IETF Logo Mail Archive

RE: Persistent loops when mixing rtgwg-enterprise-pa-multihoming and rtgwg-dst-src-routing

Chris Bowers <cbowers@juniper.net> Thu, 27 July 2017 17:55 UTC

Return-Path: <cbowers@juniper.net>
X-Original-To: rtgwg@ietfa.amsl.com
Delivered-To: rtgwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9753131F6A for <rtgwg@ietfa.amsl.com>; Thu, 27 Jul 2017 10:55:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.021
X-Spam-Level:
X-Spam-Status: No, score=-2.021 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z0C3MdavmFEw for <rtgwg@ietfa.amsl.com>; Thu, 27 Jul 2017 10:55:05 -0700 (PDT)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-cys01nam02on0136.outbound.protection.outlook.com [104.47.37.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E1799131D2F for <rtgwg@ietf.org>; Thu, 27 Jul 2017 10:55:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=RzT43BukltENLOKEblWF1VOtVQiZ5OdhSpmKJzmnIyY=; b=ZSb5W/QXFh+29540WcYVDQsZIfijSsThKEhlouMtClb1fF/8Z11pCdd9EIG/Q01RB7BgK7PBlS5szfMZdRSqjcmTmb+aPNLyLayiFQl8hnIh58+kjYRqX77v3YrQRbkTE1N59dDtzE2/7+yicTGkBlYEO1MG7TyJiDHUDbpTHBY=
Received: from MWHPR05MB2829.namprd05.prod.outlook.com (10.168.245.11) by MWHPR05MB3326.namprd05.prod.outlook.com (10.174.174.165) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.1.1304.10; Thu, 27 Jul 2017 17:55:02 +0000
Received: from MWHPR05MB2829.namprd05.prod.outlook.com ([10.168.245.11]) by MWHPR05MB2829.namprd05.prod.outlook.com ([10.168.245.11]) with mapi id 15.01.1304.016; Thu, 27 Jul 2017 17:55:02 +0000
From: Chris Bowers <cbowers@juniper.net>
To: Matthieu Boutier <boutier@irif.fr>
CC: David Lamparter <equinox@diac24.net>, "rtgwg@ietf.org" <rtgwg@ietf.org>, Anton Smirnov <as@cisco.com>, Jen Linkova <furry@google.com>
Subject: RE: Persistent loops when mixing rtgwg-enterprise-pa-multihoming and rtgwg-dst-src-routing
Thread-Topic: Persistent loops when mixing rtgwg-enterprise-pa-multihoming and rtgwg-dst-src-routing
Thread-Index: AQHTALSR8NDhHeBsN0+K10gou7y3N6JcVcwAgApTD/CAAUQXAIAAB1fA
Date: Thu, 27 Jul 2017 17:55:01 +0000
Message-ID: <MWHPR05MB2829E9BC3CA69A4BF380F568A9BE0@MWHPR05MB2829.namprd05.prod.outlook.com>
References: <20170719172913.GU773745@eidolon> <20170720074132.GW773745@eidolon> <MWHPR05MB282950D357E8B6597685E828A9B90@MWHPR05MB2829.namprd05.prod.outlook.com> <9BF40E52-63D7-4B04-815A-64F863241010@irif.fr>
In-Reply-To: <9BF40E52-63D7-4B04-815A-64F863241010@irif.fr>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=cbowers@juniper.net;
x-originating-ip: [66.129.239.12]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; MWHPR05MB3326; 7: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
x-ms-office365-filtering-correlation-id: 3840c1bc-6526-4db4-fcef-08d4d5189adb
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(300000503095)(300135400095)(48565401081)(2017052603031)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:MWHPR05MB3326;
x-ms-traffictypediagnostic: MWHPR05MB3326:
x-exchange-antispam-report-test: UriScan:(138986009662008)(788757137089)(211936372134217)(95692535739014)(153496737603132);
x-microsoft-antispam-prvs: <MWHPR05MB332685C9550289692B1AFCA5A9BE0@MWHPR05MB3326.namprd05.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(93006095)(93001095)(10201501046)(100000703101)(100105400095)(3002001)(920507026)(6055026)(6041248)(20161123564025)(20161123555025)(20161123560025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123558100)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:MWHPR05MB3326; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:MWHPR05MB3326;
x-forefront-prvs: 03818C953D
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(979002)(6009001)(39410400002)(39860400002)(39840400002)(39450400003)(39850400002)(39400400002)(377454003)(199003)(13464003)(189002)(51444003)(230783001)(93886004)(8936002)(81156014)(81166006)(6436002)(86362001)(54906002)(2906002)(38730400002)(7736002)(305945005)(9686003)(99286003)(55016002)(6246003)(53936002)(478600001)(8676002)(6506006)(110136004)(33656002)(106356001)(229853002)(53546010)(101416001)(3280700002)(3660700001)(105586002)(77096006)(66066001)(6116002)(102836003)(3846002)(189998001)(5660300001)(50986999)(97736004)(54356999)(76176999)(6916009)(2900100001)(4326008)(34040400001)(74316002)(2950100002)(14454004)(68736007)(25786009)(7696004)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR05MB3326; H:MWHPR05MB2829.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Jul 2017 17:55:01.9028 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR05MB3326
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtgwg/TznYLwwjLWCRTsBROQimRzfUcMg>
X-BeenThere: rtgwg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Routing Area Working Group <rtgwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtgwg/>
List-Post: <mailto:rtgwg@ietf.org>
List-Help: <mailto:rtgwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Jul 2017 17:55:08 -0000

