IETF Logo Mail Archive

Re: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023

"Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net> Mon, 02 January 2023 18:41 UTC

Return-Path: <zzhang@juniper.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BA464C14F74D; Mon, 2 Jan 2023 10:41:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.752
X-Spam-Level:
X-Spam-Status: No, score=-0.752 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, NORMAL_HTTP_TO_IP=0.001, NUMERIC_HTTP_ADDR=1.242, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=pBrgyvS6; dkim=pass (1024-bit key) header.d=juniper.net header.b=gA3lwcAL
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mVijcY6ERKQx; Mon, 2 Jan 2023 10:41:00 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DC6A1C14F749; Mon, 2 Jan 2023 10:41:00 -0800 (PST)
Received: from pps.filterd (m0108157.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 302ETtHZ025299; Mon, 2 Jan 2023 10:40:59 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=DStem2g2AJoGDbLIs7Hg5xHmoGzx1whBk7q+Rt8HJbg=; b=pBrgyvS6WIhIRLNC2VeRHzuW510HreJHcHUnc1KRyGnDJPpiWw2ys5FOfq7RTUZpzDm7 tedhuOpwyvADEyCiXIu/OkNQ1TkSFABLNRD8gVvXCSX1sI9EDwY/3AwlgaSyi20Zz02z Tu3W1UV0wIn04JoUb3YOyWKWvB0tW4VNxg20jaH9VlWvOT2zkVhnLS0uRiH0aYOJpJIl x3ZMN6c6rLYDuX5V5xodT0jzo/fitwtBZjRJVpAHSLFsjumjTYjWxnCgYM4rYAK7zafG Yc7BX1t8zgmc+qPhuJCsDWo8uPEMaw+LU7rrN9N3oOMo0hHb5vxoGkM8ewC/qTm3ywwo Bg==
Received: from cy4pr02cu008-vft-obe.outbound.protection.outlook.com (mail-westcentralusazlp17012020.outbound.protection.outlook.com [40.93.6.20]) by mx0a-00273201.pphosted.com (PPS) with ESMTPS id 3mtn7shqx7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 02 Jan 2023 10:40:58 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Qw+3m0yVhueE86kNQVGRBae0eroq8QdCukn+RYUATgTM2ROFZwjDMo5zYKJUZ7THf/sM/QVHoxrCtXO9XgoMrMVwCCt/PaUE272nLR+JpPSZUXeKwov4tbz4MERFnfT1n8iEWNqEgCDllIolyfnvQJcQLzUVDtZ4fwuQcxEF512hzWcwZzqF2frJUh2HcP9BxC7jLEovQcI3C9JTDJ4MRk5yV8gYYmFxN90HMJMBma+g+GJdj3PPsOSDCvza7tlhFhzonJGCyXSzec4SbNnlb0Q0MjEV13SL5VEGxkkKIntrEThLJ2DttKUdluEoCgycWZkTr2TYE+Q32+OEZTxTmg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=DStem2g2AJoGDbLIs7Hg5xHmoGzx1whBk7q+Rt8HJbg=; b=Sq9D8mMIAtRfdqtIqFD2i5Hw52zANV8b8TeaCc+P5yeohTu8L7+5S5Xi7GjqqIxlWIbd/qlswy3BCnwMQ3Vg3IL4IegOUAGM2+EsKjNrgVREk+1A3UGmdM38pDUuCLupc4QXdWD8h5tXAvKEG2JUC3haR3VXv9lNhqitqTA0S9RGo2NIvhcTkcgN4uySAaem3mQoHL+OQc5n1DP7jcnlv6f2WELx39dEtIF8Qh0P4c8HmlQRVd47HAX9uRhpSoWt0UtUNt5ToQOOgF1DSwpOV1cCBahPcT9dxHMdjxkjpLfFGFpNbj63kL3VaskHfAnkwaGNPuWbTJcWECKb5FxU9w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=DStem2g2AJoGDbLIs7Hg5xHmoGzx1whBk7q+Rt8HJbg=; b=gA3lwcALUPd8OmdbpDVYckhIFkdT1QMYLIQxsZskzIVgnszEh0w0kWdZ2svvRN/Kyqynq1BzIpQj8HRq/IDD1VCuDlcoQmMmF0AoTh1cMAMZXfEzhyGvt+KtDfJzxk9p+hc3Gr3H9tpeCAPU3EX/I4isSox3MDd4RAYuLg3BlAs=
Received: from BL0PR05MB5652.namprd05.prod.outlook.com (2603:10b6:208:6a::19) by BN7PR05MB4452.namprd05.prod.outlook.com (2603:10b6:406:f3::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5944.16; Mon, 2 Jan 2023 18:40:54 +0000
Received: from BL0PR05MB5652.namprd05.prod.outlook.com ([fe80::5e87:b845:992b:d1fa]) by BL0PR05MB5652.namprd05.prod.outlook.com ([fe80::5e87:b845:992b:d1fa%6]) with mapi id 15.20.5944.019; Mon, 2 Jan 2023 18:40:54 +0000
From: "Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net>
To: Robert Raszuk <robert@raszuk.net>, "Jeffrey (Zhaohui) Zhang" <zzhang=40juniper.net@dmarc.ietf.org>
