Re: [trill] AD review of draft-ietf-trill-rbridge-multilevel-04

Donald Eastlake <d3e3e3@gmail.com> Mon, 26 December 2016 22:05 UTC

Return-Path: <d3e3e3@gmail.com>
X-Original-To: trill@ietfa.amsl.com
Delivered-To: trill@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 88C49129850; Mon, 26 Dec 2016 14:05:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.45
X-Spam-Level:
X-Spam-Status: No, score=-2.45 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5CqeLGZac8i7; Mon, 26 Dec 2016 14:05:03 -0800 (PST)
Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6261312984F; Mon, 26 Dec 2016 14:05:03 -0800 (PST)
Received: by mail-io0-x232.google.com with SMTP id n85so68923709ioi.2; Mon, 26 Dec 2016 14:05:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=cEDjvWO/+cxaFEYOQMbMWtpMAYioApndh2lZIc1jSIA=; b=s6ezpDj4NEI81UsJpIPc6k944UpB+eU6E4D37OJuaNlklc61bSPrIvbrzsrj03RVQ2 js8eHEBwBu+ECjvc8HzM2zHcRdoZoy43HpDKG2IEg3n0PqdbXCRIKPF2P3J6XNeJ7oPI NzI8LwQ7JbWxfInwc5jN8oKvNNuqqX3gUBUueug0/rXBYtfRzFUGDzLmVbErvXa/7J6p kt3bULQkTXFOc8mPmlexAnyx4HNfXIW3PTmwsyAssSTXYBbJTiwXXeK6BuEqZ8ykUaCA oCe4GcK0lMdygVZrB4cLI2DQVbror1Bs5RI7QJZp0xs3BoE+gF7vFVR85wp+MbjtvkTw Q+Yg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=cEDjvWO/+cxaFEYOQMbMWtpMAYioApndh2lZIc1jSIA=; b=XWXQ8EE+iPjl8GV83EzQlM2Z9syVeGV5G1H/ve/BZxVVF3KoOTb0K3PB0I9yk4ubbV TfK1lG4GRNmtFmoha/7HFpNSHhLD2OU/6fzEakHmZuMcvNjEhMXe8umiYbEsq++L6l5k sWTA7s/IEkWSvYTcAs5AqDtbvn3SATCdSjs5Wte46zcz3oSd2vhIfD9Rf28/lAoGjDJ2 ASIEWNZdkRXS4wmECuOH+hHHRM8eTC1JD0NXKIbDhMsZnE5XVETLeAMQ7xsW31YCmna1 dieMyWEY6G2jJH3Soy6onC5z/0TtcFM6o/r8+6unYsx3EESY9gmGPtt0ALUzmqDbnxUe z11A==
X-Gm-Message-State: AIkVDXIFIedDGrq9ynzKXqKoeI9TDYiVlNUTabWUkz7cqwk20sPvBSlLrnnd3OI/liBd7SVK48o2HJ5qv+vnQQ==
X-Received: by 10.107.34.207 with SMTP id i198mr21007519ioi.16.1482789902474; Mon, 26 Dec 2016 14:05:02 -0800 (PST)
MIME-Version: 1.0
Received: by 10.107.41.136 with HTTP; Mon, 26 Dec 2016 14:04:46 -0800 (PST)
In-Reply-To: <CAG4d1re5PF81bB3ZewtwkFhT6J06quOGedNBx72K-ky9zoqfKQ@mail.gmail.com>
References: <CAG4d1re5PF81bB3ZewtwkFhT6J06quOGedNBx72K-ky9zoqfKQ@mail.gmail.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Mon, 26 Dec 2016 17:04:46 -0500
Message-ID: <CAF4+nEGVHv2b9ayLdzApZsPoPai3Dka+h6KX86ObdhMwRH3WAA@mail.gmail.com>
To: Alia Atlas <akatlas@gmail.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <https://mailarchive.ietf.org/arch/msg/trill/GzOVKqd9aKZDTqiVJqRB7fr_pBI>
Cc: draft-ietf-trill-rbridge-multilevel@ietf.org, "trill@ietf.org" <trill@ietf.org>
Subject: Re: [trill] AD review of draft-ietf-trill-rbridge-multilevel-04
X-BeenThere: trill@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Developing a hybrid router/bridge." <trill.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trill>, <mailto:trill-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trill/>
List-Post: <mailto:trill@ietf.org>
List-Help: <mailto:trill-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trill>, <mailto:trill-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Dec 2016 22:05:05 -0000

