Re: [Softwires] softwires-encaps-safi
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Softwires] softwires-encaps-safi
- To: "Yakov Rekhter" <yakov at juniper.net>, "David Ward" <dward at cisco.com>
- Subject: Re: [Softwires] softwires-encaps-safi
- From: "Pradosh Mohapatra (pmohapat)" <pmohapat at cisco.com>
- Date: Thu, 8 May 2008 08:19:54 -0700
- Authentication-results: sj-dkim-4; header.From=pmohapat at cisco.com; dkim=pass ( sig from cisco.com/sjdkim4002 verified; );
- Cc: "Francois Le Faucheur \(flefauch\)" <flefauch at cisco.com>, Alain Durand <Alain_Durand at cable.comcast.com>, Jari Arkko <jari.arkko at piuha.net>, softwires at ietf.org, jgs at juniper.net, jianping <jianping at cernet.edu.cn>, riw at cisco.com
- Delivered-to: ietfarch-softwires-web-archive at core3.amsl.com
- Delivered-to: softwires at core3.amsl.com
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; l=4155; t=1210259996; x=1211123996; c=relaxed/simple; s=sjdkim4002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=pmohapat at cisco.com; z=From:=20=22Pradosh=20Mohapatra=20(pmohapat)=22=20<pmohapat @cisco.com> |Subject:=20RE=3A=20[Softwires]=20softwires-encaps-safi |Sender:=20; bh=YZABwBoabjTK7z5iGsiarmBTja0g9J80YuTKw4d39HY=; b=oDw+KP1i0hwCsJhp5pY1fStlue6pda5bfCxHPXR/XnoECod9NPA93cSs6t gJCoer5pEpYrLOqrw41xsGCrKcGGwtWoPDRWKiqxkwgN+iBnQzlH0UOtbRkC IyN4HUf9pW;
- In-reply-to: <200805052235.m45MZ9x12922@magenta.juniper.net>
- List-archive: <http://www.ietf.org/pipermail/softwires>
- List-help: <mailto:softwires-request@ietf.org?subject=help>
- List-id: softwires wg discussion list <softwires.ietf.org>
- List-post: <mailto:softwires@ietf.org>
- List-subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
- List-unsubscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
- References: Your message of "Mon, 05 May 2008 15:34:31 CDT."<89F15385-FDFE-4973-A8B2-A2F358655DFE@cisco.com> <200805052235.m45MZ9x12922@magenta.juniper.net>
- Sender: softwires-bounces at ietf.org
- Thread-index: AcivAYdgQkbzBt9bRvCCdYUdO65FRQCHHPDg
- Thread-topic: [Softwires] softwires-encaps-safi
Hi Yakov,
| From 4.3:
|
| Additionally, the Encapsulation SAFI UPDATE message can contain a
| community or extended-community as a way to color the corresponding
| tunnel TLV(s). The same community or extended community can then
be
| attached to the UPDATE messages that contain payload prefixes. This
| way, the BGP speaker can express the fact that it expects the
packets
| corresponding to these payload prefixes to be received with a
| particular tunnel encapsulation header.
|
| With this in mind consider a scenario where a PE receives an
encaps-safi
| update for a tunnel destined to address A1, and this update is
"colored"
| with a particular community C. The PE also receives an VPN-IPv4 update
| that carries the same community C, but its next hop is not A1, but A2.
|
| What should the PE do when resolving the next hop towards VPN-IPv4
routes ?
|
| One could argue that if the nexthop address in a VPN-IPv4 update does
not
| match any of the addresses from an encaps-safi update, the nexthop can
not
| get resolved. In other words, this should be treated as a misconfig --
i.e.
| there is no way to reach that nexthop using a tunnel encap (unless
| there is some local config forcing to use an encap).
|
| However, this argument is incorrect, as just because the nexthop
address
| in the VPN-IPv4 update does not match any of the addresses from an
| encap-safi update does not really mean that "the next hop can not get
| resolved". In other words, just because there is no way to reach the
| nexthop using the tunnel carried in the encap-safi, does not mean that
| there is no way to that nexthop.
Are you referring to nexthop validation or nexthop resolution in this
context? I consider these as different: nexthop validation is what
triggers the BGP speaker to accept the received prefixes or reject them.
Nexthop resolution is what triggers the BGP speaker to install the
prefixes
in forwarding table for active lookups. If the nexthop is not resolved,
the prefixes are put in unresolved state.
The nexthop resolution itself takes various forms and is heavily
dependent
on whether the packet needs to be tunneled or sent in native encoding
format. If the application is to send the packet tunneled, just checking
nexthop reachability (e.g. IGP information) is not sufficient and it
would
in fact be incorrect to resolve the nexthop & prefixes just based on
that
(An example is the MPLS VPN case where we need to have MPLS encaps be
available for the BGP nexthops).
Coming back to encaps SAFI discussion, I think there are two scenarios
where I sense a concern:
(1) No encaps-safi for a nexthop,
(2) encaps-safi for a nexthop, but there is no match for prefix color
Let's take the first case. We agreed before that encaps-safi is not a
MUST (e.g. GRE tuneling), at which point, it becomes a local
configuration
on how to encap.
If there is no local configuration, I still maintain that having no
encaps-safi for a nexthop means that nexthop is unresolved. This is
because
signaling information is propagated asynchronously in the network. If
a PE receives a VPN-IPv4 UPDATE with nexthop N1 and there is no
encaps-safi
information about N1, it does not necessarily mean N1 is to be resolved
in a certain different way. It could very well mean that the encaps-SAFI
update for N1 is in transit -- so the prefixes need to be kept in
unresolved
state till N1's encap information is available. There could, of course,
be
a local config to assume a certain default encap, but in the absense of
that config, it is better to put it in unresolved state.
I consider the second to be a "special case" of the first. Local
configuration can override to derive encap information for N1, but in
the absense of that, it would be unresolved. May be the color could
carry
a notion of "strict" match vs. a "loose" match in that, if it is
signaled
as a 'loose' match, then even if the prefixes are not colored, the
nexthop is considered to be resolved for those prefixes?
- Pradosh
_______________________________________________
Softwires mailing list
Softwires at ietf.org
https://www.ietf.org/mailman/listinfo/softwires
Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.
