IETF Logo Mail Archive

Re: [bess] Erik Kline's Discuss on draft-ietf-bess-srv6-services-11: (with DISCUSS)

Ketan Talaulikar <ketant.ietf@gmail.com> Sun, 20 March 2022 03:40 UTC

Return-Path: <ketant.ietf@gmail.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E75F3A0745; Sat, 19 Mar 2022 20:40:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MBDARsD6_HY5; Sat, 19 Mar 2022 20:40:05 -0700 (PDT)
Received: from mail-vk1-xa29.google.com (mail-vk1-xa29.google.com [IPv6:2607:f8b0:4864:20::a29]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 897CC3A067A; Sat, 19 Mar 2022 20:40:05 -0700 (PDT)
Received: by mail-vk1-xa29.google.com with SMTP id 134so4434537vkz.12; Sat, 19 Mar 2022 20:40:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=J8+kCxenO2GekkhahQsKHK+X1te8Se1sL5qgsrWThpE=; b=USKys6d6GyGjYjqC2IAr36BzsKwIB659d2Rvmyd6JEim7Xs8lXX1bX1fzrF6dOkUOa aaowylLLc2V5OlG84d3Dr0fPROo9jZbPKtOrCxKS7aQ4fn1nTmCBkP0YpXMuPw/RY0wT R4Pd+h9NCl2QaQdFgxel5wBRQK7j709Oup1WD3bxOGO9jkdX1q291p5Mjz8giStgJjgV pKWjh7n24tmpqqtKJiY6Ca3E5HUZCIX9Mt4gjgzvK3vaUyRf8J2iJgrq6qghUJFb4YHF bDrdQDAxmpHaAH6lHG9sIlvL9zsXH276zSUr4b3HgnHMeiS3t7JNsYBFyKJSAiER6Pq2 zBJw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=J8+kCxenO2GekkhahQsKHK+X1te8Se1sL5qgsrWThpE=; b=dGI8QE7zRQgOTLkZ+8e7USgR4gNEcI81SV8JkCYyEruvKxK6BCxyq7Ud05qT9AvHU0 tGAsm1evIIZO7e6EoizNUYb9q6Q3I8mbF971hWfhRjVbyv0uuQm9lzTLk5I5YyMIeTs2 3vN+VY6VRJlWbclCMKPUs7Tx+zamkxlN9YVlqWeqAgAr3U+CNSbI4T1U2+5GL/99CzTL 8ezbrxB8w6ifj4AgZgYDmEs3JOUx4xVeKoYB/Ie0ExwsGAMzA/xznAqZ1iCiMSfPXwlM 2TpauUmZaPvf++Q7lna+aSbZ7ixkk9e9/BAT2YkpMm2A7qVz2V2xAJZ0rNP+fjRD6wUR r+0w==
X-Gm-Message-State: AOAM530jymmxPR+RqzFMLQPooP7bSkrenlr/f2/zkEa9aw9ZHyJD1dOn HKpl2XiQFUkJSYb3xaUaxTmipgfD8RXfjfH3eSk=
X-Google-Smtp-Source: ABdhPJwoVyTvP5W/PE9Vkc0ynsKqjgqiJ72Wz1etzUin3zP9+k2lsiZb4QJ9SPUSP/HEM/q2Xqw+yc2+JTK8GT5mbgI=
X-Received: by 2002:a1f:2241:0:b0:33e:b45f:ad2c with SMTP id i62-20020a1f2241000000b0033eb45fad2cmr3062295vki.2.1647747604340; Sat, 19 Mar 2022 20:40:04 -0700 (PDT)
MIME-Version: 1.0
References: <164507779493.12793.548337102165449445@ietfa.amsl.com> <CAH6gdPyK=BjqwdkK8-GF6HOr6ubC7CocED5bTFBDPOB4zV-JRA@mail.gmail.com>
In-Reply-To: <CAH6gdPyK=BjqwdkK8-GF6HOr6ubC7CocED5bTFBDPOB4zV-JRA@mail.gmail.com>
From: Ketan Talaulikar <ketant.ietf@gmail.com>
Date: Sun, 20 Mar 2022 09:09:51 +0530
Message-ID: <CAH6gdPye5hNbuAHFAp=J_X8Qe+dk9Phw=MX-DjYr+X5JjhAv7g@mail.gmail.com>
To: Erik Kline <ek.ietf@gmail.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-bess-srv6-services@ietf.org, bess-chairs@ietf.org, BESS <bess@ietf.org>, "Bocci, Matthew (Nokia - GB)" <matthew.bocci@nokia.com>
Content-Type: multipart/alternative; boundary="000000000000a2e3a705da9e221f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/2rx96nLLQpVOQe56MjITCV1BV_Y>
Subject: Re: [bess] Erik Kline's Discuss on draft-ietf-bess-srv6-services-11: (with DISCUSS)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 20 Mar 2022 03:40:09 -0000