CC: "idr@ietf.org" <idr@ietf.org>, Susan Hares <shares@ndzh.com>
Thread-Topic: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023
Thread-Index: AdkW+/cUE4SSf2yIQG6Qt4kQqqiyjwFBVkaAABdRDzAAC2SBgAAMpImAAH0fH1AAAgBFAAAHdoWw
Date: Mon, 02 Jan 2023 18:40:54 +0000
Message-ID: <BL0PR05MB5652454D272775CBAF1A2055D4F79@BL0PR05MB5652.namprd05.prod.outlook.com>
References: <BYAPR08MB4872B6B3A9AE7B008463795DB3E99@BYAPR08MB4872.namprd08.prod.outlook.com> <CABNhwV22EvjvWxkVb+geFOfLzej-c_NNSC6zJtRqj8SmG=FyLw@mail.gmail.com> <BL0PR05MB5652D74BD9EEEB3F934A86EED4F09@BL0PR05MB5652.namprd05.prod.outlook.com> <CABNhwV26XLSWnzu_BiGLjVDTSgdLvp6YL1uNpbOYKbd_LPFYbQ@mail.gmail.com> <CABNhwV2m5ux3dUGrORnXHDfiRyje-sdyidLXrn6+8N-WUABnoQ@mail.gmail.com> <BL0PR05MB5652C87F33851A2951B00FBCD4F79@BL0PR05MB5652.namprd05.prod.outlook.com> <CAOj+MMHSyUdYrrNgQLSfW_5H+momkodE2d_fiLArKM6VzaKBxA@mail.gmail.com>
In-Reply-To: <CAOj+MMHSyUdYrrNgQLSfW_5H+momkodE2d_fiLArKM6VzaKBxA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2023-01-02T18:40:55Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Method=Standard; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=0633b888-ae0d-4341-a75f-06e04137d755; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=5421c7a5-3219-4120-8b9a-c84e1f2618dc; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ContentBits=2
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BL0PR05MB5652:EE_|BN7PR05MB4452:EE_
x-ms-office365-filtering-correlation-id: 38091da5-f8f8-45d1-2526-08daecf0e139
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR05MB5652.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(366004)(136003)(376002)(39860400002)(346002)(396003)(451199015)(83380400001)(26005)(99936003)(966005)(71200400001)(66574015)(6506007)(9686003)(40140700001)(33656002)(66899015)(38070700005)(7696005)(122000001)(86362001)(5660300002)(166002)(53546011)(30864003)(186003)(38100700002)(55016003)(8936002)(66946007)(478600001)(2906002)(54906003)(316002)(4326008)(8676002)(66556008)(66446008)(66476007)(76116006)(41300700001)(64756008)(110136005)(52536014)(22166006)(579004); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/related; boundary="_004_BL0PR05MB5652454D272775CBAF1A2055D4F79BL0PR05MB5652namp_"; type="multipart/alternative"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL0PR05MB5652.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 38091da5-f8f8-45d1-2526-08daecf0e139
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jan 2023 18:40:54.0646 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 2zIyLthOA24TW96yrDcwCf+kD8YXGEc+qEmGQvGHYdLMAzc5e4p3SNpqUaRMxxyMF+tErjgw9IR9ESzLuMF8iQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR05MB4452
X-Proofpoint-ORIG-GUID: aWqEYVxTqf3vqjFYxCrOhKttJd141YMz
X-Proofpoint-GUID: aWqEYVxTqf3vqjFYxCrOhKttJd141YMz
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.923,Hydra:6.0.545,FMLib:17.11.122.1 definitions=2023-01-02_12,2022-12-30_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 malwarescore=0 clxscore=1011 spamscore=0 mlxscore=0 lowpriorityscore=0 suspectscore=0 adultscore=0 impostorscore=0 mlxlogscore=999 priorityscore=1501 bulkscore=0 phishscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2212070000 definitions=main-2301020168
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/JOx5UunT7yFUQ1NhNaGt1AnyNIg>
Subject: Re: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Jan 2023 18:41:06 -0000

