Re: END SID Without SRH
Mark Smith <markzzzsmith@gmail.com> Thu, 13 June 2019 04:28 UTC
Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B48D71201BE for <ipv6@ietfa.amsl.com>; Wed, 12 Jun 2019 21:28:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.497
X-Spam-Level:
X-Spam-Status: No, score=-0.497 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MsijUefqr5re for <ipv6@ietfa.amsl.com>; Wed, 12 Jun 2019 21:28:11 -0700 (PDT)
Received: from mail-oi1-x234.google.com (mail-oi1-x234.google.com [IPv6:2607:f8b0:4864:20::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B11A1201A2 for <ipv6@ietf.org>; Wed, 12 Jun 2019 21:28:11 -0700 (PDT)
Received: by mail-oi1-x234.google.com with SMTP id y6so13437128oix.2 for <ipv6@ietf.org>; Wed, 12 Jun 2019 21:28:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=eNSL33lUBDAOxGXnW/V6XT6BqAptFIW9RgkKUpKo/Vo=; b=crMwhDi63hTm9qV5y1Bh0eptWnKGu/HQ5GVJu/xJnpdhg/uCioZtcjwgUBhSCHAx2u NUsvqaFM86iCPghHHqLQgpuSB3EypU52wnbDcP1PEpqlHY6k3LRaqPay+D2dx7+hxOTM lUh6P7AxLjRymtvMFmYHWjVYFV1ZGXCmUPxcRMKoUAaulAdlBR1kULLlG/l6jKF+smMI e9IPWue3zr+tXSU3GtZCB+xWDhlmoXw+peWZrXsCMsQ1iZSaLS/wRFt86Ov5N15vGaCY TpctXnyTT/kmFCFO321+DG1VKgROUSQZyVRjkCsL5dS98aYmsETPo3NEt7IM8iczSgS6 yyVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=eNSL33lUBDAOxGXnW/V6XT6BqAptFIW9RgkKUpKo/Vo=; b=ai/m7bFE9/jPfaui2CVJIz1P1Ejhp6q6EQxJw7FymMjAClnDWWW+cus614XLH04j/j JAW37sBUaSg9vtmjIEgmOvB9DNL9YRusc7SbfBJ0QMTXyY2QZbPYV5FiJpsKzA4HZ4Oc w9uuHYlr14AJHJeMGcvDMv+tl2SngXrRkTpJagOZl/+zVcX5gdaXaW0WUj8Q+lg6l/11 70K6nfrKzwcUb9CngTMR7YVQx06DDvnLB17zDB8UHgrCcL6gcBz2/np07ZxKYjVDBCaA JP9GOF3ySZNZT44xKgOmQui/JUsG8yHRVAJPL1HTjBwXAwRaAFwi1ccn2/rQQgKGpoQF 50wA==
X-Gm-Message-State: APjAAAXvTuTdbzODvBY+JFQswKVMl7kVAT1jP7TOPmmSk1vrA47rDvI3 mLAmxT4Ys7eg19cDIf/OwOGlH2UqkGvWkCnkeQA=
X-Google-Smtp-Source: APXvYqyYG4cubbPWyXj1TzSixMjXIAnaJqTXMfNTX7x4Mb50DrulEI1MZMFLdFhz+NYxgIGrsVt3m6GG+fSj3JVcWgI=
X-Received: by 2002:aca:d511:: with SMTP id m17mr1755435oig.54.1560400090183; Wed, 12 Jun 2019 21:28:10 -0700 (PDT)
MIME-Version: 1.0
References: <BYAPR05MB42456C75487CF9283A0ED1D0AE100@BYAPR05MB4245.namprd05.prod.outlook.com> <CAO42Z2y_D-xe+tX9n-KQYjnk5bkYXibO0Zs3E=JfAWWMZnJcSA@mail.gmail.com> <3030A68F-6CE1-4179-930C-D60BEB73063A@employees.org> <CAO42Z2yLkCRNXKp8KKnqh8VRRo6p1dx4h0-gyLBFZ=Jq0xQj2w@mail.gmail.com> <0C40BEFF-B050-40A1-BCB7-F76ADF18E3E0@employees.org> <BYAPR05MB42457C37AE7DC3F4CACC8FD7AEEC0@BYAPR05MB4245.namprd05.prod.outlook.com> <B254E985-A848-4FC4-868D-E2F04CF7E0DB@cisco.com>
In-Reply-To: <B254E985-A848-4FC4-868D-E2F04CF7E0DB@cisco.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Thu, 13 Jun 2019 14:27:58 +1000
Message-ID: <CAO42Z2wXRe9XyMMVetzPMTY4Og=B=wQLz3LUVB0DFzRLL-BPQQ@mail.gmail.com>
Subject: Re: END SID Without SRH
To: "Darren Dukes (ddukes)" <ddukes@cisco.com>
Cc: 6man WG <ipv6@ietf.org>, Ole Troan <otroan@employees.org>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000001540ad058b2cf508"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/DR7B0aTodcIrEeS2N16kiBUwQFw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2019 04:28:13 -0000
