Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-tsvwg-rfc6040update-shim-21: (with DISCUSS and COMMENT)
Bob Briscoe <ietf@bobbriscoe.net> Tue, 05 December 2023 16:56 UTC
Return-Path: <ietf@bobbriscoe.net>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 09DA7C239612; Tue, 5 Dec 2023 08:56:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bobbriscoe.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9BT8bdIm7Nss; Tue, 5 Dec 2023 08:56:50 -0800 (PST)
Received: from mail-ssdrsserver2.hostinginterface.eu (mail-ssdrsserver2.hostinginterface.eu [185.185.85.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A6C54C14F61C; Tue, 5 Dec 2023 08:56:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bobbriscoe.net; s=default; h=In-Reply-To:From:References:Cc:To:Subject: MIME-Version:Date:Message-ID:Content-Type:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=WIKTfaL7fABAlzYmpCqK9yRtFCk3N2MTeSIWPMypCyI=; b=Kaq94EOdY52582L7nwG09WIjVa YMq/Osc0cID3wFujp83hwl8s4v7q33ZKlRROQjF1MDYy1pqz1R1jNo6BN6pscS2IyGZQlhpWtvKgE a/6S/un7feBZ58PRy73ErcrqEInJnLJKoofFoiWA9CAWWeEeIrGQhJiDpgo1vIrqmdbBaKqlTRMl4 E39cnijwktjWbJFoCzsIGR+h2NCn+HtR9bTHdZHSWA3yESDcT40qz/a0kR8I9Fnfcl7ugWsuCoz9x wHCqeTuV8UzJ9X0yMM3ZfJBi8DGx7XPsKLEG3nZ+yESZqlPPz4mCxn3voh/YQ0J0VpFTrQwh5u7t6 6AXMLGWw==;
Received: from 67.153.238.178.in-addr.arpa ([178.238.153.67]:52060 helo=[192.168.1.29]) by ssdrsserver2.hostinginterface.eu with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96.2) (envelope-from <ietf@bobbriscoe.net>) id 1rAYj4-0001OP-03; Tue, 05 Dec 2023 16:56:46 +0000
Content-Type: multipart/alternative; boundary="------------hcytqGGP4AUU53XeseKpZn56"
Message-ID: <9198f637-7d45-4121-99c5-3751da760944@bobbriscoe.net>
Date: Tue, 05 Dec 2023 16:56:43 +0000
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-GB
To: "Eric Vyncke (evyncke)" <evyncke@cisco.com>, The IESG <iesg@ietf.org>
Cc: "gorry@erg.abdn.ac.uk" <gorry@erg.abdn.ac.uk>, "tsvwg@ietf.org" <tsvwg@ietf.org>, "draft-ietf-tsvwg-rfc6040update-shim@ietf.org" <draft-ietf-tsvwg-rfc6040update-shim@ietf.org>, "tsvwg-chairs@ietf.org" <tsvwg-chairs@ietf.org>, "d3e3e3@gmail.com" <d3e3e3@gmail.com>
References: <170115584746.29426.10484446828614575033@ietfa.amsl.com> <b522a540-e19c-4266-9b1e-6631dc5b89e0@bobbriscoe.net> <PH0PR11MB4966A229E5DEED754DC481E7A986A@PH0PR11MB4966.namprd11.prod.outlook.com> <19d852f4-499b-4f03-8582-e3e70f078026@bobbriscoe.net> <PH0PR11MB4966B6284C9235AAA2DFE555A985A@PH0PR11MB4966.namprd11.prod.outlook.com>
From: Bob Briscoe <ietf@bobbriscoe.net>
In-Reply-To: <PH0PR11MB4966B6284C9235AAA2DFE555A985A@PH0PR11MB4966.namprd11.prod.outlook.com>
X-MagicSpam-TUUID: 751c01ca-00dc-4a50-a318-91e24db8e492
X-MagicSpam-SUUID: d5c3b44a-cc98-4b16-b919-682c1870af25
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - ssdrsserver2.hostinginterface.eu
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: ssdrsserver2.hostinginterface.eu: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: ssdrsserver2.hostinginterface.eu: in@bobbriscoe.net
X-Source:
X-Source-Args:
X-Source-Dir:
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/XrtsljPbmj4NIJ5MzPl1qQlV3dw>
Subject: Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-tsvwg-rfc6040update-shim-21: (with DISCUSS and COMMENT)
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Dec 2023 16:56:55 -0000
