Re: [bess] draft-ietf-bess-service-chaining

Stuart Mackie <wsmackie@juniper.net> Tue, 06 November 2018 12:41 UTC

Return-Path: <wsmackie@juniper.net>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C2573130DC6; Tue, 6 Nov 2018 04:41:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.819
X-Spam-Level:
X-Spam-Status: No, score=0.819 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, KHOP_DYNAMIC=1.999, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tInOjJ1Ltjud; Tue, 6 Nov 2018 04:41:35 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D71F130DC3; Tue, 6 Nov 2018 04:41:35 -0800 (PST)
Received: from pps.filterd (m0108163.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id wA6CY6dB012410; Tue, 6 Nov 2018 04:41:34 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=2/FgkH7Wuwo6y1w11SKCOn84d/ghrFsa12V/wwb8dFQ=; b=nZEaBPD1oIxDol2pLbW/TzWe6unaAu4cRPWzQxz0emjwdXnEzCPkgqi1whyeoFZ87tip VLnG/PdSp4h5RvlcbjeSw2IU3QrM7tJe1oVFjLPsyVXYAah0i5tLkYwCnEY3G3VQGKOM oVnuREPaf8mTIjFzP4JXQW170K6EUu7Zd1UnQMR1w50dffaa6Tx14S5ZFdQ5qfpTmhTf ka5mcrMsRcB1msFIXSQ4LRqW6XrTxtA+7T26wbYlPXh6Zm3VqDD/11XK/3GiOCvgOkMc K3NUhoX0bBx4hR+Q6zsk1ttOphjNHsRPjgmxkkMQOya3TE+eBVT2MCMR0/3RhI1azi8/ bA==
Received: from nam01-by2-obe.outbound.protection.outlook.com (mail-by2nam01lp0181.outbound.protection.outlook.com [216.32.181.181]) by mx0b-00273201.pphosted.com with ESMTP id 2nk5g9gfwr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Tue, 06 Nov 2018 04:41:34 -0800
Received: from BYAPR05MB4966.namprd05.prod.outlook.com (20.177.229.12) by BYAPR05MB4198.namprd05.prod.outlook.com (52.135.200.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.14; Tue, 6 Nov 2018 12:41:31 +0000
Received: from BYAPR05MB4966.namprd05.prod.outlook.com ([fe80::599e:824f:a594:3822]) by BYAPR05MB4966.namprd05.prod.outlook.com ([fe80::599e:824f:a594:3822%4]) with mapi id 15.20.1294.032; Tue, 6 Nov 2018 12:41:31 +0000
From: Stuart Mackie <wsmackie@juniper.net>
To: "Henderickx, Wim (Nokia - BE/Antwerp)" <wim.henderickx@nokia.com>, "draft-ietf-bess-service-chaining@ietf.org" <draft-ietf-bess-service-chaining@ietf.org>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: draft-ietf-bess-service-chaining
Thread-Index: AQHUdNeh9LJZRoSTLkGcmqD94vkh2qVCXpQA
Date: Tue, 6 Nov 2018 12:41:31 +0000
Message-ID: <AFAD691B-9B37-43B8-9E71-373727031AF0@juniper.net>
References: <8C0BCAC4-49FA-4244-9C03-A0AB681D7B17@contoso.com>
In-Reply-To: <8C0BCAC4-49FA-4244-9C03-A0AB681D7B17@contoso.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.3.181015
x-originating-ip: [66.129.239.14]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BYAPR05MB4198; 6:23Y4PL+lxAMjaWPZ2mVAsMNfxCqjI4+oXKpfSrE0JvHtmJ5s0aLXrMjNqpkl+ft9MVmC04XT4f7m2HJoR0uj0q2D9NY/La4CyPrW6We19kIj3M3dzO3Gmvu+HZC5XTwzcquOSyn2Pscc1fygm73x6SpaKUiwnZ31I7JBnrOOUcYWMK5UoACbAsm2IP0pILhdoFMCNzIC3/29UjSVyO3wNBUgViuEAvfIe/Sn4MNQbz1rn21/EUlymnJKt8SIsW4t5m+kq8snusUmFB01vVmlPVP0gV/pgbUPIeAPQXptSUlunE/w5a1hOOWIUiI4TGEjhGspmfSKi/tSvDNig6xttnf7A7iLGmgHTfPHaBmdOojeRFr7QamNr2eVMQ/0qXmJv8HrnYv1M4FUZH96dw3oiAOnoOaHEi6Uheh1Oa0wkfddgZ8weJEdVrAjcHGh6O+PqR7c5JeqaJbnkOckvIeKRA==; 5:rQh36gUbLcs54ftCHYGN4mJB5JgZ0/ZxUcRQcbHjQG6eD3vcIXHwGeK26VSZ6WxFkquKabRV7EYYfrzS8mRW7sjQArl3TVsHbVHLOWlotzwA2aswk0G6ALRVCAwBUZzW47Ek9hNfOCCIOk8Hle8DV6cJZLIHmAOWPeqVExZAzAM=; 7:SDnhhQ0DNtwySNb+N1HpWdPknj7cRPjLVCukAi1oleEgISBkq0029OKDkFyy+Xl3WAxcOstxOKaciZxCU3KimXO65ghw6rHL4xqDj7GgXXXR5ulCi8SO7wDG2H+zEX0/b8y2o3xSkNnPiwcsjFSaug==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 4301f2fc-f144-44d2-fbe5-08d643e52df1
