Re: New Version Notification for draft-voyer-6man-extension-header-insertion-07.txt
Mark Smith <markzzzsmith@gmail.com> Sun, 22 September 2019 01:24 UTC
Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1546512011D; Sat, 21 Sep 2019 18:24:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.497
X-Spam-Level:
X-Spam-Status: No, score=-0.497 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LhY3QcpHoXhM; Sat, 21 Sep 2019 18:24:51 -0700 (PDT)
Received: from mail-ot1-x32f.google.com (mail-ot1-x32f.google.com [IPv6:2607:f8b0:4864:20::32f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A300E120059; Sat, 21 Sep 2019 18:24:51 -0700 (PDT)
Received: by mail-ot1-x32f.google.com with SMTP id o44so806500ota.10; Sat, 21 Sep 2019 18:24:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=sCxJXSvTN2ellwIqZ6hxpags5+eIyD9EGODgAyMMH3o=; b=X5CpMr6wspwc+KYtNYHgLhCAxbAG4UtdywhGVx3NL/Yue+p6kXqyJ821lxSSDreWXq 3Gd23jvhfc4V/mvP2JV9TuIV643aPIKentZK3HgNo56Ny6bFKrIagAt7jEvRKp3tPrbz HQ1E3X2LEz+xR6OpQbhu2oHVJ8EITIzuJfJOIEcC+6ksviNBXmlg9AoTzu4YNls6b96m S27W4UhgbujB3V7pqWPTrSPZqPk1rFSF/vLDHMLLr7IJ1ggHrS6010UxzotAVL98RH6g 0QAFdW0Y0XXN2qiPy3OWIWnoJ+RHGgkNt4khM4dSFpduNrn15KKE9cWdwh0wQJKv7W5l 7uHQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=sCxJXSvTN2ellwIqZ6hxpags5+eIyD9EGODgAyMMH3o=; b=tbT47rEO3JoNf04glR9LU7fGTIzT8NJ3YUGApqWsb8IdjSgqm7YAQlu/HGjHqjQ7S5 sE+0kMKOzzxs/HgkKrleFnd9B05cv8v9ksRFvEV/qVlgfezPwUQxmeXLPMZzyNoJBIOw +4iR97GZ9uvp0Y8WJfdlkKh2dr2km8CdZI5QJrUiQ0HruYCkwdW7dhp1sugWER24jG4p JRBoRsQaweB+o0wB0ojYqIOEYnqf3sbd8c68mzQIXkQ+VHRWD0EurnktyTwQjKBpFQDx OUoNR0OLr/PSQmH2XXRTqYMHU9PLHlgRWohSUVKGOWqYlsj0dL5WYEdYjCSomexjpeR+ Y8cg==
X-Gm-Message-State: APjAAAUhMcDcOvMtanh/tNo/Nw68wO6JuWfn1YQ5kzZ+YUHSaH+N31oX ydf4QZnk9kVOqlv0iinqZMt5QfABrjviD9EK4QU=
X-Google-Smtp-Source: APXvYqwqfFM0W0KSnNbKJx3LI/zWe56Xboi8d7HmYMFigBORvndOIAA7a+XEsMs3HB+CPEOkGJoxtPWaSJ7vJUgLA8s=
X-Received: by 2002:a05:6830:208d:: with SMTP id y13mr2524884otq.153.1569115490917; Sat, 21 Sep 2019 18:24:50 -0700 (PDT)
MIME-Version: 1.0
References: <156903961357.5092.16907354634703727132.idtracker@ietfa.amsl.com> <21D937AA-0B27-4E8D-BB6E-99452F72AC30@cisco.com> <CALx6S35Mehd_LUMt_gL=nr_B29vTND4KfYjjiiPtBaj_JjyWFQ@mail.gmail.com>
In-Reply-To: <CALx6S35Mehd_LUMt_gL=nr_B29vTND4KfYjjiiPtBaj_JjyWFQ@mail.gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Sun, 22 Sep 2019 11:24:38 +1000
Message-ID: <CAO42Z2wncc3Gtgeb1cWJ-kqDHJVdsf7vR+_BH3tXXjw0ZPR=ZA@mail.gmail.com>
Subject: Re: New Version Notification for draft-voyer-6man-extension-header-insertion-07.txt
To: Tom Herbert <tom@herbertland.com>
Cc: "Darren Dukes (ddukes)" <ddukes@cisco.com>, SPRING WG <spring@ietf.org>, 6man <6man@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000072a30e05931a2b23"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/YHnaAhqosZZP5qlHXj3UyGWG9TQ>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 22 Sep 2019 01:24:54 -0000
On Sun, 22 Sep 2019, 03:04 Tom Herbert, <tom@herbertland.com> wrote: > Some comments: > > Most of the constraints listed section 2.2 should be specified as > normative requirements. > > "SR domain link MTU is sufficiently greater than the MTU at the > ingress edge of the SR domain..." should be the requirement: "The MTU > for all paths in the domain MUST be large enough to accommodate the > maximum length of an inserted SRH" > > Also, for sizing MTU some guidance to the operator to determine what > the maximum length SRH they will ever need would be useful. > > "Within the context of this document and the described SRH use-case > within the SR domain, the SR domain can guarantee that SRH is the sole > extension header after the outer IPv6 header." should be the > requirement "An SRH MUST NOT be inserted into a packet that already > has extension headers" > > "All traffic within the SR domain has IPv6 source and destination > address within the SR domain." should be requirement: "All traffic > within the SR domain MUST have an IPv6 source and destination address > that is within the SR domain." > > Similarly, "Only traffic sourced from and destined to nodes in the SR > domain may have an SRH inserted." could be: "Traffic sourced from or > destined to a node outside of the SR domain MUST NOT have an SRH > inserted." > > About "IPv6 encapsulation and optional insertion of SRH at the SR > domain ingress edge generates a new IPv6 packet." and "IPv6 > encapsulation and SRH insertion at SR Domain ingress edge." > > This is a bit confusing in the use of the word "insertion" in the > context of encapsulation, and on first read it seemed to be allowing > SRH insertion at ingress into the domain (without encapsulating). > Instead of saying "insertion" here, maybe something like "the SRH may > be included when encapsulating". That is, reserve the term "insertion" > to explicitly mean when SRH is being inserted into an existing IPv6 > packet without encapsulating. > The entire use of the word "insertion" is incorrect if the ID is now only proposing encapsulation/tunnelling to carry transit traffic across the SR domain. According to Google, the meaning of "insert" is: place, fit, or push (something) into something else. The process of encapsulation, by creating a new IPv6 packet, and creating one