Re: [spring] WGLC for draft-ietf-spring-segment-routing-policy
Dhruv Dhody <dhruv.ietf@gmail.com> Thu, 29 April 2021 10:16 UTC
Return-Path: <dhruv.ietf@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E44F43A38D9; Thu, 29 Apr 2021 03:16:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T8sRtgI7PJvc; Thu, 29 Apr 2021 03:16:39 -0700 (PDT)
Received: from mail-ej1-x634.google.com (mail-ej1-x634.google.com [IPv6:2a00:1450:4864:20::634]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AAF663A38D6; Thu, 29 Apr 2021 03:16:38 -0700 (PDT)
Received: by mail-ej1-x634.google.com with SMTP id u21so99065611ejo.13; Thu, 29 Apr 2021 03:16:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=z5eOYLzgxdlJQ373SSQNMIpD5ot58RvsVXYy3PhY/WU=; b=p/lk/aBmP7Mqbtf9bIhjps3I4g50VR5KgXegfAlBQpu6DrAfa0vGWHaYtMpEcMh4X9 sefVM1/V45OkQ2zxJqS/afTh7XQDmBYNK7HY23DYJx33Wiy/sMSNz46pGls/9rtXVEtY h7mQtO7OB/5rPqWLELCoAfoLWKwSED67IdlkZbLjOnLa2cPaxRh2Iyyt/B2j9shGxTQn ECZnYr1+vdryeIPLOsBPLBW0ajQUq5v/60SHqlmYDQnmeIucS7fYM96vRAbXNJDIgdl5 reXWUeRjc7KzgTppaY1UYvTrSmQ46ccHZRB6xNanUTxQEjs7XBPKBTUJiB/4yQxtEJjX LZhg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=z5eOYLzgxdlJQ373SSQNMIpD5ot58RvsVXYy3PhY/WU=; b=JBt7TmPd4j49TuZVXfcnGHD1nDupcAINAJVIJ6Vel7voh9scbdgrHw7UvnlmU3Md4l GcsgI+fnVw2zKBaskNbHIsJmfGiNP8EYAkQHlUMHiRhIFJIy1xmHl07zLRu8y4vLqIx2 QRayYxfyAuJO8Tbt1VL8J7liasgPBqTidbiX6xOf9xLSQUrLizlSqGRfU1sPXyR+Q5Rh fcg/V/gJqoF8qwTRV8gWRuM1hPvCZ5AfxA93aKKXVXOaceQvQsSF1bxCsLG3bs//LJK2 xQTazoIN8SCDboTmKCLyNrsGniPDaHZHyo9x/XVMpInT3DPAXE5BHyP0tC7ULjB0fiwC roXw==
X-Gm-Message-State: AOAM5301lwYH9U0wUcdm+PEv1Ij+sRWFLyF+McbGcTeNbwUPpMLMTMBC uNmG6atx5nMKeN81+p+3vbkwL11MikE97Qkdkhs=
X-Google-Smtp-Source: ABdhPJxFE3Wg7zGoKvRr8HNJdjzlkZIuhUi/jfujM/nWtY5345+jmcrvCkBD1kJk3jq4FfoXhNZ+feCKbj9E/PYMM1Q=
X-Received: by 2002:a17:906:ecf4:: with SMTP id qt20mr13277158ejb.59.1619691391838; Thu, 29 Apr 2021 03:16:31 -0700 (PDT)
MIME-Version: 1.0
References: <MN2PR13MB4206EF1F6E9B1C01BDDCDD76D24D9@MN2PR13MB4206.namprd13.prod.outlook.com> <CAB75xn6mV0b6AT_6DQEGNBvhMw1bLm7Hr-X71+afe+zPMBxaPg@mail.gmail.com> <MW3PR11MB4570B64CAD44377A56D5C0EDC15F9@MW3PR11MB4570.namprd11.prod.outlook.com>
In-Reply-To: <MW3PR11MB4570B64CAD44377A56D5C0EDC15F9@MW3PR11MB4570.namprd11.prod.outlook.com>
From: Dhruv Dhody <dhruv.ietf@gmail.com>
Date: Thu, 29 Apr 2021 15:45:54 +0530
Message-ID: <CAB75xn6rcP7QbCZEgANgT15956M5GW0RkGN7FcT+-DTQnAPs0w@mail.gmail.com>
To: "Ketan Talaulikar (ketant)" <ketant@cisco.com>
Cc: James Guichard <james.n.guichard@futurewei.com>, "spring@ietf.org" <spring@ietf.org>, "spring-chairs@ietf.org" <spring-chairs@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000000e6d8e05c119caf1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/PiRCMz124DgASaUfj9Y4AUT3PJg>
Subject: Re: [spring] WGLC for draft-ietf-spring-segment-routing-policy
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Apr 2021 10:16:44 -0000
Hi Ketan, Thanks for the discussion. Sniping to - > > > If a node is identified by multiple addresses, from the point of view of > the SR policy they would be considered as different nodes, correct? > > *[KT] This relates to the computation of SR Policy which is outside the > scope of this document. There was some text around computation aspects in > an earlier version of the draft that has been moved into > draft-filsfils-spring-sr-policy-considerations around the WG adoption time. > To answer your question, the endpoint address can be mapped to a node which > becomes the tail-end and then path is computed to that node. In that case, > multiple addresses may all map to a single node. This would be an > implementation aspect.* > [Dhruv]: I was thinking from the SR policy identification point of view, i.e. <H1-IP1, color, endpoint> and <H1-IP2, color, endpoint> will be considered as different SR policies even though H1-IP1 and H1-IP2 belong to the same headend H1. > - Section 2.3, What are the 8-bit values for the Protocol-Origin, is > there an existing registry that is used here? Is it - > https://datatracker.ietf.org/doc/html/draft-ietf-idr-te-lsp-distribution-14#section-9.4 > , should it be listed in this document perhaps? > > *[KT] These are not code points but suggested default values for the > Priority assigned to each protocol. An implementation may use a completely > different scheme and/or make theme configurable. I see that > https://datatracker.ietf.org/doc/html/draft-ietf-pce-segment-routing-policy-cp-04#section-5.2.2 > <https://datatracker.ietf.org/doc/html/draft-ietf-pce-segment-routing-policy-cp-04#section-5.2.2> > does not clearly indicate this and perhaps the authors should clarify that > the Protocol Origin in that PCEP TLV is used to tweak/signal the Priority > value to be used for that particular CP in the tiebreaker.