headers
Arashmid Akhavain | 1 Sep 2004 18:10

RE: Requesting your feedback - issues/errors/clarification s

Let's put the VPN network aside for a bit and suppose we were dealing with a pure IP network. Now here is what is going to happen:

1- Using the independent mode of operation, B associates L10 with the loop back address of node Z and sends a label mapping (L10, Z) to node A.

2- A transmits packets destined to Z using L10.

3- B receives the labeled packet, pops the label, resumes normal IP forwarding and forwards the packet based on its DA.

Now, RFC 3031 as Bob mentioned in his e-mail advices against such a practice and suggests that the safest thing to do is to drop the packet. But I think we should be very explicit in the spec. My point is that DU and independent mode of operation at best can result in packet drop. So, we might want to advice against it or at least mention this in RFC 3036.


Please find my other comments below:

Arashmid


-----Original Message-----
From: Eric Gray [mailto:egray <at> westridgenetworks.com]
Sent: Tuesday, August 31, 2004 11:10 AM
To: Bob Thomas; Akhavain, Arashmid [CAR:NP62:EXCH]
Cc: mpls <at> ietf.org
Subject: RE: [mpls] Requesting your feedback - issues/errors/clarification s


In addition to Bob's observation, one of the "known bugs" with MPLS/BGP is that the BGP peers MUST know (in some un-specified way) that there is a continuous LSP from peer to peer before they can use the LSP to carry MPLS/BGP labeled packets. In this case, the ingress PE should not have forwarded the packet using the MPLS/BGP label without "knowing" that the LSP was continuous peer to peer. An example technique might rely on the Hop-Count loop detection mechanism, possibly in conjunction with an IGP routing protocol.

[Arashmid]
Yes, as you mentioned, the issue with this "known bug" is that BGP peers do not know that there is a continuous LSP from peer to peer. This is the basic issue with the use of DU and independent mode of operation. The head node of LSP receives a label and would be under the impression that there is a full path while the path could only be partially complete. DU and ordered mode is more robust in this regard.

[Arashmid]


As Bob points out, if the LSP is incomplete, the LSR where it terminates SHOULD discard the labeled packets it receives. Remembering that the LSR in the example gave the label L10 out for a FEC for Z, that LSR SHOULD be anticipating that it would forward the enclosed packet toward Z. Finding that the underlying packet is not - as expected - an un-labeled packet (it SHOULD expect this, because it does not have a downstream mapping for a FEC corresponding to Z), it SHOULD discard the packet without processing further. This would result in black-holing the packets, rather than mis- directing them - and would actually be because of a misguided MPLS/BGP implementation, rather than an LDP problem.

[Arashmid] Given that the same setup would have worked correctly in a pure IP network, I think the key point in your statement is that the underlying packet is not an un-labeled packet. As such, since node B does not have a downstream mapping for the FEC, it must drop the packet. I agree with your pint here, but again the use of DU and ordered mode would have bettered guaranteed the existence of the downstream mapping.

[Arashmid]


Even if the LSR did do further processing, it is NOT correct for the LSR to
assume that it issued the underlying label - since (as Bob points out) it did not issue the original (freshly popped) label (L10) for itself as a destination FEC. Looking further, it would see that it did not receive

any such label from the next hop for FEC Z, either, and would then discard the packet. If the LSR pops a label expecting to have terminated an LSP (in other words, not as a result of PHP) associated with an IPv4 FEC, it should expect the underlying packet to be an IPv4 packet and discard it if it is not.

We should write specifications to tell people what they need to do the right thing, not to tell them all the wrong things they should not do.

[Arashmid]
True, we should write spec to tell people what they need to do the right thing. Therefore, we should tell them to use DU in conjunction with Ordered control.

{Arashmid]

> -----Original Message-----
> From: mpls-bounces <at> lists.ietf.org [mailto:mpls-bounces <at> lists.ietf.org]
On Behalf Of Bob Thomas
> Sent: Tuesday, August 31, 2004 7:04 AM
> To: Arashmid Akhavain
> Cc: 'mpls <at> ietf.org'
> Subject: Re: [mpls] Requesting your feedback -
issues/errors/clarification s
>
> > Packet misrouting can happen under the following circumstance.
> > Consider the following L3-VPN network
> >
> >
> > A----------B----- ... ------Z
> >
> > + B sends a label mapping message for loop back address of Z to A
using
> >   the independent control mode of operation. Let's call this label
L10.
> >
> > + Z advertises label L100 for one of its VPN routes to A via MP-BGP.
> >
> > + B could also be a PE and could have allocated label value L100
> >   to one of its links to a CE device it is connecting to.
> >
> > + Receiving L10 for the loop back address of Z, A will be under the
> > impression
> >   that it has a full path to Z.
> >
> > + A starts transmitting packets with outer label L10 and inner label
L100.
> > Meanwhile
> >   no label representing the loop back address of Z has arrived at B.
> >
> > + B receives the labeled packet and pops L10.
> >
> > + B then proceeds with the processing of L100.
> >
> > + B recognizes L100 as a local label and transmits the un labeled
packet to
> > the
> >   wrong CE device.
>
> This behavior of B appears to be in violation of the spirit (if not
the
> letter) of the advice in Section 3.22 (Lack of Outgoing Label) of
rfc3031.
>
> Unless label L10 refers to B itself (which it doesn't in the scenario
> described above), forwarding the packet according to the label beneath
> it (L100) is a forwarding error.
>
> Bob
>
>
>
> 

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
The IESG | 1 Sep 2004 21:04
Picon
Favicon

Document Action: 'Maximum Transmission Unit Signalling Extensions for the Label Distribution Protocol' to Experimental RFC

The IESG has approved the following document:

- 'Maximum Transmission Unit Signalling Extensions for the Label 
   Distribution Protocol '
   <draft-ietf-mpls-ldp-mtu-extensions-03.txt> as an Experimental RFC

This document is the product of the Multiprotocol Label Switching Working 
Group. 

