IETF Logo Mail Archive

Re: CRH is not needed - Re: How CRH support SFC/Segment Endpoint option?

Tom Herbert <tom@herbertland.com> Tue, 26 May 2020 19:53 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9ADAF3A0FC3 for <ipv6@ietfa.amsl.com>; Tue, 26 May 2020 12:53:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id awHsgZG7ckIO for <ipv6@ietfa.amsl.com>; Tue, 26 May 2020 12:53:42 -0700 (PDT)
Received: from mail-ej1-x62d.google.com (mail-ej1-x62d.google.com [IPv6:2a00:1450:4864:20::62d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8D593A0FC2 for <6man@ietf.org>; Tue, 26 May 2020 12:53:41 -0700 (PDT)
Received: by mail-ej1-x62d.google.com with SMTP id se13so25122574ejb.9 for <6man@ietf.org>; Tue, 26 May 2020 12:53:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=3tCzz0yhCYkhn8C/4K9lOpaHpiH3qewMxYoK0Izz1WY=; b=bbQYGoavVnpStf4CVqx6s0frD35bZfDDbTU3y+VfRPKEp3xRW4Jc90JIX1Vuf+dmxW 069rokLIMvafpXPUeS3064lVLGPmg4cGHN2NFIAswpU0ARwABmULbe5oqF42WlA4qVZ1 WxEA3gn9A01d9P7823UlbR5TJ8vzSe25a5IbGZYR3R1XF4C9AjgJpN1MHDjp/GUQWodR 2qlNn5BHk9GIM1hHzFyoSctO6jEOFNj98PbNzZZgjgyRCGvqhJ0JtbPZnInwqS7atiJz DlGzcTrjYL9rCzok1aseTjAjiDZ7FLV3BsOWqBNQH9GQc59We0WLHWUg70Tx1bCtYt1O olYw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=3tCzz0yhCYkhn8C/4K9lOpaHpiH3qewMxYoK0Izz1WY=; b=n8jDs11MRL3UFjzHbUD4/ph9dG6pYqfQviF+sCem3fnqbSxHmMACLvD3+XqZNgNOQa Mzxoq1US47xdRe6ZvSQLXV7p2lIqIp/mQOfmdIVXvB636N6SoBPLhWsNcLyzMRxw+UgC r/CaG9H2w8TaJvDOKSuIumyHXdNmSYROnUNoB8+oHAeoQGAJridkdQfMRyaUvB5HfFzJ mCUbm7pdzEW5AGyttCYgJIzqyHsFJVmSKrARZw4O/E0Hi5BTB3xDsP60abCSGxDRKOOp HawdPjPFtj7QcL0/9zDSps1J3QYy1t5HWEb1A/ywIDwEEwJ3MxRSc6txaJaAooDBlHpV dCfw==
X-Gm-Message-State: AOAM532y9sC2aaOt1pdcZOXp07xC4+yE3lXNGEMUtczy+ELf6Ng/8Vn9 xmIe2wLfXEXomrtSnJraIxbQeE339RMBhDEOT2Qu/A==
X-Google-Smtp-Source: ABdhPJyo1IF6CAWTpwnCtHwE/IQ/fzlT/7l2q7IXJjUJpymMLqh3ps7qzkODcJyvR54NEgLwRniaD4l/oUZMcOZXvN8=
X-Received: by 2002:a17:906:aecc:: with SMTP id me12mr2691165ejb.525.1590522820079; Tue, 26 May 2020 12:53:40 -0700 (PDT)
MIME-Version: 1.0
References: <641D69E6-39D6-4EFD-A04E-1E33D585BEAE@cisco.com> <F73A3CB31E8BE34FA1BBE3C8F0CB2AE297B9C599@dggeml510-mbs.china.huawei.com> <VI1PR03MB50569B048D2EFEED06D01AC3EEB00@VI1PR03MB5056.eurprd03.prod.outlook.com> <DM6PR13MB3066AA3BAB9287E939499E25D2B00@DM6PR13MB3066.namprd13.prod.outlook.com>
In-Reply-To: <DM6PR13MB3066AA3BAB9287E939499E25D2B00@DM6PR13MB3066.namprd13.prod.outlook.com>
From: Tom Herbert <tom@herbertland.com>
Date: Tue, 26 May 2020 12:53:28 -0700
Message-ID: <CALx6S34rEbLAuBU-yiD+q5gVkSwTD8ab0gtKz229ksEzufsYLw@mail.gmail.com>
Subject: Re: CRH is not needed - Re: How CRH support SFC/Segment Endpoint option?
To: James Guichard <james.n.guichard@futurewei.com>
Cc: Andrew Alston <Andrew.Alston@liquidtelecom.com>, Mach Chen <mach.chen@huawei.com>, "Zafar Ali (zali)" <zali=40cisco.com@dmarc.ietf.org>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>, "Chengli (Cheng Li)" <c.l@huawei.com>, 6man <6man@ietf.org>, "spring@ietf.org" <spring@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/aykrbw84ZaGuQkXQfnHnhBJPK60>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 May 2020 19:53:45 -0000

