributed, used or copied without authorisation.

If you have received this email in error, please notify the sender and delete this message and its attachments.

As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.

Thank you.

___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is 
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this 
transmission in error, please inform us by e-mail, phone or fax, and then delete the original 
and all copies thereof.
___________________________________________________________________________