Re: [bess] draft-ietf-bess-service-chaining

"Henderickx, Wim (Nokia - BE/Antwerp)" <> Tue, 06 November 2018 13:25 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id D068E130DE2; Tue, 6 Nov 2018 05:25:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -0.38
X-Spam-Status: No, score=-0.38 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id WYeDQui4u_uk; Tue, 6 Nov 2018 05:25:03 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id EC6B7124BAA; Tue, 6 Nov 2018 05:25:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=selector1-nokia-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=7Ru+0Jc9zcDZ+C9whNgABj3yMRqOM5KE4DChbBUK5Xg=; b=B12OWgW6egQ2W19m+yNfT0kZZWT2DawXODyPGyaoSvegPc1XY+dL12IQO3g0s+MS+GGl6/TiN6vbc6J4FgRuIj55VVIJ/XX60uzFYLsRnbvAoOgiU3lR5Lh5N8uUeIaPEDajBlc4HRFBbY7DCGdDNdLF9mupq4uAOxiJlCq3cpY=
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.10; Tue, 6 Nov 2018 13:25:00 +0000
Received: from ([fe80::5d66:3910:60c:6686]) by ([fe80::5d66:3910:60c:6686%2]) with mapi id 15.20.1294.034; Tue, 6 Nov 2018 13:25:00 +0000
From: "Henderickx, Wim (Nokia - BE/Antwerp)" <>
To: Stuart Mackie <>, "" <>, "" <>
Thread-Topic: draft-ietf-bess-service-chaining
Thread-Index: AQHUdNeh9LJZRoSTLkGcmqD94vkh2qVCXpQAgADVSAA=
Date: Tue, 6 Nov 2018 13:25:00 +0000
Message-ID: <>
References: <> <>
In-Reply-To: <>
Accept-Language: nl-BE, en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/
x-originating-ip: []
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DB6PR07MB3461; 6:MHazUiMjg3dWls/06iYPryZZD3KbFEBe+d70HW2bI9RFpWvsM2LjEPZN4DjpAK9Ez/WCif16WlHYvGQsqrzstgoTNdNWe1lSHXX8FVKOp2XVPZYT54QVyXR16pXom4WTrYKDsItRle8N5xplylCKQcoP9BeTWpqy0J6sNII1kjcrPTScUEq/ytVoZseNd+ZXmIzWs8timQJJvOW3CZR4PXkKXwtsPJVnfQYyiyN/leFElG0/sWgVS0IjPxnmBLaXdm09LuOWvZTcx8liVbrFSdgk9CEDtzubtJa2Bd2/9+yc60iXTwcivUQXcwATDBpcxl01Ki9+1Ijx2SwGzC2ofzpGbu7i829LI1aRKOp4Zjzk5cHvainRDqg8BelZDykOXIr0SFNfFsxi9vMDhgLV8N5HLNUp1p/n258CoqZIZOSLrugilpCN9nni8GdRI1OwAOVAZuJFEFK0k3mgUldj8w==; 5:4meW6HnP6x6mXPq7PjEUK9bIoGp1JcfDYilN6QS9DGS3yietmyi/+8EwmXaiJO/keC18by7FEgXXJthKCO2KK+uUbFQR+x/ZbPW9Mt2zsUjBvBcU0zhjWTd+yzp5hdE3/QU7G2u8ggXTUd+ITLF1h96RAcxcQNlUJ68g56Q04mk=; 7:ALh2kGUQSiFE8K2r5PO3Tpnj0qKq0kdLKrkTZCSczIOWyzP/1I8dNMNyOYs6IT3bSLmwtaU6/zaMxmYA754/QEaCr8YFhZr3p/AHXMFYGYUbWOzqwZdEuV7xisEX7bzsUsBFsz/6vs5Mw6h/tPSy3w==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 0988e058-9642-4bca-a3fe-08d643eb40bb
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7167020)(7193020); SRVR:DB6PR07MB3461;
x-ms-traffictypediagnostic: DB6PR07MB3461:
authentication-results: spf=none (sender IP is );
x-microsoft-antispam-prvs: <>
x-exchange-antispam-report-test: UriScan:(138986009662008)(82608151540597)(109105607167333)(195916259791689)(278428928389397)(95692535739014)(85827821059158)(97927398514766)(18271650672692)(161740460382875);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3002001)(10201501046)(3231382)(11241501184)(806099)(944501410)(52105095)(93006095)(93001095)(6055026)(148016)(149066)(150057)(6041310)(20161123560045)(20161123562045)(20161123558120)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:DB6PR07MB3461; BCL:0; PCL:0; RULEID:; SRVR:DB6PR07MB3461;
x-forefront-prvs: 0848C1A6AA
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(136003)(376002)(366004)(346002)(39860400002)(199004)(189003)(8676002)(561944003)(58126008)(6306002)(105586002)(76176011)(97736004)(99286004)(5660300001)(2501003)(110136005)(1941001)(53546011)(55236004)(6506007)(316002)(82746002)(33656002)(66066001)(4743002)(5024004)(102836004)(256004)(6436002)(606006)(186003)(7736002)(26005)(6486002)(106356001)(8936002)(229853002)(2201001)(86362001)(486006)(11346002)(476003)(2616005)(446003)(2906002)(6116002)(3846002)(68736007)(966005)(25786009)(36756003)(83716004)(71200400001)(71190400001)(478600001)(236005)(2900100001)(6246003)(6512007)(54896002)(81166006)(53936002)(81156014)(14454004); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR07MB3461;; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None ( does not designate permitted sender hosts)
x-microsoft-antispam-message-info: hhCGP93TByitC0Nlb7TEhV/mqVuyCHNrbZjWa+aLsGG7yGZa81ncjQbPEM18LNmx98gAEpOhosByejN3JM62pJiZlYq1ltbXR53xE5/JHLb+Xgq9XJYUmokGnaxbOeMmzOrC+7daTMh4f6LXKguzug4mBbi3Fzy31gljlQkidMyKaU8VE5vAcFMtk03rPWN1lbF61slTzxY8e9EUv1ZH3bQISUAZj0B4pvoJc3rEm26s1Pw41mp7/8ni8sckAzpmj5RVRKRb9ApaEyxoG4fjeFeOvta/MnUVHIOeMnNiu/8owgSQ3u0dHS576a8FFGNtiamHii9kJurBmksIn+GtBAyZrMALECcLi5YFFocRpbY=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_560BDBACFB3943E4876AA22CEDF952A7nokiacom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 0988e058-9642-4bca-a3fe-08d643eb40bb
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Nov 2018 13:25:00.1027 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR07MB3461
Archived-At: <>
Subject: Re: [bess] draft-ietf-bess-service-chaining
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 06 Nov 2018 13:25:07 -0000

