IETF Logo Mail Archive

Re: I-D Action: draft-voyer-6man-extension-header-insertion-02.txt

Tom Herbert <tom@herbertland.com> Thu, 14 December 2017 01:11 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3FDA112421A for <ipv6@ietfa.amsl.com>; Wed, 13 Dec 2017 17:11:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZCTRGeaObbSO for <ipv6@ietfa.amsl.com>; Wed, 13 Dec 2017 17:10:58 -0800 (PST)
Received: from mail-qt0-x235.google.com (mail-qt0-x235.google.com [IPv6:2607:f8b0:400d:c0d::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6DFF51200F1 for <ipv6@ietf.org>; Wed, 13 Dec 2017 17:10:58 -0800 (PST)
Received: by mail-qt0-x235.google.com with SMTP id d4so6125934qtj.5 for <ipv6@ietf.org>; Wed, 13 Dec 2017 17:10:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=+ExMM6Y91zkCkaWgKXBh7Pviu4QkTLMcn54A2RLEE7M=; b=bZqTl0QL/ePDfA79clGx5hTi4pwe5OnVzCUx/k+SM+gM+gRWvBd9iRtT25Rl4xbPJ1 5tvzIIytznkHGmF2mH+JCW3KUwK3m8j+Nsydq9eI35+Y1BvGNfepWodlbP50kOtSvbXS 3O/4zWFR7cEDUr/pQ0+86x1quDmtQ1q6jUVxhCn7gqVLbnlbfpOkIcE7fb1giVFZF0YU YHPha/bl7VAKJeEv76OfBASQ5CrxV+bM96WrpEkWVvUZ4twKnk27OEofo3nZX1SWuzDZ 0c3T0uSEsgHSv1xavqjnLbHT+sgqQcWNR3kr7nOeGN+7qWIwGg3zeou/+MEHfgWEawFI UXFg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=+ExMM6Y91zkCkaWgKXBh7Pviu4QkTLMcn54A2RLEE7M=; b=luzJg0XdkDlj0v+u6F4V9u9Rxc6kqNkwCOKX2xoTAC7lUy1r7oxDFi/c6gHqqYCFBK fHFGWDBydaMEa+WeQoAe58R69jZpXuWaKHql7ANXB/xHxoAonBYJ9dJ6Xkoa8kspKFPk TQH4HUK+n9/5KeZS9onIata/3fIFQLiDV9YNGekoTRqP4qZziQMDHQW5k0ZUuNCWnJIJ ASgD9TraDUwWrqrGsl4zh3S+G7eu451xDzrqWstwUjhTCtF+QlOMD1RTjOxVIkaMIuJm nWQGBdc+RYGWw/TwFAL8/Nj7kdtjDfthXI1KKY4LKfpy1/fPoPRXxThzJSQXPOJeckX4 LU2w==
X-Gm-Message-State: AKGB3mJ/siksQxjZpmx7Rll/WMos4CBGrn/MsoW7AqlhYy7+/kKrGjzS AZdwHdcK673Fol3T5BNIRB3/UBBLhbGDfKMvnkRlWw==
X-Google-Smtp-Source: ACJfBovAsMOplC2pzWrmTCqxGOD2ro9cakYLZlkQjo5sMBcaPkkHEGjTWgBAkQbjt3HSMpR2eQ4amvxUMEzrZ2SY/CQ=
X-Received: by 10.200.58.229 with SMTP id x92mr14250789qte.187.1513213857434; Wed, 13 Dec 2017 17:10:57 -0800 (PST)
MIME-Version: 1.0
Received: by 10.200.43.121 with HTTP; Wed, 13 Dec 2017 17:10:56 -0800 (PST)
In-Reply-To: <CAO42Z2y9iBciAxFp=P3+Q85vMsQ8Aa-4H2HzO_AhrEhjqY6UMw@mail.gmail.com>
References: <151120281628.21912.1099097760493570225@ietfa.amsl.com> <f4425076-2f76-5713-2819-9d26671d56bb@si6networks.com> <4E92F160-C586-4C7B-BAEF-97C204856A8A@employees.org> <bc9d7f57-8687-7f85-8ac3-49751683232b@si6networks.com> <CA+b+ERnKbRXgFycgKd7EXMVvS1Mu_RTC5tfPbNE781TDZ49rYA@mail.gmail.com> <CAO42Z2wWSucKNouo0RxNf7pmyPErNk1bVny43qTLY6E333mpcQ@mail.gmail.com> <e41ee3ae-05ef-0a1a-505e-968323b07625@gmail.com> <CAO42Z2x2-WFyxYKpcwtm_z4WiFFf1M5oiW2=j6fXnqgUG1F8DQ@mail.gmail.com> <8ecf3590-5313-551e-fbb3-f95aada87a67@uniroma2.it> <CALx6S35e0krDCLUhUQFws_gSJhtv0m_E_KQkyRQQWO=zL_=vnQ@mail.gmail.com> <CA+b+ERki3bfmt0FarOdNGbVbdU1U99Sucu3NhEZ9q1BnNxUQrw@mail.gmail.com> <CALx6S34fSBycO+1pU8x3konO+6=s9sYWQQaFp36kcHi4HdyxFQ@mail.gmail.com> <CA+b+ERmF2rj4n9mfvG+ANdNjpBXgpMJb63SqSNVQif4cvwaTPQ@mail.gmail.com> <CALx6S34rvUig5T36cygkq4=rN2yNEBPUHGULDFEefA46WgCkbw@mail.gmail.com> <CA+b+ERmJ8L-j0arbFhR+nvmPNNWYe5OJ3Pab1bu1Y-2HVfJtYw@mail.gmail.com> <1cf221bc-e2e3-bc04-6559-d01eff2e1232@gmail.com> <DACF635E-0A59-4894-85C8-F4C891379A3F@gmail.com> <CAO42Z2wr8i8Dw1S4kTmCXKpwRMowzjhBOYkqtzb26VNQ50KVVQ@mail.gmail.com> <CALx6S352zVE4V7eyfPgr1fVVSuUJVtdUiv==Q6pbSsbAjZ8S8w@mail.gmail.com> <CAO42Z2yUmGp1eiC5rWezXnzs1vGPfrH2_01U0Mw+kZNmJ34yQw@mail.gmail.com> <CALx6S34Ca6-fva1_bbeydkh5AYY_OfoXtyESi=Xq5fxe6DLmAA@mail.gmail.com> <CAO42Z2y9iBciAxFp=P3+Q85vMsQ8Aa-4H2HzO_AhrEhjqY6UMw@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Wed, 13 Dec 2017 17:10:56 -0800
Message-ID: <CALx6S36_TBvXw3QqEG-Jr5Pj0NHiZ6L1k10-PNSCfEsiLcVaWw@mail.gmail.com>
Subject: Re: I-D Action: draft-voyer-6man-extension-header-insertion-02.txt
To: Mark Smith <markzzzsmith@gmail.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, IPv6 List <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/y4uyNQT4r3dSQ0Ln9p7Fny0OnTw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Dec 2017 01:11:00 -0000