Robert,

Since you can signal a label stack in an MPLS tunnel in a TEA attached to some routes to steer traffic after reaching that tunnel endpoint, you can do the same to signal a label stack (sure, it is an SR label stack) in that same MPLS tunnel for the purpose of steering traffic to that tunnel endpoint.

This does *not* exclude SR policy based options for other scenarios. When I said "forgot about ..." I meant, for the discussion, don't tangle in those things, just consider the above simple context.

Jeffrey



Juniper Business Use Only
From: Idr <idr-bounces@ietf.org> On Behalf Of Robert Raszuk
Sent: Monday, January 2, 2023 10:02 AM
To: Jeffrey (Zhaohui) Zhang <zzhang=40juniper.net@dmarc.ietf.org>
Cc: idr@ietf.org; Susan Hares <shares@ndzh.com>
Subject: Re: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023

[External Email. Be cautious of content]

Hi Jeffrey,

Zzh2> Forget about ODN. Forget about color. Forget about SR-Policy (and SR policy tunnel).

While you are clearly entitled to forget about SR standards, implementations and deployments, what you are effectively proposing is SR-like behaviour using TEA as a signalling vehicle for the MPLS explicit path between controller and ingress nodes.

That unfortunately has obvious consequences of implementations needed now to deal with it.

In any case I think it is now clear to everyone where are you going with this draft. It is up to IDR and SPRING WGs to decide if such work should be taken on.

Best,
Robert


On Mon, Jan 2, 2023 at 3:45 PM Jeffrey (Zhaohui) Zhang <zzhang=40juniper.net@dmarc.ietf.org<mailto:40juniper.net@dmarc.ietf.org>> wrote:
Hi Gyan,

You have many things tangled together unnecessarily. Please see zzh2> below.



Juniper Business Use Only
From: Gyan Mishra <hayabusagsm@gmail.com<mailto:hayabusagsm@gmail.com>>
Sent: Friday, December 30, 2022 9:22 PM
To: Jeffrey (Zhaohui) Zhang <zzhang@juniper.net<mailto:zzhang@juniper.net>>
Cc: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>; idr@ietf.org<mailto:idr@ietf.org>
Subject: Re: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023

[External Email. Be cautious of content]

Hi Jeffrey

Thinking about this further ..

You had mentioned that the core  SR source node needs the TEA endpoint to build the SID list label stack to push onto the packet.

Zzh2> The service ingress router (PE1 in the subject draft)  needs to know the egress service router (PE2). Normally it's the BGP protocol nexthop. TEA allows a different way to do that.
Zzh2> With the existing label stack sub-TLV in a TEA, you can allow traffic steering AFTER the traffic reaches the egress service router PE2 (this is optional - the TEA can simply specify a tunnel endpoint). The subject draft covers three things *in the context of using TEA*:
Zzh2> a) explain the use case for steering AFTER the tunnel endpoint PE2;
Zzh2> b) define a new label stack for steering TO the tunnel endpoint PE2;
Zzh2> c) define a compact way of encoding uniformed SIDs in a list

However you also have ODN On Demand Next Hop or automated steering 0.0.0.0/4<https://urldefense.com/v3/__http:/0.0.0.0/4__;!!NEt6yMaO-gk!D04hIgM3IpI6sp3zAgKMrz5Q9E9ULFXqciFTm81PcJIvB0vfH2f-jKK2TZhWVZfpdD6NiOXRwLZx8CbYYGE-Cg$> which both are endpoint independent and rely on the egress PE signaling color via TEA color extended community only that maps to the head end SR policy color to instantiate the steered path.

