[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt

To: "BRUNGARD, DEBORAH A, ATTLABS" <dbrungard@att.com>, <Dimitri.Papadimitriou@alcatel-lucent.be>
Subject: Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt
From: "Adrian Farrel" <adrian@olddog.co.uk>
Date: Tue, 27 Feb 2007 14:27:59 -0000
Cc: "Arthi Ayyangar" <arthi@nuovasystems.com>, <ccamp@ops.ietf.org>, "JP Vasseur" <jvasseur@cisco.com>
Organization: Old Dog Consulting
References: <OF97BD1489.617B78B5-ONC125728D.006F1D9A-C125728D.0071CB8D@netfr.alcatel.fr>
Reply-to: "Adrian Farrel" <adrian@olddog.co.uk>

Dimitri,

Thanks for getting these review comments in before last call started. Mostwelcome.

o) section 3.4: processing is clearly indicated but on inter-domain basis
one of the issue is that the processing can have to be performed on nodes
that will further Notifies toward an AS-path that is completely different
from its corresponding TE LSP e.g. A-B-...-C-D, but Notify msg flows along
A-E-C-D, or A-B-F-D, we have a situation where B Notify msg toward X would
travel via the tail-end (D) and C Notify msg would loop via the head-end
(A) - advisable to prevent such thing

     ----------E--------
    |                   |
e.g. A --- B -... X ...- C --- D
          |                   |
           ---------F---------

To clarify this point, you are concerned about how the Notify recipient maybe replaced in a Path message as it enters the domain, and as it exits thedomain (ditto Resv message).

This issue is dicussed somewhat in the GMPLS-UNI (RFC4208) and in segmentprotection. And there is a trade-off and a modelling question.

The trade-off is that it is probably highly beneficial to repair problemswithin the domain. Therefore, the domain entry point should replace theNotify Recipient with its own ID. The down side of this is that a Notifythat genuinely needs to go to the original Notify Recipient must beforwarded (at the RSVP level) by the domain entry point.

The modelling is issue concerns how the Notify Recipient should be set onthe Path message as it leaves a domain. The domain is not interested inknowing about notifiable events that happen outside the domain, so ideallywe would replace the Notify Recipient with the original recipient usedbefore entering the domain, but htis information is not known.

Actually, however, this replacement is only appropriate in nested domains.In sequential domains, when we leave one domain, we enter another, and sothe new domain will want to use its own domain entry point as the NotifyRecipient. This introduces the trade-off benefit again because the localissues are handled locally (which is good) but notifications that should go(for example) to the ingress, must now be forwarded multiople times, domainby domain.

Now, note that the inter-domain framework (RFC4726) was careful to putnested domains out of scope. They are more appropriate to the MLN work. Wecould observe that the domain-by-domain forwarding technique could be usedfor nested domains as well, but it doesn't look so pretty. Igor and Iproposed a solution to this issue for nested in domains in That Book, butAFAIK, no-one has come close to needing to deploy a solution for nesteddomains yet.


So, I have added some discussion to the I-D around this subject.

o) section 6: it is unclear from section 6 why an LSP head-end would ever
desire to exercise control re-opt in part. when non-contiguous, at the end
the only realistic reason for requesting such kind of request from the
head-end is lost of performance e.g increasing loss, delay, etc.


I think you have answered your question to some extent.

A transit domain may be aware of the potential for reoptimization, but notbother because it is not worried by the level of service being provided. Butthe cumulative effect on the end-to-end LSP may cause the head-end to worryand trigger a reoptimization request (of course, the transit domain maychoose to ignore the request).

But there is another benefit to end-to-end reoptimization that per-domainreoptimization cannot address. Per-domain re-optimization is restricted topreserve the domain entry and exit points (since to do otherwise would breakthe LSP!). But end-to-end reoptimization is more flexible and can select newdomain border LSRs.

You are also right to observe that end-to-end reoptimization may involve anon-local modification and that might select new entry / exit points. Inthis case, we can observe that local re-optimization is more easily andflexibly achieved using nesting or stitching, and the "locality principle"(i.e., the idea of keeping information only where it is needed) is bestachieved using stitching or nesting. That said, a contiguous LSP can easilybe modified to take advantage of local reoptimizations (as defined inRFC4736) even if, as you observe, this would require the dissemination ofinformation and the invocation of signaling outside the local domain.


I will update section 6 to bring out these points.

there is also a clear diff. between a desirable re-opt. when the LSP is
contiguous (and thus triggerable only by the head-end) and a
local-/domain-specific resource re-opt. in other cases


You mean the cost/benefit analysis of reoptimization may be different.
Yes, that is correct and worth adding to section 6.

o) section 7: the document could be more specific for the hello exchanges
at inter-domain boundaries - in the same section specific security in
using MPLS-BFD for end-to-end TE LSP should be clarified

I think you are raising some issues about peering and trust models at domainborders. These models relate to the establishment of signaling adjacencies(for example, but not limited to) through the exchange of Hello messages.Also relevant is the trust that one can assign to the content of signalingmessages (including restart messages) and this is an example of the issuesraised by the IESG with various recent I-Ds, in particular the restartextensions I-D.

AFAICS there is required to be *some* trust relationship between neighborsacross a domain boundary if signaling is to be used. If this trust does notexist, do not use this function. It is not a requirement to signal acrossdomain boundaries, but it is a requirement to provide a mechanism to supportit if neighboring domains wish to.

Should this trust relationship be any different from between intra-domainpeers? Possibly.

Should domain border nodes be able to selectively disallow certain"vulnerable" features at domain borders? Absolutely. And it is worthpointing out that the restart function could be disabled on the linksbetween domain borders if it is considered vulnerable.


I have made several updates to the security section.

- in the same section specific security in
using MPLS-BFD for end-to-end TE LSP should be clarified


Absolutely. I have added a note about OAM, although this is largely to
reference other material since OAM is out of scope for this signaling
draft.

Many thanks,

Adrian

References:
- Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt
  - From: Dimitri.Papadimitriou@alcatel-lucent.be

Prev by Date: Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt
Next by Date: New communication from the OIF
Previous by thread: Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt
Next by thread: Re: Chair review of draft-ietf-ccamp-inter-domain-rsvp-te-04.txt
Index(es):
- Date
- Thread