The IESG contact persons are Alex Zinin and Bill Fenner.

Technical Summary

   Proper functioning of RFC 1191 path Maximum Transmission Unit (MTU)
   discovery requires that IP routers have knowledge of the MTU for each
   link to which they are connected.  As currently specified, the Label
   Distribution Protocol (LDP) does not have the ability to signal the
   MTU for a Label Switched Path (LSP) to the ingress Label Switching
   Router (LSR).  In the absence of this functionality, the MTU for each
   LSP must be statically configured by network operators or by
   equivalent, off-line mechanisms.

Working Group Summary

 The WG originally submitted the doc for PS. However, since no 
 implementations have been identified, the target status has been
 changed to Experimental.

Protocol Quality

 The document has been reviewed for the IESG by Alex Zinin.

RFC Editor Note

1. Disregard the following lines in the document header:

   "Updates: 3036"
   "Category: Standards Track"

   The document target status in Experimental.

2. Second para in Abstract:

   OLD:

    This document specifies extensions to LDP in support of LSP MTU
    discovery.

   NEW:

    This document specifies experimental extensions to LDP in support
    of LSP MTU discovery.

3. Section 5.1 "Interaction With LSRs Which Do Not Support MTU Signalling"

   OLD:

   Changes in MTU for sections of an LSP may cause intermediate LSRs to
   generate unsolicited label Mapping messages to advertise the new MTU.
   LSRs which do not support MTU signalling MUST accept these messages,
   but MAY ignore them (see Section 2.1).

   NEW:

   Changes in MTU for sections of an LSP may cause intermediate LSRs to
   generate unsolicited label Mapping messages to advertise the new MTU.
   LSRs which do not support MTU signalling will, due to message and TLV
   processing mechanisms specified in RFC3036 [2] accept the messages
   carrying the MTU TLV, but will ignore the TLV and forward the TLV
   to the upstream nodes (see Section 2.4).

    
4. Section "Security Considerations"

   OLD:

   This mechanism does not introduce any new weaknesses in LDP.  It is
   possible to spoof TCP packets belonging to an LDP session to
   manipulate the LSP MTU, but LDP has mechanisms to thwart these types
   of attacks.

   NEW:

   This mechanism does not introduce any new weaknesses in LDP.  It is
   possible to spoof TCP packets belonging to an LDP session to
   manipulate the LSP MTU, but LDP has mechanisms to thwart these types
   of attacks. See section 5 of [2] for more information on security
   aspects of LDP.

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
Bob Thomas | 2 Sep 2004 00:14
Picon
Favicon

Re: Requesting your feedback - issues/errors/clarification s

> Let's put the VPN network aside for a bit and suppose we were dealing with a
> pure IP network. Now here is what is going to happen:
> 
> 1- Using the independent mode of operation, B associates L10 with the loop
> back address of node Z and sends a label mapping (L10, Z) to node A.
> 
> 2- A transmits packets destined to Z using L10.
> 
> 3- B receives the labeled packet, pops the label, resumes normal IP
> forwarding and forwards the packet based on its DA.
> 
> Now, RFC 3031 as Bob mentioned in his e-mail advices against such a practice
> and suggests that the safest thing to do is to drop the packet. But I think
> we should be very explicit in the spec. My point is that DU and independent
> mode of operation at best can result in packet drop. So, we might want to
> advice against it or at least mention this in RFC 3036.

RFC 3036 Section 2.6.1.1 clearly states:

   A consequence of using independent mode is that an upstream label can
   be advertised before a downstream label is received.

One can draw one's own conclusions from that.

I continue to believe that any further discussion of the pros and cons
of Independent and Ordered modes is a topic for RFC 3037 (LDP
Applicability), not RFC 3036.

