IETF Logo Mail Archive

RE: Size of CR in CRH

Ron Bonica <rbonica@juniper.net> Thu, 21 May 2020 18:45 UTC

Return-Path: <rbonica@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 245053A0602 for <ipv6@ietfa.amsl.com>; Thu, 21 May 2020 11:45:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=vMGo24Tk; dkim=pass (1024-bit key) header.d=juniper.net header.b=KQMHhQrJ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JMiOh-JnRLzK for <ipv6@ietfa.amsl.com>; Thu, 21 May 2020 11:45:06 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AC3F3A0542 for <6man@ietf.org>; Thu, 21 May 2020 11:45:06 -0700 (PDT)
Received: from pps.filterd (m0108163.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 04LIhGiW017711; Thu, 21 May 2020 11:45:05 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=Y9Wkb8OHg9B82x5VRIvvA7zM32Geyj2OGja3fb0pRv0=; b=vMGo24TkWun5JbKixiFOrnFhCjpN04EcGrBdTu1e/G9eeykgV+ZunUB43wvWDeUh3yI6 wmQuNByAI2p4DpuydG6Or+PMzDOnMkKZLhJFzFf8s3nPov5PY+UloRYD346qMMqjbnp5 zIBbYw348Hjowz/vdPMleHRjN4vbgozCjMcfxo+x0cLEqvL8ySQjiAfmBMkmfOA1oitC XqbMgJ9eFVOKZ+ldw0YJlOgS3/EnEcdNH+tZNwkRBr9zu2ppYQZJDLawp0uvdWk4GTAe +q5KWYC4kkKiYza85LBRuMT5sHXTWeRTxc7P8o5Zwia5f4KyMJu3DBZV7q2VCZOHswCI BA==
Received: from nam10-bn7-obe.outbound.protection.outlook.com (mail-bn7nam10lp2100.outbound.protection.outlook.com [104.47.70.100]) by mx0b-00273201.pphosted.com with ESMTP id 3159j2jcd7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 21 May 2020 11:45:05 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=e17FHD1AB1/DibAEf3dDP89SvGXOKMqtEc6E7a+cYXtEY14998K+AR5xjBxefYUPHayRWCBLiRJUr7MHg6ElKqWbH15boqN8Au8QdGNiqYdjeH8gr8pq2LUFcaK7TW6vEouez+XatVKrJr8m4vs8/n4C4ltZnANWQ59J+8U3fEzLXjTNrQYS9Qtsf6NOi/+DRqM1nrEOW7Y0Xu26mQ+gi3maSSBJ2LNadCHxvozGS2ysleB4ebIgrn6LJMI0kztlh8YHwfCBamnDvI71dYwsp1vGQ/4HJBnnbONehW+1dpqzfBgYggBRqnNPmNgzZ9RoNWehxWwlsY6yiAuEoTlpKA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Y9Wkb8OHg9B82x5VRIvvA7zM32Geyj2OGja3fb0pRv0=; b=MD8yjRwk1KJKe3HKm1aBNzmVgt2BVnwT97JuCmGQMw2z0TFWi6exXO8qxstzpxcNMvzroxo2El7GRWsFHEDfnxdlw6kTN27CclXxZuVDeUUIRy+jZdMr7f527DL/clrbFzMl1eBYqYMtqDOzhH/7Gjf7meudUX89xqgCJOMydCrezZIyS/72H1ohS3Xo3A0CNwJfc24Vgho84nh95yocPjLpsGk4rPiKSlxW99I1u+K+JUs+/mB8RwjTJoWOW8tzqfFdz3ekATS8k/swikvP0ZD2yVLrxDX0Vdtsb57G7Qu49o8qf2FYVVuNU3mWydi2rz+hRoMRnFGVr29uQkmbHw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Y9Wkb8OHg9B82x5VRIvvA7zM32Geyj2OGja3fb0pRv0=; b=KQMHhQrJgGMBDvnrxD5n/nH9r5i1rc4HcFfv+stVfymqx5Qo4s03HDhetq6DsW7aDGagkfkS2VcYH44aTMBDS+bx25GjnMdFt8PtoTsdqNXY8kTXTj+5IHI/cnSCBjuUT1s92XFIpaK+UiSZcQ8/nWySWIA9rDQXiMxduYC7z/A=
Received: from DM6PR05MB6348.namprd05.prod.outlook.com (2603:10b6:5:122::15) by DM6PR05MB6107.namprd05.prod.outlook.com (2603:10b6:5:119::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3021.11; Thu, 21 May 2020 18:45:02 +0000
Received: from DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::c020:3bf5:7230:75e3]) by DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::c020:3bf5:7230:75e3%4]) with mapi id 15.20.3021.019; Thu, 21 May 2020 18:45:02 +0000
From: Ron Bonica <rbonica@juniper.net>
To: Robert Raszuk <robert@raszuk.net>
CC: 6man <6man@ietf.org>
Subject: RE: Size of CR in CRH
Thread-Topic: Size of CR in CRH
Thread-Index: AQHWLvTGateRry/dWEq++B8v3KKITqixxH1QgABy4ICAAGTYgIAABSHAgAAInoCAADEaUA==
Date: Thu, 21 May 2020 18:45:02 +0000
