IETF Logo Mail Archive

Re: [Detnet] IPv6 encapsulation in dataplane doc

"Jouni" <jouni.nospam@gmail.com> Thu, 08 February 2018 14:36 UTC

Return-Path: <jouni.nospam@gmail.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BCE5412DA03 for <detnet@ietfa.amsl.com>; Thu, 8 Feb 2018 06:36:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oGwwNmdIOzKc for <detnet@ietfa.amsl.com>; Thu, 8 Feb 2018 06:36:24 -0800 (PST)
Received: from mail-lf0-x229.google.com (mail-lf0-x229.google.com [IPv6:2a00:1450:4010:c07::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DDF6C12D957 for <detnet@ietf.org>; Thu, 8 Feb 2018 06:36:23 -0800 (PST)
Received: by mail-lf0-x229.google.com with SMTP id x20so4747383lff.6 for <detnet@ietf.org>; Thu, 08 Feb 2018 06:36:23 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:references:in-reply-to:subject:date:message-id:mime-version :thread-index:content-language; bh=CgFNf9zYVHi6TRqXs5V54p3wA1V7shq2PaukuhjRP2w=; b=nfM0SVZpkKfpvnxJJuKl1o3CJH2vNMbb3bezGcghUNbfiRuq7JGv9AWcZtgnupez01 lvBQpAh15LrjGhLUOWKi+wK3UFS9iALsWONQzxs5zIDjK5+Qm4JAMD9qX8kVxs41gPT+ B3BEygw0NQ5kjQ2PccEfpJDNhRAik7D4I+K04F5+TJ+An+rFPM0Vl6j6KamgK6T/86eV szgbPzNhEh2dLpGm9WI/fcga3VApSrWe3yBttlakvi1mpOPlS7mcogAYKJly8wiHLoWZ +CuQzvE5RsAhgNhivsUh+1Uio84wn1OdBShS4YqrdV/tWU641ZWeUID2XcIgxe5YBWq9 CZKQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:references:in-reply-to:subject:date :message-id:mime-version:thread-index:content-language; bh=CgFNf9zYVHi6TRqXs5V54p3wA1V7shq2PaukuhjRP2w=; b=P+IpMbRO+2Fy5ekTkB3Me1TvWoT/AmtAqF9ATVStZ1B/nOJI4BXvbSzPpvjOFAcM2L sLqVXpKb1/EK+rQx7hNYIgxIaU6fjgZ7i2QDHCQGQrnzhMvvnlDWIrN1Wr1fZLgKxdBZ c2YQnArk3ouT6IGcggpZLRl9/Padnd80oiWrd2zVplHZwA8yyexSUZGQMEBpltnKUK26 iKhVGFaD06EUSCXKmBsYbFpDScaC9NpdM5837YOS7yJBo+lFRgIgZo+yhugLfB+pU/Ml hNTfxLUebGtMrc8pM/5AHe7n+sxmfYnLaPd1iyRLpIigb7fLQDnCmT78ZXVrjL9IRWaT gh+A==
X-Gm-Message-State: APf1xPBB/l/YNGNpvziRsAqY9EMVNu/hLlQ+LpJVocq1McjrTDHsjbm9 2uOvl1+wIzSD0FvgyHAetfgBJA==
X-Google-Smtp-Source: AH8x2262blcoR6M8CwFY4zAg8o/Xs+rKl9nRfBWVMYfA55CtqTD12xW+4ZSUItnw/3LryF8FLZr1cg==
X-Received: by 10.25.24.90 with SMTP id o87mr775556lfi.88.1518100581729; Thu, 08 Feb 2018 06:36:21 -0800 (PST)
Received: from JOKO ([83.145.195.18]) by smtp.gmail.com with ESMTPSA id h7sm17548ljf.37.2018.02.08.06.36.19 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 08 Feb 2018 06:36:21 -0800 (PST)
From: Jouni <jouni.nospam@gmail.com>
To: "'Pascal Thubert (pthubert)'" <pthubert@cisco.com>, 'Lou Berger' <lberger@labn.net>, detnet@ietf.org
References: <cff50c52d2f945cfa8eff149f5242fb0@XCH-RCD-001.cisco.com> <16170c78f30.27d3.9b4188e636579690ba6c69f2c8a0f1fd@labn.net> <22c101d3a0bc$5795b080$06c11180$@gmail.com> <80c83125729f42beb2c55072ca1e80e3@XCH-RCD-001.cisco.com>
In-Reply-To: <80c83125729f42beb2c55072ca1e80e3@XCH-RCD-001.cisco.com>
Date: Thu, 08 Feb 2018 16:36:16 +0200
Message-ID: <000001d3a0ea$2f57c8f0$8e075ad0$@gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0001_01D3A0FA.F2EA35E0"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQD5O4QjESRxtG/4YhDnUM8lkFE3YADceJ0bAkifB7cCLlvZQaUkqQFg
Content-Language: en-us
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/EEsOso6OlnwMlHGER--G3OLwc6o>
Subject: Re: [Detnet] IPv6 encapsulation in dataplane doc
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Feb 2018 14:36:29 -0000

