]> Log More Routing Events in the BGP Monitoring Protocol (BMP) Huawei
Beijing China gengnan@huawei.com
Zhongguancun Laboratory
Beijing China gaoyj@zgclab.edu.cn
Huawei
Beijing China zhuangshunwan@huawei.com
Huawei
Beijing China rainsword.wang@huawei.com
OPS GROW Internet-Draft The Route Event Logging (REL) message is defined in , which enables monitored routers to report event-driven operational data to BMP collectors. This document defines additional event code points for BGP FlowSpec RFC8955 and BGP SR Policies . These extensions enhance monitoring visibility for policy execution failures and improve network operation and troubleshooting capabilities.
Introduction BGP Adj-RIB-In, Loc-RIB, and Adj-RIB-Out are generated through BGP route exchange and routing policy processing. The BGP Monitoring Protocol (BMP) provides comprehensive monitoring for BGP Adj-RIB-In , BGP Loc-RIB , and BGP Adj-RIB-Out . The Route Event Logging (REL) message defined in is designed to deliver event-driven fault logs and runtime status information from network devices to BMP monitoring servers. In modern networks, BGP FlowSpec and BGP SR Policy are widely deployed for traffic filtering, redirection and segment routing traffic engineering. However, existing BMP REL mechanisms lack dedicated event logging for common failure scenarios of these advanced BGP features. This document supplements new REL event types to cover typical abnormal failures of BGP FlowSpec and BGP SR Policy, filling the monitoring gap for policy control and forwarding execution anomalies.
Requirements Language The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in BCP 14 when, and only when, they appear in all capitals, as shown here.
BGP FlowSpec Routing Event Extensions The Log Action TLV is defined in . The first byte defines the nature of the logging event, and additional data may follow depending on the code point. The following code points are defined for BGP FlowSpec in this document:
  • TBD1 = Redirect-to-VRF-Fail. The BGP FlowSpec redirect-to-VRF action is defined in . This event indicates that a received FlowSpec redirect-to-VRF action cannot be resolved, installed, or executed on the monitored device for the target Virtual Routing and Forwarding (VRF) instance. For example, the target VRF instance may be unavailable or the corresponding redirect action may fail during local processing. Data contains a UTF-8 diagnostic string.
  • TBD2 = Redirect-to-Nexthop-Fail. The BGP FlowSpec redirect-to-IP action is defined in . This event indicates that a received FlowSpec redirect-to-IP action cannot be resolved, installed, or executed on the monitored device for the target IPv4 or IPv6 next hop. Data contains a UTF-8 diagnostic string.
  • TBD3 = Redirect-to-SR-Policy-Fail. This event indicates that a received FlowSpec action that redirects traffic to an SR Policy cannot be resolved, installed, or executed on the monitored device. For example, the referenced SR Policy may be unavailable or may not provide a usable forwarding behavior when the FlowSpec action is processed. Data contains a UTF-8 diagnostic string.
  • TBD4 = FlowSpec-Validation-Fail. The BGP FlowSpec validation procedure is defined in . This event indicates that a received FlowSpec route fails the FlowSpec validation procedure on the monitored device. This event is distinct from failures that occur while locally resolving, installing, or executing a FlowSpec traffic action. Data contains a UTF-8 diagnostic string.
The UTF-8 diagnostic string is intended to provide additional implementation-specific information for troubleshooting. Its format is not specified by this document. When available, the diagnostic string SHOULD describe the local reason that caused the event to be generated. The Log Action code point defines the common semantics of the reported event.
BGP SR Policy Routing Event Extensions Log Action TLV is defined in , the first byte defines the nature of the logging, depending on the code point additional data may follow. The following code points are defined for BGP SR Policies in this document:
  • TBD5 = Invalid-Candidate-Path. This event indicates that a candidate path is considered invalid. The validity of a candidate path is described in Section 5 of . Data contains a UTF-8 string whose value can be organized freely by an implementation and is meant to give additional information about why the log was made.
  • TBD6 = Invalid-Segment-List. This event indicates that a segment list of a candidate path is considered invalid. The validity of a segment list is described in Section 5 of . Data contains a UTF-8 string whose value can be organized freely by an implementation and is meant to give additional information about why the log was made.
  • TBD7 = Exceeded-Spec-Limit. Data contains a UTF-8 string to indicate violations including exceeding the maximum number of SR Policies or Segment Lists.
The UTF-8 diagnostic string is intended to provide additional implementation-specific information for troubleshooting. Its format is not specified by this document. When available, the diagnostic string SHOULD describe the local reason that caused the event to be generated. The Log Action code point defines the common semantics of the reported event.
Operational Considerations A monitored device may receive FlowSpec routes and SR Policy routes from controllers, route reflectors, or adjacent BGP peers. When the device detects a failure while validating or locally processing those routes or their associated actions, it reports the corresponding event and diagnostic information to the configured BMP monitoring collector using a BMP REL message. BMP monitoring collectors SHOULD record, analyze, and correlate these extended routing events with the relevant BMP route or policy context when available. These events can be used for real-time alarming and offline fault diagnosis. The failure events defined in this document do not define a corresponding recovery indication. Operators should use these events together with other BMP information and local operational state to determine whether the reported condition is still present.
Security Considerations This document inherits all security requirements and considerations documented in Section 11 of . BMP control sessions SHOULD only be established between authenticated and trusted monitoring devices to prevent unauthorized access to network internal routing information. The UTF-8 diagnostic strings carried in extended REL events may contain sensitive data such as VRF names, policy identifiers and network address prefixes. Operators are recommended to properly isolate BMP monitoring data and restrict access permissions. No new protocol interactions or message modes are introduced in this extension. Therefore, no additional security risks are introduced beyond the baseline BMP protocol.
