Re: [Apn] Using IPv6 Flow Label for APN [was Re: Fwd: [IAB] IETF 111 reports: APN BOF]
Bob Hinden <bob.hinden@gmail.com> Tue, 03 August 2021 17:37 UTC
Return-Path: <bob.hinden@gmail.com>
X-Original-To: apn@ietfa.amsl.com
Delivered-To: apn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2DD4C3A2B2C for <apn@ietfa.amsl.com>; Tue, 3 Aug 2021 10:37:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wk6o6crDPxik for <apn@ietfa.amsl.com>; Tue, 3 Aug 2021 10:37:45 -0700 (PDT)
Received: from mail-wm1-x32f.google.com (mail-wm1-x32f.google.com [IPv6:2a00:1450:4864:20::32f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6F67D3A2B2A for <apn@ietf.org>; Tue, 3 Aug 2021 10:37:45 -0700 (PDT)
Received: by mail-wm1-x32f.google.com with SMTP id k4so12937421wms.3 for <apn@ietf.org>; Tue, 03 Aug 2021 10:37:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=mVM0bvFYioj7Sn/WEBHKQHmWc5SD4+JjnhV8tfV5ebk=; b=uwwtp0iDxKREfD7q4ABOuZI4bCnGtd2cb7oM8UsZ3I5zeEO13GE4m/X3munvTGIrHf xwTi5sF37gxIar1OSN008LW+gOYrGYDhrWWGFJ/8FVRWpp2ZkpmgWa9tkB/aiB4K3i+O eKfcBT9dxuzKAWDQBPhrT5vx05PUQ+3kjZ+VtgpZOnzetz7dVkLhTcuUetA6ZNBY+Fbh ZB35cM5dRR/vmG8aRuJ9AzJd1RHF6usbl/W+5ds8MBbD/2x9wq5OnKWIIMluTrKQPKh4 npDrEvwdajcXkT9IgXWNwXgZbDh7XOe9Wz5sWvp7m69Z3J4tXLtnCtTWGGlUAzemlUp6 sdMA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=mVM0bvFYioj7Sn/WEBHKQHmWc5SD4+JjnhV8tfV5ebk=; b=aCL3t4g6xijHHRLw+rG51cMTk1D8P/MNbgdZAmOfO2M60rWbuFxjop6B6i6Yx2Xbw3 OiVW626FFkYOlbtMUVstUgAOCLHv9R35ob3tFsvr5lgpM/2Xh/+vrl7GwUFLS/qnRRU3 2GVU7SyVWwK53qgYABitb4cW4ZA02WJXUmgszm2cl3p9rw6H0DSO15HKygfOPC6F0REV IdwJISvjIk/mPALaBfcpkNAaM+WrEywn5syBbN1FIOlfySYxHztU6gnErmt0tEaL/qDZ ZBeyRl06LE6nSRW8OrBfQp9zM4vTuFvvXSMHnIakqvPmUSgnRZtF0ZUDPHpLFLPuzasR /Xow==
X-Gm-Message-State: AOAM530Vc3QSKcQAgPJvSYZ0Ndew+hffCnG1Dv4/uMoKnMzXyGK4iWFv YWbu5/l7M4/ndhqRvfuylGc=
X-Google-Smtp-Source: ABdhPJze4rOg+W8lvFBFOfrI1tcgJ0Dd0/fnygWN2DLqH5gX83uGVclepzpm79kbcKg+hdCvK6RWww==
X-Received: by 2002:a7b:c18f:: with SMTP id y15mr5487069wmi.117.1628012257339; Tue, 03 Aug 2021 10:37:37 -0700 (PDT)
Received: from ?IPv6:2601:647:5a00:659:4c53:1a47:ee67:2139? ([2601:647:5a00:659:4c53:1a47:ee67:2139]) by smtp.gmail.com with ESMTPSA id i5sm14931252wrw.13.2021.08.03.10.37.35 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 03 Aug 2021 10:37:36 -0700 (PDT)
From: Bob Hinden <bob.hinden@gmail.com>
Message-Id: <3E27E91A-FC27-43C8-9B47-163C5E621C14@gmail.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_2A86DF8D-772E-41FF-B1D6-7765E2480711"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.21\))
Date: Tue, 03 Aug 2021 10:37:33 -0700
In-Reply-To: <BYAPR05MB56544A731DADE945A87D88ECD4F09@BYAPR05MB5654.namprd05.prod.outlook.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, "Pengshuping (Peng Shuping)" <pengshuping@huawei.com>, Jari Arkko <jari.arkko@piuha.net>, apn <apn@ietf.org>
To: "Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net>
References: <BE2D7F4A-D5C6-42EF-95F4-95866BD4A428@piuha.net> <7FF6833D-0FF1-4FC1-932C-812C85AACD36@piuha.net> <61080a38.1c69fb81.d2fc0.f463SMTPIN_ADDED_BROKEN@mx.google.com> <71F5AF01-74B4-469E-B65C-7D3ADF01FDFC@gmail.com> <BYAPR05MB56544A731DADE945A87D88ECD4F09@BYAPR05MB5654.namprd05.prod.outlook.com>
X-Mailer: Apple Mail (2.3445.104.21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/apn/JGNtVXZn0nkQYgc--U3dATIcKbU>
Subject: Re: [Apn] Using IPv6 Flow Label for APN [was Re: Fwd: [IAB] IETF 111 reports: APN BOF]
X-BeenThere: apn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Application-aware Networking <apn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apn>, <mailto:apn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/apn/>
List-Post: <mailto:apn@ietf.org>
List-Help: <mailto:apn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apn>, <mailto:apn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Aug 2021 17:37:51 -0000
Jeffery, > On Aug 3, 2021, at 10:08 AM, Jeffrey (Zhaohui) Zhang <zzhang@juniper.net> wrote: > > Hi Bob, > >> This would have a big benefit of not needing any new packet headers and identification identifiers standards, and should meet most of the goals of APN. > > Completely agree with the above. > Even if somehow Flow Label is concluded to be not appropriate for what APN wants to do, there are other ways to encode an opaque number - an MPLS label (not just the entropy label as Tarek pointed out during the BoF) or part of the IPv6 address (e.g. the func/arg bits after the locator). There was even a suggestion (in another context for another purpose) to encode the VPN identifier into the source address (I am mentioning this just to show that there are lots of ways to make use of existing forwarding plane). > > I also want to take this opportunity to reconfirm if we are indeed agreeing on an opaque number - instead of defining a structure for the APN attribute (I had explained in BoF and other emails why I don't think we should define structured fields for it). I think there are tradeoff. If the attribute is stateful is can be done either way. Structured allows for less state in the nodes enforcing policy but less