Hi Pascal,

 

Thanks for good input (again) and I agree in most parts – I do have
reservations for L4 solution since it would be per L4 protocol. One
clarification to my ”first point”. In my example the not-mentioned
assumption was that the edge node is the first node doing duplication &
elimination at the subnet/transport layer. If that DetNet subnet/transport
layer can extended all way to end systems (like with current TSN in 802.1
space) then some of the issues are relaxed.

 

 

-          Jouni

 

From: Pascal Thubert (pthubert) [mailto:pthubert@cisco.com] 
Sent: Thursday, February 8, 2018 12:46 PM
To: Jouni <jouni.nospam@gmail.com>; 'Lou Berger' <lberger@labn.net>;
detnet@ietf.org
Subject: RE: [Detnet] IPv6 encapsulation in dataplane doc

 

I fully agree, Jouni ;

 

For your first point: In the case of wireless, PRP (a form of PREF) is a
critical feature for industrial deployments; this is shipping and deployed
today. The link that needs protection the most is the first hop (the UNI
from/to the device) since it is over Wi-Fi. If the PREF starts at the
network edge (say the controller), then most of the benefit is lost. So
DetNet must enable E2E Services, in particular over IPv4 which is dominant
in industrial use cases. What DetNet could bring to the art could that a
single wireless transmission received by 2 APs end up on 2 parallel
end-to-end paths.

 

For your second point: there are a number of potential issues if the
sequencing is not done by the source end point. If a packet is received at
one edge and not at another, then the sequences will differ over the 2 paths
and reconciliation will be impossible. Packets received out of order at the
ingress will be delivered out of order at the egress meaning that whatever
support for in-order-delivery (IOD) is defeated.

 

My conclusion is that the end points must contribute to the effort. They
must stream the data at a reasonable pace, and if Service Layer functions
are expected from the network,  they really should indicate the flow ID and
the sequence number from their perspective.

 

Now what can we expect from current end points? 

 

-          Existing industrial devices can claim a rough need for a given
rate but were not necessarily designed to provide guarantees for burstiness
in DetNet terms. Failure to comply to DetNet terms may cause
loss/reclassification by ingress filtering in the edge router, which would
defeat one purpose of DetNet for reliability. For a close-to-acceptable
sources, one can imagine a jitter absorption feature at the DetNet ingress
edge router. But that also mean an additional latency, which may defeat
another purpose of DetNet of in-time-delivery.

-          TCP is adverse to DetNet, and will not maintain the optimal rate;
in any case, the sense of sequence that can be inferred from the offset can
be defeated by retries.  In order to support TCP endpoints, one would
probably need to devise a L4-proxy function (ala DLSW) that terminates TCP
at the ingress edge and maps it into something more DetNet friendly.

-          UDP does not provide sequencing information - this is probably
the use case for the DetNet Destination Option in the inner header.

-          Arguably RTP can signal both flow and sequence, but does not have
network coding, does not expect multipath, and I’m not sure if the rate
control work has gone beyond the research papers. Then again, packets may be
lost or reclassified at the ingress edge.

