Re: I-D Action: draft-voyer-6man-extension-header-insertion-08.txt
"Darren Dukes (ddukes)" <ddukes@cisco.com> Fri, 22 November 2019 09:42 UTC
Return-Path: <ddukes@cisco.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85B81120086 for <ipv6@ietfa.amsl.com>; Fri, 22 Nov 2019 01:42:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=E9PwhTrf; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=E1vC5XXK
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dtBBW7NdnLJ9 for <ipv6@ietfa.amsl.com>; Fri, 22 Nov 2019 01:42:14 -0800 (PST)
Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 561DF120048 for <ipv6@ietf.org>; Fri, 22 Nov 2019 01:42:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6812; q=dns/txt; s=iport; t=1574415734; x=1575625334; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=I9c76gX6dFD2d+djDBz1w0jkEP0VYo/bQrJPlMDfquc=; b=E9PwhTrfysD0Xfc6OX8HIirWE2+N+hmzVDqH0oI33mZEHN2uw5JPChjg dvEaA8lwcQ+EZYNWoLA6ljcFGOJBmKE+sonwulqyoMPAwDNoS420IhHoG dSwbf+R12JzIepLVo3GKwG1YxPcAfOR3uMulAdqK/fG/y02u61+JZ774H U=;
IronPort-PHdr: 9a23:wi+voh9JQ093Lf9uRHGN82YQeigqvan1NQcJ650hzqhDabmn44+/bR7E/fs4iljPUM2b8P9Ch+fM+4HYEW0bqdfk0jgZdYBUERoMiMEYhQslVcKJFE72N9bhbjcxG4JJU1o2t3w=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DmAQCKrNdd/5FdJa1kGwEBAQEBAQEFAQEBEQEBAwMBAQGBfoFLUAVsWCAECyoKhCCDRgOKbII6JYlZjiiCUgNUCQEBAQwBARgNCAIBAYRAAheCESQ4EwIDDQEBBAEBAQIBBQRthTcMhVEBAQEBAgEBARAREQwBASwLAQQLAgEIGAICJgICAh8GCxUQAgQOBQkZgwABgkYDDh8BAQIMoj8CgTiIYHWBMoJ+AQEFgTQBAwIOQUCCRw0LghcJgQ4ojBYagUA/gTgME4JMPoIbPAsBAQEBAQEWgRAQASaDEDKCLI0rMoI5nTAtQQqCK4caih6EGBuCPnOGd4Q9izOQCYZ3ghSCeIxIAgQCBAUCDgEBBYFpIoFYcBUaISoBgkEJRxEUhkgMF4NQhRSFP3QBgSeNXQElgQsBgQ4BAQ
X-IronPort-AV: E=Sophos;i="5.69,229,1571702400"; d="scan'208";a="581433751"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-9.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 22 Nov 2019 09:42:11 +0000
Received: from XCH-RCD-015.cisco.com (xch-rcd-015.cisco.com [173.37.102.25]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id xAM9gBKY025226 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 22 Nov 2019 09:42:11 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-RCD-015.cisco.com (173.37.102.25) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 22 Nov 2019 03:42:11 -0600
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 22 Nov 2019 04:42:10 -0500
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Fri, 22 Nov 2019 04:42:10 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kk2wi/Xz1Cfs/JrpW0L0L/v3ZnuIsjrFAuGv8MbyHT6z0gZrGpQwbt99n/Ykzks9nsN37AU4s6Th0/8uksgezNVhagQqHYivKHMH60Jk9iwxDmLvaTgLMZpjaGZThUTLhz1ru/cLPrFzjhYBRgIL7gq6WSVz/8sHq1EXWAX+mjKNNfvX8HlT5IL9Vl+DyueSkpKekiNGbouS8IHJh2mAK6Ppm0MoZQHPJyMzKerhF7YsxNu05EN320lRglOO8j99eJpzLTs7KVSQ3XrMSFtjdYERa53YU5n1fFc4VBze5ZP5rEyiNUquWDjybOQBLQVO5u4u9q7k7uTbWEwgQUrpEQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I9c76gX6dFD2d+djDBz1w0jkEP0VYo/bQrJPlMDfquc=; b=Lbb+2wb8ok0sjI73y1GLXf2pEvjnlIocKMa+AqiUYB8QNxT13g/er/9zyH6z0Qxuq/NYzh+TKqEyq5gSnKHdB4qGDUUtBRsvGa5unXvYWyiyawTLsZMWUZn1ce+ECHiqhSXfjnDiAibyptZXJXWP4AMQEbw9G6UzoAazvwy1RbD9FIyUZeW30CFCwm0W/LzgNrivPRZXQ3hh9vUfX8YThkKaUbLy0uw1/OODrqKye86II2MCkM9amaEZBvLF0ZBJ0/hzjF2C/CZooabM4bjkLb41H0UChcF4U1ujQG5P8t3DNbVnO5aoxCwX+enMcy4SJ+Wjjs9CG8+09VrLbqRynw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I9c76gX6dFD2d+djDBz1w0jkEP0VYo/bQrJPlMDfquc=; b=E1vC5XXK9MfrrA04yksN5OsYzjsaOROY9rChkMIzVp9jU9+pJ0jCRBmX6C/EAiT1NuIN5Hb7at8Aaa2mxzQLLffA/PzKigjy4djzPQCuZTUCVJJLacs5E1K5pDitK4Au3oCXonpci2KjSj48sYYCb3+EXy8eBsfDnLG5BIfWNLQ=
Received: from BN7PR11MB2594.namprd11.prod.outlook.com (52.135.246.159) by BN7PR11MB2644.namprd11.prod.outlook.com (52.135.254.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2474.17; Fri, 22 Nov 2019 09:42:09 +0000
