Re: [spring] AD Review of draft-ietf-spring-segment-routing-ldp-interop-09
Ahmed Bashandy <abashandy.ietf@gmail.com> Thu, 12 April 2018 02:22 UTC
Return-Path: <abashandy.ietf@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5337F12D890; Wed, 11 Apr 2018 19:22:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g8RlC85GeUNZ; Wed, 11 Apr 2018 19:22:47 -0700 (PDT)
Received: from mail-pf0-x22e.google.com (mail-pf0-x22e.google.com [IPv6:2607:f8b0:400e:c00::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DDE9E12D88F; Wed, 11 Apr 2018 19:22:46 -0700 (PDT)
Received: by mail-pf0-x22e.google.com with SMTP id y66so2307600pfi.7; Wed, 11 Apr 2018 19:22:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-language; bh=PLOn4L9lGgxiYLOScn5qGVeu36CTtvnDmylVIjLIyrY=; b=dEvOirmWbJmxEgq1sWFKd+Ox5nakKnDQJjmlthDLh4scIBteIxxhFcZhEtu65KZzl7 cWyQ0CCMEMG+I+XDQKc37i/tsl6GZ28r7IxFoNAF7xjHWkWycrf9DIrQOfAQE73KYXYu 4O38Z2D10+Wz+uJMB2+eaJ+bcY+4a1c3RJQuvAi4BLAOxZSdjXrPBri1wcsWOQRl3YrQ K0pkzulLEMGlX4bckx/sndcwLMGKqIIKOm+CzeAWQ7Lb7bk0u/3Yve8lQ047QdDbOWZP XcVkJ1LltNJWS+z/qi0puvCHXIoc9idz7ZjxQ2HEHcEHAWSuyRV+aLGQyImRkho1fRch V9GQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=PLOn4L9lGgxiYLOScn5qGVeu36CTtvnDmylVIjLIyrY=; b=Nc9cuEDwxdHe+htcxXv0M8Z1/ZhX7H8R0IsecQgIG0xepglU8XOJA3bqlPdD/F4qvZ KkGZgL4F3Z9PwpFmvZobx+wahEANXWAfQuHTwIxc73gjZ2hUruJWAHVM4ICavGDWPdve Pqg7ztRMR5b0ecClN1dyG7wACl9nwtvBI1rKEkNZ0g/4GFL+c5gJ803pdK16ncMj+mD+ rGbMNi3RsNAKAdUO1NhqzO84T05UgC/vNEFbnpbkzz72TsoV97L2Jk95oyk+RxrRElLl PT+ne2Lf763WNy+yQyjZ7DKDsh+x9Fh1H3WjDAAxC5CstEBIO+TiAiK2S8qz4uxJM7SR JrFQ==
X-Gm-Message-State: ALQs6tBjcKo42pHEA/9xr1HwSTMLFwTdEecE/D8SeJMdzpd9LgpQ0sFE K7l0QBpRiJRjGAmg5ZPcf6k=
X-Google-Smtp-Source: AIpwx49Sin/WDn5c69+IBxJMZcKA+UsHP3zvIcg0FLrjot8FvbyY+UjmjNzhoEPfhYenTCA1AQZjeQ==
X-Received: by 10.98.103.69 with SMTP id b66mr5962320pfc.151.1523499766166; Wed, 11 Apr 2018 19:22:46 -0700 (PDT)
Received: from [192.168.1.125] (c-73-93-180-180.hsd1.ca.comcast.net. [73.93.180.180]) by smtp.gmail.com with ESMTPSA id u9sm4357009pgb.27.2018.04.11.19.22.44 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 11 Apr 2018 19:22:45 -0700 (PDT)
To: aretana.ietf@gmail.com
References: <CAMMESsy8EVCanj6-XAQf8QUfuuxW3t+V3Trje58OyeoEKfrPKA@mail.gmail.com> <6d395d4a-e298-958d-20a0-fe50aaa033f0@cisco.com>
Cc: cfilsfil@cisco.com, stefano@previdi.net, martin.vigoureux@nokia.com, bruno.decraene@orange.com, stephane.litkowski@orange.com, spring-chairs@ietf.org, spring@ietf.org, "draft-ietf-spring-segment-routing-ldp-interop@ietf.org" <draft-ietf-spring-segment-routing-ldp-interop@ietf.org>
From: Ahmed Bashandy <abashandy.ietf@gmail.com>
Message-ID: <2f8f140a-cc90-6413-8342-32c07b1f8ee9@gmail.com>
Date: Wed, 11 Apr 2018 19:22:43 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:52.0) Gecko/20100101 Thunderbird/52.7.0
MIME-Version: 1.0
In-Reply-To: <6d395d4a-e298-958d-20a0-fe50aaa033f0@cisco.com>
Content-Type: multipart/alternative; boundary="------------97883DECD82D7B7B85257527"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/M9tSKUmEbHbSLe2hYuKQ2-Mns9k>
Subject: Re: [spring] AD Review of draft-ietf-spring-segment-routing-ldp-interop-09
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Apr 2018 02:22:50 -0000
Hi, thanks a lot for the thorough review. I uploaded version 11 to address your comments. See my reply inline "#Ahmed". Thanks Ahmed On 4/2/18 7:26 AM, Ahmed Bashandy (bashandy) wrote: > > > > > -------- Forwarded Message -------- > Subject: AD Review of draft-ietf-spring-segment-routing-ldp-interop-09 > Resent-Date: Wed, 20 Dec 2017 10:37:01 -0800 > Resent-From: alias-bounces@ietf.org > Resent-To: cfilsfil@cisco.com, stefano@previdi.net, > bashandy@cisco.com, bruno.decraene@orange.com, > stephane.litkowski@orange.com > Date: Wed, 20 Dec 2017 13:36:54 -0500 > From: Alvaro Retana <aretana.ietf@gmail.com> > To: draft-ietf-spring-segment-routing-ldp-interop@ietf.org > CC: spring-chairs@ietf.org, Martin Vigoureux > <martin.vigoureux@nokia.com>, spring@ietf.org > > > > Dear authors: > > I just finished reading this document. I have some Major comments > below that I would like to see addressed before starting the IETF LC. > > Thanks for your work on this document. > > Alvaro. > > > Major: > > M1. From Section 2: "An MCC, operating at node N, MUST ensure that the > incoming label it installs in the MPLS data plane of Node N has been > uniquely allocated to himself.” I’m sure