Re: [Sidrops] Alvaro Retana's Discuss on draft-ietf-sidrops-rov-no-rr-03: (with DISCUSS and COMMENT)
Randy Bush <randy@psg.com> Tue, 23 August 2022 20:37 UTC
Return-Path: <randy@psg.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8AF68C14CE3B; Tue, 23 Aug 2022 13:37:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zY2UGTxjjdpB; Tue, 23 Aug 2022 13:37:27 -0700 (PDT)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:8006::18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BCCADC14CE29; Tue, 23 Aug 2022 13:37:06 -0700 (PDT)
Received: from localhost ([127.0.0.1] helo=ryuu.rg.net) by ran.psg.com with esmtp (Exim 4.93) (envelope-from <randy@psg.com>) id 1oQae1-000eL8-8r; Tue, 23 Aug 2022 20:37:05 +0000
Date: Tue, 23 Aug 2022 13:37:04 -0700
Message-ID: <m21qt6r91r.wl-randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Alvaro Retana <aretana.ietf@gmail.com>
Cc: SIDR Operations WG <sidrops@ietf.org>, The IESG <iesg@ietf.org>, draft-ietf-sidrops-rov-no-rr@ietf.org
In-Reply-To: <CAMMESsymyZ6Z2fd7e3N1ENYiZZOi+nrUxkw+AaFGn0NmhuNhAg@mail.gmail.com>
References: <166120276077.15778.13751342808130076354@ietfa.amsl.com> <m2czcrrcel.wl-randy@psg.com> <CAMMESsymyZ6Z2fd7e3N1ENYiZZOi+nrUxkw+AaFGn0NmhuNhAg@mail.gmail.com>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/26.3 Mule/6.0 (HANACHIRUSATO)
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/R-RgEoXtOmnOFgyhKJhYY3BfuNk>
Subject: Re: [Sidrops] Alvaro Retana's Discuss on draft-ietf-sidrops-rov-no-rr-03: (with DISCUSS and COMMENT)
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Aug 2022 20:37:31 -0000
hi alvaro: >>> Was there any consideration given to making a general recommendation >>> and not just limiting it to ROV? I can see the direct impact on >>> rfc6811/rfc8481, and how general BGP advice is out of scope for >>> sidrops. However, I am primarily curious whether there is anything >>> particular to ROV to focus the recommendation this way. >> >> we are not aware of automated provisioning tools which have a policy >> update frequency on the order of ROV, which can now be seen on the order >> of ten minutes. >> >> this document was a response to real operational events, not theory. >> >> the authors are not aware of other provisioning tools which have fluxed >> policy to the point of other proviers de-peering due to the route >> refresh load. >> >> but, a comment that other high flux rate policy changes might also cause >> similar problems would not hurt. how about >> >> Other mechanisms, such as automented policy provisioning, which >> have flux rates similar to ROV (i.e. on the order of minutes), >> could very well cause similar problems. > > As I said, I just wanted to discuss this point. > > The text is ok -- I just hate to hide this type of information in a > ROV-specific document. Too late for this document, but it would have > been better for the recommendation to be general and to use ROV as an > example/motivation. > > ** Consider this point closed. ** ack >>> (2) I have a couple of issues with this paragraph from §4. Addressing >>> them should be relatively easy: > ... >>> (b) "MUST be saved (either separately or marked)" >>> >>> For a required action, the description is not clear. For starters, >>> "marked" how? Separately where? >>> >>> From §1.1/rfc4271: >>> >>> The Adj-RIBs-In contains unprocessed routing information that has >>> been advertised to the local BGP speaker by its peers. >>> >>> The RIB structures in rfc4271 are conceptual -- but since this >>> document requires keeping information (presumably in the >>> Adj-RIB-In), please be more specific about where and marked how. >> >> as you just pointed out, for many implementations, adjribin is purely >> conceptual. so what those implentations do is hidden black magic. so >> how do we describe augmenting black magic? do you have a suggestion? > > rfc4271 spends a lot of time describing the conceptual operation of > the RIB and those implementations do just fine. ;-) > > The text is confusing because it implies that there is a "separate" > place to keep the information, even if the section is titled "Keeping > Partial Adj-RIB-In Data". i am not sure we can be much clearer than "MUST be saved (either separately or marked)" without specifying specific mechanisms. or are you actually suggesting augmenting the Path Attributes in 4271 §5.1 with a new attribute ROV Dropped and then hacking the FSM to deal with it? that will engender a five year discussion in idr. probably more, as it took eight years to change the message length from 4096 to 64k. > Also, it seems to separate the storage (separately) from an indication > that the route is somehow recognized as one that was dropped > (marked). There's no explanation for either. separate store was just a way of marking. > Combining the two points, here's my suggestion: > > A route that is dropped by operator policy due to ROV MUST be > considered ineligible and MUST be kept in the Adj-RIB-In for > potential future evaluation. ok. whew! >>> (3) The following requirement from §5 is outside the scope of this document: > ... >> If the BGP speaker has insufficient resources to support either of >> the two proposed options, it MUST NOT be used for Route Origin >> Validation. The equiptment should either be replaced with capable >> equipement or ROV not used. I.e. the knob in Section 4 should only >> be used in very well known and controlled circumstances. > > The problem that I have is that the normative language applies to the > box: "the BGP speaker...MUST NOT be used" -- how about if we turn it > around: > > The mechanisms specified in this document MUST be used in > well-known and controlled circumstances. If the equipment > has insufficient resources to support either of the two > proposed options, it should either be replaced with capable > equipment or ROV not used. > > ** At this point we're probably splitting hairs, so we can consider > this item closed too. ** If the BGP speaker's equipment has insufficient resources to support either of the two proposed options, it MUST NOT be used for Route Origin Validation. The equiptment should either be replaced with capable equipement or ROV not used. I.e. the knob in Section 4 should only be used in very well known and controlled circumstances. published as -05 randy
- [Sidrops] Alvaro Retana's Discuss on draft-ietf-s… Alvaro Retana via Datatracker
- Re: [Sidrops] Alvaro Retana's Discuss on draft-ie… Randy Bush
- Re: [Sidrops] Alvaro Retana's Discuss on draft-ie… Alvaro Retana
- Re: [Sidrops] Alvaro Retana's Discuss on draft-ie… Randy Bush
- Re: [Sidrops] Alvaro Retana's Discuss on draft-ie… Alvaro Retana