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(5600074)(711020)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:BYAPR05MB4198;
x-ms-traffictypediagnostic: BYAPR05MB4198:
x-microsoft-antispam-prvs: <BYAPR05MB4198BF0972378C15D04644E1D8CB0@BYAPR05MB4198.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(278428928389397)(82608151540597)(109105607167333)(195916259791689)(95692535739014)(138986009662008)(85827821059158)(97927398514766)(161740460382875)(18271650672692);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3002001)(10201501046)(93006095)(93001095)(3231382)(944501410)(52105095)(6055026)(148016)(149066)(150057)(6041310)(20161123560045)(20161123564045)(20161123562045)(20161123558120)(201703131423095)(201703031522075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:BYAPR05MB4198; BCL:0; PCL:0; RULEID:; SRVR:BYAPR05MB4198;
x-forefront-prvs: 0848C1A6AA
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(979002)(136003)(366004)(396003)(346002)(376002)(39860400002)(199004)(189003)(2201001)(26005)(9326002)(102836004)(6436002)(236005)(2906002)(6486002)(66066001)(81156014)(58126008)(82746002)(81166006)(6306002)(256004)(8676002)(4743002)(11346002)(110136005)(68736007)(186003)(5660300001)(6246003)(5024004)(8936002)(606006)(36756003)(6512007)(99286004)(54896002)(53936002)(86362001)(229853002)(446003)(296002)(316002)(478600001)(14454004)(105586002)(25786009)(106356001)(3846002)(2900100001)(476003)(76176011)(486006)(33656002)(6116002)(561944003)(2616005)(97736004)(83716004)(53546011)(2501003)(71200400001)(71190400001)(6506007)(966005)(7736002)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR05MB4198; H:BYAPR05MB4966.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: /ukIRiUHw6mJgCw1GQlnHGE8Ifi8CMqBSl+pK5KtmMqcGD/lmywRhOt0u0WW7v6/fCwXgRvyMUtxEhabncKb3Etelo/53LLyX7hfv+rmalFbAxBoLmCgCVoARU12CGYOJObCdgKaDuzR01IwFVy0HCCw5S/fhcJaZr9OMSSGFKPyWVrtGVuW1pHYrWAyM21hb6vE02Rwpo16tOG9qQhBUPJfUT9BOxuyu5QpAKWlkXbLC4QIAhGsi+kxIMBmGp0IEPl6as0kztXWNxLFweFZrQKLrTGO6Z6ggn0CyNkyNi1bWzRub7m7tnZCFa7OAg5nTJdRRD9AHROFbWuLryF9PfVrbJOaxRX6tdGxLGpQDrw=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_AFAD691B9B3743B89E71373727031AF0junipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 4301f2fc-f144-44d2-fbe5-08d643e52df1
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Nov 2018 12:41:31.5971 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB4198
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-11-06_06:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1807170000 definitions=main-1811060112
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/XqVfFp4uF39LUzFXIaDdZBKjGbo>
Subject: Re: [bess] draft-ietf-bess-service-chaining
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Nov 2018 12:41:39 -0000