or more new EHs following it (which may be derived from EHs received from somewhere else), and then carrying the existing packet unmodified as payload in the new packet, does not involve any "place, fit, or push (something) *into* something else". Encapsulation is addition to the outside of the existing. I don't really understand why people are seeming to want to cling to using the word insertion, despite it being entirely inaccurate when using encapsulation. > The attribution problem hasn't been addressed. I imagine it may be > possible to put the address of the node inserting an SRH somewhere in > the header in order to provide proper attribution. > At each point where a function using the SRH needs to be performed, that is one segment's and point, and another segment's start point. They would also be an IPv6 tunnel end point and another tunnel's start point (segments and tunnels are 1:1). The new outgoing segment tunnel header would have the local device as its source address, providing attribution. In other words a sequence of segments in an SR over IPv6 network would be a sequence of distinct IPv6 tunnels, 1:1 for the entire path. This model is entirely compliant with RFC 8200, and as tunnels end points are hosts using RFC 8200's definitions, host EHs such as Destination Option, or AH and ESP can be used in an RFC 8200 compliant manner. Regards, Mark. > Tom > > > Tom > > On Fri, Sep 20, 2019 at 9:35 PM Darren Dukes (ddukes) <ddukes@cisco.com> > wrote: > > > > Hello everyone, we’ve just submitted an updated draft that explains why > SRH insertion is performed in an SR domain, how it is accomplished and why > it is safe within the SR domain. > > > > The authors look forward to your comments and suggestions on how to > improve this document. > > > > Thanks! > > Darren (on behalf of the authors) > > > > Begin forwarded message: > > > > From: <internet-drafts@ietf.org> > > Subject: New Version Notification for > draft-voyer-6man-extension-header-insertion-07.txt > > Date: September 21, 2019 at 12:20:13 AM EDT > > > > > > A new version of I-D, draft-voyer-6man-extension-header-insertion-07.txt > > has been successfully submitted by Darren Dukes and posted to the > > IETF repository. > > > > Name: draft-voyer-6man-extension-header-insertion > > Revision: 07 > > Title: Insertion of IPv6 Segment Routing Headers in a Controlled Domain > > Document date: 2019-09-20 > > Group: Individual Submission > > Pages: 13 > > URL: > https://www.ietf.org/internet-drafts/draft-voyer-6man-extension-header-insertion-07.txt > > Status: > https://datatracker.ietf.org/doc/draft-voyer-6man-extension-header-insertion/ > > Htmlized: > https://tools.ietf.org/html/draft-voyer-6man-extension-header-insertion-07 > > Htmlized: > https://datatracker.ietf.org/doc/html/draft-voyer-6man-extension-header-insertion > > Diff: > https://www.ietf.org/rfcdiff?url2=draft-voyer-6man-extension-header-insertion-07 > > > > Abstract: > > Traffic traversing an SR domain is encapsulated in an outer IPv6 > > header for its journey through the SR domain. > > > > To implement transport services strictly within the SR domain, the SR > > domain may require insertion or removal of an SRH after the outer > > IPv6 header of the SR domain. Any segment within the SRH is strictly > > contained within the SR domain. > > > > The SR domain always preserves the end-to-end integrity of traffic > > traversing it. No extension header is manipulated, inserted or > > removed from an inner transported packet. The packet leaving the SR > > domain is exactly the same (except for the hop-limit update) as the > > packet entering the SR domain. > > > > The SR domain is designed with link MTU sufficiently greater than the > > MTU at the ingress edge of the SR domain. > > > > > > > > > > > > Please note that it may take a couple of minutes from the time of > submission > > until the htmlized version and diff are available at tools.ietf.org. > > > > The IETF Secretariat > > > > > > -------------------------------------------------------------------- > > IETF IPv6 working group mailing list > > ipv6@ietf.org > > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > > -------------------------------------------------------------------- > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > ipv6@ietf.org > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > -------------------------------------------------------------------- >
- Re: Fwd: New Version Notification for draft-voyer… Joel M. Halpern
- Fwd: New Version Notification for draft-voyer-6ma… Darren Dukes (ddukes)
- Re: wd: New Version Notification for draft-voyer-… SING Team
- RE: Fwd: New Version Notification for draft-voyer… Voyer, Daniel
- Re: New Version Notification for draft-voyer-6man… Tom Herbert
- Re: Fwd: New Version Notification for draft-voyer… Tom Herbert
- Re: Fwd: New Version Notification for draft-voyer… Mark Smith
- Re: New Version Notification for draft-voyer-6man… Mark Smith
- Re: New Version Notification for draft-voyer-6man… Robert Raszuk
- Re: New Version Notification for draft-voyer-6man… Fernando Gont
- Re: [spring] New Version Notification for draft-v… Fernando Gont
- Re: New Version Notification for draft-voyer-6man… Mark Smith