Hi Alia,

Thanks for your comments.

On Tue, Dec 20, 2016 at 7:06 PM, Alia Atlas <akatlas@gmail.com> wrote:
> As is customary, I have done my AD review of
> draft-ietf-trill-rbridge-multilevel-04.  First, I would like to
> thank the authors - Radia, Donald, Mingui, Anoop, and Hongjun - for
> their work on this document.

(The initial author of the draft was Radia and I think the first
version was roughly contemporaneous with the following presentation:
https://www.ietf.org/proceedings/80/slides/trill-4.pdf)

> From my review, I do have a few high level concerns.  In particular,
> this document has the job of guiding future WG work and setting out
> some high-level decisions for the architecture of multi-level TRILL.

Well, I can imagine a range of Informational documents which, at one
extreme were an abstract exploration of possibilities with pros and
cons for each and having no directive content. At the other extreme
would perhaps be a "framework" document that tightly bounded
subsequent protocol specifications deciding most significant design
issues.  This draft started out closer to the abstract end and has
varied some in different version as to how directive it is. The draft
is called "Alternatives..." and does not have "Architecture" or
"Framework" in its title.

> Unfortunately, there are several areas where the draft isn't willing
> to commit to specific guidance or pick one alternative.  If there
> had been vigorous discussion and debate on this, I might have more
> confidence that there are strong reasons that truly justify the
> multiplication of complexity represented in this document.  I don't
> see any of that on the list.

By listing a number of alternatives, the document is not meant to
imply that any significant number of them are to be further specified.
One advantage of documenting a variety of alternatives is to provide
prior art in case of subsequent IPR problems.  As far as I can tell,
the WG is only interested in defining one very specific way to do
unique nicknames and one very specific way to do aggregated
nicknames. The current state of these are documented in
draft-ietf-trill-multilevel-unique-nickname and
draft-ietf-trill-multilevel-single-nickname.  The "single-nickname"
draft specified an aggregated nickname scheme.

> I will require an updated draft and discussion before progressing this
> document.

OK.

> Major:
>
> a) Sec 2.2.2.2: Unless I'm missing something - this is proposing
> changing the format of the basic TRILL header to accommodate
> multi-level IS-IS, which would impact all hardware implementations
> of TRILL deployed everywhere.  The idea of allowing both options
> just makes for yet more complexity, options, and challenges in
> interoperability & troubleshooting!  Please don't invent complexity.
> I don't see any discussion on the mailing list around this point and
> the document doesn't emphasize that this is an extremely bad option
> - done to trade-off complexity & storage at the border switches.
> This is definitely an area where operators and vendors need to weigh
> in and silence cannot imply consensus.

The only path the WG is pursuing for aggregated nicknames does not use
the "swap nickname" method discussed in 2.2.2.2, which is just being
listed as an "alternative". I don't see any problem including your
negative points of this alternative in the draft.

> b) Sec 7: I would strongly prefer to see a clear trade-off described
> in terms of hardware impact as well as how flag-days for software
> could be avoided.  I'm not seeing any considerations given to
> upgrading.  I also am not excited that the WG isn't willing to pick
> one approach to go forward with.  Multiple approaches mean at least
> twice the pain for implementing, testing, troubleshooting, learning
> the technology, and so on.