Zzh2> Forget about ODN. Forget about color. Forget about SR-Policy (and SR policy tunnel).
Zzh2> *In the context of using TEA* where a controller is simply using a TEA with an MPLS tunnel (w/o color  - note that it is optional) attached to the service routes, it can attach a label stack (per RFC9012)  for the purpose of steering AFTER the tunnel endpoint, and we're proposing to allow a new tunnel label stack (per this subject draft) for the purpose of steering TO the tunnel endpoint.
Zzh2> Simple as that.

So in that case Source nodes could push the SR label stack onto the packet before the NLRI label encoding.  Not true and now I realize why.

For SR policy since the TEA is used for both service label SAFI and for SR policy color to intent mapping even if endpoint independent you still need the color to intent mapping signaling NLRI encoding to happen before the label stack can be pushed onto the packet.

Even though RFC 9012 states that  the label stack is pushed onto the packet before the TEA  NLRI encoding I don't think any SR implementation follows that or SR would be broken.

Bottom line is RFC 9012 TEA color to SR policy intent mapping is apriori and must and has to occur prior to pushing the SR label stack onto the packet for the steering to work.  It's impossible to do the other way around.

Zzh2> You don't need to involve SR policy or color stuff (they can be useful in some cases but they are not mandatory). Please see above.
Zzh2> Jeffrey

Many Thanks!

Gyan

On Fri, Dec 30, 2022 at 3:20 PM Gyan Mishra <hayabusagsm@gmail.com<mailto:hayabusagsm@gmail.com>> wrote:
Hi Jeffrey

So in summary what you are saying is normally with MPLS RFC 3032 you push the label stack before the NLRI encoding since SR Policy TEA color / intent mapping does not come into play for vanilla mpls label stack domain.

However with SR-MPLS with SR Policy the TEA endpoint 2 tuple comes into play {color, endpoint}.  So now the core routers need to see the RFC 9012 TEA for the egress PE tunnel endpoint termination for the SR policy and since the BGP update has all the common path attributes per update packing we have the TEA sub TLV is in the same packet as the service label and so now we need NLRI encoding before the label stack is pushed onto the packet so the core router see the TEA tunnel endpoint info.  So this same concept update to RFC 9012 is applicable as well for inter-as steering to sites connected to the core steering past the core tunnel endpoint egress PE to the connected sites.  In that particular case would it be a CSC hierarchical VRF backbone carrier and customer carrier and in that case between the ASs you would have inter-as PE-PE link so the other side of PE-PE inter-as link would be the source PE for steering within the site 1 or 2.  So this would be like a seamless SR use case inter-as coloring to intent  mapping or translation per AS hop if the coloring is different per AS hop.  Also the L3 VPN service label NLRI encoding SAFI 128  would be extended end to end per inter-as options.

Below stick diagram

Site 1                            Core                  Site 2

PE1 - P - PE2 - PE3 - P - PE4 - PE5 - P - PE6

PE2-PE3 and PE4-PE5 are inter-as L3 vpn links / inter-as TE links

The SR source  node in each AS for the SR policy AS hop stitching for the end to end path built by the stateful PCE would be ..

Left to Right

PE1, PE3, PE5

Right to Left

PE6, PE4, PE2

So in the case going left to right LSP  where Site 2 PE5 is not capable of pushing the label stack, would it be PE4 not PE3 that would provide a proxy service acting as a source node to push the label stack onto the packet.  If this is within the same administrative domain, option C  end to end LSP it's  possible to leverage a different PE in another domain to push the label stack.  However if it's between administrative domains option B stitched LSP then you would more than likely not be able to leverage a PE in another domain to push the label stack.

Thanks

Gyan

On Fri, Dec 30, 2022 at 10:12 AM Jeffrey (Zhaohui) Zhang <zzhang@juniper.net<mailto:zzhang@juniper.net>> wrote:
Gyan,

Please see zzh> below.