Message-ID: <DM6PR05MB634807B4AAB6452B6FDA535CAEB70@DM6PR05MB6348.namprd05.prod.outlook.com>
References: <CAOj+MMFsy=dDciY=TMwSf75CZCr_i1Mfv6oUiPs5U6hT2Bq94w@mail.gmail.com> <DM6PR05MB6348D0DB381145F1A4C53450AEB70@DM6PR05MB6348.namprd05.prod.outlook.com> <CAOj+MMHT=TWqf=A71PhvCcrFggCQ=okRrP=sGaO4hrcbmsCvGw@mail.gmail.com> <CAOj+MMGYbw83c-T9GWCs_cLDWWbGi1dZ_Xfc8tS6TV6EfvWsDw@mail.gmail.com> <DM6PR05MB63484502B4CFCB745DFCED3EAEB70@DM6PR05MB6348.namprd05.prod.outlook.com> <CAOj+MMEfkenHmSLje62wNRw3OrxBzJJq_MwesozK-ABeLXbZ2Q@mail.gmail.com>
In-Reply-To: <CAOj+MMEfkenHmSLje62wNRw3OrxBzJJq_MwesozK-ABeLXbZ2Q@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-05-21T18:45:00Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Method=Standard; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=0633b888-ae0d-4341-a75f-06e04137d755; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=064c848a-0cd7-4f7c-95c6-b159cab2a56e; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ContentBits=2
dlp-product: dlpe-windows
dlp-version: 11.4.0.45
dlp-reaction: no-action
authentication-results: raszuk.net; dkim=none (message not signed) header.d=none;raszuk.net; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [108.28.233.91]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: a0919b35-6960-45c7-919b-08d7fdb7128d
x-ms-traffictypediagnostic: DM6PR05MB6107:
x-microsoft-antispam-prvs: <DM6PR05MB6107C6AD41AA7C35256AAF72AEB70@DM6PR05MB6107.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 041032FF37
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: PR9/RbL7arKC9ksFaaoqIBlrsYhGYLura+scbu0U3cI4wFVcZHfTAtDaMZFcM+HbLIObu0VQw9ThXMc76KyZqXTqhMcjzKl1caYzLW3ks2bdL11lIZ9rOcNKjL0UZfCzjseN+VaLTmYQYKfO6QirmU7Pn4yJ4ljxRBh2z3jluTIxJg7OU7ES+injXbSKHmLf/lmi7W6fFwVpenqGsFFfA+kqRsGCK/1WiIMWw+AQygy3sufjzvHLWQiRr+sK0Zh/8HXC2jz92+uX+2eSRErufg9Bpfpc6H5gX1OQ4TPgMchIT2qT7hQeL9EQ08+SAxPm
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR05MB6348.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(136003)(366004)(346002)(376002)(39860400002)(396003)(64756008)(66476007)(66946007)(478600001)(66556008)(8676002)(66446008)(2906002)(76116006)(71200400001)(9686003)(33656002)(55016002)(66574014)(26005)(86362001)(53546011)(6506007)(316002)(8936002)(52536014)(6916009)(5660300002)(186003)(7696005)(4326008)(579004); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DM6PR05MB634807B4AAB6452B6FDA535CAEB70DM6PR05MB6348namp_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: a0919b35-6960-45c7-919b-08d7fdb7128d
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 May 2020 18:45:02.6695 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: GbvLzDRCkdsNAQ2LdHmMISwrCqCl4VZfI5Ml7peTHYdOSc7WygiKfkzKokn8p/hrOpBqpdzToK1ML05U+hnUUA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB6107
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.216, 18.0.676 definitions=2020-05-21_12:2020-05-21, 2020-05-21 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 malwarescore=0 priorityscore=1501 lowpriorityscore=0 phishscore=0 clxscore=1015 impostorscore=0 adultscore=0 bulkscore=0 spamscore=0 mlxscore=0 suspectscore=0 cotscore=-2147483648 mlxlogscore=999 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2004280000 definitions=main-2005210135
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/iFkPsXUD2OQRq_nVCV7VKBG-52Q>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 May 2020 18:45:10 -0000

