IETF Logo Mail Archive

Re: [Idr] draft-jiang-idr-ts-flowspec-srv6-policy-07.txt - (8/17/2022 to 8/31/2022

Nat Kao <pyxislx@gmail.com> Thu, 09 March 2023 14:46 UTC

Return-Path: <pyxislx@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4E5CC169512 for <idr@ietfa.amsl.com>; Thu, 9 Mar 2023 06:46:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.094
X-Spam-Level:
X-Spam-Status: No, score=-2.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pL4t0z4Vq1MR for <idr@ietfa.amsl.com>; Thu, 9 Mar 2023 06:46:36 -0800 (PST)
Received: from mail-ed1-x531.google.com (mail-ed1-x531.google.com [IPv6:2a00:1450:4864:20::531]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A6B5FC16950B for <idr@ietf.org>; Thu, 9 Mar 2023 06:46:19 -0800 (PST)
Received: by mail-ed1-x531.google.com with SMTP id cy23so7861098edb.12 for <idr@ietf.org>; Thu, 09 Mar 2023 06:46:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1678373177; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=cmonjOG2T0AxDEiblWPE6POaMekngbZrihzrrRyglPA=; b=S2My8VIS/B8oT5NRl7L3inP7vJh4zk6F54KdpLmqC5yFCQN6NheBiMad6FSfJYSvye n37jfwdjKW0r9sqazCtkmWsr/E2OMD9j7Sbpl31zvM3AqZvE/D8uZdEMW3nuwp7Ge3LZ 7wOPmoN9eoHoajFuQ9+AJkonou3VdUIi/LC3BcoQ+LYl/Wr+l70evirhaTHjjDtRSGwi dMrxG3Suh9GFEZS7WzjtUmSIudF8vb9XgM44TIDWfX6c5W5TodF/QZSTE3YWbdkKdWEK 5cu1zFFSaW3m5YLagBgsuGdXdnCD1URx/trQPoo8UH17UDA1P/gmX2vEhMMy+qMGImmK rAiA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678373177; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=cmonjOG2T0AxDEiblWPE6POaMekngbZrihzrrRyglPA=; b=6V3/FGpZ3Hesu4Xuo5cFcj/Px+N7Hq703oeXnO9pKyZybEeey17G+XMjy+200rg9Uo gdceqCCS2B5MHohjYQroYD3QLkN69JKc/VgvaDZMkGd8ilhAxNh6mB3vkYCRTClYGVtr 6P3gOuJTqS09i2g4p7Qv6Whb/1Va5UNQC7iwlQtH7UnbGsPsNAlPBdur+UJuXt4PqfWL hUPVFImUSj7qfHv81kNwUxvBPg7FHbgnyZAq4LEZFhybY7f6JAGnnNqqfAqJrSDXOKeA d6DW992iKnV3qC+usIgkkP7ayt/9d0vNRFwt+khsS/BhZ5206RXwPnNpX08B3hKs+Hje aGfA==
X-Gm-Message-State: AO0yUKXPPY2zrB9Y1HQ2k+4SdNmJgxdcVCqaEkynD8EgQVU3kptONeep k5AMSxA6qdjWzRiivkDVv5ZwRVDfFrXqnjJSzj4=
X-Google-Smtp-Source: AK7set+oYzV6nlTXe6dm0j+eGyTkzJvv0GAE48rWibjVyGn4W5PHYDRHsC1zFGAyjTda9NRAY7Gfb1kmDLtE5jRmgpc=
X-Received: by 2002:a17:906:2acf:b0:8af:3e28:acc with SMTP id m15-20020a1709062acf00b008af3e280accmr10312216eje.1.1678373177498; Thu, 09 Mar 2023 06:46:17 -0800 (PST)
MIME-Version: 1.0
References: <BYAPR08MB487272B6440945C76FACC0D8B36A9@BYAPR08MB4872.namprd08.prod.outlook.com> <CAKEJeo4kkR+g3jht0xPewoit+2fUJ2n=iup-BybpEGStRs5qWA@mail.gmail.com> <f6a8ad9c5b5d425fb0fd4b89c19d1d51@huawei.com>
In-Reply-To: <f6a8ad9c5b5d425fb0fd4b89c19d1d51@huawei.com>
From: Nat Kao <pyxislx@gmail.com>
Date: Thu, 09 Mar 2023 22:45:41 +0800
Message-ID: <CAKEJeo6OqeiPUT-AhYjxHwf_V4s=ucdCC+9OtToMbeq02nxGvA@mail.gmail.com>
To: Zhuangshunwan <zhuangshunwan@huawei.com>
Cc: Susan Hares <shares@ndzh.com>, "idr@ietf.org" <idr@ietf.org>, "Nat Kao (PyxisLX)" <pyxislx@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000000b9eed05f678b52a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/b1TRTFYQSKQ4Ml3Yc-HMz6O4Dp0>
Subject: Re: [Idr] draft-jiang-idr-ts-flowspec-srv6-policy-07.txt - (8/17/2022 to 8/31/2022
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Mar 2023 14:46:37 -0000

Hi, Shunwan.