Stuart thanks, we also support this but wanted to ensure some things that are obvious to some people are not for others and hence I believe we have a duty in IETF to make people aware about these things. Thx

From: Stuart Mackie <>
Date: Tuesday, 6 November 2018 at 19:41
To: "Henderickx, Wim (Nokia - BE/Antwerp)" <>om>, "" <>rg>, "" <>
Subject: Re: draft-ietf-bess-service-chaining

Hi Wim,

Stephane had alerted me to these comments you made a while ago, but which I missed at the time. Sorry for the delay in getting back to you.

*   The doc is much focused on the VRF constructions and architecture, but in some use cases we need to program the SF, which is not always clear and we should be a bit more explicit about it in the draft
SM> Agreed that programming the SF will almost always be required, but there isn’t any standard way of doing this. I can add a comment to that effect.
*   If a SF is L2 vs L3 we need to program the static NH and IP@ a bit different and we should clarify this
SM> I don’t think there is any difference for L3 routes  between L2 and L3 SFs – at a service egress the next hop is the forwarder where the next service is running with a label that identifies the ingress interface. There is a difference in that the VRF has to add an Ethernet header before sending into an L2 SF, which for non-transparent would be that of the ingress SF interface (known from when the SF was instantiated). For an L2 transparent service, the ingress VRF would put the MAC address of the egress forwarder (which since they can all be the same, would be the simplest), and then the egress forwarder rewrites the L2 destination if forwarding out of the service chain. I’ll add some detail on this.
*   A question I have is if in this architecture a SFF could be shared using the same interface/sub-interface with other service chains or not. Based on this it would also be good to document the things the SFC architecture allows and are supported or not with this proposal.
SM> Sharing can be done for transparent L2 SFs, where VLANs can be used to identify which virtual network a packet came from (already supported in Contrail), and for L3 SFs could potentially be supported using next-table policies in VRFs (similar to floating IP addresses). However, that depends on service chains being tied to subnets, which isn’t the scenario that is usually discussed in mobility applications where the chosen service chain is based on subscriber/application. I can add a couple of sentences on this.


-914 886 2534

From: "Henderickx, Wim (Nokia - BE/Antwerp)" <>
Date: Monday, November 5, 2018 at 2:17 AM
To: "" <>rg>, "" <>
Subject: draft-ietf-bess-service-chaining
Resent-From: <>
Resent-To: <>om>, <>et>, <>om>, <>om>, <>om>, <>
Resent-Date: Monday, November 5, 2018 at 2:17 AM

Attached were my comments which I sent at the time which were not addressed so far in the doc.
Would be good if we can incorporate them before WG last call<>