Re: [Idr] //FW: I-D Action: draft-ietf-idr-ts-flowspec-srv6-policy-02.txt
Nat Kao <pyxislx@gmail.com> Mon, 20 March 2023 10:11 UTC
Return-Path: <pyxislx@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DB6DC1527AE for <idr@ietfa.amsl.com>; Mon, 20 Mar 2023 03:11:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BCBSHmqHEqTE for <idr@ietfa.amsl.com>; Mon, 20 Mar 2023 03:11:46 -0700 (PDT)
Received: from mail-ed1-x52f.google.com (mail-ed1-x52f.google.com [IPv6:2a00:1450:4864:20::52f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E8D8C1527A0 for <idr@ietf.org>; Mon, 20 Mar 2023 03:11:46 -0700 (PDT)
Received: by mail-ed1-x52f.google.com with SMTP id o12so44427566edb.9 for <idr@ietf.org>; Mon, 20 Mar 2023 03:11:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1679307105; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=lvGqGMutKinwUiX77bnpxB+kJKQzTtSpxAYbPQhoKoU=; b=l/TK2lpthX6oeqtqt9ixc4WV5VLZm2t5V5YCu0YQakYXqoADNmOnmxDge2vmrt+z5t B560hMZdL2cV0xEJWTCvAZXQt2KX5ooQlQ4IazslmujwYJRxiku27bKonVCktJ5tZAfz m49g5Y5j1WsDVnJdVmNwn6oleH8ZPCnRrugK59kDGk1imFkAVVKdEyxEk8qJJLJ80Nws 0JMljss/Asitkj/mUJlnDnOLepce4x5n8H10MbOm74VDzmFcjkEK9q4Ibzgge8+aV/s/ Fxx/srH6JWjZyF6NOzjsIIpixgS7WtSYPA1VWNrDOCCBTVeFJRs8UyhvzvZvg70G+NdS k5Kg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1679307105; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=lvGqGMutKinwUiX77bnpxB+kJKQzTtSpxAYbPQhoKoU=; b=O+T5qGEAa8RDXIs4vpPt3wHqow5bYOnDXXrYLu6swjKdnendhRqYpSqNcSk6oFOOaO Qlztqx7Ed4GDbF8Yz0ls1vClqnIL1je4GRIVfQwVrtxG0DUeMKQ+kqqRRuYDsYT1rZXp pitajKgA8MmkjHF8mYL7b8nDFUNYOegBFOlQlMz6mYoEorhDKip7282fGsMkSkN6O5zy 3sdmJm0d2wbCLA/8kV2NkL+uoDcRqTAfgUTSPEE8jQhdzNXwLE+gxkDTwwPhIBpuILt5 2LBUqdLUD+2BtorWIC6OJFm0pW98TMdTmCj4gl69hKSGrG3kejHZTfMl2oTLC35IHFSr njHA==
X-Gm-Message-State: AO0yUKV4DHecsqxaQZvfaLnlPrERSrFX7BaCSu4BA3giAXAwaOc6dAXM mbqCk+A0asJIAgRAVB+GUR+oU8Cr3ZjG2pNYEbc=
X-Google-Smtp-Source: AK7set+8Nc1i1piGxWyKZQCekUNHskKKLM0q0uBbP/Mm3Kg3BK82q4WEhSnEbH2QXsNl432hKoOiFgStnl+vuk1tW/s=
X-Received: by 2002:a17:906:bc9a:b0:8af:3e28:acc with SMTP id lv26-20020a170906bc9a00b008af3e280accmr3387777ejb.1.1679307104809; Mon, 20 Mar 2023 03:11:44 -0700 (PDT)
MIME-Version: 1.0
References: <2b096417ff79ca0-00060.Richmail.00009020664026387567@chinamobile.com>
In-Reply-To: <2b096417ff79ca0-00060.Richmail.00009020664026387567@chinamobile.com>
From: Nat Kao <pyxislx@gmail.com>
Date: Mon, 20 Mar 2023 18:11:08 +0800
Message-ID: <CAKEJeo6RCQTLEkNx_jpcno-yBaacmMnLgnoVKDbDx8GbvFiL4A@mail.gmail.com>
To: 姜文颖 <jiangwenying@chinamobile.com>
Cc: "idr@ietf.org" <idr@ietf.org>, Susan Hares <shares@ndzh.com>, Zhuangshunwan <zhuangshunwan@huawei.com>, Yisong Liu <liuyisong@chinamobile.com>, "gyan.s.mishra@verizo" <gyan.s.mishra@verizon.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/HkG6d2QaxQJIrhfqGsGvi3ramPw>
Subject: Re: [Idr] //FW: I-D Action: draft-ietf-idr-ts-flowspec-srv6-policy-02.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2023 10:11:47 -0000
