IETF Logo Mail Archive

RE: END SID Without SRH

Ron Bonica <rbonica@juniper.net> Wed, 12 June 2019 14:15 UTC

Return-Path: <rbonica@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37D3412011C for <ipv6@ietfa.amsl.com>; Wed, 12 Jun 2019 07:15:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.71
X-Spam-Level:
X-Spam-Status: No, score=-2.71 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X_vch_GtvmqY for <ipv6@ietfa.amsl.com>; Wed, 12 Jun 2019 07:15:53 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4962E1200FF for <ipv6@ietf.org>; Wed, 12 Jun 2019 07:15:53 -0700 (PDT)
Received: from pps.filterd (m0108158.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id x5CEEGPj012226; Wed, 12 Jun 2019 07:15:51 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=/rDm49goG4qEWK2avFSc0ZNsxpk2nVlLZvsK4E1/acc=; b=0+ojpJeZGHr/RF4DuZ1v7DehXMzVFMLN0ootRknKD8LCFiGrfiDL7XFeCoyhEzeXEXlZ Nnu5niQNAyFQ7LboNG7NQiMRf1ChFGWsbtt8j/rSXE45XyS0BsvqHgcv9vdyIzcFyy/S FxvGAlxj6ArguRK8EixVHheZ4jFN+7CeEI4wDila7VSqfwpez0zQZLrDDs+MqwoD8/Us EGsXgnLGCkI8+nvoON1Jw+gTqOJ8AmOONT/VBztk5p2vk/4EWnPxxVeO/TA6nAYscM+b S0CgQPD6rm6IZbciubBI6le5Tu6ydnkVGY6t7MYZLyFccazyfp+om8EzmQOYAWHGWcjG Zw==
Received: from nam04-co1-obe.outbound.protection.outlook.com (mail-co1nam04lp2059.outbound.protection.outlook.com [104.47.45.59]) by mx0a-00273201.pphosted.com with ESMTP id 2t2yan0dmm-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 12 Jun 2019 07:15:51 -0700
Received: from BYAPR05MB4245.namprd05.prod.outlook.com (20.176.252.26) by BYAPR05MB6232.namprd05.prod.outlook.com (20.178.55.217) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1987.10; Wed, 12 Jun 2019 14:15:49 +0000
Received: from BYAPR05MB4245.namprd05.prod.outlook.com ([fe80::78bc:c7f3:9c1b:9ccb]) by BYAPR05MB4245.namprd05.prod.outlook.com ([fe80::78bc:c7f3:9c1b:9ccb%7]) with mapi id 15.20.1987.010; Wed, 12 Jun 2019 14:15:49 +0000
From: Ron Bonica <rbonica@juniper.net>
To: "Wang, Weibin (NSB - CN/Shanghai)" <weibin.wang@nokia-sbell.com>, Tom Herbert <tom@herbertland.com>
CC: 6man WG <ipv6@ietf.org>
Subject: RE: END SID Without SRH
Thread-Topic: END SID Without SRH
Thread-Index: AdUdO5q1Xl8r4Qz1TcuQQsHzUSUW9ADTvSkAAAkfLWAADAwUAAASAeIw
Date: Wed, 12 Jun 2019 14:15:49 +0000
Message-ID: <BYAPR05MB4245AB79EC801FEA9ABBC542AEEC0@BYAPR05MB4245.namprd05.prod.outlook.com>
References: <BYAPR05MB42456C75487CF9283A0ED1D0AE100@BYAPR05MB4245.namprd05.prod.outlook.com> <CALx6S35g4AJ2gusKjLV=Up0WMDwc_DhMPiahg3Xcga0Eeim+ow@mail.gmail.com> <BYAPR05MB42450D61AD0ABE9284C70E75AEED0@BYAPR05MB4245.namprd05.prod.outlook.com> <98460530d29c4f2aa2cb303a7f1a5c1e@nokia-sbell.com>
In-Reply-To: <98460530d29c4f2aa2cb303a7f1a5c1e@nokia-sbell.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.2.0.14
dlp-reaction: no-action
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2019-06-11T23:52:06.2140424Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Internal; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=2949cd09-812f-4a5d-9454-5e82f8d07c9d; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 79db1fc9-ccf5-407b-3823-08d6ef40784e
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:BYAPR05MB6232;
x-ms-traffictypediagnostic: BYAPR05MB6232:
x-ms-exchange-purlcount: 2
x-microsoft-antispam-prvs: <BYAPR05MB62329577743FD4E8989D8C51AEEC0@BYAPR05MB6232.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:3631;
x-forefront-prvs: 0066D63CE6
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(39860400002)(376002)(366004)(346002)(396003)(189003)(199004)(13464003)(51444003)(186003)(966005)(7696005)(66574012)(33656002)(2906002)(229853002)(478600001)(102836004)(110136005)(14454004)(55016002)(9686003)(6306002)(3846002)(316002)(6436002)(99286004)(25786009)(66066001)(5660300002)(4326008)(71190400001)(6116002)(3480700005)(71200400001)(66446008)(446003)(66476007)(73956011)(11346002)(8936002)(66556008)(486006)(476003)(74316002)(26005)(86362001)(8676002)(53936002)(305945005)(64756008)(76116006)(53546011)(7736002)(256004)(68736007)(81156014)(81166006)(6506007)(52536014)(14444005)(6246003)(66946007)(76176011); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR05MB6232; H:BYAPR05MB4245.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: zKFwHodUkISUkBRvduSRN+8Pxds+QUH6WdqAxee5GCmul3og8Pqy/BnY395Qqz+pEBL13hjLxgt1EHdIWoRd6e2fpE5S+gkpyExJ5G3jomGAcqECfu+tvsPqv40tMgHJPSUwv7MambYO3M7UWdF0c2pJrChWvnBYzaW7UKYpFcXcWaPQuAJSg68yrZe/QoXcKBFLDzaf8qJg8fXoW8NLBqOI4E9qUBl2UvJxoGK3zFMxcivxTunLtOTM/yNk/oEsauToMSGp7xibKQgiucTe2y/7Jhsr15eoSt3ynhh+K6wrD3V5iA+FSjVM3z0RoyixIrHYrIUSFykjmjb4s2Qb3RR61isvgrAzEKpCcifRWmxDbfzoboz7vSyDYRlN3SruPIBFAyG1+2QIJMjL2q8R7gvmExOAY+89LR/ODAbf4TY=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 79db1fc9-ccf5-407b-3823-08d6ef40784e
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Jun 2019 14:15:49.3214 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: rbonica@juniper.net
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB6232
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-06-12_07:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1906120096
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/Ewz4S0rrTkI2t8XiR0UELHgjZw8>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jun 2019 14:15:55 -0000