this sentence is not meant > as a new Normative statement for all MCCs, right? I think that the > “MUST” is out of place since the text is really stating a fact. > s/MUST/must #Ahmed: done > > > M2. SRMS Definition and Operation > > M2.1. Section 4.2.1. (SR to LDP Behavior) uses normative language to > describe the operation of the SRMS in ways that I think are not needed > for interoperability. > > M2.1.1. "The SRMS MUST be configured by the operator in order to > advertise Node-SIDs on behalf of non-SR nodes.” Section 4.2 already > says that "The mappings advertised by one or more SRMSs result from > local policy information configured by the operator.”, so the sentence > in 4.2.1 is at best redundant. In any case, what can be enforced from > a specification point of view by that “MUST”? s/MUST/must > > M2.1.2. "At least one SRMS MUST be present in the routing domain. > Multiple SRMSs SHOULD be present for redundancy.” These MUST|SHOULD > seem to indicate a statement of fact. Again, from a specification > point of view, what can be enforced? s/MUST|SHOULD/must|should. Note > also that in 7.2 the text says that "Multiple SRMSs can be provisioned > in a network for redundancy.”, which seems to be the right thing (no > Normative language). #Ahmed I removed these two statements. Instead I modified the 3rd paragraph in Section 4.2 to indicate that there must be at least one SRMS server in the domain > > M2.2. Section 7.2. says that "a preference mechanism may also be used > among SRMSs so to deploy a primary/secondary SRMS scheme”…but no other > details are included. This document is where the SRMS is first > defined, so I would expect this detail to also be included here. I > note that Section 3.1. (SID Preference) > of draft-ietf-spring-conflict-resolution contains the preference > specification. Please move that section to this document. Ahmed: agreed. But since section 7.2 is under the manageability consideration, IMO it should really not contain much specification. Instead, I modified section 4.2.2 specify how to prefer SRMS advertisements and removed section 7.2 completely. Section 7.2 in version 11 is section 7.3 in version 10 > > M2.3. Section 7.2 also says that: "When the SRMS advertise mappings, > an implementation SHOULD provide a mechanism through which the > operator determines which of the IP2MPLS mappings are preferred among > the one advertised by the SRMS and the ones advertised by LDP.” First > off, I think that the SHOULD is out of place because it is not > specifying any specific action (the mechanism is not explicit). > Second, this statement (with the Normative SHOULD) is in conflict with > (from 2.2. (IP2MPLS co-existence)): "if both LDP and SR propose an IP > to MPLS entry (IP2MPLS) for the same IP prefix, then the LDP route > SHOULD be selected.” Solution: s/SHOULD/should #Ahmed: Agreed. I replaced SHOULD with should > > > M3. Manageability Considerations > > M3.1. The text in Section 7.1. (SR and LDP co-existence) is almost the > same as in Section 2.2. (IP2MPLS co-existence); the difference is that > 7.1’s first bullet says that "by default the LDP route MUST be > selected”, while 2.2 uses SHOULD instead. Which one is it? > Obviously, having the same text is two places adds nothing to the > document — please consolidate. > > M3.2. [minor] The last bullet in 7.1/2.2 says that the "policy MAY be > locally defined. There is no requirement that all routers use the > same policy.” Given that in this case “all routers” really refers to > the edge nodes (at the IP2MPLS boundary), it seems like it makes sense > that either choice could be ok. Maybe I’m wrong, but I’m guessing > that giving preference to LDP (MUST/SHOULD above) has to do with the > assumption that it is supported everywhere, while SR might not yet > be…so it supports the migration case in Section 3. Is that a > reasonable guess? It would be nice, to provide some justification for > the default LDP preference so that operators have a better idea of > when it might be ok to use SR instead. #Ahmed: I removed section 2.2 as it is very similar to section 7.1 as you correctly pointed out. for IP2MPLS, I referred to Section 7.1. I also added justification for preferring LDP over SR as you suggested and changed the MUST to SHOULD > > > M4. Security Considerations. I tend to agree that this document > doesn’t introduce anything new…but it does specify