Hi Wim,

Stephane had alerted me to these comments you made a while ago, but which I missed at the time. Sorry for the delay in getting back to you.

*   The doc is much focused on the VRF constructions and architecture, but in some use cases we need to program the SF, which is not always clear and we should be a bit more explicit about it in the draft
SM> Agreed that programming the SF will almost always be required, but there isn’t any standard way of doing this. I can add a comment to that effect.
*   If a SF is L2 vs L3 we need to program the static NH and IP@ a bit different and we should clarify this
SM> I don’t think there is any difference for L3 routes  between L2 and L3 SFs – at a service egress the next hop is the forwarder where the next service is running with a label that identifies the ingress interface. There is a difference in that the VRF has to add an Ethernet header before sending into an L2 SF, which for non-transparent would be that of the ingress SF interface (known from when the SF was instantiated). For an L2 transparent service, the ingress VRF would put the MAC address of the egress forwarder (which since they can all be the same, would be the simplest), and then the egress forwarder rewrites the L2 destination if forwarding out of the service chain. I’ll add some detail on this.
*   A question I have is if in this architecture a SFF could be shared using the same interface/sub-interface with other service chains or not. Based on this it would also be good to document the things the SFC architecture allows and are supported or not with this proposal.
SM> Sharing can be done for transparent L2 SFs, where VLANs can be used to identify which virtual network a packet came from (already supported in Contrail), and for L3 SFs could potentially be supported using next-table policies in VRFs (similar to floating IP addresses). However, that depends on service chains being tied to subnets, which isn’t the scenario that is usually discussed in mobility applications where the chosen service chain is based on subscriber/application. I can add a couple of sentences on this.

Regards

Stuart
-914 886 2534

From: "Henderickx, Wim (Nokia - BE/Antwerp)" <wim.henderickx@nokia.com>
Date: Monday, November 5, 2018 at 2:17 AM
To: "draft-ietf-bess-service-chaining@ietf.org" <draft-ietf-bess-service-chaining@ietf.org>rg>, "bess@ietf.org" <bess@ietf.org>
Subject: draft-ietf-bess-service-chaining
Resent-From: <alias-bounces@ietf.org>
Resent-To: <rex@cisco.com>om>, <wsmackie@juniper.net>et>, <dhrao@cisco.com>om>, <brunorijsman@gmail.com>om>, <mnapierala@att.com>om>, <thomas.morin@orange.com>
Resent-Date: Monday, November 5, 2018 at 2:17 AM

Attached were my comments which I sent at the time which were not addressed so far in the doc.
Would be good if we can incorporate them before WG last call

https://www.ietf.org/mail-archive/web/bess/current/msg00791.html<https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mail-2Darchive_web_bess_current_msg00791.html&d=DwMGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=iVavQx6gb7x-wiXKtJ7ryhHWVzNbV-FpJD1JlIhEm6s&m=uWaX1cs3QGWIWutYoveySsQRYlCX8sh7sALiGa91osk&s=2YXOxs06X6-NwAP3gYDrtB27peSlBZsN21WaSSE3pwc&e=>