Robert,

Identifiers have node local scope. This means:


  *   One a single node, there is a one-to-one mapping between identifiers and the CRH-FIB entries that they identify
  *   Nodes A through Z can all have a CRH-FIB entry that is identified by N. However, all of those CRH-FIB entries do not need to contain the same information.

Referring back to your example, Node B will never have the following entry in its CRH-FIB:


  *   Identifier = 15, IPv6 Address = Node Z, Method = strict, Link = X->Y

Why should it? It isn't attached to link X->Y. So it couldn't use that entry even if it had it.

                                                         Ron





Juniper Business Use Only
From: Robert Raszuk <robert@raszuk.net>
Sent: Thursday, May 21, 2020 11:25 AM
To: Ron Bonica <rbonica@juniper.net>
Cc: 6man <6man@ietf.org>
Subject: Re: Size of CR in CRH

[External Email. Be cautious of content]

Hi Ron,

> Node B decrements Segments Left and looks for entry 15 in *its* CRH-FIB. If finds:
>
>     On Node B:  Identifier = 15, IPv6 Address = Node C, Method = strict, Link = B->C

Your example works when the entire network has a single segment routed path :)

What happens if also Node Z somewhere in the domain (or maybe even connected to B) advertised SID 15 with some different outbound link ?

So Node B will have two FIB entries:

  Identifier = 15, IPv6 Address = Node C, Method = strict, Link = B->C
  Identifier = 15, IPv6 Address = Node Z, Method = strict, Link = X->Y

So how will B decided which one to use ?

Best,
R.




On Thu, May 21, 2020 at 5:11 PM Ron Bonica <rbonica@juniper.net<mailto:rbonica@juniper.net>> wrote:
Robert,

Let's address your question with an example. Assume that Node A is sending a packet to Node D. The delivery path includes the following strictly routed hops:


  *   Node A to Node B over link A->B
  *   Node B to Node C over link B->C
  *   Node C to Node D over link C->D

Now we populate the CRH-FIB on Nodes B and C as follows:


  *   On Node B:  Identifier = 15, IPv6 Address = Node C, Method = strict, Link = B->C
  *   On Node C:  Identifier = 15, IPv6 Address = Node D, Method = strict, Link = C->D

Now, Node A formats a packet as follows:


  *   IPv6 Destination Address = Node B
  *   CRH Segments Left = 2
  *   Identifier list = [15,15]

Node A sends this packet to Node B over link A->B. Node B decrements Segments Left and looks for entry 15 in *its* CRH-FIB. If finds:


  *   On Node B:  Identifier = 15, IPv6 Address = Node C, Method = strict, Link = B->C

So, Node B updates the IPv6 address and sends the packet to Node C over link B->C. Node C decrements Segments Left and looks for entry 15 in *its* CRH-FIB. If finds:


  *   On Node C:  Identifier = 15, IPv6 Address = Node D, Method = strict, Link = C->D

So, Node C updates the IPv6 address and sends the packet to Node D over link C->D.

