Re: [secdir] SECDIR review of draft-ietf-bess-pta-flags-02.txt
"Christian Huitema" <huitema@huitema.net> Mon, 25 April 2016 19:20 UTC
Return-Path: <huitema@huitema.net>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E5C612D522 for <secdir@ietfa.amsl.com>; Mon, 25 Apr 2016 12:20:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4E_VObc4k7Oi for <secdir@ietfa.amsl.com>; Mon, 25 Apr 2016 12:20:25 -0700 (PDT)
Received: from xsmtp11.mail2web.com (xsmtp31.mail2web.com [168.144.250.234]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 440F512D680 for <secdir@ietf.org>; Mon, 25 Apr 2016 12:20:25 -0700 (PDT)
Received: from [10.5.2.18] (helo=xmail08.myhosting.com) by xsmtp11.mail2web.com with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from <huitema@huitema.net>) id 1aum3Q-0000ij-CA for secdir@ietf.org; Mon, 25 Apr 2016 15:20:24 -0400
Received: (qmail 402 invoked from network); 25 Apr 2016 19:20:19 -0000
Received: from unknown (HELO huitema2) (Authenticated-user:_huitema@huitema.net@[131.107.147.60]) (envelope-sender <huitema@huitema.net>) by xmail08.myhosting.com (qmail-ldap-1.03) with ESMTPA for <draft-ietf-bess-pta-flags.all@ietf.org>; 25 Apr 2016 19:20:19 -0000
From: Christian Huitema <huitema@huitema.net>
To: 'Eric C Rosen' <erosen@juniper.net>, iesg@ietf.org, secdir@ietf.org, draft-ietf-bess-pta-flags.all@ietf.org
References: <033501d19e81$1697ec40$43c7c4c0$@huitema.net> <e1c75234-498c-4db2-a76f-faf86ccef7fc@juniper.net>
In-Reply-To: <e1c75234-498c-4db2-a76f-faf86ccef7fc@juniper.net>
Date: Mon, 25 Apr 2016 12:20:18 -0700
Message-ID: <045801d19f27$818c46d0$84a4d470$@huitema.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQJ4tIhog5CnxYH6q0cOrVpsm7GB3QHgxMhnnj3d7RA=
Content-Language: en-us
Archived-At: <http://mailarchive.ietf.org/arch/msg/secdir/f-v_cqMWteyCCounkGxvxr4Hk4s>
Subject: Re: [secdir] SECDIR review of draft-ietf-bess-pta-flags-02.txt
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Apr 2016 19:20:27 -0000
On Monday, April 25, 2016 10:40 AM, Eric C Rosen wrote: > > On 4/24/2016 7:29 PM, Christian Huitema wrote: > > We have thus two possible issues: > > > > 1) A router supports RFC 6514 but does not implement the extension > > mechanism. > > 2) A router supports the extension mechanism, but does not support the > > specific extension. > > With regards to case 1, I don't think there's much to say. A router that > supports RFC 6514 but not the pta-flags draft will ignore all the flags except > the one that is defined in RFC 6514. > > Similarly, in case 2, a router that doesn't recognize a particular flag will ignore > it. However, I can add some text to the draft saying to ignore any bits you > don't recognize. Yes, please. > If there are mechanisms that require the use of a particular extension, those > mechanisms won't work properly with routers that don't support the necessary > extension. Applications that require such mechanisms either need to provide > signaling to determine whether all involved routers support the necessary > extension, or else they need to define procedures for interworking with routers > that don't support the extension. I could add some text stating this, but I don't > think there's much more that can be said. Don't routers have to relay these extensions to BGP-adjacent routers? In that case, are they supposed to blindly relay the extensions that they don't understand? Are they supposed to reset the corresponding flags to zero, or just leave them as is? It is probably obvious for you, but these things are often better said than just implied. -- Christian Huitema
- Re: [secdir] SECDIR review of draft-ietf-bess-pta… Christian Huitema
- [secdir] SECDIR review of draft-ietf-bess-pta-fla… Christian Huitema
- Re: [secdir] SECDIR review of draft-ietf-bess-pta… Eric C Rosen
- Re: [secdir] SECDIR review of draft-ietf-bess-pta… Christian Huitema
- Re: [secdir] SECDIR review of draft-ietf-bess-pta… Eric C Rosen
- Re: [secdir] SECDIR review of draft-ietf-bess-pta… Christian Huitema