IETF Logo Mail Archive

Re: [Sidrops] question on draft-ietf-sidrops-aspa-verification-04

"Guyunan (Yunan Gu, IP Technology Research Dept. NW)" <guyunan@huawei.com> Mon, 11 May 2020 01:26 UTC

Return-Path: <guyunan@huawei.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 017BF3A0C7E for <sidrops@ietfa.amsl.com>; Sun, 10 May 2020 18:26:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dhlnq8RruPxw for <sidrops@ietfa.amsl.com>; Sun, 10 May 2020 18:26:06 -0700 (PDT)
Received: from huawei.com (lhrrgout.huawei.com [185.176.76.210]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D00853A0C7C for <sidrops@ietf.org>; Sun, 10 May 2020 18:26:05 -0700 (PDT)
Received: from lhreml744-chm.china.huawei.com (unknown [172.18.7.107]) by Forcepoint Email with ESMTP id 95EF1B59658354033D53; Mon, 11 May 2020 02:26:03 +0100 (IST)
Received: from lhreml744-chm.china.huawei.com (10.201.108.194) by lhreml744-chm.china.huawei.com (10.201.108.194) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1913.5; Mon, 11 May 2020 02:26:03 +0100
Received: from DGGEML424-HUB.china.huawei.com (10.1.199.41) by lhreml744-chm.china.huawei.com (10.201.108.194) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.1.1913.5 via Frontend Transport; Mon, 11 May 2020 02:26:02 +0100
Received: from DGGEML532-MBX.china.huawei.com ([169.254.8.202]) by dggeml424-hub.china.huawei.com ([10.1.199.41]) with mapi id 14.03.0487.000; Mon, 11 May 2020 09:25:57 +0800
From: "Guyunan (Yunan Gu, IP Technology Research Dept. NW)" <guyunan@huawei.com>
To: Alexander Azimov <a.e.azimov@gmail.com>
CC: "rv@nic.dtag.de" <rv@nic.dtag.de>, SIDR Operations WG <sidrops@ietf.org>
Thread-Topic: question on draft-ietf-sidrops-aspa-verification-04
Thread-Index: AdYdy08vebzctU/sRBSjzmRHyKjH2ACpL0yAALmBBzAA2L1MAAAdy1hg
Date: Mon, 11 May 2020 01:25:56 +0000
Message-ID: <C01B0098369B2D4391851938DA6700B717A28020@DGGEML532-MBX.china.huawei.com>
References: <C01B0098369B2D4391851938DA6700B7179F9EAB@dggeml512-mbs.china.huawei.com> <CAEGSd=APMCnnd5mrnMKtti-QWy1m7r5JfJsf7HynZqyXWwsZHg@mail.gmail.com> <C01B0098369B2D4391851938DA6700B717A0C386@DGGEML532-MBX.china.huawei.com> <CAEGSd=Bk3Lgte1L0KKP_GU+ieDpETvLk1JTVTLZTv-Z5NrVUoQ@mail.gmail.com>
In-Reply-To: <CAEGSd=Bk3Lgte1L0KKP_GU+ieDpETvLk1JTVTLZTv-Z5NrVUoQ@mail.gmail.com>
Accept-Language: en-US, zh-CN
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.108.203.151]
Content-Type: multipart/alternative; boundary="_000_C01B0098369B2D4391851938DA6700B717A28020DGGEML532MBXchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/RHVRCkJQ7Zjn6Nh-fFYtvpZ8yPg>
Subject: Re: [Sidrops] question on draft-ietf-sidrops-aspa-verification-04
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 May 2020 01:26:08 -0000

Hi Alex,

Thanks a lot for the reply. Please find my further comments inline.

From: Alexander Azimov [mailto:a.e.azimov@gmail.com]
Sent: Monday, May 11, 2020 2:52 AM
To: Guyunan (Yunan Gu, IP Technology Research Dept. NW) <guyunan@huawei.com>
Cc: rv@nic.dtag.de; SIDR Operations WG <sidrops@ietf.org>
Subject: Re: question on draft-ietf-sidrops-aspa-verification-04

Hi Yunan,

Please see my comments below.

ср, 6 мая 2020 г. в 10:12, Guyunan (Yunan Gu, IP Technology Research Dept. NW) <guyunan@huawei.com<mailto:guyunan@huawei.com>>:
Hi Alex,

Thanks for the elaboration, which totally makes sense to me. A suggestion here, the description of how to deal with the P2P relation using ASPA (just as what you described below) can be added to the draft for clarification.

Further, Section 5.2 says:
When route is received from provider or RS it may have both Upstream
   and Downstream paths, where a Downstream follows an Upstream path.

The “downstream” refers to both P2C path and P2P path, right? If so, I suggest to change the usage of “downstream” to “non-upstream” or similar wording to avoid confusion.
I do agree, this part isn't clear. I'll try to rephrase it.

Another point to confirm with you about Section 5.2:
Additional caution should be exercised when processing prefixes that
   are received from transparent IXes, as they don't add their ASN in
   the ASPATH.

To my understanding, that in this draft, you assume by default that RS prepends its own ASN to the AS_Path, right?
No, there is no such assumption.

Yunan: All right, so let’s assume in one case, the IXP does not prepend its own ASN, meaning the RS and one of its RS clients receives the same AS_Path, right? According to Section 5.1 (see below) and Section 5.2 (see below), I’m wondering why the detection rules are different for this RS (obeying Section 5.1) and this RS client (obeying Section 5.2) regarding the same AS_Path.

Section 5.1
   When a route is received from a customer, a literal peer, or by a RS
   at an IX, each pair (AS(I-1), AS(I)) MUST belong to customer-provider
   or sibling relationship.
Section 5.2
  When route is received from provider or RS it may have both Upstream
   and Downstream paths, where a Downstream follows an Upstream path.

And a final question about Section 7 Siblings (Complex Relations), regardless of the current description of what sibling relation is, do we think that sibling ASes are ASes that belong to the same operator? So any type of transition is free of charge?
Speaking about ASPA, we are speaking about peering relations, without any guess about the business between parties.
And from what I know - siblings are also spread among small networks, so this term is not strictly bound to the same administrative domain.

Yunan: well, I’m trying to understand what it means by “sibling”. Your draft defines how ASPA records are created for “sibling” relations, but no precise definition is given (only examples). I understand It is a complex relation, as stated in the draft, but still, I’m confused of the actual peering relations when we talk about “sibling”. Can you maybe provide a more specific text definition?

v2.23.0 | Report a Bug | By Email