IETF Logo Mail Archive

Re: [trill] Fwd: Mail regarding draft-ietf-trill-over-ip

"Templin, Fred L" <Fred.L.Templin@boeing.com> Tue, 05 May 2015 14:54 UTC

Return-Path: <Fred.L.Templin@boeing.com>
X-Original-To: trill@ietfa.amsl.com
Delivered-To: trill@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAA041B2CDD; Tue, 5 May 2015 07:54:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jz7crjniVru9; Tue, 5 May 2015 07:54:21 -0700 (PDT)
Received: from stl-mbsout-02.boeing.com (stl-mbsout-02.boeing.com [130.76.96.170]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D2A1C1B2B1B; Tue, 5 May 2015 07:54:20 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by stl-mbsout-02.boeing.com (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with SMTP id t45EsJiU020726; Tue, 5 May 2015 09:54:19 -0500
Received: from XCH-BLV-304.nw.nos.boeing.com (xch-blv-304.nw.nos.boeing.com [130.247.25.216]) by stl-mbsout-02.boeing.com (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id t45EsFed020439 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=OK); Tue, 5 May 2015 09:54:16 -0500
Received: from XCH-BLV-504.nw.nos.boeing.com ([169.254.4.120]) by XCH-BLV-304.nw.nos.boeing.com ([169.254.4.247]) with mapi id 14.03.0235.001; Tue, 5 May 2015 07:54:14 -0700
From: "Templin, Fred L" <Fred.L.Templin@boeing.com>
To: Xuxiaohu <xuxiaohu@huawei.com>, Joe Touch <touch@isi.edu>, Donald Eastlake <d3e3e3@gmail.com>, "trill@ietf.org" <trill@ietf.org>
Thread-Topic: [trill] Fwd: Mail regarding draft-ietf-trill-over-ip
Thread-Index: AQHQhDAejJGxDIiBx0S2BZ0ZWLGtWJ1nAPgAgAQl8XCAAFTXgIABIiUAgADgFUA=
Date: Tue, 05 May 2015 14:54:13 +0000
Message-ID: <2134F8430051B64F815C691A62D9831832E5A834@XCH-BLV-504.nw.nos.boeing.com>
References: <4552F0907735844E9204A62BBDD325E76ABADC85@nkgeml512-mbx.china.huawei.com> <CAF4+nEHSGYa+1DHzwee+RNgkXfZra_Pa9706vqpTGJV71SmDaw@mail.gmail.com> <CAF4+nEFcUL2ieQKCm98_0XxfrrAR0M11irVFfOfqa=92OM1V=A@mail.gmail.com> <5543D870.6080108@isi.edu> <1FEE3F8F5CCDE64C9A8E8F4AD27C19EE0832A468@NKGEML512-MBS.china.huawei.com> <55479A6D.2040403@isi.edu> <1FEE3F8F5CCDE64C9A8E8F4AD27C19EE0832A7B7@NKGEML512-MBS.china.huawei.com>
In-Reply-To: <1FEE3F8F5CCDE64C9A8E8F4AD27C19EE0832A7B7@NKGEML512-MBS.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.247.104.6]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: disable
Archived-At: <http://mailarchive.ietf.org/arch/msg/trill/C5ag7_nHPZwthD-tXhBVTzgbd9s>
Cc: "nvo3@ietf.org" <nvo3@ietf.org>, "int-area@ietf.org" <int-area@ietf.org>, "sfc@ietf.org" <sfc@ietf.org>
Subject: Re: [trill] Fwd: Mail regarding draft-ietf-trill-over-ip
X-BeenThere: trill@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Developing a hybrid router/bridge." <trill.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trill>, <mailto:trill-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trill/>
List-Post: <mailto:trill@ietf.org>
List-Help: <mailto:trill-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trill>, <mailto:trill-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 May 2015 14:54:26 -0000

