IETF Logo Mail Archive

RE: END SID Without SRH

"Wang, Weibin (NSB - CN/Shanghai)" <weibin.wang@nokia-sbell.com> Wed, 12 June 2019 05:25 UTC

Return-Path: <weibin.wang@nokia-sbell.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6431812007A for <ipv6@ietfa.amsl.com>; Tue, 11 Jun 2019 22:25:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZSssgJOpDauy for <ipv6@ietfa.amsl.com>; Tue, 11 Jun 2019 22:25:30 -0700 (PDT)
Received: from cnshjsmin03.alcatel-sbell.com.cn (cnshjsmin03.alcatel-sbell.com.cn [116.246.26.71]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DB59712004C for <ipv6@ietf.org>; Tue, 11 Jun 2019 22:25:28 -0700 (PDT)
X-AuditID: ac189297-b85ff70000007028-47-5d008cc5b580
Received: from CNSHPPEXCH1606.nsn-intra.net (Unknown_Domain [135.251.51.106]) (using TLS with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by cnshjsmin03.alcatel-sbell.com.cn (Symantec Messaging Gateway) with SMTP id 8C.33.28712.5CC800D5; Wed, 12 Jun 2019 13:25:25 +0800 (HKT)
Received: from CNSHPPEXCH1601.nsn-intra.net (135.251.51.101) by CNSHPPEXCH1606.nsn-intra.net (135.251.51.106) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1713.5; Wed, 12 Jun 2019 13:25:24 +0800
Received: from CNSHPPEXCH1601.nsn-intra.net ([135.251.51.101]) by CNSHPPEXCH1601.nsn-intra.net ([135.251.51.101]) with mapi id 15.01.1713.004; Wed, 12 Jun 2019 13:25:24 +0800
From: "Wang, Weibin (NSB - CN/Shanghai)" <weibin.wang@nokia-sbell.com>
To: Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>, Tom Herbert <tom@herbertland.com>
CC: 6man WG <ipv6@ietf.org>
Subject: RE: END SID Without SRH
Thread-Topic: END SID Without SRH
Thread-Index: AdUdO5q1Xl8r4Qz1TcuQQsHzUSUW9ADC+aAAAAmHnwAAG1WaUA==
Date: Wed, 12 Jun 2019 05:25:24 +0000
Message-ID: <98460530d29c4f2aa2cb303a7f1a5c1e@nokia-sbell.com>
References: <BYAPR05MB42456C75487CF9283A0ED1D0AE100@BYAPR05MB4245.namprd05.prod.outlook.com> <CALx6S35g4AJ2gusKjLV=Up0WMDwc_DhMPiahg3Xcga0Eeim+ow@mail.gmail.com> <BYAPR05MB42450D61AD0ABE9284C70E75AEED0@BYAPR05MB4245.namprd05.prod.outlook.com>
In-Reply-To: <BYAPR05MB42450D61AD0ABE9284C70E75AEED0@BYAPR05MB4245.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2019-06-11T23:52:06.2140424Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Internal; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=2949cd09-812f-4a5d-9454-5e82f8d07c9d; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
x-originating-ip: [135.251.51.115]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrIIsWRmVeSWpSXmKPExsXS/ts4S/doD0OswaevrBYvz75nsmjde43R 4vKlR8wOzB4nll1h9eidO43VY8mSn0wBzFFcNimpOZllqUX6dglcGW3PUwpe6VWs2LCOsYHx gm4XIyeHhICJxLYpd9m7GLk4hASOM0k82LOfFcL5yyhx61wnI4SziVHizq1mNpAWNgE3iUnb dgHZHBwiAlESJ4/VgoSZBaQlbi15zgRiCwsoSDSsXsECYosIKEq0PH7KClHuJNH60gwkzCKg KjHt6Bl2EJtXwE7i+pGZUHu/MUrcvDqLEaSeUyBWYs8vGZAaRgExie+n1jBBrBKXuPVkPhPE AwISS/acZ4awRSVePv4HNodXYCOrxNdt11lA5kgIKEn0bWACMZkFNCXW79KHGKMoMaX7IdQJ ghInZz5hmcAoPgvJhlkIHbOQdMxC0rGAkWUVo3RyXnFGVnFuZp6BsV5efnZmom5xUmpOjl5y fu4mRmDErZGYNH0H47ED3ocYBTgYlXh4M6b+jxFiTSwrrsw9xCjBwawkwmuUzRArxJuSWFmV WpQfX1Sak1p8iFGag0VJnPeD+6UYIYH0xJLU7NTUgtQimCwTB6dUA+PemhcGtooHbVtFk6UP qXt/PDWlwaT4+o9Cu1656z41/is4WRtK2FyDzTQFe1ZfrO77FhmoxaPc8++zZ9z8Zf0p/TMt 7i1v88ydx6ns/eaPeU1uPd+TlKKvH+c2FCaulXr4czqzT8mzuAT+u++1vDfd3PEz6dhTnxP/ tFKK9mncjtu+ulHitBJLcUaioRZzUXEiABTsuhC0AgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/vLNVS8Y4wWYzThQbssvkItzwBw4>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jun 2019 05:25:34 -0000