something > different. The base SR-related advertisement by an IGP is done for > the segments belonging to the local node, but the SRMS lets a node > (any node, multiple nodes) adverse any mapping (for nodes that may be > anywhere in the network) which may result in conflicting > advertisements (in the best case), or even false ones. Cryptographic > authentication (any any other current security mechanisms in IGPs) > only verify that the information was not changed, but it doesn’t > validate the information itself, which can then lead to conflicting > and or false advertisements, which could “compromise traffic > forwarding”. You should at least recognize that the risk exists, even > if no specific mitigation (except maybe strict > configuration/programmability control by the operator) can be mentioned. #Ahmed: Agreed. Added text to indicate what you mentioned > > > M5. References: These references don’t need to be Normative and can be > made Informative: > I-D.ietf-isis-segment-routing-extensions, I-D.ietf-ospf-ospfv3-segment-routing-extensions, I-D.ietf-ospf-segment-routing-extensions. > OTOH, this one should be Normative: RFC5036 Ahmed: Agreed and done > > > Minor: > > P1. As with all the other SR-related documents, please take out > “service chain” from the text. #Ahmed: Agreed and done > > P2. Please add References for "RSVP-TE, BGP 3107, VPNv4”. BTW, note > that rfc3107 has been obsoleted by rfc8277 — you make references to > “BGP3107” routes/label. #Ahmed Removed VPNv4 and added references to the others > > P3. Please define (or reference) the MPLS2MPLS, MPLS2IP and IP2MPLS > terminology (only IP2MPLS is expanded). Ahmed: Done > > P4. From Section 3: “...the SR infrastructure is usable, e.g. for Fast > Reroute (FRR) or IGP Loop Free Convergence to protect existing IP and > LDP traffic. FRR mechanisms are described in > [I-D.bashandy-rtgwg-segment-routing-ti-lfa].” > draft-ietf-spring-resiliency-use-cases may be a better reference. #Ahmed: Agreed and modified as suggested > > P5. Section 3: "However, any traffic switched through LDP entries will > still suffer from LDP-IGP synchronization.” While that statement is > true, it seems out of place since there is no other discussion about > LDP-IGP synchronization anywhere — if you want to keep it, please add > a reference. #Ahmed: Agree with your assessment and removed the statement > > P6. Sections 4 and 4.1.1 have very similar, redundant text. To avoid > confusion, please consolidate it in one place. This is what I’m > referring to: > > 4: > “ If the SR/LDP node operates in LDP ordered label distribution control > mode (as defined in [RFC5036]), then the SR/LDP node MUST consider SR > learned labels as if they were learned through an LDP neighbor and > create LDP bindings for each Prefix-SID and Node-SID learned in the > SR domain." > > 4.1.1: > " A SR node having LDP neighbors MUST create LDP bindings for each > Prefix-SID and Node-SID learned in the SR domain and, for each FEC, > stitch the incoming LDP label to the outgoing SR label. This has to > be done in both LDP independent and ordered label distribution > control modes as defined in [RFC5036]." #Ahmed: Agree with your assessment and consolidated the text in section 4 and 4.1.1 into section 4.1.1 > > Note that this same text (as in 4.1.1 above) is repeated exactly in > 4.2.1 — where the SRMS is discussed. To me, it seems out of place > there (4.2.1) as the behavior is true whether an SRMS is in use or > not. In line with the above, it may be better to consolidate > redundant text in one place — Section 4 seems good to me. #Ahmed: Agree with your assessment and removed the statement in Section 4.2.1 > > > > Nits: > > N1. s/This draft(s)/This document > > N2. s/Ship-in-the-night/Ships-in-the-night > > N3. Please don’t use “we”, use the 3rd person instead. Just a > personal preference (= nit). > > N4. s/R-LFA/RLFA > > N5. Please put the reference for Option C when it is first mentioned. #ahmed: Made the changes as suggested
- [spring] AD Review of draft-ietf-spring-segment-r… Alvaro Retana
- Re: [spring] AD Review of draft-ietf-spring-segme… Alvaro Retana
- Re: [spring] AD Review of draft-ietf-spring-segme… Ahmed Bashandy
- Re: [spring] AD Review of draft-ietf-spring-segme… Ahmed Bashandy
- Re: [spring] AD Review of draft-ietf-spring-segme… Alvaro Retana
- Re: [spring] AD Review of draft-ietf-spring-segme… Ahmed Bashandy