IETF Logo Mail Archive

[Ila] Fwd: [DMM] Questions about SRv6 mobile user-plane

"Sri Gundavelli (sgundave)" <sgundave@cisco.com> Mon, 29 January 2018 15:35 UTC

Return-Path: <sgundave@cisco.com>
X-Original-To: ila@ietfa.amsl.com
Delivered-To: ila@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E69612D77D for <ila@ietfa.amsl.com>; Mon, 29 Jan 2018 07:35:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.529
X-Spam-Level:
X-Spam-Status: No, score=-14.529 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x82e4ptxuuOZ for <ila@ietfa.amsl.com>; Mon, 29 Jan 2018 07:35:01 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CED65120454 for <ila@ietf.org>; Mon, 29 Jan 2018 07:35:00 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=30055; q=dns/txt; s=iport; t=1517240100; x=1518449700; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=6eQHI8Py4DUgIkeO3Ak4+OHEpUL/UiFv+iHGwnE+HIg=; b=W7u5+Tsh1ybyaznrGd+Cat08XOF3d/rmAe6G7FFfA7qmpQo/crybC3oY N65fNXodkXY/UgMsZzXF6njd+/9i7pomKYvIT44OoxYflGN9grfZfOPhW gj6OKNVrj48pJKRJ1QFSs5Qd+GR6CzCT6IeHg5THu2PVKoVG6SKmi30Iv Y=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AeAQBPPm9a/5tdJa1cGQEBAQEBAQEBAQEBAQcBAQEBAYJKRzFmdSiDYGOJQY5pgVsnl0QVgSMDXAolhRYCGoIfVBgBAQEBAQEBAQJrHQuFIwEGI2YCARkDAQIoAwICAjAUBwIIAgQTG4k2ZBClcoInilMBAQEBAQEBAQEBAQEBAQEBAQEBAQEYBYRUghWBV4FnASkMgnmDLwEBAgEYgT44BhCCYTGCNAWKapkqAogWjU+CG4IDhB6LbY1iiVMCERkBgTsBHzkygR5wFWcBgW8BAQ6CHDkcggZ4jxYBAQE
X-IronPort-AV: E=Sophos;i="5.46,431,1511827200"; d="scan'208,217";a="131190463"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 29 Jan 2018 15:34:59 +0000
Received: from XCH-RCD-006.cisco.com (xch-rcd-006.cisco.com [173.37.102.16]) by rcdn-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id w0TFYx5F011252 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL) for <ila@ietf.org>; Mon, 29 Jan 2018 15:34:59 GMT
Received: from xch-aln-008.cisco.com (173.36.7.18) by XCH-RCD-006.cisco.com (173.37.102.16) with Microsoft SMTP Server (TLS) id 15.0.1320.4; Mon, 29 Jan 2018 09:34:58 -0600
Received: from xch-aln-008.cisco.com ([173.36.7.18]) by XCH-ALN-008.cisco.com ([173.36.7.18]) with mapi id 15.00.1320.000; Mon, 29 Jan 2018 09:34:58 -0600
From: "Sri Gundavelli (sgundave)" <sgundave@cisco.com>
To: "ila@ietf.org" <ila@ietf.org>
Thread-Topic: [DMM] Questions about SRv6 mobile user-plane
Thread-Index: AQHTmRI9YwXheQXob0qzxxgYfwxvSaOK1zOAgAAkGaw=
Date: Mon, 29 Jan 2018 15:34:58 +0000
Message-ID: <69924DA9-ACEE-4918-977E-B4B2D1AA1F15@cisco.com>
References: <CAPDqMerEUMEpKWSu3nC+rxcNpOj_LckvQwPga9bzkDdAYpSwwQ@mail.gmail.com> <D69114C4.2A206E%sgundave@cisco.com> <CAPDqMepFiUPBNbidHokJYPMovGYRaxbtqHbuo-d4qXrjsh=jXw@mail.gmail.com> <D6947782.2A29C4%sgundave@cisco.com>,<D69477C8.106CC%sgundave@cisco.com>
In-Reply-To: <D69477C8.106CC%sgundave@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
Content-Type: multipart/alternative; boundary="_000_69924DA9ACEE4918977EB4B2D1AA1F15ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ila/KMF8eXWmgf4-GpzR3nFHRhoiUAE>
Subject: [Ila] Fwd: [DMM] Questions about SRv6 mobile user-plane
X-BeenThere: ila@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Identifier Locator Addressing <ila.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ila>, <mailto:ila-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ila/>
List-Post: <mailto:ila@ietf.org>
List-Help: <mailto:ila-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ila>, <mailto:ila-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Jan 2018 15:35:09 -0000


Sent from my iPhone

Begin forwarded message:

From: "Sri Gundavelli (sgundave)" <sgundave@cisco.com<mailto:sgundave@cisco.com>>
Date: January 29, 2018 at 7:25:47 AM PST
To: <dmm@ietf.org<mailto:dmm@ietf.org>>
Subject: Re: [DMM] Questions about SRv6 mobile user-plane

HI Tom,

Thanks for your response. Please see inline.



---

https://tools.ietf.org/html/draft-herbert-ila-motivation-00 provides some comparisons between ILA and ILNP, encapsulations, SR, and transport layer mechanisms that can achieve some effects in mobility.

The choice of mapping system is critical. The mapping of identifier, or equivalently virtual to physical address mapping, seems to be a common problem in mobility and networking virtualization. As you mentioned, LISP defines a query method to populate a mapping cache. I assume this problem needs to be tackled in SR for mobile user-plane but I'm not sure what solution is preferred after reading the draft.