Bob

> Please find my other comments below:
> 
> Arashmid
> 
> 
> -----Original Message-----
> From: Eric Gray [mailto:egray <at> westridgenetworks.com] 
> Sent: Tuesday, August 31, 2004 11:10 AM
> To: Bob Thomas; Akhavain, Arashmid [CAR:NP62:EXCH]
> Cc: mpls <at> ietf.org
> Subject: RE: [mpls] Requesting your feedback - issues/errors/clarification s
> 
> 
> 
> In addition to Bob's observation, one of the "known bugs" with MPLS/BGP is
> that the BGP peers MUST know (in some un-specified way) that there is a
> continuous LSP from peer to peer before they can use the LSP to carry
> MPLS/BGP labeled packets. In this case, the ingress PE should not have
> forwarded the packet using the MPLS/BGP label without "knowing" that the LSP
> was continuous peer to peer. An example technique might rely on the
> Hop-Count loop detection mechanism, possibly in conjunction with an IGP
> routing protocol.
> 
> [Arashmid]
> Yes, as you mentioned, the issue with this "known bug" is that BGP peers do
> not know that there is a continuous LSP from peer to peer. This is the basic
> issue with the use of DU and independent mode of operation. The head node of
> LSP receives a label and would be under the impression that there is a full
> path while the path could only be partially complete. DU and ordered mode is
> more robust in this regard.
> [Arashmid]
> 
> 
> As Bob points out, if the LSP is incomplete, the LSR where it terminates
> SHOULD discard the labeled packets it receives. Remembering that the LSR in
> the example gave the label L10 out for a FEC for Z, that LSR SHOULD be
> anticipating that it would forward the enclosed packet toward Z. Finding
> that the underlying packet is not - as expected - an un-labeled packet (it
> SHOULD expect this, because it does not have a downstream mapping for a FEC
> corresponding to Z), it SHOULD discard the packet without processing
> further. This would result in black-holing the packets, rather than mis-
> directing them - and would actually be because of a misguided MPLS/BGP
> implementation, rather than an LDP problem.
> 
> [Arashmid] Given that the same setup would have worked correctly in a pure
> IP network, I think the key point in your statement is that the underlying
> packet is not an un-labeled packet. As such, since node B does not have a
> downstream mapping for the FEC, it must drop the packet. I agree with your
> pint here, but again the use of DU and ordered mode would have bettered
> guaranteed the existence of the downstream mapping.
> [Arashmid]
> 
> 
> Even if the LSR did do further processing, it is NOT correct for the LSR to 
> assume that it issued the underlying label - since (as Bob points out) it
> did not issue the original (freshly popped) label (L10) for itself as a
> destination FEC. Looking further, it would see that it did not receive 
> any such label from the next hop for FEC Z, either, and would then discard
> the packet. If the LSR pops a label expecting to have terminated an LSP (in
> other words, not as a result of PHP) associated with an IPv4 FEC, it should
> expect the underlying packet to be an IPv4 packet and discard it if it is
> not.
> 
> We should write specifications to tell people what they need to do the right
> thing, not to tell them all the wrong things they should not do.
> 
> [Arashmid]
> True, we should write spec to tell people what they need to do the right
> thing. Therefore, we should tell them to use DU in conjunction with Ordered
> control.
> {Arashmid]
> 
> > -----Original Message-----
> > From: mpls-bounces <at> lists.ietf.org [mailto:mpls-bounces <at> lists.ietf.org]
> On Behalf Of Bob Thomas
> > Sent: Tuesday, August 31, 2004 7:04 AM
> > To: Arashmid Akhavain
> > Cc: 'mpls <at> ietf.org'
> > Subject: Re: [mpls] Requesting your feedback -
> issues/errors/clarification s
> > 
> > > Packet misrouting can happen under the following circumstance. 
> > > Consider the following L3-VPN network
> > >
> > >
> > > A----------B----- ... ------Z
> > >
> > > + B sends a label mapping message for loop back address of Z to A
> using
> > >   the independent control mode of operation. Let's call this label
> L10.
> > >
> > > + Z advertises label L100 for one of its VPN routes to A via MP-BGP.
> > >
> > > + B could also be a PE and could have allocated label value L100
> > >   to one of its links to a CE device it is connecting to.
> > >
> > > + Receiving L10 for the loop back address of Z, A will be under the
> > > impression
> > >   that it has a full path to Z.
> > >
> > > + A starts transmitting packets with outer label L10 and inner label
> L100.
> > > Meanwhile
> > >   no label representing the loop back address of Z has arrived at B.
> > >
> > > + B receives the labeled packet and pops L10.
> > >
> > > + B then proceeds with the processing of L100.
> > >
> > > + B recognizes L100 as a local label and transmits the un labeled
> packet to
> > > the
> > >   wrong CE device.
> > 
> > This behavior of B appears to be in violation of the spirit (if not
> the
> > letter) of the advice in Section 3.22 (Lack of Outgoing Label) of
> rfc3031.
> > 
> > Unless label L10 refers to B itself (which it doesn't in the scenario 
> > described above), forwarding the packet according to the label beneath 
> > it (L100) is a forwarding error.
> > 
> > Bob

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 1 comment |
headers
Vach Kompella | 2 Sep 2004 01:19

RE: Requesting your feedback - issues/errors/clarification s

I'm ok with that.

