IETF Logo Mail Archive

Re: [Sidrops] Genart last call review of draft-ietf-sidrops-ov-egress-01

Keyur Patel <keyur@arrcus.com> Wed, 18 March 2020 23:55 UTC

Return-Path: <keyur@arrcus.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 970173A1E7A; Wed, 18 Mar 2020 16:55:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netorgft1331857.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id liVf3S2ZKhW1; Wed, 18 Mar 2020 16:55:06 -0700 (PDT)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2083.outbound.protection.outlook.com [40.107.237.83]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CE0C3A1E7B; Wed, 18 Mar 2020 16:55:03 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LrSypMZST6GpzA+fqcGvH4Zm+jkTztONF3EeWvB1HXqGT6Rvcmv2hZ9U/qq5sBBtj+7k/PE932UeoBQ7IjcNRpsuuvF5S9mWLucqZZr0lbD+25q788FuGnLdu1ACVaCJc2rlWbN0SmfQFCV5UHDuL4xOg1kZ8yJPRsNhnt2GmnQHapPs1NO8lZ2KXzamCqa9DLoSo0PN0ObViRbG5mA/i1pUfwDVYBfO5KTpF/ImpVfzULrViMm8FgIKqItdsWJ7TbhvbUr5/L1af8NsHMaK1OEp2F55UGYC0x3paXQyj610VM22MTd5Y/gOVt7hxtdphskdvCYVfYP9VOCG2y3Zvg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=m6G5G5cUqwuiTzA1JMeRyI4q064EEAVW560RIHnVd2k=; b=MdmEsu8ydyA15HY2YTFmeTaYPDWYpZ6hkg/e52GuSco5wuX8ebDHBJZskAvJoXxYFZXk0ojsM5c1GrsjTGoBWt3aGJ+ARi5f5cggx2lyenDjWn7GSoOQ6pMXhv/DW1hJWSGijIxYQ5dVVgMoP3Ak+pOF3u5Qdub98Jx4TRAW2iP6owapJsSbRW440sKAqLtl/f2neOG5W6KOisBJjfdO4mQHJpdiX0V4qKs3knGcZgoHQ56595OKuuaj19tUc9YnHehPA0UxsZDwjq0Ux4IdEZbdL6wGQW3gI1i9ywdpzN3t7f54fC5lXMgK+FiiW0kEdAikd5r2j1ZEDEt6UsNpww==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arrcus.com; dmarc=pass action=none header.from=arrcus.com; dkim=pass header.d=arrcus.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=NETORGFT1331857.onmicrosoft.com; s=selector2-NETORGFT1331857-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=m6G5G5cUqwuiTzA1JMeRyI4q064EEAVW560RIHnVd2k=; b=ofGNrr2iqtHl0MmUS0Uh1/IWcQF9AomBVbIKUb0HjDSoZSmnWO49zU9qMgT2UXCvmwfRShqvx4Ct2EYJ13/y9y1gk8hVv8PU8yWgLrMH0WxyOy5mkN4806KOmlreYVaD7QFDc6gvlrFOD6LFEpsAQvstZdwHAonn/tBTgmcCZNk=
Received: from BYAPR18MB2534.namprd18.prod.outlook.com (2603:10b6:a03:12e::29) by BYAPR18MB2440.namprd18.prod.outlook.com (2603:10b6:a03:12f::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2814.22; Wed, 18 Mar 2020 23:55:01 +0000
Received: from BYAPR18MB2534.namprd18.prod.outlook.com ([fe80::410:1331:ad08:f859]) by BYAPR18MB2534.namprd18.prod.outlook.com ([fe80::410:1331:ad08:f859%7]) with mapi id 15.20.2814.021; Wed, 18 Mar 2020 23:55:01 +0000
From: Keyur Patel <keyur@arrcus.com>
To: Randy Bush <randy@psg.com>
CC: Robert Sparks <rjsparks@nostrum.com>, "gen-art@ietf.org" <gen-art@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "draft-ietf-sidrops-ov-egress.all@ietf.org" <draft-ietf-sidrops-ov-egress.all@ietf.org>, SIDR Operations WG <sidrops@ietf.org>
Thread-Topic: Genart last call review of draft-ietf-sidrops-ov-egress-01
Thread-Index: AQHV+Uph1zWgr+WNoEWHlzZmpUwEaqhNmAWAgAAdQYCAAAI0AIAAgDOAgACUXQD//81QgA==
Date: Wed, 18 Mar 2020 23:55:01 +0000
Message-ID: <9114C890-46E6-4D51-A01D-EE34E4D1022B@arrcus.com>
References: <158411258778.3418.757369789772046254@ietfa.amsl.com> <m2y2ry78fq.wl-randy@psg.com> <933a9d0d-319e-f6fb-4d02-82e27bb00509@nostrum.com> <m2o8su7383.wl-randy@psg.com> <5A210359-FE01-40BF-9BAD-E0250BB31BFC@arrcus.com> <m2v9n15teb.wl-randy@psg.com>
In-Reply-To: <m2v9n15teb.wl-randy@psg.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.22.0.200209
authentication-results: spf=none (sender IP is ) smtp.mailfrom=keyur@arrcus.com;
x-originating-ip: [2601:646:8700:a6f0:c83c:3627:eac7:4a8e]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6471abe5-5591-47ff-503f-08d7cb97c596
x-ms-traffictypediagnostic: BYAPR18MB2440:
x-microsoft-antispam-prvs: <BYAPR18MB2440C7750F0355995B29E530C1F70@BYAPR18MB2440.namprd18.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 03468CBA43
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39830400003)(136003)(396003)(376002)(346002)(366004)(199004)(54906003)(316002)(36756003)(66556008)(76116006)(66446008)(5660300002)(66946007)(66476007)(33656002)(508600001)(71200400001)(64756008)(2906002)(186003)(2616005)(6486002)(86362001)(8936002)(6512007)(81166006)(81156014)(8676002)(4326008)(53546011)(6506007)(6916009); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR18MB2440; H:BYAPR18MB2534.namprd18.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1;
received-spf: None (protection.outlook.com: arrcus.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: atinopnwKv5FfWinIz8HfjR0WX/QoTkGUKzul8j3ca1HxyMgzy3inF+CuwcAOYbbTSgcukKn099VOYqM/D5JpQqxkwMuzJD5vy5mymmNz83ncKvY329BGWIzPAtez/cCkdwdBneuvXV/qsrJ8oboPUH0jhzsfEi5Iw3ywBjAlDELmtn3DjpqG0GcAoeyUXQzaPx+DAzcdvwKmYx2hnIczNDY7lnRU1M0KV/zM5ao31Rwk5ZdHSDeVJ81ltJAIHFSmKzEvNfzg0PhKh0R4X0o3GQApzar/hzo+U4tC7n5m6RX+iQaHlQpBTjwE+sXRHRpaBWPsMdynmh9l46i3/zkyFzJ5Md1wakQp52BI3unSN6p3rXiceRWdJcppwWG2x7O/AUTRi6LkYOZh3uebD1ZCA5KyLKzYeMjqySlVAdnUtwdnyXIMCRmE8HivxCSQBVa
x-ms-exchange-antispam-messagedata: QKKJoVXbGAsQublRjTGRMK5zMo6SHkBW5yj1FrLPmkokXh4NJ0N4OpbLiGWvF+KScXdIMKjEiNgx6C8STsGx6akeg459pHoJUg2yq6I4ewGV4MjroilqUrCTbjymtXMCOJ5CrMBY9A7DQS8Q0DA6WDziA1TzVlgqssDFfsL1IPQhjOaALN5F9PeNaVqfnIAWIhg3W90b0t6PKa/2TitZ3g==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <2115718E3A6A264EB01B157B4BFD83F7@namprd18.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: arrcus.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6471abe5-5591-47ff-503f-08d7cb97c596
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Mar 2020 23:55:01.1007 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 697b3529-5c2b-40cf-a019-193eb78f6820
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9FrQ5dmq3Q9xpI6h4HcxvLhVPeOkdyZokTt2//+sZevsHvIlWM2Bgq8FUqhR8q4o2C8rU8zOO9h/veZA227Zeg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR18MB2440
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/xEZvNwy_1WW1W0Cbeu4eBcs4His>
Subject: Re: [Sidrops] Genart last call review of draft-ietf-sidrops-ov-egress-01
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Mar 2020 23:55:08 -0000