                                                          Ron




Juniper Business Use Only
From: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
Sent: Thursday, May 21, 2020 10:35 AM
To: Ron Bonica <rbonica@juniper.net<mailto:rbonica@juniper.net>>
Cc: 6man <6man@ietf.org<mailto:6man@ietf.org>>
Subject: Re: Size of CR in CRH

[External Email. Be cautious of content]

Ron,

While we are at the local vs global significance of SIDs can you please elaborate how do you resolve the conflict where given SID value is advertised by more then one node ? In fact imagine that all nodes in a domain choose to advertise the same SID value "15" to forward the traffic to their respective peers. So packet arrives at segment endpoint node A with CRH consisting of SID list 15, 15, 15, 15 ... where each value 15 means different behaviour on different node.

How do you even know which way to forward the packet ?

See in this case your mapping plane will contain different functions on different nodes signalled with the same SID.

I understand that you are trying to silently borrow set of procedures from SR-MPLS here as documented in RFC8660. But if you just open this RFC you will see section 2.5 or 2.6 without which you just can not simply propose to treat SID as locally significant in any form of segment routing. Of course unless you would consume two SIDs per node.

Thx,
Robert.


On Thu, May 21, 2020 at 10:34 AM Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>> wrote:
Ron,

> Now recall that identifiers have node local significance.

I was talking about case described in yr draft section 7:


"Applications can:


       o Allocate SIDs so that they have domain-wide significance."

While not a must - it is an option. So I believe my observation stays valid till draft either removes that option or describes scaling properties differences between both domain wide and local significance of the SIDs.

Thx,
R.


On Thu, May 21, 2020 at 4:01 AM Ron Bonica <rbonica@juniper.net<mailto:rbonica@juniper.net>> wrote:
Robert,

Consider the following network:


  *   Contains 65,000 routers
  *   Each router has 500 directly connected neighbors or fewer
  *   Uses 16-bit CRH

In this network, each node might have 65,499 CRH-FIB entries:


  *   64,999 CRH-FIB entries cause packets to follow the least-cost path to another node in the domain
  *   500 CRH-FIB entries cause packets to traverse a specific link to a specific neighbor.

As a mnemonic device, an operator might assign identifiers as follows:


  *   0-65,000 identify CRH-FIB entries that cause packets to follow the least-cost path to another node in the domain
  *   65,001 - 65,565 identify CRH-FIB entries that that cause packets to traverse a specific link to a specific neighbor.

Now recall that identifiers have node local significance. So, Node A and Node B might both have a CRH-FIB entry that is identified by the value 65,001. However:


  *   The CRH-FIB entry on Node A causes packets to traverse a particular link towards Node X
  *   The CRH-FIB entry on Node B causes packets to traverse a different link towards Node Y.

I think that this example refutes the premise of your argument, so there is not further need to address the conclusion.

                                                                                         Ron





Juniper Business Use Only
From: Robert Raszuk <robert@raszuk.net<mailto:robert@raszuk.net>>
Sent: Wednesday, May 20, 2020 6:20 PM
To: Ron Bonica <rbonica@juniper.net<mailto:rbonica@juniper.net>>
Cc: 6man <6man@ietf.org<mailto:6man@ietf.org>>
Subject: RE: Size of CR in CRH

[External Email. Be cautious of content]

HI,

So just to make sure I understand this analogy of 16 bit -- 2^16 = 65536 nodes. I think this is only on paper.

Imagine I have 1000 routers so if I divide the 16 bit space by 1000 I get at most 65 local node behaviours if anyone would like to embed such into the SID.

That means that if my router have more then 65 interfaces I am not able to steer packets by src route out of my router ... I must always depend on the lookup of next SID how to forward the packets.

That also means that if I want to apply any form of NP in segment endpoint I am quite limited to the number of local functions I could use.

To conclude - Let me restate to what I and others already said - flat SID space domain wide in mapping plane is a mistake. Yes this is like MPLS, but this does not make it great again due to that legacy.

Many thx,
R.

v2.23.0 | Report a Bug | By Email