On Thu., 13 Jun. 2019, 07:52 Darren Dukes (ddukes), <ddukes@cisco.com> wrote: > Hello everyone. > > This document defines an SRH and a SID, and how that SID is processed. > > I expect anyone "surprised" by this fact should have read this draft at > some point: > a - within the past 2 years; since this document has defined a SID and its > processing. > b - within the past 13 months; since section 4.3.1 specifically described > discarding the packet based on upper layer header being processed. > c - within the past 8 months; since the current version of 4.3.1.2 was > updated with the new ICMP error code, published, and the WG was notified > via email. > > And recall section 3.1 defines a Source SR node as > "any node that originates an IPv6 packet with a > segment (i.e. SRv6 SID) in the destination address of the IPv6 > header. The packet leaving the source SR Node may or may not contain > an SRH." > > In other words, there is no surprise. > So one of the contexts I consider is sitting in front of a packet capture tool like Wireshark, and trying to troubleshoot a fault by looking at the packet. For the packet Ron described, with no SRH header, there is nothing to distinguish it from a normal IPv6 packet. The fault would be that the packet contains a TCP header, yet TCP processing is not occurring. The DA address in the packet might actually be a SID, but if it is coming from within the existing IPv6 unicast or multicast spaces, there is no indication of that. This SR processing is failing the principle of least surprise. That failure can cause longer than necessary troubleshooting and longer customers' services impacts. A network's MTTR is negatively impacted. Mandating that all packets to be SR processed have an SRH would prevent this problem. It would also be compliant with RFC 8200, because the processing to occur on the packet when it arrives at the device with the DA is explicitly encoded in the packet. Without a formal SID address space, encoding functions to perform on a packet in addresses is ambiguous, implicit and when troubleshooting, non-obvious. Regards, Mark. > Darren. > > >
- END SID Without SRH Ron Bonica
- RE: END SID Without SRH Ron Bonica
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH Tom Herbert
- RE: END SID Without SRH Ron Bonica
- Re: END SID Without SRH Mark Smith
- RE: END SID Without SRH Wang, Weibin (NSB - CN/Shanghai)
- Re: END SID Without SRH Ole Troan
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Ole Troan
- RE: END SID Without SRH Ron Bonica
- Re: END SID Without SRH Tom Herbert
- RE: END SID Without SRH Ron Bonica
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH Bob Hinden
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH Bob Hinden
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH Tom Herbert
- Re: END SID Without SRH Darren Dukes (ddukes)
- Re: END SID Without SRH David Farmer
- Re: END SID Without SRH Tom Herbert
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Ole Troan
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Ole Troan
- Re: END SID Without SRH Mark Smith
- Re: END SID Without SRH Tom Herbert
- Re: END SID Without SRH Ole Troan
- Re: END SID Without SRH Gyan Mishra