* > > > [Dhruv]: I am referring to this text - Protocol-Origin of a candidate path is an 8-bit value which identifies the component or protocol that originates or signals the candidate path. Which says that an "8-bit value" identifies the protocol as PCEP, BGP, etc. What you are describing is the priority associated with the protocol. I feel the term "Protocol-Origin" and "Protocol-Origin Priority" is used interchangeably, leading to this misunderstanding. To confirm, in the example - Candidate-path CP1 <protocol-origin = 20, originator = 100:1.1.1.1, discriminator = 1>. The value 20 identify BGP or the Priority value associated with BGP? I am assuming it is the priority! In which case some cleanup of text is needed to make things clear. > > - Section 10, It might be a good idea to acknowledge security > considerations from the SR policy architecture point of view: how various > SR policy parameters and attributes could be exploited to make a headend to > forward the traffic incorrectly. It is better to add details that clearly > show that the authors/WG have given it a thought and analyzed the > implications. > > *[KT] As a reminder the SR Policy has been introduced in RFC8402 which > covers these aspects of incorrect routing and other challenges associated > with source routing. This document is only providing the details of the > implementation construct/framework for the SR Policy.* > > > [Dhruv]: In my reading, RFC 8402 security considerations are focused on the data plane and not much on the interaction between the controller and SR nodes where the SR policy architecture comes in. > - Section 11, What is the range of the value for Segment Types? A-Z only? > It would be good to be clear about this. With A-K already allocated, worth > thinking if this is too restrictive and not future-proof. Perhaps we could > think of the value as a string that is currently populated with a single > alphabetic character. > > *[KT] String can become freeform. How about A-Z, then AA-AZ … ZA-ZZ – that > should be a large enough space?* > > [Dhruv]: That works. Maybe you could add this to the table to clearly indicate the range: L-Z: Unassigned AA-ZZ: Unassigned Related question: is there a value in putting aside a few of these for Experimental Use? > > - Since the I-D talks about policy configuration, explicit candidate > paths, verification, SR-DB, etc. I don't want to add work for the authors > but I do feel in this case a dedicated manageability consideration section > would be useful :) > > *[KT] Good catch. I will add it. It is not much work really since we need > to point to RFC8402 which introduced the SR Policy and an informative > reference to draft-ietf-spring-sr-policy-yang that the WG is already > working on.* > > > [Dhruv]: That helps, but also think in lines of documenting some key considerations as per https://datatracker.ietf.org/doc/html/rfc5706#section-2 > Hope the authors and WG find these suggestions useful. > > *[KT] Yes, definitely.* > > Thanks! Dhruv > > > *Thanks,* > > *Ketan* > > Thanks! > Dhruv > > On Fri, Apr 16, 2021 at 12:27 AM James Guichard < > james.n.guichard@futurewei.com> wrote: > > Dear WG: > > > > This email starts a 2 week Working Group Last Call for > draft-ietf-spring-segment-routing-policy [1]. > > > > Please read this document if you haven’t read the most recent version and > send your comments to the SPRING WG list no later than April 29th 2021. > > > > If you are raising a point which you expect will be specifically debated > on the mailing list, consider using a specific email/thread for this point. > > > > Lastly, if you are an author or contributors for this document please > response to the IPR call in the previous email thread. > > > > Thanks! > > > > Jim, Joel & Bruno > > > > [1] https://datatracker.ietf.org/doc/draft-ietf-spring-segment-routing-policy/ > > > > > > > > _______________________________________________ > spring mailing list > spring@ietf.org > https://www.ietf.org/mailman/listinfo/spring > >
- [spring] WGLC for draft-ietf-spring-segment-routi… James Guichard
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Zafar Ali (zali)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Majumdar, Kausik
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Bernier, Daniel
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Pablo Camarillo (pcamaril)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Boris Hassanov
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Rakesh Gandhi
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Pengshuping (Peng Shuping)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Stone, Andrew (Nokia - CA/Ottawa)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Dhruv Dhody
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Dhruv Dhody
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Satoru Matsushima
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Mike Koldychev (mkoldych)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Kamran Raza (skraza)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Stone, Andrew (Nokia - CA/Ottawa)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Matt Anderson
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Richard Vallee (rvallee)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Nandan Saha
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Satoru Matsushima
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Dhruv Dhody
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Gyan Mishra
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Gyan Mishra
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Gyan Mishra
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Boris Hassanov
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Boris Hassanov
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Linda Dunbar
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Joel M. Halpern
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Ketan Talaulikar (ketant)
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Jeff Tantsura
- Re: [spring] WGLC for draft-ietf-spring-segment-r… Boris Hassanov