IETF Logo Mail Archive

Re: Opsdir early review of draft-ietf-rtgwg-vrrp-rfc5798bis-02

Acee Lindem <acee.ietf@gmail.com> Fri, 03 March 2023 13:48 UTC

Return-Path: <acee.ietf@gmail.com>
X-Original-To: rtgwg@ietfa.amsl.com
Delivered-To: rtgwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99F1BC14F6EB; Fri, 3 Mar 2023 05:48:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HlA9wGUo1Njg; Fri, 3 Mar 2023 05:48:55 -0800 (PST)
Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD24CC14EB14; Fri, 3 Mar 2023 05:48:55 -0800 (PST)
Received: by mail-qt1-x829.google.com with SMTP id r5so2831423qtp.4; Fri, 03 Mar 2023 05:48:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1677851334; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=YUrYydNWzXWTMqE5n15myeSdqlj7tYd+fQDoJzm/0Ig=; b=PoAPtBTrd2dmBQ0ugdpskSznEDWMABoNgnH/qN5E4jrtyfeir5pauPN4MGBqILQpcs assHJ8wa81h2PPw1v7NxfXBRTlW+mO8d1zVTSeFH0dcLst7USR/jXVmkIaczMlkzFobP IPqoMc5d1G0SYeWodpUBMNLfrrfI7RBF4OXcHaybqxZI72DqQHiTr9YteictOLYNpPSZ ytyaWj4dkbU366qaHRB1XHqIlBaFeRX4pND8GzN6Dc62/Ctl19auDYZiKHl1J4PRvRCF fQRrMkzqlc/7iHFE/n2HAJ8VkHXZGVAiM9GUMwJifwhW0InhRtHX9s/iZ1cwjeH9ykJV MEeg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1677851334; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=YUrYydNWzXWTMqE5n15myeSdqlj7tYd+fQDoJzm/0Ig=; b=Envxoa4/8lH2lOTySP93ivjYcDaTpLHHlclJEmQ8yP6rZpDkl67C0bMwDRr7VwT0Z5 u9wmlCjSUBiVoj0hcJZmbnBt71waiS43qG82s8KjahfGMTxz5JBBX2ufIJaEdeUFPNoW GPMAYODq/lN8RF8OWNHthkVUEdr/h0sjRLVHF+tRBPlvDdforT7QqUjF2MEKjatKtVy8 d02GgFNlLdaM5uSaidp/t6wJQwv4wPBG8TyWQCTKVC75UFh9GYTlyWu6WKb+paZ/zfLy 9A7FwtmI7Ul5lQ8wxkP0HijLTdE23TYdTtBhfkf95bBhZRGKJgiwc2dPmk9Z3ffdgEPk EsEQ==
X-Gm-Message-State: AO0yUKVqAIyP98wza7V80uT3Rs89nLA/fL0AghPdE3XqEvnp7VKitc6l p2IyKN/nSE499Ge+574rBhLeWKNOUtk=
X-Google-Smtp-Source: AK7set+iLm2tJlyAN0pdpFwOl6SqE6DTyu8gbyDLyW3koaSr6Q2OZ/NbM3Ps5fWtDIAKK37sliGV1w==
X-Received: by 2002:a05:622a:34a:b0:3bf:d258:c151 with SMTP id r10-20020a05622a034a00b003bfd258c151mr3321431qtw.12.1677851334527; Fri, 03 Mar 2023 05:48:54 -0800 (PST)
Received: from smtpclient.apple ([136.56.133.70]) by smtp.gmail.com with ESMTPSA id v8-20020a05622a188800b003b8558eabd0sm1837142qtc.23.2023.03.03.05.48.53 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 03 Mar 2023 05:48:54 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.400.51.1.1\))
Subject: Re: Opsdir early review of draft-ietf-rtgwg-vrrp-rfc5798bis-02
From: Acee Lindem <acee.ietf@gmail.com>
In-Reply-To: <5AE8AF67-E1C0-4752-8180-F956EDCCE2DF@jisc.ac.uk>
Date: Fri, 03 Mar 2023 08:48:41 -0500
Cc: "ops-dir@ietf.org" <ops-dir@ietf.org>, "draft-ietf-rtgwg-vrrp-rfc5798bis.all@ietf.org" <draft-ietf-rtgwg-vrrp-rfc5798bis.all@ietf.org>, "rtgwg@ietf.org" <rtgwg@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <FA122AEE-C479-4FF9-AFB2-60B735602C0A@gmail.com>
References: <167776579770.30850.17005971734554319236@ietfa.amsl.com> <7ECCA6B7-EA52-40E7-92EE-923AAC1E18A6@gmail.com> <5AE8AF67-E1C0-4752-8180-F956EDCCE2DF@jisc.ac.uk>
To: Tim Chown <Tim.Chown@jisc.ac.uk>
X-Mailer: Apple Mail (2.3731.400.51.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtgwg/v0vafCTutsU99f4utPxIyLFOibE>
X-BeenThere: rtgwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Routing Area Working Group <rtgwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtgwg/>
List-Post: <mailto:rtgwg@ietf.org>
List-Help: <mailto:rtgwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Mar 2023 13:48:56 -0000