-Vach 

> -----Original Message-----
> From: mpls-bounces <at> lists.ietf.org 
> [mailto:mpls-bounces <at> lists.ietf.org] On Behalf Of Bob Thomas
> Sent: Wednesday, September 01, 2004 3:15 PM
> To: Arashmid Akhavain
> Cc: mpls <at> ietf.org
> Subject: Re: [mpls] Requesting your feedback - 
> issues/errors/clarification s 
> 
> 
> > Let's put the VPN network aside for a bit and suppose we 
> were dealing 
> > with a pure IP network. Now here is what is going to happen:
> > 
> > 1- Using the independent mode of operation, B associates 
> L10 with the 
> > loop back address of node Z and sends a label mapping (L10, 
> Z) to node 
> > A.
> > 
> > 2- A transmits packets destined to Z using L10.
> > 
> > 3- B receives the labeled packet, pops the label, resumes normal IP 
> > forwarding and forwards the packet based on its DA.
> > 
> > Now, RFC 3031 as Bob mentioned in his e-mail advices against such a 
> > practice and suggests that the safest thing to do is to drop the 
> > packet. But I think we should be very explicit in the spec. 
> My point 
> > is that DU and independent mode of operation at best can result in 
> > packet drop. So, we might want to advice against it or at least 
> > mention this in RFC 3036.
> 
> RFC 3036 Section 2.6.1.1 clearly states:
> 
>    A consequence of using independent mode is that an 
> upstream label can
>    be advertised before a downstream label is received.
> 
> One can draw one's own conclusions from that.
> 
> I continue to believe that any further discussion of the pros 
> and cons of Independent and Ordered modes is a topic for RFC 
> 3037 (LDP Applicability), not RFC 3036.
> 
> Bob
> 
> 
> 
> > Please find my other comments below:
> > 
> > Arashmid
> > 
> > 
> > -----Original Message-----
> > From: Eric Gray [mailto:egray <at> westridgenetworks.com]
> > Sent: Tuesday, August 31, 2004 11:10 AM
> > To: Bob Thomas; Akhavain, Arashmid [CAR:NP62:EXCH]
> > Cc: mpls <at> ietf.org
> > Subject: RE: [mpls] Requesting your feedback - 
> issues/errors/clarification s
> > 
> > 
> > 
> > In addition to Bob's observation, one of the "known bugs" with 
> > MPLS/BGP is that the BGP peers MUST know (in some un-specified way) 
> > that there is a continuous LSP from peer to peer before 
> they can use 
> > the LSP to carry MPLS/BGP labeled packets. In this case, 
> the ingress 
> > PE should not have forwarded the packet using the MPLS/BGP label 
> > without "knowing" that the LSP was continuous peer to peer. 
> An example 
> > technique might rely on the Hop-Count loop detection mechanism, 
> > possibly in conjunction with an IGP routing protocol.
> > 
> > [Arashmid]
> > Yes, as you mentioned, the issue with this "known bug" is that BGP 
> > peers do not know that there is a continuous LSP from peer to peer. 
> > This is the basic issue with the use of DU and independent mode of 
> > operation. The head node of LSP receives a label and would be under 
> > the impression that there is a full path while the path 
> could only be 
> > partially complete. DU and ordered mode is more robust in 
> this regard. 
> > [Arashmid]
> > 
> > 
> > As Bob points out, if the LSP is incomplete, the LSR where it 
> > terminates SHOULD discard the labeled packets it receives. 
> Remembering 
> > that the LSR in the example gave the label L10 out for a FEC for Z, 
> > that LSR SHOULD be anticipating that it would forward the enclosed 
> > packet toward Z. Finding that the underlying packet is not - as 
> > expected - an un-labeled packet (it SHOULD expect this, because it 
> > does not have a downstream mapping for a FEC corresponding 
> to Z), it 
> > SHOULD discard the packet without processing further. This would 
> > result in black-holing the packets, rather than mis- 
> directing them - 
> > and would actually be because of a misguided MPLS/BGP 
> implementation, 
> > rather than an LDP problem.
> > 
> > [Arashmid] Given that the same setup would have worked 
> correctly in a 
> > pure IP network, I think the key point in your statement is 
> that the 
> > underlying packet is not an un-labeled packet. As such, 
> since node B 
> > does not have a downstream mapping for the FEC, it must drop the 
> > packet. I agree with your pint here, but again the use of DU and 
> > ordered mode would have bettered guaranteed the existence of the 
> > downstream mapping. [Arashmid]
> > 
> > 
> > Even if the LSR did do further processing, it is NOT 
> correct for the 
> > LSR to
> > assume that it issued the underlying label - since (as Bob 
> points out) it
> > did not issue the original (freshly popped) label (L10) for 
> itself as a
> > destination FEC. Looking further, it would see that it did 
> not receive 
> > any such label from the next hop for FEC Z, either, and 
> would then discard
> > the packet. If the LSR pops a label expecting to have 
> terminated an LSP (in
> > other words, not as a result of PHP) associated with an 
> IPv4 FEC, it should
> > expect the underlying packet to be an IPv4 packet and 
> discard it if it is
> > not.
> > 
> > We should write specifications to tell people what they 
> need to do the 
> > right thing, not to tell them all the wrong things they 
> should not do.
> > 
> > [Arashmid]
> > True, we should write spec to tell people what they need to do the 
> > right thing. Therefore, we should tell them to use DU in 
> conjunction 
> > with Ordered control. {Arashmid]
> > 
> > > -----Original Message-----
> > > From: mpls-bounces <at> lists.ietf.org 
> > > [mailto:mpls-bounces <at> lists.ietf.org]
> > On Behalf Of Bob Thomas
> > > Sent: Tuesday, August 31, 2004 7:04 AM
> > > To: Arashmid Akhavain
> > > Cc: 'mpls <at> ietf.org'
> > > Subject: Re: [mpls] Requesting your feedback -
> > issues/errors/clarification s
> > > 
> > > > Packet misrouting can happen under the following circumstance.
> > > > Consider the following L3-VPN network
> > > >
> > > >
> > > > A----------B----- ... ------Z
> > > >
> > > > + B sends a label mapping message for loop back address 
> of Z to A
> > using
> > > >   the independent control mode of operation. Let's call 
> this label
> > L10.
> > > >
> > > > + Z advertises label L100 for one of its VPN routes to A via 
> > > > + MP-BGP.
> > > >
> > > > + B could also be a PE and could have allocated label value L100
> > > >   to one of its links to a CE device it is connecting to.
> > > >
> > > > + Receiving L10 for the loop back address of Z, A will be under 
> > > > + the
> > > > impression
> > > >   that it has a full path to Z.
> > > >
> > > > + A starts transmitting packets with outer label L10 and inner 
> > > > + label
> > L100.
> > > > Meanwhile
> > > >   no label representing the loop back address of Z has 
> arrived at 
> > > > B.
> > > >
> > > > + B receives the labeled packet and pops L10.
> > > >
> > > > + B then proceeds with the processing of L100.
> > > >
> > > > + B recognizes L100 as a local label and transmits the 
> un labeled
> > packet to
> > > > the
> > > >   wrong CE device.
> > > 
> > > This behavior of B appears to be in violation of the 
> spirit (if not
> > the
> > > letter) of the advice in Section 3.22 (Lack of Outgoing Label) of
> > rfc3031.
> > > 
> > > Unless label L10 refers to B itself (which it doesn't in the 
> > > scenario
> > > described above), forwarding the packet according to the 
> label beneath 
> > > it (L100) is a forwarding error.
> > > 
> > > Bob
> 
> _______________________________________________
> mpls mailing list
> mpls <at> lists.ietf.org
> https://www1.ietf.org/mailman/listinfo/mpls
> 

