IETF Logo Mail Archive

Re: [RTG-DIR] Rtgdir last call review of draft-ietf-bess-mvpn-fast-failover-11

Adrian Farrel <adrian@olddog.co.uk> Wed, 28 October 2020 22:34 UTC

Return-Path: <adrian@olddog.co.uk>
X-Original-To: rtg-dir@ietfa.amsl.com
Delivered-To: rtg-dir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15D863A0975; Wed, 28 Oct 2020 15:34:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.895
X-Spam-Level:
X-Spam-Status: No, score=-1.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gcRAw5TACIDM; Wed, 28 Oct 2020 15:34:29 -0700 (PDT)
Received: from mta6.iomartmail.com (mta6.iomartmail.com [62.128.193.156]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 31D543A0964; Wed, 28 Oct 2020 15:34:27 -0700 (PDT)
Received: from vs3.iomartmail.com (vs3.iomartmail.com [10.12.10.124]) by mta6.iomartmail.com (8.14.4/8.14.4) with ESMTP id 09SMYPcg028721; Wed, 28 Oct 2020 22:34:25 GMT
Received: from vs3.iomartmail.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 87B462203A; Wed, 28 Oct 2020 22:34:25 +0000 (GMT)
Received: from asmtp2.iomartmail.com (unknown [10.12.10.249]) by vs3.iomartmail.com (Postfix) with ESMTPS id 7234322032; Wed, 28 Oct 2020 22:34:25 +0000 (GMT)
Received: from LAPTOPK7AS653V (81-174-211-216.pth-as4.dial.plus.net [81.174.211.216]) (authenticated bits=0) by asmtp2.iomartmail.com (8.14.4/8.14.4) with ESMTP id 09SMYOXV010747 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Wed, 28 Oct 2020 22:34:24 GMT
Reply-To: adrian@olddog.co.uk
From: Adrian Farrel <adrian@olddog.co.uk>
To: 'Greg Mirsky' <gregimirsky@gmail.com>
Cc: 'Routing Directorate' <rtg-dir@ietf.org>, draft-ietf-bess-mvpn-fast-failover.all@ietf.org, 'BESS' <bess@ietf.org>, last-call@ietf.org
References: <160313815345.29014.16143591054021036590@ietfa.amsl.com> <CA+RyBmVwRPkmmAKTtoXU8FOoBDOpmt8ZDQkjhbiikqX8xv+-cQ@mail.gmail.com> <05d801d6ad31$6f9c8620$4ed59260$@olddog.co.uk> <CA+RyBmXUtFuDs-m7cRRU8JoOhkwF1qi90neXXZgLAk=KLCn=8A@mail.gmail.com>
In-Reply-To: <CA+RyBmXUtFuDs-m7cRRU8JoOhkwF1qi90neXXZgLAk=KLCn=8A@mail.gmail.com>
Date: Wed, 28 Oct 2020 22:34:24 -0000
Organization: Old Dog Consulting
Message-ID: <069f01d6ad7a$7d2d1450$77873cf0$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_06A0_01D6AD7A.7D2EC200"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQEXc6/5URbdVXHTAc3Ha8peCvXEZQJ9A0KhAhfdUqgBqyNbCKr6CwQw
Content-Language: en-gb
X-Originating-IP: 81.174.211.216
X-Thinkmail-Auth: adrian@olddog.co.uk
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.0.0.1623-8.2.0.1013-25754.003
X-TM-AS-Result: No--3.339-10.0-31-10
X-imss-scan-details: No--3.339-10.0-31-10
X-TMASE-Version: IMSVA-9.0.0.1623-8.2.1013-25754.003
X-TMASE-Result: 10--3.338600-10.000000
X-TMASE-MatchedRID: yebcs53SkkCWfDtBOz4q23FPUrVDm6jtekMgTOQbVFvJZ+JM5CpHL4wW IRmLVWq5qojE5NMe2v54ALRWKh3nHrFNLnxZnwKwcTwOmq5GKdCggD0QTkhjtFhs8uimgHNCulh wTZgE1UKdPR/XJ0icuOnZGDXcZ8Fh7ns6Ai0dhJl6UYddkosvazz/1sPAs6BH/lFb3v2WObTK8V ygGkP/nInv3vwQqwile9jndC0U8UkyMDewe9lsFbRStmZTxM8RMf5Pdi+0fLbn/CS2bpbexGNsf N14FqUGse3LcLM/dk7fissJdn3y3HAe/yBs2gz+yZHnIMmQ+DgO9z+P2gwiBQyGEPhoPKGaBl4C fsA0TRrISt5GhKoxQyKpGCIfnNoqjlL/hujrw1u+nmhfEafcLnFa/hQHt1A1WZPWhD/+jtf8716 Rh+7y7G7yMHV18pp9Yx6s0shRGqrtrl3Jv2BOW8zSKGx9g8xhbsFLINmYCfFfqFieeMpX7Ii6yF TH7VfQNGN2QO49D7OY/VRwEgpUfAy0MFDlU705Qjh5L2ZXj+wG4Mjghd+uP+9FCyScBaYaXk6rY WbCnNJQ1sHP9b2Qyd0vaLZ4STFlCO+xk15zOXQsYOarN8c4H5BWaCUAzeF0Sfw1tp2/A5GfrxRO IPp1mK2y8wBSBC2ItVMmpLIgUuzyxE0VpfsBj3RY26NC37mjTsTCHtXv0Pq1KWGoLeo86F2vft2 Sc3zC+2Epkgc6z1KYFFZ2knGK5HrtDYoHFDFeol3P2QZNIG8gzM7cbVibErytS1u1Z7z6MkraxE vUEJu8BznNPLZ/K5AHgIdIZGXM7gTdeu+LI6ueAiCmPx4NwGmRqNBHmBveGtkvK5L7RXGw7M6dy uYKgyMZ0itIR31GfHTWAocgSuBTV6eAx0xql12Wj5bEqyid8LtIT0QJtdaYMfLMKkGfg3BCAnec Id2ZSAr5XRXvw/BM9CKMz8j96J5RKOGouLVSqBwl7vOGau50+7VcVaEKG1QxYHG/xT9isALnuaW HiobIcJN0SFwx7MW7ITbFM3dM0h0KGmwSq5wR45lV3u84/8Tnihm4os/F
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-dir/RZ8ohAY58McdajA93IpMORv6sFo>
Subject: Re: [RTG-DIR] Rtgdir last call review of draft-ietf-bess-mvpn-fast-failover-11
X-BeenThere: rtg-dir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Area Directorate <rtg-dir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-dir/>
List-Post: <mailto:rtg-dir@ietf.org>
List-Help: <mailto:rtg-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Oct 2020 22:34:32 -0000