Hi Tim, 

Thanks again for the detailed review and digging into the IPv6 operations. 

> On Mar 3, 2023, at 4:34 AM, Tim Chown <Tim.Chown@jisc.ac.uk> wrote:
> 
> Hi Acee,
> 
>> On 2 Mar 2023, at 16:45, Acee Lindem <acee.ietf@gmail.com> wrote:
>> 
>> [You don't often get email from acee.ietf@gmail.com. Learn why this is important at https://aka.ms/LearnAboutSenderIdentification ]
>> 
>> Hi Tim,
>> 
>> Thanks for your detailed review. I have some questions and comments on your comments. The rest of your comments were clear.
>> 
>>> On Mar 2, 2023, at 9:03 AM, Tim Chown via Datatracker <noreply@ietf.org> wrote:
>>> 
>>> Reviewer: Tim Chown
>>> Review result: Has Nits
>>> 
>>> Hi,
>>> 
>>> This draft is not yet submitted to the IESG. Comments and reviews were
>>> solicited before taking the document further.
>>> 
>>> This draft is an update to RFC 5798, VRRP v3 for IPv4 and IPv6. It changes
>>> terminology to be more inclusive, applies errata, makes a small number of
>>> technical changes, and extends the security considerations.
>>> 
>>> Overall, the draft seems to be progressing well as an update, and I would
>>> encourage the authors to continue that process, while also taking on board the
>>> comments below, some of which are general or open but others more specific.  I
>>> would say it’s Ready with Nits.
>>> 
>>> The document remains well-written, with an easy to read style.
>>> 
>>> Comments:
>>> 
>>> Abstract and first para of Introduction:
>>> The second sentence should reflect that 5798 is now in the past.  It can
>>> mention 3768 but that’s now a previous version.
>> 
>> The fact that this document obsoletes RFC 5798 is in the abstract and intro. RFC 3798 still is the definitive reference for VRRPv2. I don’t think any update is needed here.
> 
> It just reads a bit awkwardly for me, where the revision from 5798 isn’t mentioned in the first two sentences, but it says "It is version three (3) of the protocol” and then at the end it says " This document obsoletes VRRP Version 3 [RFC5798].” What’s obsolete is RFC5798, not VRRPv3.
> 
> It might be clearer to delete that last sentence and change the first two sentences
> 
> "This document defines the Virtual Router Redundancy Protocol (VRRP) for IPv4 and IPv6.  It is version three (3) of the protocol, and it is based on VRRP (version 2) for IPv4 that is defined in RFC 3768 and in "Virtual Router Redundancy Protocol for IPv6”.
> 
> to
> 
> “This document defines version 3 of the Virtual Router Redundancy Protocol (VRRP) for IPv4 and IPv6. It is based on VRRP (version 2) for IPv4 that is defined in RFC 3768 and in "Virtual Router Redundancy Protocol for IPv6”, and obsoletes the prevision specification of this version documented in RFC 5798.