-          This leaves rate control (e.g. adaptive bitrate streaming) to the
application layer (typically over HTTP), meaning that each application as to
cover for the network deficiencies in its own ways. Which is sad because it
adds complexity to each and every application, a complexity that is not the
core business of the app and could be handled in common at a lower layer. 

 

DetNet has the power to simplify the application, remove jitter recovery
buffers and the like, by transporting the near-perfect rate in near-perfect
time.  It would be better that the end points contribution happens without
impacting each and every time sensitive application, by providing DetNet
Service Layer functionality at the L4 transport.

 

Flow identification (by port), IOD and duplicate elimination are classical
L4-transport features (e.g. TCP). MP-TCP already distributes packets over
different paths. It is not a gigantic conceptual step to place DetNet
Service Layer features in a L4 transport. If a DetNet friendly transport -to
be designed- adds DetNet Service Layer capabilities like PREF and/or network
coding in the end points, 2 parallel DetNet Transport Layer circuits based
on the discussion at the interim would enable the end-to-end service without
knowing it. So ‘d say that the proposal is still useful, but depends on L4
transport capabilities that would be fully transparent to the DetNet
signaling and would not use the Destination Option. 

 

Alternatively, say we want DetNet to provide the S-level functions, e.g.
PREF. Considering that we expect that an edge router can read the ports,
then it can figure what the L4 transport can be recognized and that for some
transports, e.g. RTP and the suggested new transport, the edge router can
derive a sequence from the transport header in a non-ambiguous way. 

 

All the best,

 

Pascal

 

From: Jouni [mailto:jouni.nospam@gmail.com] 
Sent: jeudi 8 février 2018 10:08
To: 'Lou Berger' <lberger@labn.net <mailto:lberger@labn.net> >; Pascal
Thubert (pthubert) <pthubert@cisco.com <mailto:pthubert@cisco.com> >;
detnet@ietf.org <mailto:detnet@ietf.org> 
Subject: RE: [Detnet] IPv6 encapsulation in dataplane doc

 

Hi,

 

Yes, we discussed this to an extent in the last call. I’ve been thinking
this a bit more lately (cross country skiing conditions have been great thus
you got a lot of time while on the skiing tracks ;) Few concerns/points to
think I see here are:

* End systems cannot participate to DetNet service layer packet elimination
& duplication business. If they still do e.g. using DetNet DstOpt that is
separate from subnet/transport layer provided service.

* Different subnet/transport layer segments in the DetNet domain are likely
to use their own sequencing and duplication & elimination solutions. I am
not sure how independent those will be e.g., is the sequence numbering
unified across or only per segment. The former is not IMO easy and the
latter easily reduces to single points between segments to handle number
book keeping properly.  

 

Regardless the above I am keen to explore this alternative approach..

 

-          Jouni

 

 

From: detnet [mailto:detnet-bounces@ietf.org] On Behalf Of Lou Berger
Sent: Wednesday, February 7, 2018 17:00 PM
To: Pascal Thubert (pthubert) <pthubert@cisco.com
<mailto:pthubert@cisco.com> >; detnet@ietf.org <mailto:detnet@ietf.org> 
Subject: Re: [Detnet] IPv6 encapsulation in dataplane doc

 

Pascal/all,

At the last interim a proposal was made to simplify IP processing, at least
for the initial detnet solution, by leaving PREF to the subnet/transport
layers (i.e., TSN and MPLS) and providing DetNet flow identification based
on typical IP 5-tuple perhaps + dscp. This approach has several benefits
beyond simplification, notably it will work for both ipv4 and IPv6, and
doesn't require any modification to encapsulation / formats.

It would be really valuable to get feedback from the whole working group if
this simplification is acceptable or has unacceptable limitations.

Lou

On February 7, 2018 8:28:02 AM "Pascal Thubert (pthubert)"
<pthubert@cisco.com <mailto:pthubert@cisco.com> > wrote:

Dear all

 

This is about the IPv6 encapsulation and more precisely

 

                        Therefore, if a DetNet-aware end system only
   inserted the DetNet Destination Option into the IPv6 but e.g., a
   DetNet Edge node is configured to enforce an explicit route for the
   IPv6 packet using a source routing header, then it has no other
   possibility than add an outer tunneling IPv6 header with required
   extension headers in it.  The processing of IPv6 packets in a DetNet
   Edge node is discussed further in Section 6.4.1
<https://tools.ietf.org/html/draft-ietf-detnet-dp-sol-01#section-6.4.1> .

