IETF Logo Mail Archive

Re: [Idr] SRv6 Transposition for SAFI 76

"Rabadan, Jorge (Nokia - US/Sunnyvale)" <jorge.rabadan@nokia.com> Fri, 29 July 2022 20:17 UTC

Return-Path: <jorge.rabadan@nokia.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7BA73C157B40 for <idr@ietfa.amsl.com>; Fri, 29 Jul 2022 13:17:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.477
X-Spam-Level:
X-Spam-Status: No, score=-2.477 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_REMOTE_IMAGE=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nokia.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cHrR507aPC6J for <idr@ietfa.amsl.com>; Fri, 29 Jul 2022 13:17:03 -0700 (PDT)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2111.outbound.protection.outlook.com [40.107.220.111]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DC19C14F75F for <idr@ietf.org>; Fri, 29 Jul 2022 13:17:03 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UWbkn1tVp12JywHU+rRs0juarT7eYv9zU1MdLB7C5by8Ro8pcjr8OBnXLJ5lSV2m+fnCq/+1d4vnv6VJofuz9lSvUxYIAwrJ7k8BtooHdQZ/gq6mPKxb2LcwJNA8foWYAJdqdr64hI4tVraRV40KE/mcUmgFD0G4eCfSqo8QpnHEbJ478weYNRjc0V/sXdsVtHRMKBO++KmuN5DXpqI+08yxG49KegLo7H1HChHSXiqD0Ulo1XB8jU9e0Sj2Sdfwf4Mk1RnbaIHN4J56r5+p59x8fhwgtaQgVyBJTk1wN+6G+34NfFH77YQLbWogwzlCBr4isZ0rv2EzRb+dYWgYHg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=fW5dyk+El3VDiCmyYUpxI83iFLGw92XBWXGZu15m8Oc=; b=F2vzHmPtjMYk2kk/E7ClIKiLfW9iHQjqvOypAUsb/f69MUftl3KBqnzp4yGrf6uXoA+Pbvj36m+S2wExgK+f++Za/GCxw9tSIBvNtafIlcrYupW1DWy7D8f/j05YLeG7Wg/4TB6G3IhcqnM+1Q3D8hjJ2aa/aJGCPKi2JDfuB45P/dLixku83zguYYLIBJWd50wLO9SWg7gKewQCSDegrIV9jZuqTbprpdEJ9wxF9VczXFsKEJCLA9xv4ntCplpdfTCi2lyTEptVdiVxOFbRNH/7v+D+DIfZUtE62ZIcepez7f2Q9PlwFgB5JlI5HoNbQxawyucRGJdyq1YFmuMFyQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nokia.com; dmarc=pass action=none header.from=nokia.com; dkim=pass header.d=nokia.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nokia.onmicrosoft.com; s=selector1-nokia-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fW5dyk+El3VDiCmyYUpxI83iFLGw92XBWXGZu15m8Oc=; b=WdPa3ymb6KNqqAOeS2oU2tk+Nozq+z6j9LurCdAMVQHV8+yiUtRv6fQ6oKUbIS66TCzguuoAaKmAPY/92Vn0gza8hvF32Md36pVADaWA/L7kGKpFMdCsTjwWHpKiGQhvcadSZJUGKuwIGTof+L/nmulD1u7YHNlL2HyXE+orphg=
Received: from BY3PR08MB7060.namprd08.prod.outlook.com (2603:10b6:a03:36d::19) by SJ0PR08MB8207.namprd08.prod.outlook.com (2603:10b6:a03:439::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5458.23; Fri, 29 Jul 2022 20:17:00 +0000
Received: from BY3PR08MB7060.namprd08.prod.outlook.com ([fe80::f8ee:632a:e811:9195]) by BY3PR08MB7060.namprd08.prod.outlook.com ([fe80::f8ee:632a:e811:9195%5]) with mapi id 15.20.5482.011; Fri, 29 Jul 2022 20:17:00 +0000
From: "Rabadan, Jorge (Nokia - US/Sunnyvale)" <jorge.rabadan@nokia.com>
To: Gyan Mishra <hayabusagsm@gmail.com>
CC: idr wg <idr@ietf.org>
Thread-Topic: [Idr] SRv6 Transposition for SAFI 76
Thread-Index: AQHYofSmYekWhh8oRE2cJPsmHEb9jq2UovMAgAElTGQ=
Date: Fri, 29 Jul 2022 20:17:00 +0000
Message-ID: <BY3PR08MB70607FF432B382BF94852EACF7999@BY3PR08MB7060.namprd08.prod.outlook.com>
References: <BY3PR08MB7060D7C700ED9E31DB1D6D1BF7979@BY3PR08MB7060.namprd08.prod.outlook.com> <CABNhwV3UnR2cSUE16OojSHCQm=GO1UbMdAjn7RjTAmkRuq6+ig@mail.gmail.com>
In-Reply-To: <CABNhwV3UnR2cSUE16OojSHCQm=GO1UbMdAjn7RjTAmkRuq6+ig@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=nokia.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 57c8d66d-28e8-47f9-34d0-08da719f4b5f
x-ms-traffictypediagnostic: SJ0PR08MB8207:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY3PR08MB7060.namprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(366004)(346002)(396003)(136003)(39860400002)(376002)(38100700002)(316002)(38070700005)(40140700001)(122000001)(82960400001)(2906002)(6916009)(66556008)(7696005)(66946007)(166002)(4326008)(76116006)(66446008)(64756008)(71200400001)(478600001)(52536014)(55016003)(91956017)(9686003)(9326002)(66476007)(8936002)(5660300002)(53546011)(41300700001)(6506007)(966005)(83380400001)(8676002)(33656002)(86362001)(186003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BY3PR08MB70607FF432B382BF94852EACF7999BY3PR08MB7060namp_"
MIME-Version: 1.0
X-OriginatorOrg: nokia.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY3PR08MB7060.namprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 57c8d66d-28e8-47f9-34d0-08da719f4b5f
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jul 2022 20:17:00.4459 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: pEMqAXnqXO+TTNK2KIE9iJpFi5ZiSaZW3G5ku5uVpncDyPT/jdrKf9dyL18laj6yO+/pEpt9xEnX0tLuKj1uJQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR08MB8207
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/N0RI8zwN08vPYw1YH_5ytUQNTgs>
Subject: Re: [Idr] SRv6 Transposition for SAFI 76
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Jul 2022 20:17:07 -0000