attributes, unstructured probably means a lot more possible possible attribute values at the cost of more state in the nodes enforcing policy. I tend to lean toward unstructured, but it depends on how many concurrent APN attributes are needed. Bob > > And for the size of the opaque number - I remember that during the RtgWG interim meeting for APN the scaling concern was brought up and the answer was that it is intended for a closed domain so the scaling is not a concern. From that I take it that the opaque number does not have to be large. > > Jeffrey > > -----Original Message----- > From: Apn <apn-bounces@ietf.org> On Behalf Of Bob Hinden > Sent: Monday, August 2, 2021 1:04 PM > To: Pengshuping (Peng Shuping) <pengshuping@huawei.com> > Cc: Jari Arkko <jari.arkko@piuha.net>; Bob Hinden <bob.hinden@gmail.com>; apn <apn@ietf.org> > Subject: [Apn] Using IPv6 Flow Label for APN [was Re: Fwd: [IAB] IETF 111 reports: APN BOF] > > [External Email. Be cautious of content] > > > Shuping, > > Changing the subject to focus on a new topic. > >> On Aug 2, 2021, at 8:07 AM, Pengshuping (Peng Shuping) <pengshuping@huawei.com> wrote: >> >> Hi Jari, >> >> Many thanks for the objective capture of the BoF in your report and the constructive suggestions in this report as well as in the chat box. >> >> Just some clarifications on this following point if I may. >> >> "IPv6 flow labels, SFC serviceIDs, SR binding SIDs, etc. are lacking according to the proponents, largely based on argument about them being used in special circumstances (?) Although to me it seemed that any design based on a new APN encapsulation protocol would also be used in the special circumstance of APN being deployed in that particular network. “ > > Regarding the IPv6 flow label, I don’t think the analysis presented was correct. It describe one way the Flow label could be used end to end, but not others. Specifically (see below) it was describing the stateless scenario, not the stateful scenario. > > I went back and reread RFC 6437 that defines the IPv6 Flow label, the text there sound very similar to what APN wants to do. Specifically from the Introduction: > > Traditionally, flow classifiers have been based on the 5-tuple of the > source address, destination address, source port, destination port, > and the transport protocol type. However, some of these fields may > be unavailable due to either fragmentation or encryption, or locating > them past a chain of IPv6 extension headers may be inefficient. > Additionally, if classifiers depend only on IP-layer headers, later > introduction of alternative transport-layer protocols will be easier. > > The usage of the 3-tuple of the Flow Label, Source Address, and > Destination Address fields enables efficient IPv6 flow > classification, where only IPv6 main header fields in fixed positions > are used. > > The flow label could be used in both stateless and stateful > scenarios. A stateless scenario is one where any node that processes > the flow label in any way does not need to store any information > about a flow before or after a packet has been processed. A stateful > scenario is one where a node that processes the flow label value > needs to store information about the flow, including the flow label > value. A stateful scenario might also require a signaling mechanism > to inform downstream nodes that the flow label is being used in a > certain way and to establish flow state in the network. For example, > RSVP [RFC2205] and General Internet Signaling Transport (GIST) > [RFC5971] can signal flow label values. > > The “stateful scenario” reads to me very similar what APN wants to do. Especially since a tunnel is created to cross the APN domain, the encapsulating node has complete control of what goes in the flow label. Also seems like the flow label along with judicious use of the traffic class field would allow a significant amount of differentiation of traffic. > > This would have a big benefit of not needing any new packet headers and identification identifiers standards, and should meet most of the goals of APN. > > Bob > > > > > > > Juniper Business Use Only
- [Apn] Fwd: [IAB] IETF 111 reports: APN BOF Jari Arkko
- Re: [Apn] [IAB] IETF 111 reports: APN BOF David Lake
- Re: [Apn] Fwd: [IAB] IETF 111 reports: APN BOF Pengshuping (Peng Shuping)
- [Apn] Using IPv6 Flow Label for APN [was Re: Fwd:… Bob Hinden
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Gyan Mishra
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Gyan Mishra
- Re: [Apn] [IAB] IETF 111 reports: APN BOF Pengshuping (Peng Shuping)
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Pengshuping (Peng Shuping)
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Jeffrey (Zhaohui) Zhang
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Bob Hinden
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Jeffrey (Zhaohui) Zhang
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Adrian Farrel
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Bob Hinden
- Re: [Apn] Using IPv6 Flow Label for APN [was Re: … Toerless Eckert