IETF Logo Mail Archive

Re: [trill] WG Last Call: draft-ietf-trill-fine-labeling-02.txt

Phanidhar Koganti <pkoganti@Brocade.COM> Sat, 24 November 2012 02:10 UTC

Return-Path: <pkoganti@Brocade.COM>
X-Original-To: trill@ietfa.amsl.com
Delivered-To: trill@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3239421F8612 for <trill@ietfa.amsl.com>; Fri, 23 Nov 2012 18:10:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.264
X-Spam-Level:
X-Spam-Status: No, score=-3.264 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LUU9KqGHg-HI for <trill@ietfa.amsl.com>; Fri, 23 Nov 2012 18:10:29 -0800 (PST)
Received: from mx0b-000f0801.pphosted.com (mx0b-000f0801.pphosted.com [67.231.152.113]) by ietfa.amsl.com (Postfix) with ESMTP id 548EE21F8689 for <trill@ietf.org>; Fri, 23 Nov 2012 18:10:28 -0800 (PST)
Received: from pps.filterd (m0000700 [127.0.0.1]) by mx0b-000f0801.pphosted.com (8.14.5/8.14.5) with SMTP id qAO2970X011456; Fri, 23 Nov 2012 18:10:27 -0800
Received: from hq1wp-exchub02.corp.brocade.com ([144.49.131.13]) by mx0b-000f0801.pphosted.com with ESMTP id 18tdfu88hf-1 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Fri, 23 Nov 2012 18:10:27 -0800
Received: from HQ1WP-EXHUB02.corp.brocade.com (10.70.38.14) by hq1wp-exchub02.corp.brocade.com (10.70.38.99) with Microsoft SMTP Server (TLS) id 14.2.309.2; Fri, 23 Nov 2012 18:11:00 -0800
Received: from HQ1-EXCH02.corp.brocade.com ([fe80::c92a:772e:befa:c34c]) by HQ1WP-EXHUB02.corp.brocade.com ([fe80::e1f4:a4c8:696b:3780%10]) with mapi; Fri, 23 Nov 2012 18:11:00 -0800
From: Phanidhar Koganti <pkoganti@Brocade.COM>
To: Donald Eastlake <d3e3e3@gmail.com>
Date: Fri, 23 Nov 2012 18:10:21 -0800
Thread-Topic: [trill] WG Last Call: draft-ietf-trill-fine-labeling-02.txt
Thread-Index: Ac3JsmC+bX9JWts5QzWycUmgXrrDJAAM19ig
Message-ID: <6895EAE0CA8DEE40B92D7CA88BB521F32413DAE9C0@HQ1-EXCH02.corp.brocade.com>
References: <CAF4+nEE+rT9x_MgiWLCx7xut4SgDJ7=pRK1L_PovrwBCg3OaVw@mail.gmail.com> <CCCE73BA.C6A2%ostokes@extremenetworks.com> <CAF4+nEFioN3TmDj7sGchr4atPijRNiGCwiBLe8ROB79fqA0kAg@mail.gmail.com> <201211200140.qAK1eSD0011029@cichlid.raleigh.ibm.com> <CAF4+nEEckNenUBnMwbDH7o-cvf029aP2dGZjDiNnhJu3vj2JJw@mail.gmail.com> <CAFOuuo57RKAA1Z7akyQ3kGtmvPDvBmDDjdijiFzmck==A5H8pw@mail.gmail.com> <CAF4+nEEkKffy_c_qD-LAjgfECmjCgVSJ+F6zZePScZP4G3EZ1Q@mail.gmail.com> <CA+-tSzwc1yC0oJ3ermyuEFbqXACHyPLwv-M0Rbk5PW5A4BFVgg@mail.gmail.com> <6895EAE0CA8DEE40B92D7CA88BB521F32413DAE82F@HQ1-EXCH02.corp.brocade.com> <CAF4+nEGaoACysoAaHE-4_Mi8PVBNcVu-Wbeenz4XXZo4aQOiKg@mail.gmail.com>
In-Reply-To: <CAF4+nEGaoACysoAaHE-4_Mi8PVBNcVu-Wbeenz4XXZo4aQOiKg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.9.8185, 1.0.431, 0.0.0000 definitions=2012-11-23_16:2012-11-23, 2012-11-23, 1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 suspectscore=1 phishscore=0 bulkscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=7.0.1-1207200000 definitions=main-1211230347
Cc: Anoop Ghanwani <anoop@alumni.duke.edu>, "trill@ietf.org" <trill@ietf.org>
Subject: Re: [trill] WG Last Call: draft-ietf-trill-fine-labeling-02.txt
X-BeenThere: trill@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Developing a hybrid router/bridge." <trill.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trill>, <mailto:trill-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trill>
List-Post: <mailto:trill@ietf.org>
List-Help: <mailto:trill-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trill>, <mailto:trill-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Nov 2012 02:10:30 -0000

Hi Donald,

Please see below inline

-----Original Message-----
From: Donald Eastlake [mailto:d3e3e3@gmail.com] 
Sent: Saturday, November 24, 2012 1:09 AM
To: Phanidhar Koganti
Cc: Anoop Ghanwani; trill@ietf.org
Subject: Re: [trill] WG Last Call: draft-ietf-trill-fine-labeling-02.txt