On Tue, May 26, 2020 at 10:27 AM James Guichard
<james.n.guichard@futurewei.com> wrote:
>
> Hi Andrew,
>
>
>
> Some of your comments about SRv6 are a little subjective.
>
>
>
> You say SRv6 is complex and yet in its basic form it is simply a list of IPv6 addresses carried in a routing header which does not seem too difficult to understand especially in light of the fact that with CRH I have essentially the same thing albeit with another level of indirection to resolve the mappings.

Jim,

I agree with the assessment that SRv6, specifically SRH, is complex.
It is more than simply a list of IPv6 addresses-- the protocol format
includes Flags fields, Tags, Last Entry, and TLVs one of which is
HMAC. Those "features" do not make for a simple dataplane protocol
that is amendable hardware and working through those was one of the
reasons it took so long to get SRH through 6man. Had SRH be defined as
just a list of IPv6 addresses and nothing else, I believe these
conversations would be quite different.

Tom

> You say SRv6 has massive overhead and yet there are several proposals in which that overhead can be compressed without having to implement a mapping system to resolve the indirection.
> The overloading the IPv6 address space comment seems at best subjective given that the IPv6 address in the DA field for SRv6 on the wire looks no different than any other IPv6 packet; the fact that some router in the network locally defines a set of instructions to execute upon receipt of a packet using that IPv6 address is a local affair and of no particular concern to any other router. The same logic applies to things like policy-based routing where a router can implement some policy to direct a packet on a different path that no router upstream is aware of.
> Given the long and quite exhausting email thread on violation of RFC8200 it is apparent that not everyone agrees with you on this point and in fact I would go as far as to say the current text is pretty clear from an English language point of view that I find it interesting how many different interpretations have sprung up.
> Network programming is a tool (that you are free to use or not) to enable innovation through locally defined instructions; again, how is this over engineered and if it is over engineered how can it also be inflexible? Seem to me that the complete opposite is true.
>
>
>
> Thanks!
>
>
>
> Jim
>
>
>
> From: spring <spring-bounces@ietf.org> On Behalf Of Andrew Alston
> Sent: Tuesday, May 26, 2020 7:59 AM
> To: Mach Chen <mach.chen@huawei.com>; Zafar Ali (zali) <zali=40cisco.com@dmarc.ietf.org>; Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>; Chengli (Cheng Li) <c.l@huawei.com>; 6man <6man@ietf.org>; spring@ietf.org
> Subject: Re: [spring] CRH is not needed - Re: How CRH support SFC/Segment Endpoint option?
>
>
>
> Speaking as an operator that operates in 15 countries – yes – yes and yes again.
>
>
>
> SRv6 will never find a home on our network – it is complex, it has massive overhead, it overloads the address space in ways that make me cringe, it currently (in my view) violates RFC8200, the network programming draft is so overengineered that it is entirely inflexible – where as CRH – is simple, it gives me exactly what we need, it is a building block to many other things in the pipe line, and it has been tested and is functional.
>
>
>
> I will not begrude anyone who wants to run SRv6 – each to his own – but as an operator – I 100% want CRH – and I 100% do not believe that SRv6 is in any way shape or form an alternative to it – or something that I will ever run across any of the countries we operate in.
>
>
>
> Thanks
>
>
>
> Andrew
>
>
>
> Do we really want this?
>
>
>
> My two cents.
>
>
>
> Best regards,
>
> Mach
>
>
>
> From: ipv6 [mailto:ipv6-bounces@ietf.org] On Behalf Of Zafar Ali (zali)
> Sent: Tuesday, May 26, 2020 3:02 PM
> To: Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>; Chengli (Cheng Li) <c.l@huawei.com>; 6man <6man@ietf.org>; spring@ietf.org