Many upgrading and backward compatibility considerations are
considered throughout the much. I think Section 7 could be improved
along the lines you suggest.

> c) I expect some section of management/operational considerations
> for how different choices impact the ability to transition from a
> single area to a multi-area solution.

OK.

> Minor:
>
> 1) Sec 1.1 item 5: Is the concern about the 16-bit nickname limit
> for trill switches based on the likelihood of collision from picking
> nicknames?  I have a hard time picturing a network with over 65,500
> trill switches and distribution trees that doesn't run into many
> other issues.  Please clarify the details of this concern in the
> document.

The list in Section 1.1 is meant to be a exhaustive list of potential
scaling problems.  While I wouldn't think that a single level IS-IS
routed area would be particularly practical with several tens of
thousands of routers, whether they are TRILL switches or some other
kind, it seems to me that with multi-level you might some day have 200
areas with 500 routers per area, which would required 100,000
nicknames if they must all be unique. That would be problematic with
16-bit nicknames and people may be reluctant to adopt technology if
they can foresee limits, even if those limits are pretty far away.

Furthermore, nicknames are consumed when pseudo-nicknames are used for
the active-active connection of end stations.  Using RFC 7781 could,
for example, double the nicknames consumption if there are extensive
active-active edge groups connected to different sets of edge TRILL
switch ports.

In addition, there might be problems, as suggested in the draft, with
TRILL switches inside a possibly very large number of level 1 areas
all contending campus wide for nicknames -- so you would likely use
some sort of hierarchical method, for example level 1 areas contending
in level 2 for blocks of nicknames and then TRILL switches inside a
level 1 area contending within that area for nicknames within the
block(s) obtained by that area. Of course such hierarchical allocation
leads to further effective loss of nicknames. (RFC 3194)

So, my opinion is that, overall, it is reasonable to keep the 16-bit
nickname limit in mind and have a solution available that effectively
eliminates that limit.

> 2) Sec 6: The simple option of having topology constraints to avoid
> having multiple trill switches in different areas connected to the
> same link doesn't seem to have been considered.  Please add and
> clarify why a topology constraint is or isn't acceptable
> operationally.  As you well know, simplification and ease of
> interoperability are critical criteria for evaluating the options.

This section can be clarified.

This section is about end station's logical connectivity to edge TRILL
switches.  Multiple topologies could possibly be used to constrain the
logical connectivity between such edge TRILL switches that are
physically connected via a link (TRILL considers a bridged LAN to be a
single link). But end stations don't know anything about TRILL or
IS-IS Areas or multiple topologies. So I don't see how to use
topologies (or areas) to stop an end station from having connectivity
to all edge TRILL switches on the link.

The problem being discussed in Section 6 is that a frame (particularly
a multi-destination frame, say a broadcast frame) sent by an end
station could be seen by multiple TRILL edge switches even if those
edge switches are in different IS-IS areas and thus multiple copies
could be ingressed by the TRILL campus. A similar problem, causing
looping, might occur if a native frame is egressed by an edge TRILL
switch. On egress the TRILL Header is stripped and the resulting
native frame is appropriate for receipt by an end station.  Such a
frame might, if no precautions are taken, be ingressed by one or more
TRILL edge switches in different IS-IS areas.  (Existing TRILL takes
care of the case of multiple edge TRILL switch ports on a link with
end stations when those edge TRILL switches can all see each other, as
they would automatically if they are in the same Area/topology, by the
Appointed Forwarder mechanism.)

I suppose you could tell network managers that if a link has one or
more end stations on it, then all TRILL switch ports on the link must
be in the same IS-IS area, but that seems pretty brittle. TRILL's
design philosophy is to try to protect against accidental
misconfigurations.  I also do not think it is desireable to say that
if you want to use multi-level safely, you have to use and configure
multi-topology.

Thanks,
Donald
===============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3@gmail.com

> Regards,
> Alia