Re: [Detnet] IPv6 encapsulation in dataplane doc
Lou Berger <lberger@labn.net> Sun, 11 February 2018 21:27 UTC
Return-Path: <lberger@labn.net>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 965201271FD for <detnet@ietfa.amsl.com>; Sun, 11 Feb 2018 13:27:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (768-bit key) header.d=labn.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FPgZA1w8jMBG for <detnet@ietfa.amsl.com>; Sun, 11 Feb 2018 13:26:59 -0800 (PST)
Received: from outbound-ss-1812.hostmonster.com (gproxy1-pub.mail.unifiedlayer.com [69.89.25.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CF1E61271DF for <detnet@ietf.org>; Sun, 11 Feb 2018 13:26:59 -0800 (PST)
Received: from cmgw4 (cmgw5 [10.0.90.85]) by gproxy1.mail.unifiedlayer.com (Postfix) with ESMTP id 5B349175AF1 for <detnet@ietf.org>; Sun, 11 Feb 2018 14:26:56 -0700 (MST)
Received: from box313.bluehost.com ([69.89.31.113]) by cmgw4 with id 9ZSs1x00G2SSUrH01ZSv1m; Sun, 11 Feb 2018 14:26:56 -0700
X-Authority-Analysis: v=2.2 cv=G85sK5s5 c=1 sm=1 tr=0 a=h1BC+oY+fLhyFmnTBx92Jg==:117 a=h1BC+oY+fLhyFmnTBx92Jg==:17 a=N659UExz7-8A:10 a=Op4juWPpsa0A:10 a=wU2YTnxGAAAA:8 a=48vgC7mUAAAA:8 a=AUd_NHdVAAAA:8 a=mCmARWXzqXCyBV09k24A:9 a=TGvJlnz36NI0SBLX:21 a=PsnyW0ewK0YaXDbM:21 a=pILNOxqGKmIA:10 a=Yz9wTY_ffGCQnEDHKrcv:22 a=w1C3t2QeGrPiZgrLijVG:22
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=labn.net; s=default; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version :Date:Message-ID:From:References:Cc:To:Subject:Sender:Reply-To:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=acXlPe+TkTOdWkxkZZX/GGzQeZYZ3JIv01EoIkpJcgQ=; b=P/Gju1h7/QK0VjmblZeVwEx9eW Gbg1bVbex6LGhJFnrbzImQHWQxrAu/d9Ery7QDZi6tjmhlCjpfPd4goNyvf6DnPgO3QgBJwk/ocmU V+jGJlo1nGeVIHfa9FG+Hec95;
Received: from pool-100-15-86-101.washdc.fios.verizon.net ([100.15.86.101]:34056 helo=fs2.dc.labn.net) by box313.bluehost.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.89_1) (envelope-from <lberger@labn.net>) id 1ekz9A-003JLy-AE; Sun, 11 Feb 2018 14:26:52 -0700
To: Jouni <jouni.nospam@gmail.com>
Cc: "Pascal Thubert (pthubert)" <pthubert@cisco.com>, detnet@ietf.org
References: <cff50c52d2f945cfa8eff149f5242fb0@XCH-RCD-001.cisco.com> <16170c78f30.27d3.9b4188e636579690ba6c69f2c8a0f1fd@labn.net> <22c101d3a0bc$5795b080$06c11180$@gmail.com> <b17a1c79-010d-b4a0-aa07-8182b72f2577@labn.net> <00A9AB24-830A-46C7-B3DB-5C17D2AC91EC@gmail.com>
From: Lou Berger <lberger@labn.net>
Message-ID: <b9c9fe85-fbd9-9859-51ca-27c9bda061a5@labn.net>
Date: Sun, 11 Feb 2018 16:26:51 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
In-Reply-To: <00A9AB24-830A-46C7-B3DB-5C17D2AC91EC@gmail.com>
Content-Type: text/plain; charset="windows-1252"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - box313.bluehost.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - labn.net
X-BWhitelist: no
X-Source-IP: 100.15.86.101
X-Exim-ID: 1ekz9A-003JLy-AE
X-Source:
X-Source-Args:
X-Source-Dir:
X-Source-Sender: pool-100-15-86-101.washdc.fios.verizon.net (fs2.dc.labn.net) [100.15.86.101]:34056
X-Source-Auth: lberger@labn.net
X-Email-Count: 3
X-Source-Cap: bGFibm1vYmk7bGFibm1vYmk7Ym94MzEzLmJsdWVob3N0LmNvbQ==
X-Local-Domain: yes
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/hsZJGllKs_ATDq675SCGMLgoHzA>
Subject: Re: [Detnet] IPv6 encapsulation in dataplane doc
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 11 Feb 2018 21:27:01 -0000
hi, On 02/11/2018 03:06 PM, Jouni wrote: > > Hi, > > Inline.. > >> On 09 Feb 2018, at 18:23, Lou Berger <lberger@labn.net> wrote: >> >> Hi Jouni, >> >> >> On 02/08/2018 04:08 AM, Jouni wrote: >>> Hi, >>> >>> >>> >>> Yes, we discussed this to an extent in the last call. I’ve been thinking >>> this a bit more lately (cross country skiing conditions have been great >>> thus you got a lot of time while on the skiing tracks ;) Few >>> concerns/points to think I see here are: >> >> I'm jealous! >> >>> >>> * End systems cannot participate to DetNet service layer packet >>> elimination & duplication business. If they still do e.g. using DetNet >>> DstOpt that is separate from subnet/transport layer provided service. >> >> True, end