Hi,

> -----Original Message-----
> From: Int-area [mailto:int-area-bounces@ietf.org] On Behalf Of Xuxiaohu
> Sent: Monday, May 04, 2015 7:23 PM
> To: Joe Touch; Donald Eastlake; trill@ietf.org
> Cc: nvo3@ietf.org; int-area@ietf.org; sfc@ietf.org
> Subject: Re: [Int-area] [trill] Fwd: Mail regarding draft-ietf-trill-over-ip
> 
> Hi Joe,
> 
> > -----Original Message-----
> > From: Joe Touch [mailto:touch@isi.edu]
> > Sent: Tuesday, May 05, 2015 12:12 AM
> > To: Xuxiaohu; Donald Eastlake; trill@ietf.org
> > Cc: nvo3@ietf.org; sfc@ietf.org; int-area@ietf.org
> > Subject: Re: [trill] Fwd: Mail regarding draft-ietf-trill-over-ip
> >
> >
> >
> > On 5/3/2015 8:19 PM, Xuxiaohu wrote:
> > > Hi Joe,
> > >
> > > I'm wondering whether your proposal as below is also applicable to
> > > other UDP-based encapsulation approaches which have not yet considered
> > > doing fragmentation on the tunnel layer, such as GENEVE, VXLAN-GPE,
> > > GRE-in-UDP and NSH-UDP.
> >
> > Again:
> >
> > We know of at least four things that tunnels need that IP-in-UDP ignores:
> >
> > 	- stronger checksums
> >
> > 	- fragmentation support
> >
> > 	- signalling support (e.g., to test whether a tunnel is up or
> > 	to measure MTUs)
> >
> > 	- support for robust ID fields (related to fragmentation,
> > 	e.g., to overcome the limits of IPv4 ID as per RFC 6864)
> 
> I'm just wondering whether the above is only applicable to IP-in-UDP or applicable to all the other UDP-based encapsulations as well.
> 
> > I haven't scrubbed GUE to ensure that all four are addressed, but it may be more
> > than the above, and certainly it's important not to start from scratch needlessly.
> 
> I don't intend addressing items 1), 2) and 3).  As for item 3), I would add the following text:
> 
> "Ingress AFBRs MUST NOT fragment I-IP [RFC5565] packets (i.e., UDP encapsulated IP packets), and when the outer IP header is IPv4,
> ingress AFBRs MUST set the DF bit in the outer IPv4 header. It is strongly RECOMMENDED that I-IP [RFC5565] transit core be
> configured to carry an MTU at least large enough to accommodate the added encapsulation headers. Meanwhile, it is strongly
> RECOMMENDED that Path MTU Discovery [RFC1191][RFC1981] is used to prevent or minimize fragmentation."
> 
> Ahead of the following existing text in Section 4:
> 
>    "If an ingress AFBR performs fragmentation on
>    an E-IP packet before encapsulating, it MUST use the same source UDP
>    port for all fragmented packets so as to ensures these fragmented
>    packets are always forwarded on the same path."
> 
> 
> In a word, IP-in-UDP is just intended for those network environments where fragmentation on the tunnel layer and strong checksums
> are not desired. For those network environments where fragmentation on the tunnel layer and stronger checksums are required,
> GUE should be considered instead.

I thought we determined the IP-in-UDP is just GUE with header compression?

