Re: [Detnet] on signaling the packet treatment vs. the flow/OAM
Greg Mirsky <gregimirsky@gmail.com> Thu, 28 July 2022 20:57 UTC
Return-Path: <gregimirsky@gmail.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB119C15C513 for <detnet@ietfa.amsl.com>; Thu, 28 Jul 2022 13:57:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X-_TIMIa_0mf for <detnet@ietfa.amsl.com>; Thu, 28 Jul 2022 13:57:01 -0700 (PDT)
Received: from mail-lj1-x233.google.com (mail-lj1-x233.google.com [IPv6:2a00:1450:4864:20::233]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23B88C15C50E for <detnet@ietf.org>; Thu, 28 Jul 2022 13:57:01 -0700 (PDT)
Received: by mail-lj1-x233.google.com with SMTP id h12so3182595ljg.7 for <detnet@ietf.org>; Thu, 28 Jul 2022 13:57:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc; bh=z/KTbsCBjYrMwEWELZX0WHLRsAYGNvODVtqWUuJbvGc=; b=IuBF/SI/CwgK6RB5vCvwdjdJxE+o2P15q1wH5CILyJni6GquaJRWsQXJ2qmHolijKo DcPZXOKxTI0ept1N4usaFjidptVlZXcwoNnXEqF2anI8bURJ3eP6a7EvpziroaNMRkaU Dsr5p3nLWbQKud6kQmTIxd/aoy0JiclOGvQh+PEiGTJM0/IBBb4Znd/i9VQRlxUQVxVb Mnu133zNhaxFgnoxJQh5wcrU50U4mTuss5hsC3w13Yxp3YJY5NREe0trOGs5vZJsXsu3 9pv0UpD/ZPX8Bb87B1J5mPISFQETJ7jDOVG7dbVsvJrWb2EeAWAX2TO/9125b/CZxtwu tEwQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc; bh=z/KTbsCBjYrMwEWELZX0WHLRsAYGNvODVtqWUuJbvGc=; b=bQ6jPVo/GeFYK0ARhsX029LKCXB3jd28WJaZqbpoa+GE/iCtUUd1UdfHMkHIAOCjae ZSfmktyF6ZYBaGQ+qKFyuU0Qd81jhw5cWOSC7O2/JZnOHHKz91u6DvrMWdWgBaOhIxKk T79UYmPDNpLedzckBNrlWvYSiyvmL2nBcl/BWoTN+x9QC+4dvVm1KoJh/mahiHptXx0B SAvs4EJd3MLLxotHWN9NuWcFEOaGv3fXDWep99rsuAdWe60I6M1dO+NP+dcMq1ooqERh UI0gwOuT0TsY6hqhGYxtKtkkyNSEGaCL3mY/x9HwAKJ/LVISG5F8cI98QnaEydjLyeWp XIUg==
X-Gm-Message-State: AJIora8qurFAdBdGRRCahlIeBsMBh5M2ldsyIG3w0TW/EEgx9xFIqMgd YezPQqNkyP8wY40iOWg/Q/dnVhC8FfQG8ZZVxUyU+uX+
X-Google-Smtp-Source: AGRyM1tdKDG2snqUQrOVqi/kMu5yWCnTSV1lWBGWanSzSnw3YKifmmnpNnpQIHKnKEAXqN2BeAyQcsl2+j9q4b2UjbE=
X-Received: by 2002:a2e:8956:0:b0:25e:c98:5f21 with SMTP id b22-20020a2e8956000000b0025e0c985f21mr196054ljk.453.1659041819099; Thu, 28 Jul 2022 13:56:59 -0700 (PDT)
MIME-Version: 1.0
References: <CO1PR11MB488192B11EF759264FB05614D8969@CO1PR11MB4881.namprd11.prod.outlook.com> <DM6PR19MB40422DD5B4BB7F0095AB87D583969@DM6PR19MB4042.namprd19.prod.outlook.com> <D7BF068C-3873-4A66-A39D-8FD8168C9C47@cisco.com>
In-Reply-To: <D7BF068C-3873-4A66-A39D-8FD8168C9C47@cisco.com>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Thu, 28 Jul 2022 16:56:47 -0400
Message-ID: <CA+RyBmVXXqr_A5ch3W8ThAGS3UPvtC_M3j+Tdo5yTf=P27y1JA@mail.gmail.com>
To: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
Cc: "Black, David" <David.Black=40dell.com@dmarc.ietf.org>, "detnet@ietf.org" <detnet@ietf.org>, "Black, David" <David.Black@dell.com>
Content-Type: multipart/alternative; boundary="0000000000004b878605e4e3c689"
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/VirZykg3P4M-yOY6w8P16hQm7JE>
Subject: Re: [Detnet] on signaling the packet treatment vs. the flow/OAM
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2022 20:57:04 -0000
Hi Pascal and David, thank you for a great discussion. I fully agree with David that active OAM must share fate with the monitored DetNet flow. Thus, all elements of IPv6 encapsulation that impact the treatment of a packet in the data path MUST be identical across the DetNet flow and corresponding active OAM. Where it gets tricky, in my opinion, is IPv6 HbH EH(s). I think that we need to look closely at which HbH EHs used by the particular DetNet flow MUST also be applied to the OAM test packets. It seems like we can do that analysis in, for example, the OAM Considerations section. WDYT? Regards, Greg On Thu, Jul 28, 2022 at 4:21 PM Pascal Thubert (pthubert) < pthubert@cisco.com> wrote: > Great point David, > > If one places an ECMP hash in a DetNet network he would better do that > consciously because the interaction with the DetNet service plane might be > tricky. > > The idea along a DetNet path is that there’s no such surprise as an > unexpected balancer. > > Adding a UDP layer just to obfuscate the inner traffic against such > unexpected activity