This is a good suggestion and one that would improved the abstracts of other BIS documents. I will incorporate. 



> 
>>> Section 1.4:
>>> 
>>> “Hosts will learn the default routers in a few minutes” - in practice it is
>>> faster as hosts will send an RS when their interface comes up?
>>> 
>>> Is it really 38 seconds to determine a router is unreachable?  RFC 7048
>>> suggests it’s 3 seconds, and that that is (by the title) too impatient?
>>> 
>>> Are router preferences relevant here as per RFC 4191?
>> 
>> I really don’t want to get into a precise IPv6 ND specification in this document. How about if I update both of these to say “can take 10s of seconds”?
> 
> That’s fine. I don’t have enough experience to know what the figure is.  Saying 38 seconds seems very precise unless there’s a specific reason for the figure, and it is much more than the 3 seconds indicated in RFC 7048.  Saying “can take a few tens of seconds” seems fine, if that’s operational experience.

I believe this originally came from the original VRRP IPv6 draft that was incorporated into VRRPv3. I’m sure the numbers have changed over time.  


> 
>>> 
>>> Section 1.7:
>>> 
>>> Maybe add VR ID to the definitions
>>> 
>>> Section 4.2:
>>> 
>>> Should H3 and H4 here have IPvX B rather than A?
>>> 
>>> Section 7.4:
>>> 
>>> I think 2464 should be replaced by RFC 7217?  If so, maybe mention that the Net
>>> Interface element of the algorithm should maybe be the virtual MAC not the
>>> physical one?
>> 
>> I don’t think I have to replace RFC 2464 since RFC 7217 doesn’t even update it. I could add it but I think we want to use the physical MAC consistent with the RFC 2464 recommendation.
> 
> I’m quite surprised that section 4 of RFC 2464 hasn’t been obsoleted in some way.
> 
> I’d point you at bullet 5 of section 4 of RFC 7217, and I’d be surprised if you didn’t draw IESG comments about this when the document reaches that stage.  I think your aim with this review is to catch things before that stage, hence I’m flagging it.  For some it is likely to be a DISCUSS level comment.
> 
> Whether physical or virtual MAC is an interesting question.

I’ll get back to you on this one. I just scanned RFC 7217 the first time. 



> 
>>> 
>>> Section 11:
>>> 
>>> Should the protocol number registry be added here, where VRRP is 112 and cited
>>> as RFC 5798?
>> 
>> I agree but the IANA registry should be updated to this document since it obsoletes RFC 5798.
> 
> OK, I’m not 100% sure what needs to be captured in the IANA considerations, I mentioned it as it will need updating, and I’d assumed IANA would check the IANA sections of new RFCs as part of their process.  But happy to defer to your experience.

I’ve added it. 

> 
>>> Finally, I did stumble across some comments in section 7 of RFC 6527 while
>>> reading around the topic, on ambiguities for multi-stack VRRP operation. Should
>>> this draft bring those into scope, or leave them out?  If the latter, perhaps
>>> state this in the document.
>> 
>> 
>> I believe RFC 6527 is wrong. IPv4 and IPv6 virtual routers are always treated as separate logical instances. Note that the abstract says:
>> 
>>    "Within a VRRP router, the virtual routers in each of the IPv4 and IPv6 address families are independent of one another.”
>> 
>> Note that “routers” is plural. I’d disagree with any other interpretation.
> 
> OK, that’s fine.  Maybe just add that sentence then, in section 1.2?  "IPv4 and IPv6 virtual routers are always treated as separate logical instances.”  It may be obvious and unambiguous to you, but stating it can do no harm?

Sure. We should obsolete RFC 6527 as well - Aditya is taking the lead on that one as Cisco has implemented the MIB. I’m going to update the VRRP YANG model next. 

Thanks,
Acee


> 
> Best wishes,
> Tim
> 
>> 
>> Thanks,
>> Acee
>> 
>> 
>>> 
>>> Tim
>>> 
>>> 
>> 
>

v2.23.0 | Report a Bug | By Email