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
Eric Gray | 2 Sep 2004 02:33

RE: Requesting your feedback - issues/errors/clarification s

Arashmid,

I agree with Bob that the kind of statement you're looking for 
makes more sense (assuming it is technically correct) in an
applicability guide.  However, there are two fairly fundamental
problems with making this particular statement anywhere.

One of them is that we would essentially be saying that the way
in which a large number of implementations work by default (i.e. -
downstream unsolicited, independent control) would be either the
one we advise against, or the one we disallow. That would be 
very much counter to the intention of taking an RFC from a 
Proposed Standard to a Draft Standard.

The other is that the distinction apparently assumed in your 
analysis is much less apparent in real implementations. For
example, many (if not most - or even all) independent control
LDP implementations tend to do label advertisements as driven
by (at least changes in) routing advertisements. If you think
about how routing advertisements typically progress in networks
(from a destination network outward) and imagine that labels 
are advertised following routing advertisements, you see that
the difference between independent control and ordered control
is more philosophical than real. To make this point even more
abundantly clear, consider this case:

S ---> L1 ---> L2 ---> ... ---> Ln ---> Rm ---> ... ---> D

Where S is a packet source, D is a destination, L1 -> Ln are 
active label switching routers and Rm is currently a "plain
old" router. If we use ordered control to set up an LSP for 
the FEC for D from L1 to Ln, the LSP is setup from Ln back 
to L1. Now, if an operator/administrator turns on LDP in Rm,
what do we expect to happen?

I believe that - in real implementations - the answer is that
Rm (now Lm) would simply send a label mapping to Ln completing
the LSP now from L1 to Ln. This behavior is more consistent 
with independent control than with ordered control, yet the
"proper" ordered control behavior would be very disruptive
(hence not very "robust").

Also note that - if we accept the argument that the combination
of downstream unsolicited and ordered control is somehow more
"robust" than downstream unsolicited independent control - then
we may expect slightly more disruptive activity in existing LSP
signaling for this combination in the face of a dramatic change 
in routing topology. IMO, "disruptive" and "robust" are not good
friends.

Finally, as one highly respected routing implementer once said, 
you don't build "robustness" into a protocol, you build it into 
an implementation. In this case, you can put the ability to 
determine the continuity of an LSP into an implementation. 
However, you only need it there - hence it is not necessary for 
the LDP specification to describe how to do it for any specific 
implementation.