Hi again,

 

Thanks for rapid convergence.

 

All good.

 

Adrian

 

Section 3 notes that the procedure (presumably the procedure defined
in this section) is OPTIONAL. I didn't see anything similar in sections
4 and 5 stating that those procedures are optional. Presumably, since
this document is not updating any other RFCs, all of these procedures
are optional.

Actually it would be good to clarify how all these procedures fit in
with "legacy" deployments, and how they are all optional procedures. I
think that needs a short statement in the Introduction and a small
section of its own (maybe between 6 and 7).

GIM>> Thank you for the suggestion. I've updated the Introduction in this way:

OLD TEXT:

   Section 4 describes protocol extensions that can speed up failover by
   not requiring any multicast VPN routing message exchange at recovery
   time.

   Moreover, section 5 describes a "hot leaf standby" mechanism, that
   uses a combination of these two mechanisms.  This approach has
   similarities with the solution described in [RFC7431] to improve
   failover times when PIM routing is used in a network given some
   topology and metric constraints.

NEW TEXT:

   Section 4 describes optional protocol extensions that can speed up
   failover by not requiring any multicast VPN routing message exchange
   at recovery time.

   Moreover, Section 5 describes a "hot leaf standby" mechanism that can
   be used to improve failover time in MVPN.  The approach combines
   mechanisms defined in Section 3 and Section 4 has similarities with
   the solution described in [RFC7431] to improve failover times when
   PIM routing is used in a network given some topology and metric
   constraints.