 

 

With the current spec, a source sends a DetNet packet as

 

                    +---------------------------------+

                    |                                 |

                    |           DetNet Flow           |

                    |             Payload             |

                    |                                 |

                    /---------------------------------\

                    H   Optional DetNet DstOpt Hdr    H

                    \---------------------------------/

                    |          IPv6 header            |

                    |     (with set Flow label)       |

                    +---------------------------------+

 

And then the ingress node needs to re-encapsulate as

 
                    +---------------------------------+
                    |                                 |
                    |           DetNet Flow           |
                    |             Payload             |
                    |                                 |
                    /---------------------------------\
                    H        DetNet DstOpt Hdr        H

                    \---------------------------------/

                    |          IPv6 header            |

                    |     (with set Flow label)       |

                    +=================================+

                    |          Routing header         |
                    /---------------------------------\
                    H        DetNet DstOpt Hdr        H
                    \---------------------------------/
                    |          IPv6 header            |
                    |     (with set Flow label)       |
                    +---------------------------------+

 

This creates a duplication of the DetNet Destination Option.

 

There are alternatives 

 

a)  whereby the packet is tunneled from the source to the detnet ingress,
and based on its state the DetNet ingress accepts the packet, processes it
and then resends it. The tunneled version of this could be:

 

                    +---------------------------------+

                    |                                 |

                    |           DetNet Flow           |

                    |             Payload             |

                    |                                 |

                    +---------------------------------+

                    |          IPv6 header            |

                    |   (dest = final destination)    |

                    /=================================\

                    H   Optional DetNet DstOpt Hdr    H

                    \---------------------------------/

                    |          IPv6 header            |

                    |   (dest = DetNet ingress edge)  |

                    |     (with set Flow label)       |

                    +---------------------------------+

 

Which allows the ingress to tunnel to the egress as follows:

                    +---------------------------------+

                    |                                 |

                    |           DetNet Flow           |

                    |             Payload             |

                    |                                 |

                    +---------------------------------+

                    |          IPv6 header            |

                    |      (to final destination)     |

                    +=================================+

                    |          Routing header         |
                    /---------------------------------\

                    H   Optional DetNet DstOpt Hdr    H

                    \---------------------------------/

                    |          IPv6 header            |

                    |   (dest = DetNet egress edge)   |

                    |     (with set Flow label)       |

                    +---------------------------------+

 

 

b)  whereby the PREF is done by the end nodes and the tunnel is transport
only, meaning that there are 2 tunnels A and B and that the source sends
twice a packet like this:

 

                    +---------------------------------+

                    |                                 |

                    |           DetNet Flow           |

                    |             Payload             |

                    |                                 |

                    /---------------------------------\

                    H   Optional DetNet DstOpt Hdr    H

                    \---------------------------------/

                    |          IPv6 header            |

                    |   (dest = DetNet ingress edge X)|

                    |     (with set Flow label)       |

                    +---------------------------------+

 

And then the ingress node needs to re-encapsulate as

 
                    +---------------------------------+
                    |                                 |
                    |           DetNet Flow           |
                    |             Payload             |
                    |                                 |
                    /---------------------------------\
                    H        DetNet DstOpt Hdr        H

                    \---------------------------------/

                    |          IPv6 header            |

                    |   (dest = final destination)    |

                    |     (with set Flow label)       |

                    +=================================+

                    |          Routing header         |
                    +---------------------------------+
                    |          IPv6 header            |
                    |   (dest = DetNet egress edge X) |
                    |     (with set Flow label)       |
                    +---------------------------------+

 

Cheers,

 

Pascal

_______________________________________________
detnet mailing list
detnet@ietf.org <mailto:detnet%40ietf.org> 
https://www.ietf.org/mailman/listinfo/detnet

v2.23.0 | Report a Bug | By Email