Hi:

But, I think the SRv6 SID function in draft SRH is same as that ENDPOINT defined within 4.1 section of draft "SRv6 networking programming", where the following sentences are from:
A local SID could be bound to a function which authorizes the
   decapsulation of an outer header (e.g.  IPinIP) or the punting of the
   packet to TCP, UDP or any other protocol.  This however needs to be
   explicitly defined in the function bound to the local SID.  By
   default, a local SID bound to the well-known function "End"neither
   allows the decapsulation of an outer header nor the cleanup of an
   SRH.  As a consequence, an End SID cannot be the last SID of an SRH
   and cannot be the DA of a packet without SRH.

According to above, Should the SR source node NOT put END SID as last SID in SRH segment list by default? If we want to implement the function decapsulation of outer IPv6 header, such as IPinIP scenario, DO we need define a new SID for that? Or the SRv6 source node should put normal ipv6@ pointing to tunnel termination router as last member in Segment list? In other words, Can normal IPv6 address (not from SID prefix block) be included as last member in Segment list?
--------------------------------------
Thank you !


WANG Weibin


-----Original Message-----
From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Ron Bonica
Sent: 2019年6月12日 7:52
To: Tom Herbert <tom@herbertland.com>
Cc: 6man WG <ipv6@ietf.org>
Subject: RE: END SID Without SRH

Tom,

Close, but not exactly.

I am surprised that a document whose title is " IPv6 Segment Routing Header (SRH)" describes behavior changes that occur when the SRH is not present.

Personally, I think that this is an indication that the draft does more than define the SRH, but I am willing to accept that I am in the minority on this point.

                                                    Ron



Juniper Internal

-----Original Message-----
From: Tom Herbert <tom@herbertland.com> 
Sent: Tuesday, June 11, 2019 3:19 PM
To: Ron Bonica <rbonica@juniper.net>
Cc: 6man WG <ipv6@ietf.org>
Subject: Re: END SID Without SRH

On Fri, Jun 7, 2019 at 7:26 AM Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org> wrote:
>
> Darren,
>
>
>
> This isn’t a blocker. Just a surprising behavior that never struck me before.
>
>
>
> Assume that an SRv6 router receives a packet whose destination address is an END SID. The packet does not contain any extension headers at all.
>
>
>
> If the next header after the IPv6 header is IPv4 or IPv6, the router removes the outer header and forwards the payload.
>
>
>
> If the next header after the IPv6 header is TCP, the router discards the packet and sends an ICMP Parameter Problem message back to the source.

Ron,

Extrapolating as to why you think this is surprising behavior (please correct me if this is wrong), but as I read it, this would be true for any transport protocol and allows the possibility of hosts that don't even know what segment routing is to receive the parameter error. For instance, if someone were just innocently pinging the router's address, which happens also to be an END SID, the source of the ping would get the parameter error. In that case, the host might not even know what segment routing is and much less have any clue why its getting a parameter problem pointing to the nexthdr field for an otherwise simple IPv6 packet.

Tom

>
>
>
> Am I reading the spec correctly?
>
>
>
>                                             Ron
>
>
>
>
> Juniper Internal
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: 
> https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mail
> man_listinfo_ipv6&d=DwIFaQ&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzo
> CI&r=Fch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8&m=9ASj40JkUp_IP94KYpx
> 2kuAwzMvXveo2lvlaY_frSJU&s=jsc2nf5cRibLHNNp9CDwxadf-QtMl8B1X0Vg-5uBBcc
> &e=
> --------------------------------------------------------------------
--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email