Hi Stephane, Jorge, John, DJ, and I met several times over the course of last two weeks to address DJ and some of the other outstanding comments and in doing so covering the following three cases as well:
1. Advertisements of routes learned over a local AC by a GW into the participating domains w/o a domain-path Attribute 2. Advertisements of routes learned over a local AC by a GW into the participating domains w/ a domain-path Attribute that contains a new SAFI and new a domain-id 3. Advertisements of routes learned over a local AC by a GW into the participating domains w/ a domain-path Attribute that contains a new SAFI and one of the existing domain-id Jorge is working hard to incorporate the new changes and by end of the week he should have a new rev that address all the comments including yours below. Cheers, Ali From: "Stephane Litkowski (slitkows)" <slitk...@cisco.com> Date: Friday, December 11, 2020 at 7:37 AM To: "draft-ietf-bess-evpn-ipvpn-interwork...@ietf.org" <draft-ietf-bess-evpn-ipvpn-interwork...@ietf.org> Cc: "bess@ietf.org" <bess@ietf.org>, "bess-cha...@ietf.org" <bess-cha...@ietf.org> Subject: draft-ietf-bess-evpn-ipvpn-interworking chair review Resent-From: <alias-boun...@ietf.org> Resent-To: <jorge.raba...@nokia.com>, Cisco Employee <saja...@cisco.com>, <erose...@gmail.com>, <jdr...@juniper.net>, <w...@juniper.net>, <ju1...@att.com>, <adam.1.simp...@nokia.com> Resent-Date: Friday, December 11, 2020 at 7:35 AM Hi Authors, Please find below my chair review related to draft-ietf-bess-evpn-ipvpn-interworking. BTW, you need to refresh the draft now, it has expired. Section 3: * Nit: s/uniqueness of the DOMAIN- ID/uniqueness of the DOMAIN-ID/ * a) I agree with DJ’s comment on: “This attribute list may contain zero, one or more segments". It is actually one or more. * The section 3 contains both normative and non-normative language. If section 3 is intended to detail the normative behavior of adding/modifying D-PATH, it must use normative for any of the normative procedure. For instance b) may require normative language. While it is very good to have an example in b), one or more clear normative rules are required before talking about the example. * b) talks about domain-ids attached to IP-VRF, this is fine. However, the text should provide a wider view so people don’t think that this is the only option. Domain-Ids may be assigned at VRF level, but also at more a higher level (BGP peer), or even lower level (bgp community…). We should not limit implementations here in the granularity domain-ids are defined. * c) I don’t see why “MUST NOT”, it does not hurt to have a DOMAIN-ID associated with non ISF world (routes learned from IGP, static)… there could be design where people do BGP one leg and non-BGP on the other leg. We should probably relax that. Would you mind adding a beautiful ASCII-ART for the attribute format ? It’s usually good to have when reading to see the attribute format rather than having to read the text. You need to define the error handling procedures for D-PATH as per RFC7606 (you should have it as normative ref too). Section 3.1 This sentence is misleading and does not match with the normative behavior of Section 3) d) “In general, any interworking PE that imports an ISF route MUST flag the route as "looped" if its D-PATH contains a <DOMAIN-ID:ISF_SAFI_TYPE> segment, where DOMAIN-ID matches a local DOMAIN-ID in the tenant IP-VRF.” I don’t see the value of this section beyond providing an example. The normative behavior is already given in Section 3) d). Can’t the example be packed under d). Also the pointed sentence still refers to a DOMAIN-ID per VRF, which is not good for a generic statement. My domain ID info could from the BGP peer config. Again, this option of per VRF is fine, but this is not the only one that can be implemented. Section 4.1: I don’t see why “no-propagation-mode” is the default mode. This is breaking existing propagation of attributes from SAFI 1 to SAFI 128. When we have a CE running BGP with a PE, the PE propagates the attributes (CTs, ASPATH, MED…) coming from the CE. This section creates some ambiguity about the D-PATH attribute. Based on Section 3, D-PATH will be necessarily sent but received D-PATH may be dropped and new one created but the text of section 4.1 makes me think that it’s not the case in no-propagation mode. I think setting D-PATH is orthogonal to the attribute propagation. As section 4.1 tells, people may still want to rely on existing SoO for instance in some case in this case D-PATH may not be added. I think section 3 and 4.1 have to be more clear on the normative procedures about D-PATH addition/modification. Section 4.2: Isn’t it dangerous to try to define which attributes needs to be propagated, and which one should not be ? We are always creating new attributes, should people update this doc each time a new attribute comes ? I don’t really see how this could be managed. Isn’t there an indentation issue starting “When propagating an ISD route to a different ISF SAFI…” ? The considerations about ASPATH look really implementation details to me (at least the way it is written). Basically the ASPATH propagation rules doesn’t change and the gateway function itself does not modify the ASPATH. Similarly, for the IBGP-only path attributes, the word “copy” looks really implementation dependent. Why not telling that the advertised route should keep the received iBGP-only attribute ? You should also clarify considerations regarding rfc6368. Section 4.3: Shouldn’t we just follow existing aggregation rules of each attribute ? Again, what happens when new attributes are coming in. I don’t think that the gateway function has actually something to change in the aggregation process. Aggregation is happening in the VRF, there is no change compared to what is existing today, for VRF, it’s just IP prefix aggregation. However, as we are defining D-PATH, we can define aggregation rules related to D-PATH. Section 5: “For a given prefix advertised in one or more non-EVPN ISF routes, the BGP best path selection procedure will produce a set of "non-EVPN best paths". For a given prefix advertised in one or more EVPN ISF routes, the BGP best path selection procedure will produce a set of "EVPN best paths". » I think the EVPN vs non EVPN paths is a bit misleading. Couldn’t we simplify say that we have best path selection at ISF level which inserts routes in IP-VRF and then we have a new selection at VRF level. Regarding the new tie-breakers: It s not clear to me which steps tie breaks an IPVPN path vs an EVPN path (composite PE case) that are equivalent (only ISF changes). Section 7: I agree with Suresh’s comment about the unclarity of the first bullet. This document makes ISF 1 in the picture, so all the procedures defined in the document are applicable to all the combinations of ISFs including SAFI1 <-> SAFI 128. So the text must be written carefully. Section 10: This section should be at the top of the document. Section 11: You need a security consideration section. Section 15: IMO, intersubnet forwarding and prefix-adv drafts must be normative as they are key components of the solution. Pls update the draft and then I’ll ask IDR to have a review on the draft as well. Brgds, Stephane
_______________________________________________ BESS mailing list BESS@ietf.org https://www.ietf.org/mailman/listinfo/bess