Juniper Business Use Only
From: Idr <idr-bounces@ietf.org<mailto:idr-bounces@ietf.org>> On Behalf Of Gyan Mishra
Sent: Thursday, December 29, 2022 10:47 PM
To: Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>>
Cc: idr@ietf.org<mailto:idr@ietf.org>
Subject: Re: [Idr] WG adoption of draft-zzhang-idr-tunnel-encapsulation-label-stack-01 - 12/23/2022 to 1/13/2023

[External Email. Be cautious of content]

Hi Jeffrey

I read the draft and have questions related to the reason for the two new Segment sub-tlv to encode a segment list in compact format.

I read through the thread on the comments from Robert and I have similar questions which I will reiterate to help get to the goal or objective of the draft which is confusing to the reader.

Let's first understand and agree on the label stack encoding for MPLS and SR-MPLS.

Let's start with standard MPLS Label Stack RFC 3032.  So with RFC 3032 you have transport label TL and then the L2 or L3 VPN service labels Bottom of Stack labels with S bit set.

RFC 6790 defines the Entropy label EL and Entropy Label Indicator ELI encoded {TL, ELI, EL, SL} where SL is the service label with S bit set.

The way I read RFC 8660 SR-MPLS section 2.7 the label stack for steering is imposed on the packet where the TL would normally be placed on the SR source node once the SR Policy BSID is popped and the Candidate path defining the SID list is bound to the forwarding plane.

RFC 8662 SR Entropy Label section 4 shows the ERLD and in this case you can see as well the SR label stack imposed on the packet once the BSID is popped on the source node TL is now replaced with SR label stack {SR label stack, ELI, EL, SL}  where SL is the service label.

So now if we agree on the MPLS and SR-MPLS label stack encoding we can discuss the draft further below.

Section 1 talks about traffic steering after the tunnel endpoint.  SR policy defines a 2 tuple {color, endpoint} so the endpoint is the egress PE loopback tunnel endpoint which is defined in the TEA for SR Policy.  Section 8.4 of RFC 9256 defines the per destination SR policy color / intent mapping where egress PE endpoint signals VPN overlay TEA color to ingress PE SR policy color to intent mapping to instantiate the steering path.

Section 1



Specifically, the label stack in the sub-TLV is to be pushed BEFORE any other labels are pushed. This may sound counter-intuitive, in that if a label stack (e.g. for Segment Routing) is to be used to steer traffic to the tunnel endpoint, the stack should be pushed AFTER other labels (e.g. the label embedded in the NLRI).¶<https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/html/draft-zzhang-idr-tunnel-encapsulation-label-stack-01*section-1-3__;Iw!!NEt6yMaO-gk!HzeO33AdrD3O3NiFWMBgU3A6fRX950PEEJLfXjbSy0Y6UvoF1tjn5eJwjO6e6YCEq4nK9ENqhKlCa0XSa3EzzQ$>



Why would this be different for SR-MPLS as compare to MPLS and from the above review of the label stack encoding as SR-MPLS is reusing the MPLS data plane the label stack encoding should be the same.



AFAIK I think the SR label stack should still be pushed before the NLRI labels are pushed. Why would that be any different??



I don't understand the statement below.  Steering is from the SR source node to egress PE loopbacks tunnel endpoint. What other steering is there past the egress PE tunnel endpoint?

Zzh> If you're talking about steering TO the (core/base) tunnel endpoint (which is the egress PE), you need to push the corresponding label AFTER you push the NLRI (service) label (so that the core routers see the tunnel label instead of service label). That's why I said it is counter-intuitive to push the labels BEFORE pushing service label, and why we need to clarify it is for steering AFTER the endpoint.

Zzh> For traffic steering AFTER the endpoint, it is explained as following in the draft:
                 controller
                .          .
               .            .
    site1 --- PE1 -------- PE2 --- site2

   Two sites are connected to two PEs respectively, and traffic steering
   is desired within each site not just among the PEs.  While PE2 could
   push the label stack used for steering within site2, there may be
   situations where PE2 is not a device capable of pushing a large label
   stack so PE1 is tasked with pushing the label stack that is used
   after the tunnel end point PE2, within site2.

Zzh> Notice the red text "within site2" (i.e., AFTER tunnel endpoint PE2). Note that the service label mentioned earlier could mean "pop and switch out of an interface", which means there could be labels after that service label, which were pushed BEFORE the service label was pushed.