Matthieu, 

With the proposed generalization of rule #3, together with a clarification that the source-prefix-scoped
forwarding table should be chosen based on longest source prefix match with the source address of the packet,
I think we are in agreement that the forwarding behavior described in rtgwg-enterprise-pa-multihoming 
Is identical to that described in rtgwg-dst-src-routing.

If anyone thinks that the forwarding behaviors (after the proposed generalization and clarification in
rtgwg-enterprise-pa-multihoming) are different, please speak up and provide an example.

Assuming that the forwarding behaviors are identical, we can now ask the question:  Is it useful to have 
two different representations of the same forwarding behavior?  I think it is.

It is not the case that "All the section 3 is about what to do if we don't have native destination-first SADR
tables but only policy routing."   If the two representations produce the same forwarding behavior, then one
should be free to implement using either representation.  

I think that enterprise network operators are going to have a very difficult time understanding 
destination-first SADR forwarding tables.   Instead, operators are very familiar with simple
destination-based forwarding tables.  I think that operators will find it much easier to understand and
troubleshoot when this forwarding behavior is represented using a set of source-prefix-scoped 
destination-based forwarding tables. 

When routing protocols are working properly, it shouldn't matter.  But when packets are not going where the 
network operator wants them to, they are going to want to be able to troubleshoot this by looking at the 
forwarding tables.

Thanks,
Chris

-----Original Message-----
From: Matthieu Boutier [mailto:boutier@irif.fr] 
Sent: Thursday, July 27, 2017 11:41 AM
To: Chris Bowers <cbowers@juniper.net>
Cc: David Lamparter <equinox@diac24.net>; rtgwg@ietf.org; Anton Smirnov <as@cisco.com>; Jen Linkova <furry@google.com>
Subject: Re: Persistent loops when mixing rtgwg-enterprise-pa-multihoming and rtgwg-dst-src-routing

Hi,

> Does this generalization of rule #3 resolve the discrepancy ?

It's not enough, because if you have overlapping source prefix, you'll need to change the following.

   1.  If the source address of the packet matches one of the source
       prefixes, then look up the destination address of the packet in
       the corresponding source-prefix-scoped forwarding table to
       determine the next-hop for the packet.

   2.  If the source address of the packet does NOT match one of the
       source prefixes, then look up the destination address of the
       packet in unscoped forwarding table to determine the next-hop for
       the packet.

Basically, you'll have to replace these two points by only one saying:
"order your entries by prefix specificity (longest match first)".

And… I have the feeling that the routing part is overcomplicated.  It should be as simple as: "put a SADR routing protocol on your network".
And you're done.

The draft discusses a lot about how to progressively deploy SADR in the network.  This should be put in a "progressive deployment" section, which would essentially say:

  - have a connected SADR backbone including the edge routers,

  - announce a default route from the backbone to attract packets.

It's the role of the routing protocol to be backward compatible with the legacy (non-SADR) version.

Also, about routing tables, section 3 clearly shows that if a packet matches two routes, it should follow the one with the most specific destination.  All the section 3 is about what to do if we don't have native destination-first SADR tables but only policy routing.  I believe it's the role of the routing protocol's implementation to deal with that (that's what we do since 2013).  Then section 3 could probably just be a reference to David's draft, since it only concerns SADR/dst-src/source-specific/etc. routing protocol implementations.

Matthieu

v2.23.0 | Report a Bug | By Email