On 3/18/20, 12:56 PM, "Randy Bush" <randy@psg.com> wrote:

    ( warning: quote depth errors and top posting.  keyur's mta, well let's
    not get into that :)
    
    > Speaking as a wg member.
    
    and one of the first ROV implementors, tyvm.
    
    > Shouldn’t you be checking the "my autonomous system number" in the
    > update message (when sending it out to the ebgp peer) as opposed to
    > "my autonomous system number" in the open message.
    >
    > Regards, Keyur
    >
    > On 3/17/20, 8:27 PM, "Randy Bush" <randy@psg.com> wrote:
    >
    >> I wanted to avoid "be able to be" and have an explicit actor. I see
    >> the difficulty you point to below.
    >
    > i am happy to change to the following
    >
    >>> As the origin AS may be modified by outbound policy, a BGP speaker
    >>> MUST apply ROV policy semantics using the My Autonomous System number
    >>> in the BGP OPEN message (see RFC 4271 section 4.2) issued to the peer
    >>> to which the UPDATE is being sent.
    >
    > but, in my free opinion, as it is in IETF LC, the change is enough that
    > it might require approval by chairs and/or AD.
    
    i think you're right.  what counts for ROV is the origin AS in the
    UPDATE.  open a hole to deviate from that and ...
    
    and we have to remember that, for these UPDATEs which are redistributed
    into BGP by this speaker, have their AS_PATH first created when sent to
    the peer.  i.e. we can not (yet) speak of the origin AS in the AS_PATH.
    
    so maybe
    
        As the origin AS of a BGP UPDATE is decided by configuration and
        outbound policy of the BGP speaker, a validating BGP speaker MUST
        apply Route Origin Validation policy semantics against the origin
        Autonomous System number which it will put in the AS_PATH (see RFC
        4271 4.3 Path Attributes:b) of the UPDATE to the peer.


Looks good to me. __ 

Regards,
Keyur
    
    randy

v2.23.0 | Report a Bug | By Email