Two sites are connected to two PEs respectively, and traffic steering is desired within each site not just among the PEs. While PE2 could push the label stack used for steering within site2, there may be situations where PE2 is not a device capable of pushing a large label stack so PE1 is tasked with pushing the label stack that is used after the tunnel end point PE2, within site2.

All PEs in the SR domain are ingress/egress PE thus all PEs as they can all be source nodes they would have to be capable of pushing the label stack onto the packet.  In most SR deployments a stateful PCE is used and the source node is programmed to push the label stack onto the packet by the stateful PCE.  In this stateful PCE case the SR source node instructed by the PCE still has to push the label stack for steering onto the packet.  So if an SDN controller / PCE is used the same predicament the source node still as instructed by the SDN controller has to push the label stack onto the packet for steering.

So no matter what the SR source node has to be capable of pushing the label stack onto the packet.

Zzh> Please see purple text above and notice the word "large".
Zzh> Also note that I did not come up with this use case or corresponding mechanism. I found it counter-intuitive and want to document what I found out by offline email inquries, so that it will help other people and so that the feature could be more widely used.
Zzh> Jeffrey

I have more questions but I think this is a good start and will help steer tbe discussion.

Kind Regards

Gyan

On Fri, Dec 23, 2022 at 1:37 PM Susan Hares <shares@ndzh.com<mailto:shares@ndzh.com>> wrote:
This begins a 3 week WG adoption and IPR call for draft-zzhang-idr-tunnel-encapsulation-label-stack-01.txt
https://datatracker.ietf.org/doc/draft-zzhang-idr-tunnel-encapsulation-label-stack/<https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/draft-zzhang-idr-tunnel-encapsulation-label-stack/__;!!NEt6yMaO-gk!HzeO33AdrD3O3NiFWMBgU3A6fRX950PEEJLfXjbSy0Y6UvoF1tjn5eJwjO6e6YCEq4nK9ENqhKlCa0W1VfX5mA$>

The Authors should send an IPR statement regarding this draft.


   RFC 9012 defines an MPLS Label Stack sub-TLV for Tunnel Encapsulation
   Attribute, and specifies that it is to be pushed BEFORE other labels.
   This document clarifies the use case for that, defines a new Tunnel
   Label Stack sub-TLV for a label stack to be pushed AFTER other labels
   (e.g., the label embedded in the NLRI for a labeled address family,
   and/or the stack in an MPLS Label Stack sub-TLV), and defines two new
   Segment sub-TLVs to encode a segment list in a compact format.

The IDR shepherd for this draft is Jie Dong.

Cheerily, Sue

_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr<https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/idr__;!!NEt6yMaO-gk!HzeO33AdrD3O3NiFWMBgU3A6fRX950PEEJLfXjbSy0Y6UvoF1tjn5eJwjO6e6YCEq4nK9ENqhKlCa0XfNuqLTw$>
--

[Image removed by sender.]<https://urldefense.com/v3/__http:/www.verizon.com/__;!!NEt6yMaO-gk!HzeO33AdrD3O3NiFWMBgU3A6fRX950PEEJLfXjbSy0Y6UvoF1tjn5eJwjO6e6YCEq4nK9ENqhKlCa0WSFAsGuQ$>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

--

[Image removed by sender.]<https://urldefense.com/v3/__http:/www.verizon.com/__;!!NEt6yMaO-gk!D04hIgM3IpI6sp3zAgKMrz5Q9E9ULFXqciFTm81PcJIvB0vfH2f-jKK2TZhWVZfpdD6NiOXRwLZx8CbixlAAHQ$>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

--

[Image removed by sender.]<https://urldefense.com/v3/__http:/www.verizon.com/__;!!NEt6yMaO-gk!D04hIgM3IpI6sp3zAgKMrz5Q9E9ULFXqciFTm81PcJIvB0vfH2f-jKK2TZhWVZfpdD6NiOXRwLZx8CbixlAAHQ$>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr<https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/idr__;!!NEt6yMaO-gk!BLUOm2uEdLPhYCCY0iACTMpYOD--fWHNRRdGoXnHDtfkv5KGbcuMeFyhmFv1sp_Vjkzx90p7fDhIJVT5$>

v2.23.0 | Report a Bug | By Email