looks like an overkill to me. > > The service layer tightly controls its distribution. All nodes comply to > DetNet. If DetNet says that the fate will depend on the tag, so it will be. > > Regards, > > Pascal > > > Le 28 juil. 2022 à 22:12, Black, David <David.Black= > 40dell.com@dmarc.ietf.org> a écrit : > > > > Hi Pascal, > > > > I'm not Greg, but nonetheless ... > > > > One can certainly tag packets with IPv6 hbh headers, but there's still a > concern for active OAM where the OAM traffic is a different flow that needs > to fate-share with the traffic flow of interest. Getting that fate-sharing > to work in the presence of flow spreading measures (e.g., ECMP hashes) is > possible, but subtle, and dependent on what the data plane is doing for > flow spreading (e.g., hash inputs, number of hash buckets). UDP > encapsulating all the traffic that needs to share fate is independent of > all that, and hence I'd characterize it as a more robust mechanism to > ensure fate sharing ... at the cost of the encapsulation and consequences > thereof (another instance of "no free lunch"). > > > > Thanks, --David > > > > -----Original Message----- > > From: detnet <detnet-bounces@ietf.org> On Behalf Of Pascal Thubert > (pthubert) > > Sent: Thursday, July 28, 2022 3:48 PM > > To: gregimirsky@gmail.com > > Cc: detnet@ietf.org > > Subject: [Detnet] on signaling the packet treatment vs. the flow/OAM > > > > > > [EXTERNAL EMAIL] > > > > Hello Greg: > > > > My point at the mike was that IPv6 allows you to tag packets with L3 > information (e.g., DetNet, but also routing topology / VRF for RPL, and all > those things SRv6 does) related to packet treatment without impacting the > upper layer information (UDP ports and all above UDP). > > > > > > It's actually cool to leave upper layer do and signal their stuff and > have DetNet signal its own stuff independently. > > This way we can tag all sorts of packets for the same treatment, whether > they are UDP or not, whether they are an app flow or OAM, etc... > > > > The way to do that in IPv6 is Extension Headers. This is the essence of > the proposal in > https://urldefense.com/v3/__https://datatracker.ietf.org/doc/html/draft-pthubert-detnet-ipv6-hbh-07__;!!LpKI!g764fAu3jINFXJra3JMCgLbYlGpnPnE5hkPRXlDq4G-_KTqxk9KMGMi3dTHijBEertf03WLsnoSG9kuqrjmdT9EpGukcymj4$ > [datatracker[.]ietf[.]org] which was done with OAM (and flow aggregation) > in mind. > > > > As it goes, the more we look at enhanced DetNet, the more tagging we > will need. DetNet should own and control the tags it operates own. The > mapping flow->tag is an ingress edge problem, just like tagging a VLAN is > in .1Q... Your OAM packet should be whatever OAM wants IoT to be, and the > ingress policy should apply the tag the DetNet network needs. > > > > Arguable, you could use UDP encaps as a tag. But is that the best tag? > It's far in the packet (see the discussion on how far ASICs look in the > packets) and heavy with information we do not need (the checksum is a MUST > in IPv6, do we have enough ports?, etc...). It's like taking a truck to > bring your loved one around the Cuomo lake. Works but maybe not the best > idea. > > > > All the best, > > > > Pascal > > > > > > > > > > > > _______________________________________________ > > detnet mailing list > > detnet@ietf.org > > > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/detnet__;!!LpKI!g764fAu3jINFXJra3JMCgLbYlGpnPnE5hkPRXlDq4G-_KTqxk9KMGMi3dTHijBEertf03WLsnoSG9kuqrjmdT9EpGgoSXTG4$ > [ietf[.]org] >
- [Detnet] on signaling the packet treatment vs. th… Pascal Thubert (pthubert)
- Re: [Detnet] on signaling the packet treatment vs… Black, David
- Re: [Detnet] on signaling the packet treatment vs… Pascal Thubert (pthubert)
- Re: [Detnet] on signaling the packet treatment vs… Greg Mirsky
- Re: [Detnet] on signaling the packet treatment vs… Tianran Zhou
- Re: [Detnet] on signaling the packet treatment vs… Pascal Thubert (pthubert)
- Re: [Detnet] on signaling the packet treatment vs… Pascal Thubert (pthubert)
- Re: [Detnet] on signaling the packet treatment vs… Pascal Thubert (pthubert)