Re: [trill] Alvaro Retana's Discuss on draft-ietf-trill-smart-endnodes-10: (with DISCUSS)

Donald Eastlake <> Wed, 07 March 2018 19:57 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 918BF12D86F; Wed, 7 Mar 2018 11:57:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.449
X-Spam-Status: No, score=-2.449 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id T6K7m0P6jZE0; Wed, 7 Mar 2018 11:57:10 -0800 (PST)
Received: from ( [IPv6:2607:f8b0:4001:c06::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 8C7DB129C6B; Wed, 7 Mar 2018 11:57:10 -0800 (PST)
Received: by with SMTP id h23so4368005iob.11; Wed, 07 Mar 2018 11:57:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=vLK9T98TUMt5v1mj430L/KUtu1ugmpZiOXnzqLuXx+E=; b=qhUeN4VAV5ltCaj23/M16VAPFeTUUV2Jc5Au3vCb20ifvhQf1AZPZQPSYVLSKzPB2V YYd1QxxBR2O1JgyYcO2fXMYMw4h73mli49DlwuKeW21qcmGDZwck11i/+HA07IpCAnMg L7j2xislZ4uvDhAtUvilGNLGIKYK1xKv1Cb2qgeUYlw4WySe1Bqu8eqPvF1NtSmKXcId 26+f/da1BWg938XcW55bVU4H9Ey5Xjyn/mQVBvQ7VgOGt6e6Oz/TZCFFVQ1pqp9Q0ajr LukmvR0LSHXI8IHQ15HSnVhra6FFDz7BsBxxFrDP7nP/FxiIlo63wF9Pj3WNRtkYjcVj 9niw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=vLK9T98TUMt5v1mj430L/KUtu1ugmpZiOXnzqLuXx+E=; b=O9fvkSXvA4asoZnfWcd/6K4AlIxzLaEjJhqBx19/og8CAGkTsgnTvft4TBtoMi+rpl pddNJbtlIFz4sOMbvCbW1kf15VA3QtWTXS378SuWZ8dUIxjD9du0nymvVdaAK4YcSBoX 408w2wIs0S38idA7+q8gwyLdCiWQt1e2H91lZfmIi/2Mqu3t7lta3gvqPexaJpOPIPx6 B3nhlceC/c4Y5d+QTDJxtgTTqNMILMNefxIco5AMdsfa9LvavgPWQrR7jAHChQA1Zyyf 1yppYrR5F7uOyEWWVC9vcYByOw7iQGoF1b+o1GnhiWjVrMRb/N08e+lMFTqIlyZYdq7M 3fFQ==
X-Gm-Message-State: APf1xPCdxUf9z449Jztxq/MNwwoJmksojCtQAAphatGMeDM9Mw4vZuNv 55GJc8cQ7pkhEByZvCB2ej5+0Nd7wmYAqmklRq8=
X-Google-Smtp-Source: AG47ELsr10hHXqk/7pTzbzajWfqQwA96fLfN0NsRUQzGo+GM2vaxiXvDKXXQ+/HvAi+ytJYVXMyZUX+ckU8helGBsyY=
X-Received: by with SMTP id t23mr27808010iob.14.1520452629815; Wed, 07 Mar 2018 11:57:09 -0800 (PST)
MIME-Version: 1.0
Received: by with HTTP; Wed, 7 Mar 2018 11:56:54 -0800 (PST)
In-Reply-To: <>
References: <>
From: Donald Eastlake <>
Date: Wed, 7 Mar 2018 14:56:54 -0500
Message-ID: <>
To: Alvaro Retana <>
Cc: The IESG <>,,, Susan Hares <>, trill IETF mailing list <>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <>
Subject: Re: [trill] Alvaro Retana's Discuss on draft-ietf-trill-smart-endnodes-10: (with DISCUSS)
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Developing a hybrid router/bridge." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 07 Mar 2018 19:57:13 -0000

Hi Alvaro,

On Mon, Mar 5, 2018 at 4:34 PM, Alvaro Retana <> wrote:
> Alvaro Retana has entered the following ballot position for
> draft-ietf-trill-smart-endnodes-10: Discuss
> ...
> ----------------------------------------------------------------------
> ----------------------------------------------------------------------
> This document feels tightly coupled with
> draft-ietf-trill-directory-assisted-encap, even though there are no
> cross-references.  If I understand the mechanisms correctly, a Smart Endnode
> (discussed in this draft) can then do directory assisted encapsulation
> (described in draft-ietf-trill-directory-assisted-encap).  In fact, the
> encapsulation/decapsulation seems to be the main motivation in defining a Smart
> Endnode.

There are similarities, but I'm not sure I would say that
draft-ietf-trill-directory-assisted-encap and
draft-ietf-trill-smart-endnodes are "tightly coupled".

trill-directory-assisted-encap is the best you can do with no changes
to RBridges as specified in the TRILL Base Protocol [RFC6325]. Special
end stations can do the encapsulation but edge RBridges always do the

trill-smart-endnodes requires additional mechanisms in the edge
RBridges to shake hands with the smart endnode, recognize when a
destination MAC is being handled by the smart endnode and just forward
it without decapslation, etc. As a result, this also support smart
endnodes that are fine grained label aware.

> I think then that this document also falls short in the exploration of
> potential issues, so I am also balloting DISCUSS.  The same cases that I
> pointed at for draft-ietf-trill-directory-assisted-encap [1] are applicable
> here -- with the added caveat that the Smart Endnode, in general, has other
> sources of information (learning, etc.), which means that there are potentially
> more doors to close.

OK, similar security consideration text improvements can presumably be
made to this draft.

> The Multi-homing Scenario (Section 6) adds some complexity to the ability to
> check whether the Ingress RBridge is set correctly in the encapsulation.  It
> would be nice to explore this case a little further and highlight the issues as
> the topologies get more complex.
> As I wrote in [1], I don't think that there are easy mitigations for these
> issues, but at least mentioning them so that operators are aware of the risk
> would be enough to clear this DISCUSS.  Given that the authors partially
> overlap, it may be a good idea to solve the issue in this document (which is
> the general case) and then just have the other one point this way.
> [1]

 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA