IETF Logo Mail Archive

Re: [Idr] Existing solutions in enforcing Flow based forwarding can be used by draft-dunbar-idr-5g-edge-compute-app-meta-data

Linda Dunbar <linda.dunbar@futurewei.com> Thu, 11 February 2021 02:59 UTC

Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7AC23A0FF4 for <idr@ietfa.amsl.com>; Wed, 10 Feb 2021 18:59:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.988
X-Spam-Level:
X-Spam-Status: No, score=-1.988 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1pSvE9i_REi0 for <idr@ietfa.amsl.com>; Wed, 10 Feb 2021 18:59:02 -0800 (PST)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2107.outbound.protection.outlook.com [40.107.237.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C26FA3A0FEF for <idr@ietf.org>; Wed, 10 Feb 2021 18:59:01 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=oPeykgW0V1Vsfmam8uob/Y0/f9bkfgmz5TfgcgE/utR/Gw70ZRwIAV8WTvAMm15qkl2rLWMVcA8jjOp1sNRuVYXsIWPVj6aB4Yvo7sbRfmuRzseqt2l8AMBMpHYh8LhDY85BVyiW9Msv71tPCDKPvpc4ucLQXXwVkcDCXStm0IiR5dyZskPVLcbHNrIGUh03kEwscLu4TC3bsreugfnWAFN0NdQcjG5sVQi31ha1caJZXYGYoGMel9CPthgmvtrG7/LjUipDJQdeHj5Gum7s3cbmo5f/b7l/awVsVCtTTCW0/RvxrncSvP0unTDrgSa/SHPBfJjqarYqvr1vqo2yoQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=brjnuzjoreFMx8UU9ZUO1s44o4aJN+44yuVlkux2hQs=; b=Yh7wH3FslffV1Tc3gQium+pEuVvI9L2oq/nOs6+9/khGMe0a8e8tKJ3Y9PB2lHeijlclHfAYjLvOrIe5kq9gL9oZ5UUQ2m0Nr7tWb29zjJpUHx3ztAWdnx4KCrwtteXTs4FjHUUZAR5FLDdibZjwcwUERG/7L1qMsaaCwQiqZ9hmUVssMALS5adhrW9HcgYgwxrOtXUCYUgtKDMgpiMB7tVSxrjbkm3Pm+bzaygIBdIN6AhPQjX2wLF9cmwiF7uF8Bih4StlnzBhzlDPrt6ok8HCRnb2WribvZ/vb+r0BiTyy9976yWMpzluidVFn3o2lVjS4dbkTe+h0RG0FSFgiw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=brjnuzjoreFMx8UU9ZUO1s44o4aJN+44yuVlkux2hQs=; b=p1WI/2uLNt9ymfmoCX3Tgd1KVt1cwprYgCbMH9Zy6Hw6nhs+67Ab3vV7EL5RVuwulGQEkIC7eB5PSPEqVsScuUDuF4FBGKWsFZAxdQOQPLnJZhwVqMx+jM6RzjdARnb3b1e2IoMxf8sgp3q9GmiWs/Ur+TWmtU783M03gp1NoCA=
Received: from SN6PR13MB2334.namprd13.prod.outlook.com (2603:10b6:805:55::16) by SA0PR13MB3917.namprd13.prod.outlook.com (2603:10b6:806:99::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3868.11; Thu, 11 Feb 2021 02:58:57 +0000
Received: from SN6PR13MB2334.namprd13.prod.outlook.com ([fe80::3050:546b:c47:a42a]) by SN6PR13MB2334.namprd13.prod.outlook.com ([fe80::3050:546b:c47:a42a%6]) with mapi id 15.20.3868.011; Thu, 11 Feb 2021 02:58:57 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: "Acee Lindem (acee)" <acee@cisco.com>, "idr@ietf.org" <idr@ietf.org>
Thread-Topic: Existing solutions in enforcing Flow based forwarding can be used by draft-dunbar-idr-5g-edge-compute-app-meta-data
Thread-Index: AdbIDqowHb3+VOrRTI6SVuOpy6sGLQAum5cADdWnJOA=
Date: Thu, 11 Feb 2021 02:58:57 +0000
Message-ID: <SN6PR13MB23348F0D9EA66925F052EB12858C9@SN6PR13MB2334.namprd13.prod.outlook.com>
References: <SN6PR13MB233415994F565A8F8B12682985F40@SN6PR13MB2334.namprd13.prod.outlook.com> <3C8F724B-DBE1-4C70-A055-9CFB822D69A9@cisco.com>
In-Reply-To: <3C8F724B-DBE1-4C70-A055-9CFB822D69A9@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=futurewei.com;
x-originating-ip: [2603:8081:1700:ab:fd1f:911e:7e98:af9a]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: beb087d6-c804-4572-4dcf-08d8ce38f9d6
x-ms-traffictypediagnostic: SA0PR13MB3917:
x-microsoft-antispam-prvs: <SA0PR13MB391784464063537DA65EF4AF858C9@SA0PR13MB3917.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN6PR13MB2334.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(366004)(376002)(39840400004)(396003)(136003)(2906002)(186003)(44832011)(55016002)(33656002)(86362001)(6506007)(53546011)(99936003)(7696005)(166002)(66946007)(83380400001)(66574015)(478600001)(966005)(9686003)(71200400001)(8676002)(8936002)(76116006)(110136005)(316002)(5660300002)(66446008)(64756008)(66556008)(66476007)(66616009)(52536014); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/related; boundary="_004_SN6PR13MB23348F0D9EA66925F052EB12858C9SN6PR13MB2334namp_"; type="multipart/alternative"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN6PR13MB2334.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: beb087d6-c804-4572-4dcf-08d8ce38f9d6
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Feb 2021 02:58:57.7207 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 57shp0nDW7QAbr+1IaAjKK4t9V4ju8X/pdJUb86JX9PXO5zqsxoxCkQrr5YxALckr6t52EFq+tFC4vXYni35nA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA0PR13MB3917
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/Ri7Q0OdNkGp_EfndzjNpGbOpmQU>
Subject: Re: [Idr] Existing solutions in enforcing Flow based forwarding can be used by draft-dunbar-idr-5g-edge-compute-app-meta-data
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Feb 2021 02:59:05 -0000

Acee,

We are in the process of revising the draft. I listened to the IETF109 recording again and plan to revise the draft per your comments.

We will add the assumption about  the 5G Edge Computing environment to the revised draft:  it is a confined network, not the general Internet. In this environment, it is assumed that the egress routers to which the Edge servers are attached belong to the same operator as ingress routers. Between the egress router and the servers, there might be another Virtual switch (or top of rack switch), but they are co-located.

[cid:image002.png@01D6FFEF.8BD2C140]

With those assumptions in mind, my answers to your questions are inserted below:


From: Acee Lindem (acee) <acee@cisco.com>
Sent: Wednesday, December 2, 2020 3:35 PM
To: Linda Dunbar <linda.dunbar@futurewei.com>; idr@ietf.org
Subject: Re: Existing solutions in enforcing Flow based forwarding can be used by draft-dunbar-idr-5g-edge-compute-app-meta-data

Hi Linda,

There are a couple limitations here that need to be covered in the draft. The first is that you are assuming the anycast servers are all attached to a router one hop away (or at least on a path where the first hop will always on the shortest path to the same instance of an anycast server). Otherwise, your assumption of the routing decision being made solely in the 5G site router doesn’t hold.
[Linda] Yes, there are limitation. The assumption is that 5G Edge Computing network is a confined network, not the general Internet.  There might be Virtual switch (or top of rack switch) between the egress routers and the servers, but they are co-located in the Edge Computing mini data centers.

Second, when there is a handover from the Site A router to the Site B router, how does the Site B router know which instance of the anycast server the UE was bound to on the Site A router? I guess it doesn’t without some design.
[Linda] https://datatracker.ietf.org/doc/draft-dunbar-6man-5g-edge-compute-sticky-service/ described the approach for Site B Ingress router to discover the flow should stick to the Site A server.

Thank you very much, Linda

Thanks,
Acee

From: Linda Dunbar <linda.dunbar@futurewei.com<mailto:linda.dunbar@futurewei.com>>
Date: Tuesday, December 1, 2020 at 1:21 PM
To: Acee Lindem <acee@cisco.com<mailto:acee@cisco.com>>, IDR List <idr@ietf.org<mailto:idr@ietf.org>>
Subject: Existing solutions in enforcing Flow based forwarding can be used by draft-dunbar-idr-5g-edge-compute-app-meta-data

Acee,

You asked a question on how to enforce one flow to be nailed towards the same location for an ANYCAST address during the IETF 109 IDR Friday session.
Here are some links showing that the commercial routers already support the feature, a.k.a. Flow Affinity, or Flow-based load balancing.
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/lanswitch/configuration/xe-3s/lanswitch-xe-3s-book/lnsw-flow-portchannel-load.html<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.cisco.com%2Fc%2Fen%2Fus%2Ftd%2Fdocs%2Fios-xml%2Fios%2Flanswitch%2Fconfiguration%2Fxe-3s%2Flanswitch-xe-3s-book%2Flnsw-flow-portchannel-load.html&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C0b90845aa45f400e455c08d8970a5394%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C1%7C637425417898549584%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=VBY6rgIaAD9GlJvHH2ru1Dvd6SEy8jdnH5pbRzjqiSg%3D&reserved=0>
https://www.juniper.net/documentation/en_US/junos/topics/reference/configuration-statement/data-flow-affinity-edit-chassis.html<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.juniper.net%2Fdocumentation%2Fen_US%2Fjunos%2Ftopics%2Freference%2Fconfiguration-statement%2Fdata-flow-affinity-edit-chassis.html&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C0b90845aa45f400e455c08d8970a5394%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C1%7C637425417898559538%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=RdIFXWipGwCOAz5pwFzbFeKdbolPfW1TRP2BdD1v6nY%3D&reserved=0>

draft-dunbar-idr-5g-edge-compute-app-meta-data states that the ingress node, i.e. the router Ra/Rb which are adjacent to 5G UPF (or Packet Session anchor point-PSA), can use Flow ID (in IPv6 header) or UDP/TCP port number combined with Source Address in IPv4  to enforce packets in one flow being placed in one tunnel to one Egress router, such as R1, R2, or R3 in the figure below.  All other nodes in the network don’t need to take any extra action.
Does it address your concern?

+--+
|UE|---\+---------+                 +------------------+
+--+    |  5G     |    +---------+  |   S1: aa08::4450 |
+--+    | Site +--++---+         +----+                |
|UE|----|  A   |PSA| Ra|         | R1 | S2: aa08::4460 |
+--+    |      +---+---+         +----+                |
  +---+    |         |  |           |  |   S3: aa08::4470 |
  |UE1|---/+---------+  |           |  +------------------+
  +---+                 |IP Network |       L-DN1
                     |(3GPP N6)  |
  |                  |           |  +------------------+
  | UE1              |           |  |  S1: aa08::4450  |
  | moves to         |          +----+                 |
  | Site B           |          | R3 | S2: aa08::4460  |
  v                  |          +----+                 |
                     |           |  |  S3: aa08::4470  |
                     |           |  +------------------+
                     |           |      L-DN3
+--+                 |           |
|UE|---\+---------+  |           |  +------------------+
+--+    |  5G     |  |           |  |  S1: aa08::4450  |
+--+    | Site +--++-+--+        +----+                |
|UE|----|  B   |PSA| Rb |        | R2 | S2: aa08::4460 |
+--+    |      +--++----+        +----+                |
+--+    |         |  +-----------+  |  S3: aa08::4470  |
|UE|---/+---------+                 +------------------+
+--+                                     L-DN2
Figure 1: App Servers in different edge DCs
Thank you very much
Linda Dunbar

v2.34.0 | Report a Bug | By Email | System Status