Hi Erik,

Could you please let us know if the updates posted to address comments from
other ADs also address your concerns? We would appreciate your feedback and
input on any further changes that may be required.

The latest version is:
https://datatracker.ietf.org/doc/html/draft-ietf-bess-srv6-services-13

Thanks,
Ketan


On Thu, Feb 17, 2022 at 1:49 PM Ketan Talaulikar <ketant.ietf@gmail.com>
wrote:

> Hi Erik,
>
> Thanks for your review and please check inline below for responses.
>
>
> On Thu, Feb 17, 2022 at 11:33 AM Erik Kline via Datatracker <
> noreply@ietf.org> wrote:
>
>> Erik Kline has entered the following ballot position for
>> draft-ietf-bess-srv6-services-11: Discuss
>>
>> When responding, please keep the subject line intact and reply to all
>> email addresses included in the To and CC lines. (Feel free to cut this
>> introductory paragraph, however.)
>>
>>
>> Please refer to https://www.ietf.org/blog/handling-iesg-ballot-positions/
>> for more information about how to handle DISCUSS and COMMENT positions.
>>
>>
>> The document, along with other ballot positions, can be found here:
>> https://datatracker.ietf.org/doc/draft-ietf-bess-srv6-services/
>>
>>
>>
>> ----------------------------------------------------------------------
>> DISCUSS:
>> ----------------------------------------------------------------------
>>
>> I have little to add to the DISCUSSes held by others beyond my support.
>>
>> However, I would like to discuss having SRv6 control plane information,
>> i.e.
>> SIDs and their behaviours etc., being isolated by associating it with
>> a separate SAFI.  Any other protocol element that needs to refer to such
>> information can make reference to it through context-appropriate
>> extensions.
>>
>
> KT> This is what the draft proposes. We have existing BGP services (e.g.
> L3VPN & EVPN) and we are introducing extensions for signaling of SRv6
> specific context for them.
>
>
>>
>> {AFI=IPv6, SAFI=unicast} is a valid way to advertise an SRv6 locator
>> prefix,
>> for example, as that's just IPv6 forwarding information.  If SRv6-specific
>> information where separately advertised as {AFI=IPv6, SAFI=SRv6} then I
>> suspect it would be simpler to filter out that information, detect leaks,
>> and generally help the SRv6 domain fail closed more easily.
>>
>
> KT> This document does not cover nor discuss signaling of SRv6 locator
> prefixes. That is already done today by IGPs with or without summarization
> (or where necessary in multi-AS networks by BGP for IPv6 RFC 2545) and this
> is all within a provider network. Nothing new is required for that.
>
>
>> But I'm prepared to learn why this wouldn't work or would be somehow
>> worse.
>>
>
> KT> It isn't necessary nor required because SRv6 locators are just IPv6
> prefixes that are already covered by IGP/BGP extensions for IPv6 routing. A
> provider that uses global IPv6 addresses in their infrastructure (e.g. for
> their BGP and other routing sessions, on their router links and loopback,
> for DHCP, AAA, etc.) already do routing for those prefixes via IGP/BGP.
> These are not advertised (nor leaked) out into the Internet since doing so
> can result in attacks on their internal network and infrastructure. They
> are protected via BGP configuration to stop leaks and then again by ACLs at
> Internet Border Routers to prevent attacks via the data path. This still
> remains the case to be done for SRv6 locators - they are similarly the
> service provider's "internal" infrastructure.
>
> Thanks,
> Ketan
>
>
>
>
>

v2.30.2 | Report a Bug | By Email | System Status