Re: [trill] Suresh Krishnan's Discuss on draft-ietf-trill-arp-optimization-06: (with DISCUSS and COMMENT)
Donald Eastlake <d3e3e3@gmail.com> Thu, 07 July 2016 14:06 UTC
Return-Path: <d3e3e3@gmail.com>
X-Original-To: trill@ietfa.amsl.com
Delivered-To: trill@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9A9F12D7CF; Thu, 7 Jul 2016 07:06:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.45
X-Spam-Level:
X-Spam-Status: No, score=-2.45 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KqKtLVvZOAU0; Thu, 7 Jul 2016 07:05:59 -0700 (PDT)
Received: from mail-oi0-x234.google.com (mail-oi0-x234.google.com [IPv6:2607:f8b0:4003:c06::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C197D12D7CC; Thu, 7 Jul 2016 07:04:42 -0700 (PDT)
Received: by mail-oi0-x234.google.com with SMTP id r2so24149383oih.2; Thu, 07 Jul 2016 07:04:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Aky1OQ8FW727OXrn//16zxkQcycXt6f6OQrW6q1QKLo=; b=Nuw2zR4KBHrm2tiBAIH9QItBOwB+saoTWRL7GcC0nlsGiASplZI6A+Tndduike7Bcc H8083xOHlxriuhoMOzPakI5uun/I9zTtjAvaYgZUL0gGGNsF3VqMrTVO968ECWMby4j4 LB26ubVO3e0WGrnP3N3zYg4MKZ81Y2k+XLw1LyDV6xn5enSI2umwysBf/UF+qkMRyh4O xNL8todwRCZ+18BGEIsfM0sp5gy0jbYFImjhCSjDmblv/nCGs2rMTsF8U2EhBAt6Ge// 0ocJgzM2KdcVGBtXa0O8wYxm8uHhBNvJy+58Lc7AywsxixTgefmUY4yvO6LmLhhMBPko oshQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Aky1OQ8FW727OXrn//16zxkQcycXt6f6OQrW6q1QKLo=; b=Pw9E0sAYAo5d+Tir9x2BNpGeE0GC6firrUvbPNkG+BZZxB+ciWC4FE9xdqi0/s9vO0 ihcDQFexu0qu+H9xX+0oqzQpaxPkUW/q71ER0bdvBUIzZOrFtbvd+5T4ZPTEufp6erR5 sJkacpV0cRrmiKVF5ZA+OPFzgbW7VpN2RASGfxUZxF48TWcVkFHB6mqDDRoHHYGNfafD aDPsso2pHhbxSxZ3dvZR/6iJmAaySNhRtnNjCkQtmxT1cyoW73VwfI46WPSvCl2zmF9g j7Gsp1Bpdl52xAocbfWeKAfFrg3I8s9lCN+mM72wIrsCfNF8oQza/x7nxNEC8MtJgaPe e4Qg==
X-Gm-Message-State: ALyK8tLZQtnF1tuLPntQTcfYfAflohm+/6+E5cQ0+3HW79LZLRWpMLJE7LtVfUsryCvdkedf7kdYUsJ+fZ5TXw==
X-Received: by 10.157.54.203 with SMTP id s11mr211838otd.181.1467900281960; Thu, 07 Jul 2016 07:04:41 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.157.52.242 with HTTP; Thu, 7 Jul 2016 07:04:27 -0700 (PDT)
In-Reply-To: <20160706043613.22358.34214.idtracker@ietfa.amsl.com>
References: <20160706043613.22358.34214.idtracker@ietfa.amsl.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Thu, 07 Jul 2016 10:04:27 -0400
Message-ID: <CAF4+nEF2v6yTTTYnopGzyQ_OxfgiZTPXZQ=Ro1mFXkk0mC73eQ@mail.gmail.com>
To: Suresh Krishnan <suresh.krishnan@ericsson.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trill/7OzeXrS2EiaLBXN0OxshABVnaD0>
Cc: draft-ietf-trill-arp-optimization@ietf.org, "trill-chairs@ietf.org" <trill-chairs@ietf.org>, The IESG <iesg@ietf.org>, "trill@ietf.org" <trill@ietf.org>, Susan Hares <skh@ndzh.com>
Subject: Re: [trill] Suresh Krishnan's Discuss on draft-ietf-trill-arp-optimization-06: (with DISCUSS and COMMENT)
X-BeenThere: trill@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Developing a hybrid router/bridge." <trill.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trill>, <mailto:trill-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trill/>
List-Post: <mailto:trill@ietf.org>
List-Help: <mailto:trill-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trill>, <mailto:trill-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jul 2016 14:06:01 -0000
Hi Suresh, Thanks for your insightful comments. See below. On Wed, Jul 6, 2016 at 12:36 AM, Suresh Krishnan <suresh.krishnan@ericsson.com> wrote: > Suresh Krishnan has entered the following ballot position for > draft-ietf-trill-arp-optimization-06: Discuss > > ... > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > * After the ingress RBridge learns the mapping between an IPv6 address > and a MAC address how is the liveness being tested/maintained? i.e. If a > "learnt" target IP goes off link and the Rbridge keeps responding to NS > messages wouldn't it make troubleshooting a nightmare? There needs to be appropriate liveness determination. There are a lot of ways this could be done but rather than going into this here, I think that a section should be added to the document on this topic. (Exactly what would happen if and IPv6 end station crashed or got disconnected would depend on many factors. In some cases the edge RBridge would know right away if it was a point-to-point link that went down. But optimized ARP/NS responses should stop not long after the end station becomes non-responsive to ARP/NS messages it receives directly.) > * Section 3.2 case a): There is no guidance as to why or when an Rbridge > would pick cases a1..a5. e.g. When a SEND NS is received only option a2 > can work and all others will fail. Yes, the restrictions on SEND should be noted. Otherwise, the choice is a matter of local policy. > * Section 3.2 case a.1): What should be the source IPv6 address of the NA > generated by the ingress RBridge? Will this be an address of the target > of the NS or one of the ingress Rbridge that responds? There is no requirement in the TRILL protocol that an RBridge have either an IPv4 or IPv6 address (although as a practical matter, they probably almost always do). So the source IPv6 address should be that of the target. > * Section 3.2: How is an ND message where the target IP is not known > handled? This case seems to be left out. If the target IP is "unknown", then generally you would flood based on the destination MAC within the VLAN/Label of the traffic but if you were in an environment with complete directory information and you know that IP did not exist, I think you could just discard the message. > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > * The draft contains no discussion of SEND (RFC3971) in the Security > considerations section when talking about forged ND messages. Yes, I think that should be mentioned. Thanks, Donald =============================== Donald E. Eastlake 3rd +1-508-333-2270 (cell) 155 Beaver Street, Milford, MA 01757 USA d3e3e3@gmail.com
- Re: [trill] Suresh Krishnan's Discuss on draft-ie… Donald Eastlake
- [trill] Suresh Krishnan's Discuss on draft-ietf-t… Suresh Krishnan
- Re: [trill] Suresh Krishnan's Discuss on draft-ie… Suresh Krishnan