I think that Section 5 is intended to explain how introduced BGP extensions and their use described in Section 3 and Section 4 enable operators to provide protection for multicast services. Would you suggest adding a new text to the section to highlight particular aspects of introducing protection in MVPN?

[af] OK I obviously wasn’t clear. What I’m looking for is something like…

The procedures described in this document are optional to enable an operator to provide protection for multicast services. An operator would enable these mechanisms using <foo> and it is assumed that these mechanisms would be supported by all <what?> in the network for the procedures to work. In the case that a BGP implementation does not recognise or is configured to not support the extensions defined in this document, it will respond <somehow> as described in <rfc????>. This would result in <something>.

GIM2>> I think I've got the idea now. Would appending the new paragraph to the Introduction address your comment:

NEW TEXT:

   The procedures described in this document are optional to enable an
   operator to provide protection for multicast services in BGP/MPLS IP
   VPNs.  An operator would enable these mechanisms using a method
   discussed in Section 3 in combination with the redundancy provided by
   a standby PE connected to the source of the multicast flow, and it is
   assumed that all PEs in the network would support these mechanisms
   for the procedures to work.  In the case that a BGP implementation
   does not recognize or is configured to not support the extensions
   defined in this document, it will continue to provide the multicast

   service, as described in [RFC6513]. 

 

[af] Perfect

 It is curious (to me) that 3.1.1 describes a way to know that a P-tunnel
is up.  You don't say, however, if being unable to determine that the
P-tunnel is up using this method is equivalent to determining that the
P-tunnel is down. (Previously in 3.1 you have talked about the "tunnel's
state is not known to be down".)

GIM>> This method, as noted in the document, is similar to BGP next-hop tracking, may be computationally intensive, and cannot be run frequently. So, in periods between checking whether the root address in the x-PMSI Tunnel attribute is reachable the state is "not known to be down".

[af] Well, OK. Can you add to say that, “If it is not possible to determine whether the state of a tunnel is ‘up’, the state shall be considered as ‘not known to be down’, and it may be treated as if it is ‘up’ so that attempts to use the tunnel are acceptable.” This is probably “obvious to one skilled in the art,” but would help this reader.

GIM2>> Thank you for the contributed text. I've added in before "not known to be Down" used in the text (with the yellowish background):

NEW TEXT:

   The procedure described here is an OPTIONAL procedure that is based

   on a downstream PE taking into account the status of P-tunnels rooted
   at each possible Upstream PE, for including or not including each
   given PE in the list of candidate UMHs for a given (C-S, C-G) state.
   If it is not possible to determine whether a P-tunnel's current
   status is Up, the state shall be considered "not known to be Down",
   and it may be treated as if it is Up so that attempts to use the
   tunnel are acceptable.  The result is that, if a P-tunnel is Down
   (see Section 3.1), the PE that is the root of the P-tunnel will not
   be considered for UMH selection.  This will result in the downstream
   PE failing over to use the next Upstream PE in the list of
   candidates.  Some downstream PEs could arrive at a different
   conclusion regarding the tunnel's state because the failure impacts
   only a subset of branches.  Because of that, procedures described in
   Section 9.1.1 of [RFC6513] MUST be used when using I-PMSI P-tunnels.

 

[af] Thanks

 By the way, do you ever say that a P-tunnel has just these two statuses
(up and down) because that could make a big difference?

GIM>> I think that the document then needs to discuss what impact detection time has on MVPN. For example, if the detection time is in single-digit seconds, a two-state model can be used. But would it be a useful model if the detection time is in tens of seconds? Should a "not known to be down" state be introduced?

[af] Yes, that *seems* to be the implication. But is there any different action between “up” and “not known to be down”? If you have three states then there is (possibly) an implication that tunnels are prioritised by state. I think, however, that it is OK to use “not known to be down” as if it was “up”.

GIM2>> Thank you.

3.1.2

   Using this method when a fast restoration mechanism (such as MPLS FRR
   [RFC4090]) is in place for the link requires careful consideration
   and coordination of defect detection intervals for the link and the
   tunnel.  In many cases, it is not practical to use both protection
   methods at the same time.