IANA Considerations This document requests IANA to assign seven new code points in the BMP Log Action TLV Registry established by . The requested code point assignments are as follows:
  • Redirect-to-VRF-Fail (TBD1)
  • Redirect-to-Nexthop-Fail (TBD2)
  • Redirect-to-SR-Policy-Fail (TBD3)
  • FlowSpec-Validation-Fail (TBD4)
  • Invalid-Candidate-Path (TBD5)
  • Invalid-Segment-List (TBD6)
  • Exceeded-Spec-Limit (TBD7)
After permanent code points are allocated, all TBD markers will be replaced in subsequent document revisions.
Acknowledgements Many thanks to the comments from Jeffrey Haas.
Normative References BGP Monitoring Protocol (BMP) This document defines the BGP Monitoring Protocol (BMP), which can be used to monitor BGP sessions. BMP is intended to provide a convenient interface for obtaining route views. Prior to the introduction of BMP, screen scraping was the most commonly used approach to obtaining such views. The design goals are to keep BMP simple, useful, easily implemented, and minimally service affecting. BMP is not suitable for use as a routing protocol. Support for Adj-RIB-Out in the BGP Monitoring Protocol (BMP) The BGP Monitoring Protocol (BMP) only defines access to the Adj-RIB-In Routing Information Bases (RIBs). This document updates BMP (RFC 7854) by adding access to the Adj-RIB-Out RIBs. It also adds a new flag to the peer header to distinguish between Adj-RIB-In and Adj-RIB-Out. Dissemination of Flow Specification Rules This document defines a Border Gateway Protocol Network Layer Reachability Information (BGP NLRI) encoding format that can be used to distribute (intra-domain and inter-domain) traffic Flow Specifications for IPv4 unicast and IPv4 BGP/MPLS VPN services. This allows the routing system to propagate information regarding more specific components of the traffic aggregate defined by an IP destination prefix. It also specifies BGP Extended Community encoding formats, which can be used to propagate Traffic Filtering Actions along with the Flow Specification NLRI. Those Traffic Filtering Actions encode actions a routing system can take if the packet matches the Flow Specification. This document obsoletes both RFC 5575 and RFC 7674. Dissemination of Flow Specification Rules for IPv6 "Dissemination of Flow Specification Rules" (RFC 8955) provides a Border Gateway Protocol (BGP) extension for the propagation of traffic flow information for the purpose of rate limiting or filtering IPv4 protocol data packets. This document extends RFC 8955 with IPv6 functionality. It also updates RFC 8955 by changing the IANA Flow Spec Component Types registry. Support for Local RIB in the BGP Monitoring Protocol (BMP) The BGP Monitoring Protocol (BMP) defines access to local Routing Information Bases (RIBs). This document updates BMP (RFC 7854) by adding access to the Local Routing Information Base (Loc-RIB), as defined in RFC 4271. The Loc-RIB contains the routes that have been selected by the local BGP speaker's Decision Process. Key words for use in RFCs to Indicate Requirement Levels In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements. Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings. Segment Routing Policy Architecture Segment Routing (SR) allows a node to steer a packet flow along any path. Intermediate per-path states are eliminated thanks to source routing. SR Policy is an ordered list of segments (i.e., instructions) that represent a source-routed policy. Packet flows are steered into an SR Policy on a node where it is instantiated called a headend node. The packets steered into an SR Policy carry an ordered list of segments associated with that SR Policy. This document updates RFC 8402 as it details the concepts of SR Policy and steering into an SR Policy. Logging of routing events in BGP Monitoring Protocol (BMP) NTT NTT The BGP Monitoring Protocol (BMP) does provide for BGP session event logging (Peer Up, Peer Down), state synchronization (Route Monitoring), debugging (Route Mirroring) and Statistics messages, among others. This document defines a new Route Event Logging (REL) message type for BMP with the aim of covering use cases with affinity to alerting, reporting and on-change analysis. Advertising Segment Routing Policies in BGP Huawei Technologies Cisco Systems Cisco Systems Microsoft Google A Segment Routing (SR) Policy is an ordered list of segments (also referred to as instructions) that define a source-routed policy. An SR Policy consists of one or more candidate paths, each comprising one or more segment lists. A headend can be provisioned with these candidate paths using various mechanisms, such as CLI, NETCONF, PCEP, or BGP. This document specifies how BGP can be used to distribute SR Policy candidate paths. It introduces a BGP SAFI for advertising a candidate path of an SR Policy and defines sub-TLVs for the Tunnel Encapsulation Attribute to signal information related to these candidate paths. Furthermore, this document updates RFC9012 by extending the Color Extended Community to support additional steering modes over SR Policy. BGP Flow-Spec Redirect-to-IP Action HPE Nokia Nokia Flow-spec is an extension to BGP that allows for the dissemination of traffic flow specification rules. This has many possible applications, but the primary one for many network operators is the distribution of traffic filtering actions for distributed denial of service (DDoS) mitigation. The flow-spec standard, RFC 8955, defines a redirect-to-VRF (Virtual Routing and Forwarding) action for policy- based forwarding. This mechanism can be difficult to use, particularly in networks without Layer 3 VPN infrastructure. This document defines a new redirect-to-IP flow-spec action that provides a simpler method of policy-based forwarding. The details of the action, including the IPv4 or IPv6 target address, are encoded in newly defined BGP extended communities [RFC4360].