[Sri] There are multiple approaches on how we manage this mapping state. Obviously, ILA is one approach, but there are few other approaches as well that we need to review.



ILA partitions the problem into a two level hierarchy: ILA routers and IL forwarding nodes. This is somewhat analogous to core IP routers and nodes running neighbor discovery.  ILA routers contain all the (possibly sharded) mappings. They are authoritative. Forwarding nodes are located close to user devices and maintain a working set  cache of entries driven by user activity. If a packet doesn't hit the cache it's forwarded to a router that will do the ILA transformation. If the cache is hit, the packet can be transformed at the forwarding node to eliminate triangular routing. Caches can be populated by pull or push models. ILAMP (the ILA mapping protocol) supports both of these, but my current preference for scalability and mitigating DOS attacks on the cache is to use secure redirects sent by ILA routers  (analogous to ICMP redirects).


[Sri] When I last reviewed the ILA I-D, I do not seem to remember reading about the cache state, ILMP. or about how the mapping gets to the ILA routers. Looks like the spec is evolving as we speak. With ILAMP type control protocol for cache management, I see more similarities to LISP.




On a different note, just curious if SID prefix can ever have topological relevance and can be used for routing. In other words, can you ever route a packet without translating  the SIR prefix of the destination address with the locator? Can SID prefix be used as a locator in some special cases?

Yes, the SIR prefix is routable to forward to an ILA router. This is necessary for the redirect mechanism I describe above. I suppose this could be contorted to make the SIR address be a home address like in MobileIP and locators are COAs (if my use of MobileIP terminology is correct). There also might be nodes in the network, as well as external nodes that don't do go through a cache to their packets need to hit an ILA router to get forwarded to the location of mobile nodes. An upshot of that is that edge routers might need to perform transformations (SIR to ILA) at high rates so the mechanism needs to be very efficient and amenable to HW implementation.


[Sri] This is precisely what I was thinking.

I get that SIR prefix takes the packet awards the ILA domain and some ILA router in the path can apply the mapping. I was thinking there may not be a good reason to have more than one or two SIR prefixes for each ILA domain. As long as the SIR prefix can take the packet from a non-ILA domain (internet) to ILA domain, then the edge router can apply the mapping. But, that also implies the edge routers will have to have too much of mapping state. Now, if we have many SIR prefixes and associate a SIR prefix for each PGW/UPF, that state can be distributed and keep the edge routers stateless, but it also brings anchoring back into the picture. In one simplest mode, as you say, HNP (home network prefix) can be a SIR and the PGW/SGW or  (LMA/MAG) can do the translation of SIR - ILA, without the need for tunneling.

So, in your mind how many SIR prefixes will be used in a typical T1 operator domain? Also, how can we quantify the state that ILA introduces in different parts of the network?


Regards
Sri







From: dmm <dmm-bounces@ietf.org<mailto:dmm-bounces@ietf.org>> on behalf of Tom Herbert <tom@quantonium.net<mailto:tom@quantonium.net>>
Date: Friday, January 26, 2018 at 9:13 AM
To: "dmm@ietf.org<mailto:dmm@ietf.org>" <dmm@ietf.org<mailto:dmm@ietf.org>>, "ila@ietf.org<mailto:ila@ietf.org>" <ila@ietf.org<mailto:ila@ietf.org>>
Subject: [DMM] Questions about SRv6 mobile user-plane

Hello,

I am working on a comparison between ILA and SRv6 for the mobile user-plane. I have some questions/comments about SRv6 and particularly on the example use cases that were depicted in the slides that were presented in IETF100:

https://datatracker.ietf.org/meeting/100/materials/slides-100-dmm-srv6-for-mobile-user-plane/

- It's clear from the depicted use cases that extension header insertion is being done by intermediate nodes, but extension header insertion is currently prohibited by RFC8200. There was an I-D posted on 6man to allow this for SR, but that was met with pushback. Is there going to be followup to resolve this?

- For the uplink use cases, this seems to be more like using SR to source route to an egress router. In other words, it's not strictly related to mobility. Is there some connection to mobility that I'm missing?

- The size or number of SR headers in the uplink cases seems to be larger than necessary (IMO minimizing these is important since each additional sid is ~1% overhead of standard MTU). In this first scenario sid[1]=A2::1 and DA=A2::1-- this seems to be redundant information. Also this depicts a second SR being inserted, but the first one should no longer be relevant. Why not just discard the first one and save the overhead? In the second scenario, DA is changing from A2::1 to A3::1<https://maps.google.com/?q=A3::1&entry=gmail&source=g>, but AFAICT that was not done per the SR processing. What is the operation that happened here? (it's actaully looks like an ILA transfomation).

- Considering the points above, could this have been done in the following manner to minimize overhead? A1 creates one SRH with one sid and makes DA=A2. A2 makes DA=A3. At A3 SR is processed, DA is restored to Internet address, and EH is removed.

- For downlink this does see to be relevant to mobility. But I have the same question, wouldn't it be less overhead to only use one SRH and one sid? i.e. A3 creates an SRH with just one sid that is the S:: (identifier in identifier/locator speak) and set DA to A2, and then A2 sets DA to A1, A1 restores original packet for delivery.

- One possible typo. In the last use case slide SA=S:: and DA=D::, I believe these should be swapped?

Thanks,
Tom

v2.23.0 | Report a Bug | By Email