Hi, Wenying. Thanks for the updates, I believe all comments are addressed. Details below: On Mon, Mar 20, 2023 at 4:18 PM 姜文颖 <jiangwenying@chinamobile.com> wrote: > > Hi, Nat > > Thank you very much for your comments. > > Please check my comments inline below with [Wenying]. > > > Many Thanks, > > Wenying > > > > > > From: Nat Kao [mailto:pyxislx@gmail.com] > Sent: Thursday, March 9, 2023 10:46 PM > To: Zhuangshunwan <zhuangshunwan@huawei.com> > Cc: Susan Hares <shares@ndzh.com>; idr@ietf.org; Nat Kao (PyxisLX) <pyxislx@gmail.com> > Subject: Re: [Idr] draft-jiang-idr-ts-flowspec-srv6-policy-07.txt - (8/17/2022 to 8/31/2022 > > > > Hi, Shunwan. > > > > First of all, thank you so much for including the SR-MPLS use case. > > After carefully reading, I have a few suggestions: > 1. It would be pretty useful if we also covered "Flow-spec Redirect to IPv6" descriptions in Chapter 4. > In RFC9256, there were no limitations on the AFI/SAFI of the endpoints. > We could steer traffic into SR-Policies constructed with SR-MPLS SID Lists with either IPv4 or IPv6 endpoints. > So we could have a unified steering framework for both IPv4/IPv6 endpoints and SR-MPLS/SRv6 SID Lists. > It also added flexibility in dual-stacked SR-MPLS networks. > > [Wenying] Agree with you. [NK] Thanks! > > 2. It would be worth mentioning the case regarding multiple Color Extended communities. > We could refer this behavior to Section 8.4.1 of RFC9256: > "When a BGP route has multiple Color Extended communities each with a valid SR Policy, the BGP process installs the route on the SR Policy giving preference to the Color Extended community with the highest numerical value." > > [Wenying] Agreed. We have added the above text to page 5 of the draft. https://datatracker.ietf.org/doc/draft-ietf-idr-ts-flowspec-srv6-policy/02/. [NK] Got it! My apologies for missing this. > > 3. [Optional] A pretty minor one: It would be better to unify the terms "SR List" and "SID List" > We could align the terms with RFC9256(SID List). > > [Wenying] Agreed, We will use the uniform term "SID List" in the draft. [NK] Thanks! > > > The following might be out of the scope of this draft, but worth mentioning: > 1. [Optional] Should we consider Flow-spec routes with multiple "Redirect to IPv4/IPv6" extended communities? > If yes, what kind of behavior should be defined? > For example, we might want to: > -Load balance traffic into multiple SR-Policies with different endpoints > OR > -Ignore the Color Extended community in this case(resulting the same behavior defined in "draft-ietf-idr-flowspec-redirect-ip") > > 2. [Optional] Should we consider the case defined in "draft-ietf-idr-flowspec-redirect-ip" with mixed "Redirect to VRF" and "Redirect to IPv4/IPv6" actions? > > If yes, I would suggest that we should ignore Color Extended communities in this case since most implementations had only one shared SR-Policy table. > It might not be reasonable to have SR-Policies in different tables/VRFs currently. > > > > [Wenying] Agree with you that the above is beyond the scope of this draft. Perhaps we can discuss together afterwards to see if there is an opportunity to submit new drafts. [NK] Agreed. It can be addressed in other documents. Many Thanks, Nat [NK] > > > > Many Thanks. > > Nat > > > > > > On