Thanks - Fred
fred.l.templin@boeing.com

> Best regards,
> Xiaohu
> 
> > Joe
> >
> >
> > >
> > > Best regards,
> > > Xiaohu
> > >
> > >> -----Original Message-----
> > >> From: trill [mailto:trill-bounces@ietf.org] On Behalf Of Joe Touch
> > >> Sent: Saturday, May 02, 2015 3:48 AM
> > >> To: Donald Eastlake; trill@ietf.org
> > >> Subject: Re: [trill] Fwd: Mail regarding draft-ietf-trill-over-ip
> > >>
> > >> Hi, all,
> > >>
> > >> Have you considered GUE as an encapsulation layer?
> > >>
> > >> Encapsulating anything in UDP directly has a number of hazards,
> > >> including support for at-rate fragmentation, IPv4 ID generation,
> > >> etc., that GUE is intended to address.
> > >>
> > >> Joe
> > >>
> > >> On 5/1/2015 9:58 AM, Donald Eastlake wrote:
> > >>> Forwarded with permission.
> > >>>
> > >>> Thanks,
> > >>> Donald
> > >>> ---------- Forwarded message ----------
> > >>> From: *Donald Eastlake* <d3e3e3@gmail.com
> > <mailto:d3e3e3@gmail.com>>
> > >>> Date: Tue, Apr 28, 2015 at 9:26 AM
> > >>> Subject: Re: Mail regarding draft-ietf-trill-over-ip
> > >>> To: Mingui Zhang <zhangmingui@huawei.com
> > >>> <mailto:zhangmingui@huawei.com>>
> > >>>
> > >>> Hi Mingui,
> > >>>
> > >>> Thanks for these comments! See below.
> > >>>
> > >>> On Tue, Apr 28, 2015 at 4:27 AM, Mingui Zhang
> > >>> <zhangmingui@huawei.com <mailto:zhangmingui@huawei.com>> wrote:
> > >>>> Hi,
> > >>>>
> > >>>> I read the document. It's comprehensive and well written. Below,
> > >>>> several
> > >> comments for your information.
> > >>>>
> > >>>> 1.      It's not clear how the ports IPs are associated with the ports?
> > Maybe,
> > >> we can add some words to explain that they can be got from DHCP or
> > >> manual configuration? Or we just say it is out the scope of this document.
> > >>>
> > >>> Yes, they need to be configured. Could be DHCP or manual or maybe
> > >>> some sort of orchestration thing... Seems reasonable to mention this
> > >>> in the draft.
> > >>>
> > >>>> 2.      Is it helpful to add a reference topology? Terminologies, such as IP
> > >> tunnel, port IPs, RBridges can be put onto this figure. A
> > >> walk-through example based on this reference topology can be used to
> > >> explain how the IP tunnel is set up, how does a TRILL Data packet get
> > >> encapsulated/decapsulated and transported in the IP tunnel. I think this
> > would be educational.
> > >>>
> > >>> A few more network diagrams would probably be helpful. If you look
> > >>> at the minutes from the Dallas TRILL WG meeting, the suggestion of
> > >>> having a couple of example packets was supported...
> > >>>
> > >>>> 3.      Both IP and TRILL have specified BFD. Since TRILL is dependent on
> > IP
> > >> in TRILL-over-IP, it's unnecessary to have both TRILL and IP interact
> > >> with BFD. It's best to assert TRILL-over-IP will have the IP interact
> > >> with BFD. Please refer to
> > >> https://tools.ietf.org/html/rfc5882#section-4.4
> > >>>
> > >>> Well, if you are only going to use one then I agree with the section
> > >>> you reference in RFC 5882 and you should do BFD over IP. But that
> > >>> doesn't check the TRILL stack, just the IP and lower stacks. So we
> > >>> could recommend just using IP BFD but I don't think we should try to
> > >>> prohibit people from also using BFD over TRILL on the link.
> > >>>
> > >>>> 4.      Is the IP link in this document "a single link (physical, or a secure
> > >> tunnel such as IPsec)"? Then, we can require the TTL "MUST be set to
> > >> the maximum on transmit, and checked to be equal to the maximum value
> > >> on reception (and the packet dropped if this is not the case)." See
> > >> also RFC 5880 Section 9.
> > >>>
> > >>> I don't think so. There is nothing wrong with the communication
> > >>> between two TRILL IP ports being multiple IP hops. Even if IPsec is
> > >>> in use, it could be integrated with the TRILL over IP port at one
> > >>> end but at the other end, the IPsec implementation could be
> > >>> integrated with a firewall a couple of hops from the RBridge...
> > >>>
> > >>>> 5.      There are six tiny typos marked in the attached doc.
> > >>>
> > >>> OK. We'll fix this up in the next version.
> > >>>
> > >>> Maybe you should post these comments, or some of them, to the TRILL
> > >>> WG mailing list. It would be good if there was more discussion of
> > >>> drafts there. Or if it OK with you, I could just forward your
> > >>> comments and my responses to the list...
> > >>>
> > >>> Thanks,
> > >>> Donald
> > >>> =============================
> > >>>  Donald E. Eastlake 3rd   +1-508-333-2270 <tel:%2B1-508-333-2270>
> > (cell)
> > >>>  155 Beaver Street, Milford, MA 01757 USA  d3e3e3@gmail.com
> > >>> <mailto:d3e3e3@gmail.com>
> > >>>
> > >>>> Thanks,
> > >>>> Mingui
> > >>>
> > >>>
> > >>>
> > >>> _______________________________________________
> > >>> trill mailing list
> > >>> trill@ietf.org
> > >>> https://www.ietf.org/mailman/listinfo/trill
> > >>>
> > >>
> > >> _______________________________________________
> > >> trill mailing list
> > >> trill@ietf.org
> > >> https://www.ietf.org/mailman/listinfo/trill
> 
> _______________________________________________
> Int-area mailing list
> Int-area@ietf.org
> https://www.ietf.org/mailman/listinfo/int-area

v2.23.0 | Report a Bug | By Email