Hello Wang,

Before we start, it is not entirely clear that the unnamed SID described in draft-ietf-6man-segment-routing-header is the same as any of the SIDs described in the network programming draft. 

But even if the unnamed SID were the same as the END SID, we are not discussing the relative position of the END SID in the SRH. We are discussing whether a document whose title is " IPv6 Segment Routing Header (SRH)" should describe behavior changes that occur when the SRH is not present.

                                                                                           Ron




Juniper Internal

-----Original Message-----
From: Wang, Weibin (NSB - CN/Shanghai) <weibin.wang@nokia-sbell.com> 
Sent: Wednesday, June 12, 2019 1:25 AM
To: Ron Bonica <rbonica@juniper.net>; Tom Herbert <tom@herbertland.com>
Cc: 6man WG <ipv6@ietf.org>
Subject: RE: END SID Without SRH

Hi:

But, I think the SRv6 SID function in draft SRH is same as that ENDPOINT defined within 4.1 section of draft "SRv6 networking programming", where the following sentences are from:
A local SID could be bound to a function which authorizes the
   decapsulation of an outer header (e.g.  IPinIP) or the punting of the
   packet to TCP, UDP or any other protocol.  This however needs to be
   explicitly defined in the function bound to the local SID.  By
   default, a local SID bound to the well-known function "End"neither
   allows the decapsulation of an outer header nor the cleanup of an
   SRH.  As a consequence, an End SID cannot be the last SID of an SRH
   and cannot be the DA of a packet without SRH.

According to above, Should the SR source node NOT put END SID as last SID in SRH segment list by default? If we want to implement the function decapsulation of outer IPv6 header, such as IPinIP scenario, DO we need define a new SID for that? Or the SRv6 source node should put normal ipv6@ pointing to tunnel termination router as last member in Segment list? In other words, Can normal IPv6 address (not from SID prefix block) be included as last member in Segment list?
--------------------------------------
Thank you !


WANG Weibin


-----Original Message-----
From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Ron Bonica
Sent: 2019年6月12日 7:52
To: Tom Herbert <tom@herbertland.com>
Cc: 6man WG <ipv6@ietf.org>
Subject: RE: END SID Without SRH

Tom,

Close, but not exactly.

I am surprised that a document whose title is " IPv6 Segment Routing Header (SRH)" describes behavior changes that occur when the SRH is not present.

Personally, I think that this is an indication that the draft does more than define the SRH, but I am willing to accept that I am in the minority on this point.

                                                    Ron



Juniper Internal

-----Original Message-----
From: Tom Herbert <tom@herbertland.com> 
Sent: Tuesday, June 11, 2019 3:19 PM
To: Ron Bonica <rbonica@juniper.net>
Cc: 6man WG <ipv6@ietf.org>
Subject: Re: END SID Without SRH

On Fri, Jun 7, 2019 at 7:26 AM Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org> wrote:
>
> Darren,
>
>
>
> This isn’t a blocker. Just a surprising behavior that never struck me before.
>
>
>
> Assume that an SRv6 router receives a packet whose destination address is an END SID. The packet does not contain any extension headers at all.
>
>
>
> If the next header after the IPv6 header is IPv4 or IPv6, the router removes the outer header and forwards the payload.
>
>
>
> If the next header after the IPv6 header is TCP, the router discards the packet and sends an ICMP Parameter Problem message back to the source.

Ron,

Extrapolating as to why you think this is surprising behavior (please correct me if this is wrong), but as I read it, this would be true for any transport protocol and allows the possibility of hosts that don't even know what segment routing is to receive the parameter error. For instance, if someone were just innocently pinging the router's address, which happens also to be an END SID, the source of the ping would get the parameter error. In that case, the host might not even know what segment routing is and much less have any clue why its getting a parameter problem pointing to the nexthdr field for an otherwise simple IPv6 packet.

Tom

>
>
>
> Am I reading the spec correctly?
>
>
>
>                                             Ron
>
>
>
>
> Juniper Internal
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: 
> https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mail
> man_listinfo_ipv6&d=DwIFaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzo
> CI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=9ASj40JkUp_IP94KYpx
> 2kuAwzMvXveo2lvlaY_frSJU&s=jsc2nf5cRibLHNNp9CDwxadf-QtMl8B1X0Vg-5uBBcc
> &e=
> --------------------------------------------------------------------
--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_ipv6&d=DwIGaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=TZXeGAVoqh8RRFRx9DbZpp22APN6Ol6LFFZRa-yxBQ4&s=A2EzKSyTFVoYaLMcWD57X2VoDlpHGKCJNDrnqe5QMUY&e= 
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email