Mon, Mar 6, 2023 at 5:07PM Zhuangshunwan <zhuangshunwan@huawei.com> wrote: > > Hi Nat and All, > > > > As promised, we have added SR-MPLS use case in draft-ietf-idr-ts-flowspec-srv6-policy. > > > > Special thanks to Nat Kao for suggesting adding SR-MPLS use cases to this document. > > > > The IETF datatracker status page for this Internet-Draft is: > > https://datatracker.ietf.org/doc/draft-ietf-idr-ts-flowspec-srv6-policy/ > > > > There is also an htmlized version available at: > > https://datatracker.ietf.org/doc/html/draft-ietf-idr-ts-flowspec-srv6-policy-02 > > > > A diff from the previous version is available at: > > https://author-tools.ietf.org/iddiff?url2=draft-ietf-idr-ts-flowspec-srv6-policy-02 > > > > Any comments and suggestions are welcome! > > > > Best Regards, > > Shunwan > > > > > > From: Idr [mailto:idr-bounces@ietf.org] On Behalf Of Nat Kao > Sent: Wednesday, August 31, 2022 4:30 PM > To: Susan Hares <shares@ndzh.com> > Cc: idr@ietf.org > Subject: Re: [Idr] draft-jiang-idr-ts-flowspec-srv6-policy-07.txt - (8/17/2022 to 8/31/2022 > > > > Hi, Susan & WG. > > > > As an operator, I support WG adoption of this draft. > > This approach is very useful for on-demand traffic steering with specific/dynamic traffic patterns. > > > > My answers are inline: > > > > On Wed, Aug 17, 2022 at 10:59 PM Susan Hares <shares@ndzh.com> wrote: > > This begins a 2 week WG adoption call for draft-jiang-idr-ts-flowspec-srv6-policy-07.txt > > https://datatracker.ietf.org/doc/draft-jiang-idr-ts-flowspec-srv6-policy/ > > > > During your discussion of this draft, please consider: > > > > 1) Do you agree with extending 8955 and 8956 to carry the > > action bit [C] found for IPv4 and IPv6 found > > draft-ietf-idr-flowspec-redirect-ip-02.txt > > > > Figure 1 : Local Administrator > > > > 0 1 > > 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > | Reserved |C| > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > > > C = 0 – redirect original flow > > C = 1 – redirect copy of original flow > > > > This bit augments the Redirect to IP action in RFC8955 > > And RFC8956. > > > > > > Yes. > > > > 2) Do you agree with this document use of this feature > > in addition to draft-ietf-idr-flowspec-path-redirect > > https://datatracker.ietf.org/doc/draft-ietf-idr-flowspec-path-redirect/ > > > > See the following thread for a discussion of this in March: > > https://mailarchive.ietf.org/arch/msg/idr/HENTMEoiMJGmcMuVz7LTYclCSdw/ > > > > Yes, this approach provides a unified way for steering traffic into SR-policies using either SR-MPLS or SRv6 SID-lists. > > > > Note: As discussed before, the same mechanism can also be applied to policies with SR-MPLS SID-lists. > > https://mailarchive.ietf.org/arch/msg/idr/q0If1M-UgoeeM16HR-TXCSWRTAQ/ > > > > > > 3) Will this work help deployment of SRv6 networks? > > > > Yes. > > > > > > We’ll discuss this draft at the IDR interim on 8/29/2022. > > > > Cheerily, Susan Hares > > > > _______________________________________________ > Idr mailing list > Idr@ietf.org > https://www.ietf.org/mailman/listinfo/idr > > > > Regards, > > Nat > > > > > > > >