--
Eric

> -----Original Message-----
> From: Bob Thomas [mailto:rhthomas <at> cisco.com]
> Sent: Wednesday, September 01, 2004 6:15 PM
> To: Arashmid Akhavain
> Cc: Eric Gray; mpls <at> ietf.org
> Subject: Re: [mpls] Requesting your feedback -
issues/errors/clarification s
> 
> > Let's put the VPN network aside for a bit and suppose we were
dealing with a
> > pure IP network. Now here is what is going to happen:
> >
> > 1- Using the independent mode of operation, B associates L10 with
the loop
> > back address of node Z and sends a label mapping (L10, Z) to node A.
> >
> > 2- A transmits packets destined to Z using L10.
> >
> > 3- B receives the labeled packet, pops the label, resumes normal IP
> > forwarding and forwards the packet based on its DA.
> >
> > Now, RFC 3031 as Bob mentioned in his e-mail advices against such a
practice
> > and suggests that the safest thing to do is to drop the packet. But
I think
> > we should be very explicit in the spec. My point is that DU and
independent
> > mode of operation at best can result in packet drop. So, we might
want to
> > advice against it or at least mention this in RFC 3036.
> 
> RFC 3036 Section 2.6.1.1 clearly states:
> 
>    A consequence of using independent mode is that an upstream label
can
>    be advertised before a downstream label is received.
> 
> One can draw one's own conclusions from that.
> 
> I continue to believe that any further discussion of the pros and cons
> of Independent and Ordered modes is a topic for RFC 3037 (LDP
> Applicability), not RFC 3036.
> 
> Bob
> 
> 
> 
> > Please find my other comments below:
> >
> > Arashmid
> >
> >
> > -----Original Message-----
> > From: Eric Gray [mailto:egray <at> westridgenetworks.com]
> > Sent: Tuesday, August 31, 2004 11:10 AM
> > To: Bob Thomas; Akhavain, Arashmid [CAR:NP62:EXCH]
> > Cc: mpls <at> ietf.org
> > Subject: RE: [mpls] Requesting your feedback -
issues/errors/clarification s
> >
> >
> >
> > In addition to Bob's observation, one of the "known bugs" with
MPLS/BGP is
> > that the BGP peers MUST know (in some un-specified way) that there
is a
> > continuous LSP from peer to peer before they can use the LSP to
carry
> > MPLS/BGP labeled packets. In this case, the ingress PE should not
have
> > forwarded the packet using the MPLS/BGP label without "knowing" that
the LSP
> > was continuous peer to peer. An example technique might rely on the
> > Hop-Count loop detection mechanism, possibly in conjunction with an
IGP
> > routing protocol.
> >
> > [Arashmid]
> > Yes, as you mentioned, the issue with this "known bug" is that BGP
peers do
> > not know that there is a continuous LSP from peer to peer. This is
the basic
> > issue with the use of DU and independent mode of operation. The head
node of
> > LSP receives a label and would be under the impression that there is
a full
> > path while the path could only be partially complete. DU and ordered
mode is
> > more robust in this regard.
> > [Arashmid]
> >
> >
> > As Bob points out, if the LSP is incomplete, the LSR where it
terminates
> > SHOULD discard the labeled packets it receives. Remembering that the
LSR in
> > the example gave the label L10 out for a FEC for Z, that LSR SHOULD
be
> > anticipating that it would forward the enclosed packet toward Z.
Finding
> > that the underlying packet is not - as expected - an un-labeled
packet (it
> > SHOULD expect this, because it does not have a downstream mapping
for a FEC
> > corresponding to Z), it SHOULD discard the packet without processing
> > further. This would result in black-holing the packets, rather than
mis-
> > directing them - and would actually be because of a misguided
MPLS/BGP
> > implementation, rather than an LDP problem.
> >
> > [Arashmid] Given that the same setup would have worked correctly in
a pure
> > IP network, I think the key point in your statement is that the
underlying
> > packet is not an un-labeled packet. As such, since node B does not
have a
> > downstream mapping for the FEC, it must drop the packet. I agree
with your
> > pint here, but again the use of DU and ordered mode would have
bettered
> > guaranteed the existence of the downstream mapping.
> > [Arashmid]
> >
> >
> > Even if the LSR did do further processing, it is NOT correct for the
LSR to
> > assume that it issued the underlying label - since (as Bob points
out) it
> > did not issue the original (freshly popped) label (L10) for itself
as a
> > destination FEC. Looking further, it would see that it did not
receive
> > any such label from the next hop for FEC Z, either, and would then
discard
> > the packet. If the LSR pops a label expecting to have terminated an
LSP (in
> > other words, not as a result of PHP) associated with an IPv4 FEC, it
should
> > expect the underlying packet to be an IPv4 packet and discard it if
it is
> > not.
> >
> > We should write specifications to tell people what they need to do
the right
> > thing, not to tell them all the wrong things they should not do.
> >
> > [Arashmid]
> > True, we should write spec to tell people what they need to do the
right
> > thing. Therefore, we should tell them to use DU in conjunction with
Ordered
> > control.
> > {Arashmid]
> >
> > > -----Original Message-----
> > > From: mpls-bounces <at> lists.ietf.org
[mailto:mpls-bounces <at> lists.ietf.org]
> > On Behalf Of Bob Thomas
> > > Sent: Tuesday, August 31, 2004 7:04 AM
> > > To: Arashmid Akhavain
> > > Cc: 'mpls <at> ietf.org'
> > > Subject: Re: [mpls] Requesting your feedback -
> > issues/errors/clarification s
> > >
> > > > Packet misrouting can happen under the following circumstance.
> > > > Consider the following L3-VPN network
> > > >
> > > >
> > > > A----------B----- ... ------Z
> > > >
> > > > + B sends a label mapping message for loop back address of Z to
A
> > using
> > > >   the independent control mode of operation. Let's call this
label
> > L10.
> > > >
> > > > + Z advertises label L100 for one of its VPN routes to A via
MP-BGP.
> > > >
> > > > + B could also be a PE and could have allocated label value L100
> > > >   to one of its links to a CE device it is connecting to.
> > > >
> > > > + Receiving L10 for the loop back address of Z, A will be under
the
> > > > impression
> > > >   that it has a full path to Z.
> > > >
> > > > + A starts transmitting packets with outer label L10 and inner
label
> > L100.
> > > > Meanwhile
> > > >   no label representing the loop back address of Z has arrived
at B.
> > > >
> > > > + B receives the labeled packet and pops L10.
> > > >
> > > > + B then proceeds with the processing of L100.
> > > >
> > > > + B recognizes L100 as a local label and transmits the un
labeled
> > packet to
> > > > the
> > > >   wrong CE device.
> > >
> > > This behavior of B appears to be in violation of the spirit (if
not
> > the
> > > letter) of the advice in Section 3.22 (Lack of Outgoing Label) of
> > rfc3031.
> > >
> > > Unless label L10 refers to B itself (which it doesn't in the
scenario
> > > described above), forwarding the packet according to the label
beneath
> > > it (L100) is a forwarding error.
> > >
> > > Bob

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
Adrian Farrel | 2 Sep 2004 14:02
Picon

Mailing List for Path Computation Element (PCE)

Hi,

We have set up a mailing list to continue the discussions started in San Diego at the PCE
BOF.

To subscribe https://www1.ietf.org/mailman/listinfo/pce
  You are strongly advised to use a password as a random password
  will be assigned for you otherwise!

To post pce <at> lists.ietf.org OR pce <at> ietf.org (you must be subscribed)
All received mail appears to have been sent to pce <at> ietf.org regardless of which address
you actually use.