> Subject: CRH is not needed - Re: How CRH support SFC/Segment Endpoint option?
>
>
>
> Hi,
>
>
>
> It appears that some may have misunderstood the SRv6 solution and invented CRH.
>
> It is good to clarify these points.
>
>
>
> SRv6 offers the possibility to combine underlay and overlay instructions in a single SRH.
>
> However,
>
> ·         This is entirely optional
>
> ·         If one would like to spread the source routed policy between multiple extension headers, one can use SRv6 to do this
>
> o   SRH to hold the topological endpoints
>
> o   Any combination of other extension headers to hold VPN and/or Service information. For example, SRH works seamlessly with NSH as documented in a WG document https://tools.ietf.org/html/draft-ietf-spring-nsh-sr-02.
>
>
>
> Claiming that a new data plane is needed to achieve this separation is false.
>
>
>
> Claiming that CRH is needed to decrease the overhead of source-routed policy in IPv6 is incorrect, too. Many members of the SPRING working group have produced documents to extend the SRv6 solution for the specific purpose of minimizing the MTU overhead and/or supporting very long SID-lists on legacy hardware.
>
>
>
> Also, CRH is just a re-engineering of SR-MPLS Data Plane with IPv6 Control Plane [RFC8663] and RFC8663 is an already productized, deployed, proven, and standardized solution.
>
>
>
> 6man took 6 years to define SRH. The 6man WG spent a lot of efforts (1000s of email, dozens of document revision, dozens of IETF presentations, control plan work that is adopted by multiple workgroups, etc.).
>
>
>
> There is no need to define a new data plane, new control plane and associated management plane for the same purpose the IETF across multiple areas has worked for years.
>
>
>
> Thanks
>
>
>
> Regards … Zafar
>
>
>
>
>
> From: ipv6 <ipv6-bounces@ietf.org> on behalf of Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
> Date: Friday, May 22, 2020 at 10:17 AM
> To: "Chengli (Cheng Li)" <c.l@huawei.com>, 6man <6man@ietf.org>, "spring@ietf.org" <spring@ietf.org>
> Cc: "spring@ietf.org" <spring@ietf.org>
> Subject: RE: How CRH support SFC/Segment Endpoint option?
>
>
>
> Cheng,
>
>
>
> The sole purpose of a Routing header is to steer a packet along a specified path to its destination. It shouldn’t attempt to do any more than that.
>
>
>
> The CRH does not attempt to deliver service function information to service function instances. However, it is compatible with:
>
>
>
> -          The Network Service Header (NSH)
>
> -          The Destination Options header that precedes the Routing header
>
>
>
> Both of these can be used to deliver service function information to service function instances.
>
>
>
>                                                                                                                      Ron
>
>
>
>
>
>
>
> Juniper Business Use Only
>
> From: Chengli (Cheng Li) <c.l@huawei.com>
> Sent: Friday, May 22, 2020 2:56 AM
> To: 6man <6man@ietf.org>; spring@ietf.org; Ron Bonica <rbonica@juniper.net>
> Cc: spring@ietf.org
> Subject: How CRH support SFC/Segment Endpoint option?
>
>
>
> [External Email. Be cautious of content]
>
>
>
> Hi Ron,
>
>
>
> When reading the CRH draft, I have a question about how CRH support SFC?
>
>
>
> For example, we have a SID List [S1, S2, S3, S4, S5], and S3 is a SFC related SID, how to indicate that? By PSSI? [1]
>
>
>
> But how to know which segment endpoint node/egress node should process this PSSI? At the beginning of the SRm6 design, this is described in [2]. But you deleted the containers [2].
>
>
>
> Without that, I don’t really understand how SFC can be supported.
>
>
>
>
>
> Best,
>
> Cheng
>
>
>
>
>
>
>
> [1]. https://tools.ietf.org/html/draft-bonica-spring-sr-mapped-six-01#section-4.1
>
> [2]. https://tools.ietf.org/rfcdiff?url2=draft-bonica-6man-seg-end-opt-04.txt.
>
>
>
>
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email