IETF Logo Mail Archive

Re: [bess] Warren Kumari's Discuss on draft-ietf-bess-datacenter-gateway-10: (with DISCUSS)

Adrian Farrel <adrian@olddog.co.uk> Wed, 19 May 2021 08:47 UTC

Return-Path: <adrian@olddog.co.uk>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 704E83A22BE; Wed, 19 May 2021 01:47:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.051
X-Spam-Level:
X-Spam-Status: No, score=-1.051 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MAY_BE_FORGED=0.846, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6BgQ0QMQCcWX; Wed, 19 May 2021 01:47:32 -0700 (PDT)
Received: from mta5.iomartmail.com (mta5.iomartmail.com [62.128.193.155]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 411843A22BD; Wed, 19 May 2021 01:47:31 -0700 (PDT)
Received: from vs4.iomartmail.com (vs4.iomartmail.com [10.12.10.122]) by mta5.iomartmail.com (8.14.4/8.14.4) with ESMTP id 14J8lORH007208; Wed, 19 May 2021 09:47:24 +0100
Received: from vs4.iomartmail.com (unknown [127.0.0.1]) by IMSVA (Postfix) with ESMTP id F04872203B; Wed, 19 May 2021 09:47:23 +0100 (BST)
Received: from asmtp3.iomartmail.com (unknown [10.12.10.224]) by vs4.iomartmail.com (Postfix) with ESMTPS id DB1022203A; Wed, 19 May 2021 09:47:23 +0100 (BST)
Received: from LAPTOPK7AS653V (65.151.51.84.dyn.plus.net [84.51.151.65] (may be forged)) (authenticated bits=0) by asmtp3.iomartmail.com (8.14.4/8.14.4) with ESMTP id 14J8lHx3022937 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Wed, 19 May 2021 09:47:23 +0100
Reply-To: adrian@olddog.co.uk
From: Adrian Farrel <adrian@olddog.co.uk>
To: 'Warren Kumari' <warren@kumari.net>, 'The IESG' <iesg@ietf.org>
Cc: draft-ietf-bess-datacenter-gateway@ietf.org, bess-chairs@ietf.org, bess@ietf.org, 'Matthew Bocci' <matthew.bocci@nokia.com>
References: <162138261155.16222.3642328553740974312@ietfa.amsl.com>
In-Reply-To: <162138261155.16222.3642328553740974312@ietfa.amsl.com>
Date: Wed, 19 May 2021 09:47:16 +0100
Organization: Old Dog Consulting
Message-ID: <041b01d74c8b$95e3ac10$c1ab0430$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQGkFsp+yUVQ5gswYFz5Bwh2b2ZtBKtQ5Bbw
Content-Language: en-gb
X-Originating-IP: 84.51.151.65
X-Thinkmail-Auth: adrian@olddog.co.uk
X-TM-AS-GCONF: 00
X-TM-AS-Product-Ver: IMSVA-9.0.0.1623-8.2.0.1013-26166.006
X-TM-AS-Result: No--13.394-10.0-31-10
X-imss-scan-details: No--13.394-10.0-31-10
X-TMASE-Version: IMSVA-9.0.0.1623-8.2.1013-26166.006
X-TMASE-Result: 10--13.394400-10.000000
X-TMASE-MatchedRID: b/1IsOqez6fxIbpQ8BhdbI61Z+HJnvsOSj/Mey7I14uqvcIF1TcLYFJD 3BboLcuE/sd3UP5QimOvUoYhwO9uKwGQoDxzksPPHWRJEfGP5nnDx2NobQWtm7Ee96bzLpOv3AE Vm8B/w6jzmAv8Ezwyfe4OgeFiS0zlAVeYrJDUIaf0VCHd+VQiHjsY2/UEG7fkRQgyInUyrWIXLx iXd1Hkob9q8LNZXryMlgi/5VzYRsg83yohOyTAnEQiyd+xo4as8qeI5MA2SKSMugbsrFbv2kzcW R/oWb15AnwRdwC0CtFsGvI1sgF8jA+tfM1va0bjR+GtoiXVeDEvKK/+8XMSRPY6xhhckGiKzHAh KDI1N0hZI/rweq5TpbmGK6e/gZxLfXe9oEwFCCxQ1o+KC+IpH/NkoMDX+kiuC90qCYhaPKkZGgG aH7R5LdDOagAhAYmzT2lJLSf/Q/pttPqfcbv86G/GhVZSEqbiNACXtweanwZ5es86jYch1CDYCK QAPC7jIxdpW/bdWaDkMPza5anWT9mWkVk6JGUgwVj70b5+EfN0XaJXwC+cKPVmME8a4kNKuXaWs 1QyzCeC9g3+dE2CC6mp9lcpChqvb11HZX+Le3cmsHvGiAJggg5k1ea+clp6mXw0RNbqkoKA2U4D oCTZiOLheW2dPNlCwdN+KPWg98wpJyW4+csRKudUdcFTNW9kS/ceBQrgS1EvfU/riSJXkaUTuBQ /WRv/Holz7Ce+8DU221P4+0gd+KGaPeaDuRsFAIVMxL2ekWNqYquCrLrVwgzvg1/q1MH2YfSSVl 6afaaYTmV2ONBnrrgtnN6cOEY/v1l2Uvx6idpTptoDfp6JrMRB0bsfrpPIfiAqrjYtFiQ/UDEPP iglH8KoER2Q1qYaZB2How2fmT87YSAF2U5wMX7cGd19dSFd
X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0-0
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/HWvF85TSiRKvC7WUE5jeMV7oiQ4>
Subject: Re: [bess] Warren Kumari's Discuss on draft-ietf-bess-datacenter-gateway-10: (with DISCUSS)
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 May 2021 08:47:37 -0000

