IETF Logo Mail Archive

Re: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07

Olaf Struck <olafstruck@hotmail.com> Fri, 29 March 2024 13:03 UTC

Return-Path: <olafstruck@hotmail.com>
X-Original-To: savnet@ietfa.amsl.com
Delivered-To: savnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8458C14F693 for <savnet@ietfa.amsl.com>; Fri, 29 Mar 2024 06:03:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.222
X-Spam-Level:
X-Spam-Status: No, score=-1.222 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FORGED_HOTMAIL_RCVD2=0.874, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hotmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LZAxU1OZiBlI for <savnet@ietfa.amsl.com>; Fri, 29 Mar 2024 06:02:59 -0700 (PDT)
Received: from HK3PR03CU002.outbound.protection.outlook.com (mail-eastasiaazolkn19011003.outbound.protection.outlook.com [52.103.64.3]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A848BC14F68C for <savnet@ietf.org>; Fri, 29 Mar 2024 06:02:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eQdUbim8ywvX8ZMH5lIFJevqNm5RhMkvrS6rSyIyUq9gtChsK85IjRFvi3o8Rhpathq+zHBJxFLC0UUl7hOVMKC6n+V2HQEh/9gTr6N0QpQAAomI0W6vWADOUEahfaVO555AIJYkxqcn8h3F8aDuMkA5NkRzizBJ/2m3CCNQtdvP2FI2gnB+CkBIwPNS4NuiqZlzmN5bqEmCWzP9TpfURvmVaHPm9NEylKEBdCJabDFF68DE8vG77vJDQNzQrREiQi6b5Rg5T6E0rPEWl0Ug2gH1GFnczdv+6tUIfBAEpFi05ubUDgUF+vWwKobVcrnqfsTJdHJEjGEtcc7vR1xzAg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=elFjwzZ3G2MHGaLcb9mlymNmXNL8ejsYgGid6DIkH2I=; b=gy5qrFIDbD1uCJf8yBuERmfK3T66wuqoswPyWJlr0bVUqioDsHIrjGoAWyPYkUczQHhlZh+j3H+BoCp/xN9hxt9Cxnm6HaHSQqJFQY+Ix3I0soddi7/fbUoQcimyKW1QcInv5Bda6H8+Dzce6inYSjifxLJKNU+sAfSJdEqD9iwHeu5H4QWQYhPkhGGt0Exawcy1tTvTt9f51Cme5dj57fTWHzHrFhORDfXJBZL70qI42Zz2LVPWW6Uj4/T7NGkPuFZgMAbofLYCQeFWykDS/+dumMmkh9pEabLJC1akjMh1wUmMm6z8DKslouu9r0RWjEfRnTo7qI7pZLkUYZu1Yg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=elFjwzZ3G2MHGaLcb9mlymNmXNL8ejsYgGid6DIkH2I=; b=T97z8S4u4meEzXESsHG3UC0n+ReU/7bknNccEPa3ZqJPVy3zlNcHOdGsKeUMWOl7+xBiMSqt1woGRj3o7M402VGE1inGuCQRh3kldp2ol3uxEeMgnzeVKZrLB5FtPjKZBYTRVWU8SR6WkPh5+DhWsL0xGjckBXYcpfxz2Tsf/G1/ABxjGVuDLzp+kJkTE2PPrYIjxCQiDQjApTe0endM6/9ikDBoa0sSld0jh/Q4ljyRgjYKEq+/Q2/f977UtsmqaNH3jXsRg78WDO5qebbrMbTjzlZ1Q7RvZKyJdnFGRqM4kLVlVUk3rttieDA6sxPJ3aeFmdKuPtJGQ4oxOMZ6Xg==
Received: from TYSPR03MB8903.apcprd03.prod.outlook.com (2603:1096:405:97::7) by TYZPR03MB8646.apcprd03.prod.outlook.com (2603:1096:405:b4::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.31; Fri, 29 Mar 2024 13:02:55 +0000
Received: from TYSPR03MB8903.apcprd03.prod.outlook.com ([fe80::218:94f0:2c91:95e3]) by TYSPR03MB8903.apcprd03.prod.outlook.com ([fe80::218:94f0:2c91:95e3%7]) with mapi id 15.20.7409.039; Fri, 29 Mar 2024 13:02:54 +0000
From: Olaf Struck <olafstruck@hotmail.com>
To: Lancheng Qin <qlc19@mails.tsinghua.edu.cn>
CC: "savnet@ietf.org" <savnet@ietf.org>, "liulb@zgclab.edu.cn" <liulb@zgclab.edu.cn>
Thread-Topic: Re: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07
Thread-Index: AQHagYO4nDQ8ZmaP6US36UK+SuuMbbFOmxa2
Date: Fri, 29 Mar 2024 13:02:54 +0000
Message-ID: <TYSPR03MB8903AB1ECB9224B87E243F6AC33A2@TYSPR03MB8903.apcprd03.prod.outlook.com>
References: <TYSPR03MB89035199FE9406A5C35CAC20C33B2@TYSPR03MB8903.apcprd03.prod.outlook.com> <459bee5d.2e95e.18e881ca7ca.Coremail.qlc19@mails.tsinghua.edu.cn>
In-Reply-To: <459bee5d.2e95e.18e881ca7ca.Coremail.qlc19@mails.tsinghua.edu.cn>
Accept-Language: en-AU, zh-CN, en-US
Content-Language: en-AU
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-tmn: [ggaA+QuvVqGDEjMw35cp9ANx0E/+x1zY]
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: TYSPR03MB8903:EE_|TYZPR03MB8646:EE_
x-ms-office365-filtering-correlation-id: 14be8781-37d7-4f7b-b925-08dc4ff08c4b
x-ms-exchange-slblob-mailprops: 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
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_TYSPR03MB8903AB1ECB9224B87E243F6AC33A2TYSPR03MB8903apcp_"
MIME-Version: 1.0
X-OriginatorOrg: sct-15-20-4734-24-msonline-outlook-c0b75.templateTenant
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: TYSPR03MB8903.apcprd03.prod.outlook.com
X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-Network-Message-Id: 14be8781-37d7-4f7b-b925-08dc4ff08c4b
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Mar 2024 13:02:54.3972 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYZPR03MB8646
Archived-At: <https://mailarchive.ietf.org/arch/msg/savnet/0LwYA6xmwJl1ghvuz-nc_dxGxNI>
Subject: Re: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07
X-BeenThere: savnet@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Source Address Validation in Intra-domain and Inter-domain Networks <savnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/savnet>, <mailto:savnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/savnet/>
List-Post: <mailto:savnet@ietf.org>
List-Help: <mailto:savnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/savnet>, <mailto:savnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Mar 2024 13:03:02 -0000