Archive at https://www1.ietf.org/mail-archive/working-groups/pce/current/maillist.html

To start the ball rolling, we will post the minutes from the BOF.
We are also well-progressed through the first cut of an architecture draft and will post
that soon and solicit comments.

Thanks,
Adrian

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
Internet-Drafts | 2 Sep 2004 22:02
Picon
Favicon

I-D ACTION:draft-ietf-mpls-oam-requirements-04.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Multiprotocol Label Switching Working Group of the IETF.

	Title		: OAM Requirements for MPLS Networks
	Author(s)	: T. Nadeau, et al.
	Filename	: draft-ietf-mpls-oam-requirements-04.txt
	Pages		: 13
	Date		: 2004-9-2
	
As transport of diverse traffic types such as voice, frame
   relay, and ATM over MPLS become more common, the ability to detect, 
   handle and diagnose control and data plane defects becomes 
   critical. 

   Detection and specification of how to handle those defects is not 
   only important because such defects may not only affect the 
   fundamental operation of an Multi-Protocol Label Switching network, 
   but also because they MAY impact service level specification    
   commitments for customers of that network.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-mpls-oam-requirements-04.txt

To remove yourself from the I-D Announcement list, send a message to 
i-d-announce-request <at> ietf.org with the word unsubscribe in the body of the message.  
You can also visit https://www1.ietf.org/mailman/listinfo/I-D-announce 
to change your subscription settings.

Internet-Drafts are also available by anonymous FTP. Login with the username
"anonymous" and a password of your e-mail address. After logging in,
type "cd internet-drafts" and then
	"get draft-ietf-mpls-oam-requirements-04.txt".

A list of Internet-Drafts directories can be found in
http://www.ietf.org/shadow.html 
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt

Internet-Drafts can also be obtained by e-mail.

Send a message to:
	mailserv <at> ietf.org.
In the body type:
	"FILE /internet-drafts/draft-ietf-mpls-oam-requirements-04.txt".
	
NOTE:	The mail server at ietf.org can return the document in
	MIME-encoded form by using the "mpack" utility.  To use this
	feature, insert the command "ENCODING mime" before the "FILE"
	command.  To decode the response(s), you will need "munpack" or
	a MIME-compliant mail reader.  Different MIME-compliant mail readers
	exhibit different behavior, especially when dealing with
	"multipart" MIME messages (i.e. documents which have been split
	up into multiple messages), so check your local documentation on
	how to manipulate these messages.
		
		
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
Attachment: message/external-body, 144 bytes
Attachment (draft-ietf-mpls-oam-requirements-04.txt): message/external-body, 68 bytes
_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
Matthew Finlayson | 3 Sep 2004 15:31
Favicon

RE: draft-ietf-mpls-p2mp-requirement-03.txt

Seisho,

I have reviewed this document and, although I agreed with many of the
technical arguments, I found it quite difficult to understand some of the
context behind the points that the earlier half of the document was trying
to make.  It also seemed to half-address some questions that I thought were
explictly out of scope for the document.  This might mean that some readers
didn't make it as far as section 5 (which I thought set out the actual
requirements very clearly).

Much of my confusion was over the split in the document between scope,
assumptions and requirements, and I thought it might be helpful to provide
some comments (which are almost entirely editorial).

Hopefully they will be of some value to you.  I'd be happy to talk about
this further or help in any way if you feel it would be useful.

Regards,

Matthew.
---

"1. Introduction"

It seemed to me that the "Introduction" section, rather than setting out the
background to the document and the scope and assumptions intended for it,
attempts instead to provide a summary / management overview of the later
content.  

My understanding from earlier discussions on the mailing list was that in
this document you do not intend to justify why P2MP MPLS TE is _the_ correct
or required solution to any particular problem/application.  Instead, you
intend to start from the assumption that P2MP TE is one (among several)
valid approaches to solving a number of problems and to go on to set out the
detailed requirements for this approach.  

If this is true, it would be helpful to state this up-front, so that
supporters of alternative approaches do not read this document as a fait
accompli that P2MP MPLS TE is the anointed solution.  The Introduction (or
Abstract) would appear to be the appropriate place for this disclaimer.
Instead the current Introduction states that the collection of problems
"clearly motivates enhancements of the base MPLS-TE tool box in order to
support P2MP applications" - which in my reading leans towards suggesting
that this is the only sensible approach.

A number of the requirements later described in the document are asserted in
the Introduction without explanation.  There are also some items whose
relevance in the introduction is not clear.  These include the following.

-  The need to support non-packet-switched networks (including GMPLS).  It's
not entirely clear if this is a statement of the specified scope of the
document (imposed by the ADs?) or a desirable requirement.  If the former,
it would be good to clarify, if the latter it could probably be deferred to
later in the document.

-  The desire to avoid mandating use of a multicast routing protocol in the
network core.  Since this is already discussed later, it's not clear why
this paragraph needs to be here.

-    The discussion of mapping P2MP flows onto P2P LSPs.  Since this is a
potential solution to the P2MP TE problems which doesn't meet the
requirements (for optimality and scalability) that you state later on, it
might make more sense to delay discussion of this until later (possibly in
an explicit section looking at potential approaches which don't meet the
requirements?).  The same remark may apply to the discussion of this option
again in section 3.1 and the discussion of DiffServ, again in section 3.1.

-    The mention of the requirement to "add/remove receivers to/from an
existing P2MP TE LSP".  Again, this requirement is discussed admirably (in
detail) later on.  It's not clear why it needs to be presaged in the
introduction.