Hi Warren,

Thanks for this. I'll try to unpick it.

> DISCUSS:
> ---------------------------------------------------------------
>
> I hope that I'm just misunderstanding something obvious, but I strongly support
> John's DISCUSS

So far, so good: we are in discussions with John and believe we will reach a resolution that satisfies him.

> when SR was "approved" it was with the understanding that it
> would only be used within "real" limited domains, and would never be sent
> outside of closed/limited network.

I fear that there may have been some slipperiness in the discussion that led to this understanding.
I recall pushing back quite a bit on the definition of "SR domain" as it appeared in 8402 during IETF last call. But I didn't see a lot of support for my view and concluded I was in the rough.

He definition we ended up with specifically allows for tunnelling of SR over non-SR parts of the network. And, indeed, the nature of SRv6 is that packets containing the SRH may be forwarded "transparently" by non-SR IPv6 routers. The domain is, therefore, defined as the collection of interconnected SR-capable nodes. We ended up with:

   Segment Routing domain (SR domain): the set of nodes participating in
   the source-based routing model.  These nodes may be connected to the
   same physical infrastructure (e.g., a Service Provider's network).
   They may as well be remotely connected to each other (e.g., an
   enterprise VPN or an overlay).

This may go against your expectations (it may even go against reasonable expectations), but it is what it is.

In the light of this, and with the understanding of how overlays are built and used (especially for VPNs), we explicitly looked in this document to provide a simple way that SR-capable sites may be interconnected using a concatenation of tunnels between SR-capable nodes in the wider network. As you'll see from the document, this doesn't involve any changes to SR, but does make use of SR's ability to use a SID to identify a node or a tunnel. Our only new stuff is to allow BGP to distribute information in a way that handles a site having multiple gateways and to cope with multiple possible paths between sites. If an ASBR (BGP peer) is unable to process the BGP extensions or is not SR-capable, it will not participate.

> The document says: "The solution defined in this document can be seen in the
> broader context of SR domain interconnection in
> [I-D.farrel-spring-sr-domain-interconnect]. ", which says: " Traffic
> originating in one SR domain often terminates in another SR domain, but must
> transit a backbone network that provides interconnection between those
> domains." -- is it unclear to me if this is really what is being proposed...

Again (as per the many discussions during IESG review), s/domain/site/
That was a bad mistake by the authors (who really love the use of the word 'domain' as applied in all of the TEAS work).
To be clear, all interconnected SR sites form part of the same 8402-SR-domain.

We have fixed the use of site/domain in the working copy (which we hope to post later today).

> I'm hoping that I'm really misunderstanding something here -- please educate me.

Do you consider yourself educated now, or merely disciplined? 😉

Cheers,
Adrian

v2.23.0 | Report a Bug | By Email