Received: from BN7PR11MB2594.namprd11.prod.outlook.com ([fe80::c72:fa12:757e:cca3]) by BN7PR11MB2594.namprd11.prod.outlook.com ([fe80::c72:fa12:757e:cca3%5]) with mapi id 15.20.2474.018; Fri, 22 Nov 2019 09:42:09 +0000
From: "Darren Dukes (ddukes)" <ddukes@cisco.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: 6man <ipv6@ietf.org>
Subject: Re: I-D Action: draft-voyer-6man-extension-header-insertion-08.txt
Thread-Topic: I-D Action: draft-voyer-6man-extension-header-insertion-08.txt
Thread-Index: AQHVoDNiFsVqwlCncUaHS6SxAqG1QaeW8c8A
Date: Fri, 22 Nov 2019 09:42:09 +0000
Message-ID: <3B7B20B6-0E20-4593-B26D-9C7BEEB1DF3F@cisco.com>
References: <157422734054.5406.7618815445134245640@ietfa.amsl.com> <2fd8e0bf-e8a3-9cce-d636-ef03b292b36f@gmail.com>
In-Reply-To: <2fd8e0bf-e8a3-9cce-d636-ef03b292b36f@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=ddukes@cisco.com;
x-originating-ip: [101.100.166.67]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1921944c-5014-46c8-f769-08d76f303e80
x-ms-traffictypediagnostic: BN7PR11MB2644:
x-ms-exchange-purlcount: 7
x-microsoft-antispam-prvs: <BN7PR11MB264458F3D2009F1DE7FE7351C8490@BN7PR11MB2644.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 02296943FF
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(346002)(39860400002)(366004)(376002)(396003)(199004)(189003)(51914003)(33656002)(36756003)(86362001)(14454004)(966005)(508600001)(99286004)(81166006)(25786009)(2906002)(66066001)(6116002)(3846002)(8936002)(4001150100001)(316002)(8676002)(81156014)(66556008)(6436002)(11346002)(66574012)(446003)(186003)(4326008)(6246003)(256004)(6506007)(14444005)(71190400001)(66446008)(91956017)(76176011)(71200400001)(64756008)(76116006)(6486002)(2616005)(5660300002)(229853002)(6512007)(102836004)(6306002)(66476007)(26005)(6916009)(53546011)(7736002)(305945005)(66946007); DIR:OUT; SFP:1101; SCL:1; SRVR:BN7PR11MB2644; H:BN7PR11MB2594.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 8SsM4xbdIul9gAun1E1TpKNCecgReVz0PPnvp3KATdnS4MCx7zZcPqWx2KY8JpATlh7hisbYuuaO98Xyc/qoMCJV7WPKv9cOl87oOxzEctt1pqthdykIMcQhTz9RJcQCSqkaaBQ/Ba0Bym6P9I/9bni2kp275Z1Ew2ukqm2i1Myws3PRe0Kf+P7KcZdKeY7vH89LjEYTLqzcU7bL4J2uGtNbxnUEsNkS5gwjmyDAJTFrGUxKlGTV7snNmGM8N++79mgBciJvVt368rp8tlw3graT/FLQ86LHDwPgNd2vbHv3gNPS8pQg1yiKEg09xIAOenFxe1vsZMP/smfrkH67q0LNDQOzC5jc46NJyP5x3q+YDu5+2p82RAQfbS0veoN9RprO9OZ3WLx6WUMyN3XE6wfk2t93v/0d8pOe6jOYBqb2qfCu/DuBDfai5yXdNXd0VA5vSyIdOdQoUY3PutfUQD9NSyCwqarvJ2JU0FPkiJk=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <6A65C6B5741C3042BEB72C3EEE487CB0@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 1921944c-5014-46c8-f769-08d76f303e80
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Nov 2019 09:42:09.3067 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: E5yrAaUiuIJQJCqFqngpFqPVqIgtFxFIiScNvpP1Um5GBi79JK/1GSR+8VlPDHN3c+sJsfdZMuWyhms0Fh95ww==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR11MB2644
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.25, xch-rcd-015.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/GDnOqfFDatr4IxV_d8paVklTqI8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Nov 2019 09:42:16 -0000
Brian, thanks for the lightning read :) > On Nov 21, 2019, at 2:17 PM, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: > > Hi, > > Results from a very partial reading of this version: > >> In each deployment, traffic traversing an SR domain is encapsulated >> in an outer IPv6 header for its journey through the SR domain. > > Add: "The source and destination addresses in the outer header both lie within the SR domain." > And explain how that is *enforced*. (You mention this later, in section 3.1, but still not how it is enforced.) OK, I’ll take a look at that. > >> The packet leaving the SR >> domain is exactly the same (except for the hop-limit