station participation in PREF wouldn't be possible in this >> simplified approach for IP, but the end stations *could* still >> participate in the equivalent function provided by a sub-net layer such >> as TSN. So end to end detnet traffic protection is not possible, but it >> doesn't mean it can't be provided by lower network layers. The gain >> here is a simplified and unified IP solution and simplified host >> processing/support, albeit with a loss of one of the three end to end >> detnet service attributes. > > Yes, that’s true (as I already clarified in my latest mail to Pascal). > yes. It's good for all to remember that DetNet is just as much (if not more) about supporting explicit routes with congestion protection and latency control.... > >>> * Different subnet/transport layer segments in the DetNet domain are >>> likely to use their own sequencing and duplication & elimination >>> solutions. I am not sure how independent those will be e.g., is the >>> sequence numbering unified across or only per segment. The former is not >>> IMO easy and the latter easily reduces to single points between segments >>> to handle number book keeping properly. >> >> Agreed. The question for the WG is this a reasonable compromise in >> order to in our *initial* solution defined by the WG. -- Nothing says >> we can't come back and improve on this in the future, but it will allow >> us to get *something* useful defined with less complexity. > > I would first specify the required steps that make IP as-is work within one subnet/transport layer segment. That should be an achievable goal with a limitation of e.g. a single interconnection point between subnet/transport layer segments of different types/solutions. > sure. as long as one of the 'attached stations' can be a router. > After that look into solving multiple interconnection points.. and there the L4 path that Pascal mentioned or that IPv6 DetNet DstOpt of mine could be way forward. > yes, this would be good follow on work... Cheers, Lou > - Jouni > > >> >> >>> >>> Regardless the above I am keen to explore this alternative approach.. >>> >> >> Great - look forward to hear the results! >> Lou >> >>> >>> - Jouni >>> >>> >>> >>> >>> >>> *From:* detnet [mailto:detnet-bounces@ietf.org] *On Behalf Of *Lou Berger >>> *Sent:* Wednesday, February 7, 2018 17:00 PM >>> *To:* Pascal Thubert (pthubert) <pthubert@cisco.com>; detnet@ietf.org >>> *Subject:* Re: [Detnet] IPv6 encapsulation in dataplane doc >>> >>> >>> >>> Pascal/all, >>> >>> At the last interim a proposal was made to simplify IP processing, at >>> least for the initial detnet solution, by leaving PREF to the >>> subnet/transport layers (i.e., TSN and MPLS) and providing DetNet flow >>> identification based on typical IP 5-tuple perhaps + dscp. This approach >>> has several benefits beyond simplification, notably it will work for >>> both ipv4 and IPv6, and doesn't require any modification to >>> encapsulation / formats. >>> >>> It would be really valuable to get feedback from the whole working group >>> if this simplification is acceptable or has unacceptable limitations. >>> >>> Lou >>> >>> On February 7, 2018 8:28:02 AM "Pascal Thubert (pthubert)" >>> <pthubert@cisco.com <mailto:pthubert@cisco.com>> wrote: >>> >>> Dear all >>> >>> >>> >>> This is about the IPv6 encapsulation and more precisely >>> >>> >>> >>> Therefore, if a DetNet-aware end system only >>> >>> inserted the DetNet Destination Option into the IPv6 but e.g., a >>> >>> DetNet Edge node is configured to enforce an explicit route for the >>> >>> IPv6 packet using a source routing header, then it has no other >>> >>> possibility than add an outer tunneling IPv6 header with required >>> >>> extension headers in it. The processing of IPv6 packets in a DetNet >>> >>> Edge node is discussed further in Section 6.4.1 >>> <https://tools.ietf.org/html/draft-ietf-detnet-dp-sol-01#section-6.4.1>. >>> >>> >>> >>> >>> >>> With the current spec, a source sends a DetNet packet as >>> >>> >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> /---------------------------------\ >>> >>> H Optional DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> And then the ingress node needs to re-encapsulate as >>> >>> >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> /---------------------------------\ >>> >>> H DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (with set Flow label) | >>> >>> +=================================+ >>> >>> | Routing header | >>> >>> /---------------------------------\ >>> >>> H DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> This creates a duplication of the DetNet Destination Option. >>> >>> >>> >>> There are alternatives >>> >>> >>> >>> a) whereby the packet is tunneled from the source to the detnet >>> ingress, and based on its state the DetNet ingress accepts the >>> packet, processes it and then resends it. The tunneled version of >>> this could be: >>> >>> >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> +---------------------------------+ >>> >>> | IPv6 header | >>> >>> | (dest = final destination) | >>> >>> /=================================\ >>> >>> H Optional DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (dest = DetNet ingress edge) | >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> Which allows the ingress to tunnel to the egress as follows: >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> +---------------------------------+ >>> >>> | IPv6 header | >>> >>> | (to final destination) | >>> >>> +=================================+ >>> >>> | Routing header | >>> >>> /---------------------------------\ >>> >>> H Optional DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (dest = DetNet egress edge) | >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> >>> >>> b) whereby the PREF is done by the end nodes and the tunnel is >>> transport only, meaning that there are 2 tunnels A and B and that >>> the source sends twice a packet like this: >>> >>> >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> /---------------------------------\ >>> >>> H Optional DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (dest = DetNet ingress edge X)| >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> And then the ingress node needs to re-encapsulate as >>> >>> >>> >>> +---------------------------------+ >>> >>> | | >>> >>> | DetNet Flow | >>> >>> | Payload | >>> >>> | | >>> >>> /---------------------------------\ >>> >>> H DetNet DstOpt Hdr H >>> >>> \---------------------------------/ >>> >>> | IPv6 header | >>> >>> | (dest = final destination) | >>> >>> | (with set Flow label) | >>> >>> +=================================+ >>> >>> | Routing header | >>> >>> +---------------------------------+ >>> >>> | IPv6 header | >>> >>> | (dest = DetNet egress edge X) | >>> >>> | (with set Flow label) | >>> >>> +---------------------------------+ >>> >>> >>> >>> Cheers, >>> >>> >>> >>> Pascal >>> >>> _______________________________________________ >>> detnet mailing list >>> detnet@ietf.org <mailto:detnet%40ietf.org> >>> https://www.ietf.org/mailman/listinfo/detnet >>> >> > >
- [Detnet] IPv6 encapsulation in dataplane doc Pascal Thubert (pthubert)
- Re: [Detnet] IPv6 encapsulation in dataplane doc Lou Berger
- Re: [Detnet] IPv6 encapsulation in dataplane doc Jouni
- Re: [Detnet] IPv6 encapsulation in dataplane doc Jouni
- Re: [Detnet] IPv6 encapsulation in dataplane doc Pascal Thubert (pthubert)
- Re: [Detnet] IPv6 encapsulation in dataplane doc Jouni
- Re: [Detnet] IPv6 encapsulation in dataplane doc Lou Berger
- Re: [Detnet] IPv6 encapsulation in dataplane doc Jouni
- Re: [Detnet] IPv6 encapsulation in dataplane doc Lou Berger
- Re: [Detnet] IPv6 encapsulation in dataplane doc Jouni
- Re: [Detnet] IPv6 encapsulation in dataplane doc Pascal Thubert (pthubert)
- Re: [Detnet] IPv6 encapsulation in dataplane doc Lou Berger
- Re: [Detnet] IPv6 encapsulation in dataplane doc Balázs Varga A
- Re: [Detnet] IPv6 encapsulation in dataplane doc Andrew G. Malis
- Re: [Detnet] IPv6 encapsulation in dataplane doc Andrew G. Malis
- Re: [Detnet] IPv6 encapsulation in dataplane doc Pascal Thubert (pthubert)
- Re: [Detnet] IPv6 encapsulation in dataplane doc Lou Berger
- Re: [Detnet] IPv6 encapsulation in dataplane doc Balázs Varga A