Eric, Thanks. Given I believe everyone's comments have been addressed, I've just submitted a new rev, with the correct normative text boilerplate to clear your DISCUSS: https://datatracker.ietf.org/doc/html/draft-ietf-tsvwg-rfc6040update-shim#name-terminology Cheers Bob On 05/12/2023 15:01, Eric Vyncke (evyncke) wrote: > > Bob > > Top replies: > > - thank you for clarifying “shim” in the context of this I-D > > - I confirm that NHRP is used to build GRE tunnels mesh > > Regards > > -éric > > *From: *Bob Briscoe <ietf@bobbriscoe.net> > *Date: *Tuesday, 5 December 2023 at 01:23 > *To: *Eric Vyncke (evyncke) <evyncke@cisco.com>, The IESG <iesg@ietf.org> > *Cc: *gorry@erg.abdn.ac.uk <gorry@erg.abdn.ac.uk>, tsvwg@ietf.org > <tsvwg@ietf.org>, draft-ietf-tsvwg-rfc6040update-shim@ietf.org > <draft-ietf-tsvwg-rfc6040update-shim@ietf.org>, tsvwg-chairs@ietf.org > <tsvwg-chairs@ietf.org>, d3e3e3@gmail.com <d3e3e3@gmail.com> > *Subject: *Re: [tsvwg] Éric Vyncke's Discuss on > draft-ietf-tsvwg-rfc6040update-shim-21: (with DISCUSS and COMMENT) > > Eric, pls see [BB2] > > On 04/12/2023 12:35, Eric Vyncke (evyncke) wrote: > > Hello Bob, > > Thanks for your reply. > > See below for EV> > > *From: *Bob Briscoe <ietf@bobbriscoe.net> <mailto:ietf@bobbriscoe.net> > *Date: *Friday, 1 December 2023 at 22:56 > *To: *Eric Vyncke (evyncke) <evyncke@cisco.com> > <mailto:evyncke@cisco.com>, The IESG <iesg@ietf.org> > <mailto:iesg@ietf.org> > *Cc: *gorry@erg.abdn.ac.uk <gorry@erg.abdn.ac.uk> > <mailto:gorry@erg.abdn.ac.uk>, tsvwg@ietf.org <tsvwg@ietf.org> > <mailto:tsvwg@ietf.org>, > draft-ietf-tsvwg-rfc6040update-shim@ietf.org > <draft-ietf-tsvwg-rfc6040update-shim@ietf.org> > <mailto:draft-ietf-tsvwg-rfc6040update-shim@ietf.org>, > tsvwg-chairs@ietf.org <tsvwg-chairs@ietf.org> > <mailto:tsvwg-chairs@ietf.org>, d3e3e3@gmail.com > <d3e3e3@gmail.com> <mailto:d3e3e3@gmail.com> > *Subject: *Re: [tsvwg] Éric Vyncke's Discuss on > draft-ietf-tsvwg-rfc6040update-shim-21: (with DISCUSS and COMMENT) > > Eric, Thank you for your review. Pls see [BB] (where no comment on > any point means accepted)... > > On 28/11/2023 07:17, Éric Vyncke via Datatracker wrote: > > Éric Vyncke has entered the following ballot position for > > draft-ietf-tsvwg-rfc6040update-shim-21: Discuss > > > > When responding, please keep the subject line intact and reply to all > > email addresses included in the To and CC lines. (Feel free to cut this > > introductory paragraph, however.) > > > > > > Please refer tohttps://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ > > for more information about how to handle DISCUSS and COMMENT positions. > > > > > > The document, along with other ballot positions, can be found here: > > https://datatracker.ietf.org/doc/draft-ietf-tsvwg-rfc6040update-shim/ > > > > > > > > ---------------------------------------------------------------------- > > DISCUSS: > > ---------------------------------------------------------------------- > > > > # Éric Vyncke, INT AD, comments for draft-ietf-tsvwg-rfc6040update-shim-21 > > > > Thank you for the work put into this document. > > > > Please find below one blocking DISCUSS points (easy to address), some > > non-blocking COMMENT points (but replies would be appreciated even if only for > > my own education), and some nits. > > > > Special thanks to Gorry Fairhurst for the shepherd's detailed write-up > > including the WG consensus *but it lacks* the justification of the intended > > status. > > > > Other thanks to Donald Eastlake, the Internet directorate reviewer (at my > > request), please consider this int-dir review: > > https://datatracker.ietf.org/doc/review-ietf-tsvwg-rfc6040update-shim-20-intdir-telechat-eastlake-2023-11-22/ > > (and I have noticed Bob's reply) > > > > I hope that this review helps to improve the document, > > > > Regards, > > > > -éric > > > > # DISCUSS (blocking) > > > > As noted inhttps://www.ietf.org/blog/handling-iesg-ballot-positions/, a > > DISCUSS ballot is a request to have a discussion on the following topics: > > > > ## Wrong BCP14 ... > > > > Section 2 MUST use the correct BCP 14 (I told you that this was trivial) > > > > > > EV> just to be clear, I am clearing my DISCUSS as soon as a > revised I-D is submitted with the right BCP14 template (you > probably have authored the I-D using an old template) > > ---------------------------------------------------------------------- > > COMMENT: > > ---------------------------------------------------------------------- > > > > > > # COMMENTS (non-blocking) > > > > ## Section 3.1 > > > > It is just a comment, no need to reply, but I do not agree with `Digging to > > arbitrary depths to find an inner IP header within an encapsulation is strictly > > a layering violation`, the encapsulating routing is probably doing the encaps > > based on the future inner IP header (routing to a tunnel interface). Anyway, > > just a comment. > > > [BB] I haven't changed this - I think the word 'strictly' conveys > the message that this is actually done in practice, while "it > cannot be a required behaviour" is reinforced by the later point > that there always has to be a max depth to dig down to if you're > not actually decapsulating headers but just digging to look. > > EV> indeed, this was just a comment, feel really free to ignore it > (i.e., no change in the current text) as it is more a conversation > to have in front of a drink. > > > > ## Section 6 > > > > Suggest removing the long expired draft-ietf-intarea-gue (and possibly others). > > > [BB] Removed. Thx for being decisive on what is not going forward. > > > > > > Suggest to add RFC 8986 as it also has a Ethernet next-header. > > > [BB] I've scanned through RFC8986. Generally, it only /uses/ > existing encapsulations. But you're right that §10.1 does assign > 143 as the next header value for Ethernet. However, not having > been involved in the area of L2VPNs, I don't understand how/why > this happened so late (2021). IOW, how was Ethernet indicated as > the next header in EVPNs before RFC8986? Was the EtherIP > assignment used/abused? Whatever, this is just a request for a > personal tutorial. Back to the draft.... > > EV> basic tutorial then ;-) with RFC 8986, there was no need for > yet-another-encapsulation (e.g., GENEVE, VXLAN) as it is already > in a tunnel. AFAIK, IP protocol 143 is only used by this RFC. > > > > I believe Ethernet L2VPNs are outside the scope of > rfc6040update-shim. An Ethernet 802.3 MAC header does not fall > under the definition of a shim header, 'cos it is self-sufficient > as an outer for general forwarding. So an 802.3 header does not > have to be added (or removed) at the same time as an outer IP > header. And an Ethernet header cannot carry any form of explicit > congestion notification {Note 1}. > > Therefore, there's no sure way to be able to propagate ECN between > a (possible) IP header encapsulated within the Ethernet header and > an outer IP header encapsulating the Ethernet header. This could > be specified, but it's certainly not just something we could tack > on to rfc6040update-shim - it's beyond the stated scope - much > more ambitious. > > So, do you agree it is OK not to introduce SRv6? Or have I > misunderstood? > > > > EV> unsure why it is not a shim, but you are correct there is > probably no easy way to propagate ECN in this case. OTOH, skipping > the Ethernet header, find its Ethertype, and adjust the following > IPv4/IPv6 header (if any) > > > [BB2] The definition of shim' (for this draft at least) is that it's > not a sufficient header to be used for forwarding on its own (as an > outer). This then requires an outer to be added to the shim at the > same location (because the shim isn't sufficient to forward the PDU to > anywhere