OK, I considered them carefully. Now what? :-)

I think you have to give implementation guidance.

GIM>> I agree, an operational recommendation could be helpful. Usually, in case of multi-layered protection, detection intervals on the higher layer are 10 times of guaranteed restoration time of the lower layer. Would you recommend adding this to the text as an example of a deployment? 

[af] An example would be fine (and a forward reference from here). But it would be fine, maybe better, to offer half a sentence of guidance. So…”not practical to use both protection methods at the same time because <adverse interactions?>….”

GIM2>> Thank you for the explanation. Extended the last sentence:

NEW TEXT:

   In many cases, it is not practical to use both protection
   methods at the same time because uncorrelated timers might cause

   unnecessary switchovers and destabilize the network. 

 

[af] Great

3.1.6

What should I do if I don't recognise or support the setting of the BFD
Mode field?

GIM>> I think that the same handling applies as for the malformed attribute:

   If malformed, the UPDATE
   message SHALL be handled using the approach of Attribute Discard per

   [RFC7606]. 

I propose to extend the applicability of the rule with the following update to the sentence:

NEW TEXT:

   The BFD Discriminator attribute MUST be considered malformed if its
   length is not a non-zero multiple of four.  If the setting of the BFD
   Mode field is not recognized or not supported, or the attribute
   considered malformed, the UPDATE message SHALL be handled using the
   approach of Attribute Discard per [RFC7606].

 [af] This is a bit subtle and refers also to my first point in this email. If the setting of the BFD Mode is not recognised or not supported, then it is likely because this specification is not supported. Therefore, this specification cannot mandate how the implementation will behave. I think you have to separate:

*	The malformed SHALL be handled using Attribute Discard according to [RFC7606]
*	An unknown or unsupported attribute will be handled by implementations according to the procedures for unknown attributes described in <foo>

GIM2>> I thought of a different "unsupported" scenario. Consider BFD Discriminator attribute is supported but an implementation does not recognize the value in the BFD Mode field. In the case the BFD Discriminator is unknown or unsupported procedures defined for the optional transitive path attribute in Section 5 of RFC 4271 must be followed. I've removed the recent updated and added the reference to RFC 4271 (added as the Normative reference) following the definition of the new attribute:

NEW TEXT:

   This document defines the format and ways of using a new BGP
   attribute called the "BFD Discriminator".  It is an optional
   transitive BGP attribute.  An implementation that does not recognize
   or is configured not to support this attribute MUST follow procedures
   defined for optional transitive path attributes in Section 5 of
   [RFC4271]. 

 

[af] That captures what I wanted to see. Thanks

==Nits:==

Section 3 has

   Because of that, procedures described in Section 9.1.1 of [RFC6513]
   MUST be used when using I-PMSI P-tunnels.

Aren't those procedures already mandatory? That section of 6513 already
uses "MUST" (although it oes go on to say that it might not be possible
to apply the procedure and delegates processing to 9.1.2 and 9.1.3 -
peculiarly using lowercase must for that delegation). I wonder whether
you are saying "this case is covered by the procedures of Section 9.1.1
of [RFC6513]" or are you actually defining new normative behaviour?

GIM>> I think that the use of lower case 'must' is ambiguous and somewhat confusing. You are right, the intention is to refer to Section 9.1.1 as the mandatory behavior. But neither 9.1.2, nor 9.1.3 use the normative language. What would you recommend?

[af] Maybe…

“Because of that, the procedures of Section 9.1.1 of [RFC6513] are applicable. That document is a foundation for this document and its processes all apply here. Section 9.1.1 mandates the use of specific procedures for sending intra-AS I-PMSI A-D Routes.”

GIM2>> Thank you for the text. Updated accordingly with noting "when using I-PMSI P-tunnels"

NEW TEXT:

Because of that, the procedures of
   Section 9.1.1 of [RFC6513] are applicable when using I-PMSI
   P-tunnels.  That document is a foundation for this document, and its
   processes all apply here.  Section 9.1.1 mandates the use of specific
   procedures for sending intra-AS I-PMSI A-D Routes.

 

[af] Fine

v2.23.0 | Report a Bug | By Email