update) as the >> packet entering the SR domain. > > Is the hop limited decremented by 1, 2 or some other number? By analogy with RFC4213, it should probably be 1. Ah good note, perhaps a ref to RFC4273 is needed for context. > >> The SR domain is designed with link MTU sufficiently greater than the >> MTU at the ingress edge of the SR domain. > > "sufficiently"? Is it possible to calculate the largest possible insertion, and therefore say something more precise than "sufficiently"? You come back to this point in section 7 but the phrase "the maximum encapsulation overhead deemed required by the deployment" is no better than "sufficiently". Also, section 7 says: "The exact number is operator specific and is outside the scope of this document." I don't think that's OK; I think it's necessary to indicate how this can be calculated. How will an operator new to SR6 learn how to make the calculation? > > The very next sentence says "Some indications on how to plan this are provided in the following sections." Well, it's still vague. For example "The maximum encapsulation size of any node within the SR domain is limited to a specific value, this maximum is used to calculate the maximum link MTU". What specific value? How is it determined? I think 9.3 is what you’re looking for. > > Then: "Any packet exceeding the MTU of a link generates an IPv6 ICMP error message "packet too big" back to the source of the packet." Which source, the SR domain ingress or the encapsulated packet's source? We’ve said all packets within the SR Domain have source and dest within the domain, so this is the source of the outer IPv6 header. But point taken, the text is not clear. Thanks! Darren > > Finally, this draft is now a factual statement about vendor and operator practice. Why does it need to be an IETF stream RFC? In many ways it's exactly the sort of document that is published as an Independent Submission stream RFC. > > Brian > > On 20-Nov-19 18:22, internet-drafts@ietf.org wrote: >> >> A New Internet-Draft is available from the on-line Internet-Drafts directories. >> >> >> Title : Deployments With Insertion of IPv6 Segment >> Routing Headers >> Authors : Daniel Voyer >> Clarence Filsfils >> Darren Dukes >> Satoru Matsushima >> John Leddy >> Zhenbin Li >> James Guichard >> Filename : draft-voyer-6man-extension-header-insertion-08.txt >> Pages : 12 >> Date : 2019-11-19 >> >> Abstract: >> SRv6 is deployed in multiple provider networks. >> >> This document describes the usage of SRH insertion and deletion >> within the SR domain and how security and end-to-end integrity is >> guaranteed. >> >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-voyer-6man-extension-header-insertion/ >> >> There are also htmlized versions available at: >> https://tools.ietf.org/html/draft-voyer-6man-extension-header-insertion-08 >> https://datatracker.ietf.org/doc/html/draft-voyer-6man-extension-header-insertion-08 >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-voyer-6man-extension-header-insertion-08 >> >> >> Please note that it may take a couple of minutes from the time of submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> _______________________________________________ >> I-D-Announce mailing list >> I-D-Announce@ietf.org >> https://www.ietf.org/mailman/listinfo/i-d-announce >> Internet-Draft directories: http://www.ietf.org/shadow.html >> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt >> > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > ipv6@ietf.org > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > --------------------------------------------------------------------
- Re: I-D Action: draft-voyer-6man-extension-header… Brian E Carpenter
- Re: I-D Action: draft-voyer-6man-extension-header… Darren Dukes (ddukes)