Hi Gyan,

My question was not about RFC9252, but rather about the statement about BGP CT and the intend to not use transposition for SRv6. It is up to the authors and the WG, but I think transposition is important in SRv6 to have a better BGP update packing, and since BGP CT uses a new SAFI, transposition can be defined in a way that can be used without any issues.

About your comment, I think RFC9252 is perfectly ok and allows deployment in brown field scenarios, since the transposition procedures are completely optional. An operator can choose to not transpose functions into the label fields if that may cause issues in non-upgraded routers.

Thanks.
Jorge

From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Thursday, July 28, 2022 at 10:32 PM
To: Rabadan, Jorge (Nokia - US/Sunnyvale) <jorge.rabadan@nokia.com>
Cc: idr wg <idr@ietf.org>
Subject: Re: [Idr] SRv6 Transposition for SAFI 76
Hi Jorge

I just responded to Kaliraj on this issue and here is an excerpt below of the problem and possible solution.

Excerpt below:

The RFC 9252 BGP Service Overlay for SRv6 reuse of the existing VPN SAFI 128 caused mis routing for any/all  Brown field deployments.

In RFC 9252 a new SAFI would have been the best approach for VPN, then reusing the same VPN SAFI 128 to disambiguate SRv6 VPN overlay from MPLS VPN overlay.  This is the 2nd time this issue has cropped up with the first with extending MPLS EVPN RFC 7432 with RFC 8365 EVPN for NVO IP DC underlay, which also reuses  the MPLS1 MPLS2 label field to carry the L2 VNI / L3 VNI in the presence of BGP Tunnel Encapsulation extended community RFC 9012.

As a result of the SRV6 reuse of SAFI 128,  the VPN SAFI 128 traffic is mis routed going to SRv6 or MPLS as the NLRI appears to be the same due missing error handling for BGP prefix SID NLRI and transposition scheme.

Thank you for pointing this out as most operators would be migrating from brown field and so this is a major issue for anyone trying to deploy SRv6.

We should pick this mis route issue with RFC 9252 up on IDR / BESS and discuss if we need to do a BIS or new updated draft for this problem as it’s a very serious issue for any operators deploying SRv6.

***possible solution game plan***

I will start a separate thread on BESS and include IDR on the thread on how best to resolve this issue.

This draft proposes a new capability, however I think the best approach would be to define a new SAFI for VPN used with SRv6.

Just a thought here, what we could do is an errata or BIS update to RFC 9252 stating the problem clearly and that RFC 9252 should not be used for brownfield deployments.

Write a new draft and quickly get it progressed so we can fix existing deployments and any operators looking to deploy SRV6 soon - this draft would allocate a new SAFI for VPN used for SRv6.

Alternative SRv6 capability draft - I don’t think we should use this approach

https://datatracker.ietf.org/doc/html/draft-lz-bess-srv6-service-capability-03


Kind Regards

Gyan

On Wed, Jul 27, 2022 at 4:18 PM Rabadan, Jorge (Nokia - US/Sunnyvale) <jorge.rabadan@nokia.com<mailto:jorge.rabadan@nokia.com>> wrote:
Hi everyone,

During the IDR meeting, the CT authors mentioned that they wanted the WG to help with “clarification for disallowing SRv6 transposition for SAFI 76”.

Authors, could you please elaborate on that and why SRv6 transposition cannot be used with SAFI 76?

Thanks!
Jorge



_______________________________________________
Idr mailing list
Idr@ietf.org<mailto:Idr@ietf.org>
https://www.ietf.org/mailman/listinfo/idr
--

[http://ss7.vzw.com/is/image/VerizonWireless/vz-logo-email]<http://www.verizon.com/>

Gyan Mishra

Network Solutions Architect

Email gyan.s.mishra@verizon.com<mailto:gyan.s.mishra@verizon.com>

M 301 502-1347

v2.23.0 | Report a Bug | By Email