else). Then even if header compression or encryption, etc. is > applied, the inner header inside the shim(s) and the outer header > outside the shim(s) must both have been accessible at some part of the > process at one location. it's then likely there will be no difficulty > propagating the ECN field between inner & outer. > > > > {Note 1}: Other than 802.1Q in the control plane, but making that > work over a L2VPN would be a whole new exercise in itself. > > > > > > > > ## Section 6.1.2 > > > > Please note that NHRP, RFC 2332, is sometimes used to set up GRE tunnels. > > > [BB] I'm afraid NHRP is completely new to me. If I add it at the > start of the list of 4 control plane protocols in the quote below > (from "§6.1.2 GRE"), will the subsequent para still be correct, or > is NHRP not used to set up IP-in-IP or IPSec tunnels? > > EV> NHRP is indeed often used to build GRE tunnels (themselves > protected by IPsec in transport mode), this was a common approach > before the controller-based SD-WAN paradigm > > GRE itself does not support dynamic set-up and configuration > of tunnels. However, control plane protocols such as *NHRP > [RFC2332],* Mobile IPv4 (MIP4) [RFC5944 > <https://www.rfc-editor.org/info/rfc5944>], Mobile IPv6 (MIP6) > [RFC6275 <https://www.rfc-editor.org/info/rfc6275>], Proxy > Mobile IP (PMIP) [RFC5845 > <https://www.rfc-editor.org/info/rfc5845>] and IKEv2 [RFC7296 > <https://www.rfc-editor.org/info/rfc7296>] are sometimes used > to set up GRE tunnels dynamically. > > EV> an Oxford comma is probably required before “and IKEv2” > > > > When these control protocols set up IP-in-IP or IPSec tunnels, > it is likely that the resulting tunnels will propagate the ECN > field as defined in RFC 6040 or one of its compatible > predecessors (RFC 4301 or the full functionality mode of RFC > 3168). However, if they use a GRE encapsulation, this > presumption is less sound. > > > [BB2] My question was whether NHRP is used to build these other > tunnels (IP-in-IP or IPSec). Because the phrase 'these control > protocols' refers to those in the previous list, which now includes > NHRP. Therefore I was checking if this last para is still correct. > > BTW, I leave the RFC Ed to add Oxford commas. My innate British > English writing style doesn't include them. So if I forced myself to > add them, it would just end up as an inconsistent mess. > > Cheers > > > > Bob > > > > Thanks again > > > Bob > > > > > > > > > ## Section 6.1.3 > > > > Teredo... a glimpse of the past back in 2023 ? More seriously, I do not mind > > having this section, but Teredo is no more used. Writing `existing Teredo > > deployments safe` in an IETF document looks so weird. > > > > # NITS (non-blocking / cosmetic) > > > > ## Use of v4 and v6 > > > > While I usually say "v4" or "v6", I strongly suggest to write "IPv4" and "IPv6". > > > > > > > -- > > ________________________________________________________________ > > Bob Briscoehttp://bobbriscoe.net/ > > > > -- > ________________________________________________________________ > Bob Briscoehttp://bobbriscoe.net/ -- ________________________________________________________________ Bob Briscoehttp://bobbriscoe.net/
- [tsvwg] Éric Vyncke's Discuss on draft-ietf-tsvwg… Éric Vyncke via Datatracker
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Bob Briscoe
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Eric Vyncke (evyncke)
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Bob Briscoe
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Eric Vyncke (evyncke)
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Bob Briscoe
- Re: [tsvwg] Éric Vyncke's Discuss on draft-ietf-t… Eric Vyncke (evyncke)