First of all, thank you so much for including the SR-MPLS use case.
After carefully reading, I have a few suggestions:
1. It would be pretty useful if we also covered "Flow-spec Redirect to
IPv6" descriptions in Chapter 4.
    In RFC9256, there were no limitations on the AFI/SAFI of the endpoints.
    We could steer traffic into SR-Policies constructed with SR-MPLS SID
Lists with either IPv4 or IPv6 endpoints.
    So we could have a unified steering framework for both IPv4/IPv6
endpoints and SR-MPLS/SRv6 SID Lists.
    It also added flexibility in dual-stacked SR-MPLS networks.
2. It would be worth mentioning the case regarding multiple Color Extended
communities.
    We could refer this behavior to Section 8.4.1 of RFC9256:
    "When a BGP route has multiple Color Extended communities each with a
valid SR Policy, the BGP process installs the route on the SR Policy giving
preference to the Color Extended community with the highest numerical
value."
3. [Optional] A pretty minor one: It would be better to unify the terms "SR
List" and "SID List"
    We could align the terms with RFC9256(SID List).

The following might be out of the scope of this draft, but worth mentioning:
1. [Optional] Should we consider Flow-spec routes with multiple "Redirect
to IPv4/IPv6" extended communities?
    If yes, what kind of behavior should be defined?
    For example, we might want to:
        -Load balance traffic into multiple SR-Policies with different
endpoints
         OR
        -Ignore the Color Extended community in this case(resulting the
same behavior defined in "draft-ietf-idr-flowspec-redirect-ip")


2. [Optional] Should we consider the case defined in
"draft-ietf-idr-flowspec-redirect-ip" with mixed "Redirect to VRF" and
"Redirect to IPv4/IPv6" actions?
    If yes, I would suggest that we should ignore Color Extended
communities in this case since most implementations had only one shared
SR-Policy table.
    It might not be reasonable to have SR-Policies in different tables/VRFs
currently.

Many Thanks.
Nat


On Mon, Mar 6, 2023 at 5:07 PM Zhuangshunwan <zhuangshunwan@huawei.com>
wrote:

> Hi Nat and All,
>
>
>
> As promised, we have added SR-MPLS use case in
> draft-ietf-idr-ts-flowspec-srv6-policy.
>
>
>
> Special thanks to Nat Kao for suggesting adding SR-MPLS use cases to this
> document.
>
>
>
> The IETF datatracker status page for this Internet-Draft is:
>
> https://datatracker.ietf.org/doc/draft-ietf-idr-ts-flowspec-srv6-policy/
>
>
>
> There is also an htmlized version available at:
>
>
> https://datatracker.ietf.org/doc/html/draft-ietf-idr-ts-flowspec-srv6-policy-02
>
>
>
> A diff from the previous version is available at:
>
>
> https://author-tools.ietf.org/iddiff?url2=draft-ietf-idr-ts-flowspec-srv6-policy-02
>
>
>
> Any comments and suggestions are welcome!
>
>
>
> Best Regards,
>
> Shunwan
>
>
>
>
>
> *From:* Idr [mailto:idr-bounces@ietf.org] *On Behalf Of *Nat Kao
> *Sent:* Wednesday, August 31, 2022 4:30 PM
> *To:* Susan Hares <shares@ndzh.com>
> *Cc:* idr@ietf.org
> *Subject:* Re: [Idr] draft-jiang-idr-ts-flowspec-srv6-policy-07.txt -
> (8/17/2022 to 8/31/2022
>
>
>
> Hi, Susan & WG.
>
>
>
> As an operator, I support WG adoption of this draft.
>
> This approach is very useful for on-demand traffic steering with
> specific/dynamic traffic patterns.
>
>
>
> My answers are inline:
>
>
>
> On Wed, Aug 17, 2022 at 10:59 PM Susan Hares <shares@ndzh.com> wrote:
>
> This begins a 2 week WG adoption call for
> draft-jiang-idr-ts-flowspec-srv6-policy-07.txt
>
> https://datatracker.ietf.org/doc/draft-jiang-idr-ts-flowspec-srv6-policy/
>
>
>
> During your discussion of this draft, please consider:
>
>
>
> 1) Do you agree with extending 8955 and 8956 to carry the
>
> action bit [C] found for IPv4 and IPv6 found
>
> draft-ietf-idr-flowspec-redirect-ip-02.txt
>
>
>
> Figure 1 : Local Administrator
>
>
>
> 0                   1
>
> 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5
>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
>
> |          Reserved           |C|
>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
>
>
>
> C = 0 – redirect original flow
>
> C = 1 – redirect copy of original flow
>
>
>
> This bit augments the Redirect to IP action in RFC8955
>
> And RFC8956.
>
>
>
>
>
> Yes.
>
>
>
> 2) Do you agree with this document use of this feature
>
> in addition to  draft-ietf-idr-flowspec-path-redirect
>
> https://datatracker.ietf.org/doc/draft-ietf-idr-flowspec-path-redirect/
>
>
>
> See the following thread for a discussion of this in March:
>
>  https://mailarchive.ietf.org/arch/msg/idr/HENTMEoiMJGmcMuVz7LTYclCSdw/
>
>
>
> Yes, this approach provides a unified way for steering traffic into
> SR-policies using either SR-MPLS or SRv6 SID-lists.
>
>
>
> Note: As discussed before, the same mechanism can also be applied to
> policies with SR-MPLS SID-lists.
>
> https://mailarchive.ietf.org/arch/msg/idr/q0If1M-UgoeeM16HR-TXCSWRTAQ/
>
>
>
>
>
> 3) Will this work help deployment of SRv6 networks?
>
>
>
> Yes.
>
>
>
>
>
> We’ll discuss this draft at the IDR interim on 8/29/2022.
>
>
>
> Cheerily, Susan Hares
>
>
>
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr
>
>
>
> Regards,
>
> Nat
>
>
>
>
>

v2.23.0 | Report a Bug | By Email