Hi,


Thank you for the reply, it becomes clear to me.

The SAV architecture in the draft seems to employ the same or similar automatic mechanism in style as the route selection for FIB, but there are fundamental differences between the two, which will lead to different executing effects on the device.


Route (FIB) selection is a process for selecting the optimal routes among all those feasible routes. As we known, it was created for this purpose from the first beginning. The key premise of this genenral functionality is that all alternative routes from different protocols always provide exactly accurate packets forwarding in any case. It is not a workable mechanism to seek out relatively more accurate entries, especially when it may tolerate potentially inaccurate SAV entries on a network equipment.


Forwarding and processing packets correctly is the basic task of a device. If the mechanism is just copied from there to here, then perhaps it doesn’t need to state more about the consequence that the mechanism will cause on the network. The new architecture introduced in this draft also cloud not meet the requirements ultimately concluded in draft “draft-ietf-savnet-inter-domain-problem-statement-04”.


It might be valuable as a research effort, especially as it proposed the concept of specific rules table for accurately performing source address validation. But if we treat the main mechanism of this architecture as a potential standard that will emerge into the industry recently, it’s obvious that it cannot stand to the most basic verification of network practices, and I don’t think any vendor will develop and implement complying with it on devices in the foreseeable future.



In addition, the above is not a negation to any new feature for generating accurate source address validating entries(even if it will take effect in patial and explicit scope at first), whether they are derived from the SAV-Specific information or other information available.


Best,

Olaf.S


________________________________
From: Lancheng Qin <qlc19@mails.tsinghua.edu.cn>
Sent: Friday, 29 March 2024 3:49
To: Struck Olaf <olafstruck@hotmail.com>
Cc: savnet@ietf.org <savnet@ietf.org>
Subject: Re: Re: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07

Hi Olaf.s,



Correct.


To achieve accurate validation (especially in the incremental deployment scenario), the new SAV solution is suggested to preferentially use higher-priority SAV-related information to generate SAV rules. You can refer to Section 9 for more details.


Best,
Lancheng


-----原始邮件-----
发件人: "Struck Olaf" <olafstruck@hotmail.com>
发送时间: 2024-03-28 19:13:43 (星期四)
收件人:
抄送: "savnet@ietf.org" <savnet@ietf.org>
主题: Re: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07


Hi Libin,



Referring to the introduction in section 6, does it mean that if the high-priority entry existed in SIB, then the SIB Manager will select it (e.g., SAV-specific Information, RPIK information) as the SAV Rule that will be executed on forwarding plane, otherwise the relatively low-priority entries (e.g., information from RIB, FIB, etc.) are preferred.



Just to be clear, according to the design concept of the mechanism in this draft, is that a right understanding of how it roughly works?







Best,

Olaf.s



From: Libin Liu<liulb@zgclab.edu.cn>
Sent: 2024-03-23 10:51:57
To: savnet@ietf.org
Subject: [savnet] Request WG adoption of draft-wu-savnet-inter-domain-architecture-07


Dear WG and Chairs,
Following the presentation in the WG meeting on this draft, we would like to request the SAVNET WG adoption for it.
As we presented in the WG meeting, this draft addresses all the comments from our community and all its updates have been discussed during the meetings from IETF 115 to IETF 119, as well as in the mailing list.
Thank you.
Best,
Libin
--
savnet mailing list
savnet@ietf.org
https://www.ietf.org/mailman/listinfo/savnet

v2.23.0 | Report a Bug | By Email