Hi Phanidhar,

On Tue, Nov 20, 2012 at 2:29 PM, Phanidhar Koganti <pkoganti@brocade.com> wrote:
> From: trill-bounces@ietf.org [mailto:trill-bounces@ietf.org] On
  Behalf Of Anoop Ghanwani
> Sent: Wednesday, November 21, 2012 12:50 AM
> To: Donald Eastlake
> Cc: Radia Perlman; trill@ietf.org
> Subject: Re: [trill] WG Last Call:
  draft-ietf-trill-fine-labeling-02.txt
>
>
> On Mon, Nov 19, 2012 at 8:29 PM, Donald Eastlake <d3e3e3@gmail.com>
  wrote:
>
> Hi Radia,
>
> On Mon, Nov 19, 2012 at 11:13 PM, Radia Perlman
 <radiaperlman@gmail.com> wrote:
>> Ah.  So the intent is that an FGL RBridge must be able to parse 
>> either VL or FGL, which would allow an edge RB that only supports VL 
>> to work OK, and to have some number of VLANs (4000 of them) that 
>> would be reachable via old edge RBs?  >
>
> <Donald> Yes on parsing. But it is hard to be sure no FGL frame can 
> get to a VL RBridge. Say you have VLRB1 connected to the campus 
> through FGLRB2.  And FGLRB2 is connected to FGLRB3. What if 
> connectivity appears between VLRB1 and FGLRB3 and perhaps the link 
> between FGLRB2 and FGLRB3 breaks? How can you stop FGL frames from 
> going between FGLRB2 and FGLRB3 via VLRB1 keeping in mind that you 
> have to assume no changes in the old VL RBridges? (Without 
> multi-topology. With multi-topology, it's relatively easy.)
>
> <Anoop> FGL frames should never be forwarded to an RB that doesn't 
> support FGL.  This is easy to figure out since IS-IS can tell us what 
> the capabilities of an RBridge are before forwarding to that RBridge 
> begins.  And as a result of this requirement, we should probably 
> disallow FGL and non-FGL RBridges being reachable from the same 
> RBridge port, otherwise it would be challenging to implement this 
> control for multicast frames.

I am not sure what you mean by "disallow" but if some physical topology is trivially realizable by someone plugging in the wrong cables, you have to take it into account and say what happens. In this case, where FGL and non-FGL RBridges are on the same link, the FGL RBridges just refuse to report any adjacencies on the link, thus excommunicating the link for TRILL Data traffic.

> [Phanidhar Koganti] Does this mean non-FGL RBridges cannot act as 
> transit nodes? Why can't the transit nodes just rely on TRILL SA/DA to 
> forward.  Agree there will be issues for multicast in terms of the 
> optimal pruned forwarding as a non-FGL RB will not have access to the 
> inner IP header or VLAN (FGL based). However isn't this an 
> optimization for multicast pruning?  The transit RBs can forward based 
> on the non-pruned multicast tree.

If an RBridge has been modified from existing legacy VL RBridge so that you can safely use it as a transit node, then it *is* an FGL RBridge (even if it is a limited FGL RBridge that can't do FGL ingress and egress). If it has not been so modified, then it remains a VL RBridge and will likely mishandle or discard and FGL frames it receives.
[Phanidhar Koganti] Understand and my concern is to strictly state that a VL only RBridge will never become a transit RB. There can be deployments where customers might want to reuse their older hardware for transit only where table sizes or VLAN aware might not be necessary. The transit VL-RBs need not have any non-TRILL ports. 

>> <Radia> And we're assuming that old edge RBs that only do VL will 
>> know to drop something tagged with FGL?
[Phanidhar Koganti] Yes or there are no non-TRILL ports so the VL-RB is only a pure transit RB.

I believe they should but it does not seem wise to depend on that.
[Phanidhar Koganti] True we cannot generalize and make such assumptions but on the goal to fit into existing VL-RB environments, should we not give some room for VL only RB hardwares that are potentially capable of such selective drops? 

> <Donald> A VL RBridge should, in my opinion, drop an FGL frame based 
> on RFC 6325. However, if it did not, it would presumably mean it was 
> ignoring the 0x893B value where it should be requiring 0x8100. As a 
> result, it would believe the FGL frame was in some VLAN and might 
> egress it to the wrong end-stations, violating security policy.
>
> <Anoop> We need to make the spec clear on this aspect; i.e. FGL or 
> non-FGL RBridges must discard a received frame if the inner tag (FGL 
> or VLAN depending on what mode the port is operating in) is absent.

In the draft, ports have an FGL/VL configuration "mode" for ingressing/egressing native frames but that don't have any "mode" for TRILL Data frames. If they are a VL RBridge, they can only handle VL TRILL Data frames. If they are an FGL RBridge, the can handle both VL and FGL TRILL Data frames.

> Anoop

Thanks,
Donald
=============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA  d3e3e3@gmail.com

v2.23.0 | Report a Bug | By Email