"3.1 Motivation"

Again, it's not quite clear whether this section is trying to justify why
P2MP MPLS TE is _the_ appropriate approach, whether Multicast TE itself is
required, or to put the potential applications in context.  If the last,
might it make sense to merge this with section 4?  If one of the first two,
I had understood that these were out of scope for this document.

"3.2 Requirements Overview"

General comment - I'm not quite sure what this section is trying to achieve
in comparison to section 5.  At the very least, it seems far less easy to
understand than section 5.  In the latter, the requirements are very clearly
split up and justified one by one.  Here, they are somewhat munged together.
Furthermore, some of them overlap with requirements covered later in more
detail in section 5 and some appear only in this section.  Would it be
possible to either make Section 3.2 clearer, or to merge it with section 5?

"a solution SHOULD satisfy them without requiring that a multicast routing
protocol"  -  I feel this needs some justification.  I suspect the reasoning
is that this is because

(1)  there is a belief that it would require unnecessary occupancy and
processing overhead in many circumstances to require a multicast routing
protocol (particularly when the likelihood is that the layout of the core
network will change relatively rarely)

(2)  a missing part of the problem statement is that there is a desire to
allow Service Providers to easily deploy multicast applications over their
backbone networks without requiring them to add a whole new multicast
routing protocol (with the associated management and ramp-up overheads).

"4.2 P2MP TE backbone network for IP multicast network"

It's not clear to me that the discussion of the need to add/remove egress
LSRs to/from the P2MP MPLS TE LSP and the discussion of recommendation for a
"message exchange mechanism" belong in this section, which is supposed to be
about applications.  Surely it would be better for the relevant later
section (5.4) to refer back to this application as justification for the
requirement.

"5. Detailed requirements for P2MP TE extensions"

It might be good if more of the requirements included some explanation of
_why_ they are a requirement - possibly with links back to the sample
applications.

---
Matthew Finlayson 
VP development and requirements
Network Protocols Group 
Data Connection Ltd 
Tel: +44 20 8366 1177 
Fax: +44 20 8363 1039 
Email: matthew.finlayson <at> dataconnection.com 
Web: http://www.dataconnection.com  

> -----Original Message-----
> From: mpls-bounces <at> lists.ietf.org 
> [mailto:mpls-bounces <at> lists.ietf.org]On Behalf Of 
> seisho-goo <at> mail.goo.ne.jp
> Sent: 22 July 2004 11:50
> To: mpls <at> ietf.org
> Cc: swallow <at> cissco.com; jeanlouis.leroux <at> francetelecom.com; 
> Tellabs - Andrew Malis; jpv <at> cisco.com; 
> dimitri.papadimitriou <at> alcatel.be
> Subject: [mpls] draft-ietf-mpls-p2mp-requirement-03.txt
> 
> 
> Hi,
> 
> We have updated draft-ietf-mpls-p2mp-requirement to attempt
> to address the comments made during Working Group last call.
> 
> The biggest change we have made is to de-emphasise RSVP-TE
> as the signaling protocol used to establish P2MP TE LSPs. 
> 
> We have also made some smaller editorial changes to ensure that
> the draft does not imply that the applications mentions MUST 
> be addressed through P2MP TE MPLS - the new text is meant to say
> that these applications are only illustrative examples of things
> you might choose to use P2MP MPLS TE for.
> 
> We are still having off-line discussions about whether the
> changes made actually satisfy the concerns raised during
> last call, but in the mean time, we thought that everyone would
> like to see the new version of the draft.
> 
> We have also found several holes in the requirements as we
> attempted to move forward with early versions of solutions drafts.
> 
> We are working to produce a -04 version. Our plan is to have this
> version completed by mid-August.
> 
> Some of these additions will necessitate discussion, and we will be
> sending some questions to the mailing list over the next month.
> 
> Regards,
> Seisho
> 
> _______________________________________________
> mpls mailing list
> mpls <at> lists.ietf.org
> https://www1.ietf.org/mailman/listinfo/mpls
> 

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 2 comments |
headers
mahmed | 3 Sep 2004 23:49

MPLS To Carry Voice Traffic

Dear Sir/Madam,

 

I have a question, regarding the voice over MPLS backbone performance?

 

Currently, Is there a guarantee for the voice quality of services to be carried over MPLS backbone,

 

As an example, if a mobile operator would like to have MPLS technology to be used in his backbone to carry voice traffic , where the voice traffic is much higher than data traffic, In such case , what shall be the QoS of voice traffic ? and If the QoS for voice traffic is granted , do you have  a list of GSM operators deployed MPLS technology to carry voice traffic now.

 

Best Regards,

Medhat Ahmed

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |
headers
mahmed | 3 Sep 2004 23:51

MPLS To Carry Voice Traffic

Dear Sir/Madam,

 

I have a question, regarding the voice over MPLS backbone performance?

 

Currently, Is there a guarantee for the voice quality of services to be carried over MPLS backbone,

 

As an example, if a mobile operator would like to have MPLS technology to be used in his backbone to carry voice traffic , where the voice traffic is much higher than data traffic, In such case , what shall be the QoS of voice traffic ? and If the QoS for voice traffic is granted , do you have  a list of GSM operators deployed MPLS technology to carry voice traffic now.

 

Best Regards,

Medhat Ahmed

_______________________________________________
mpls mailing list
mpls <at> lists.ietf.org
https://www1.ietf.org/mailman/listinfo/mpls
Permalink | Reply | 0 comments |

Gmane