> EH insertion to avoid tunnelling overhead as a response to a large SRH
> header because of 128 bit hop identifiers is just shifting complexity
> that has been moved out of the control plane by SR back into the
> network, and into the forwarding plane. I think IPv6 SR looses a lot
> of value if it shifts complexity in the network rather than removing
> it.
>
I suspect that if EH insertion can't be done without encapsulation
then the value proposition for using extension headers here largely
evaporates The overhead of encapsulation is not insignifanct and the
issues of incompatibility of using any EH are still present. An
alternative is to put the routing information as payload of the
encpasulation instead of EH. That is the approach taken by BIER for
instance. For the cost of an eight byte UDP header they get
compatability on any network (and with IPv4 for that matter).

>
>
>> But even more important than the size of the headers, is the
>> processing cost. Processing fixed encapsulation at high speed is
>> expensive.
>
> I don't think that's avoidable (although it has occurred to me that
> when IPv6 becomes ubiquitous, it might be possible to use it directly
> as a the layer 2 on-the-wire frame format).
>
Considering that everything is pretty much layer 3 switched point to
point links you could do that. But probably more hassle to change
everything than it's worth.

>> Processing open ended header chains and TLVs is _really_
>> expensive to the point that they to date they are undeployable.
>
> Agree. This is why the divide-and-conquer approach of pushing
> complexity to the edge of the network and into the hosts helps us
> build faster and faster networks.
>
> The simpler the processing in the network, the faster it can be done
> and it's also less prone to error because there are less things that
> can go wrong.
>
> With NAT and middleboxes in IPv4, we've ended up with more complexity
> in the network and I've had enough experiences with that that I want
> to the simplicity of IPv4 networks before NAT and middleboxes back in
> IPv6.
>
>
>
>> While
>> I appreciate the optimism of the authors that the problem of
>> processing EH TLVs at line rate has been solved, I must admit I am
>> skeptical. It is hard to ignore a long history which has not been kind
>> to header chains or TLVs in IP.
>>
>> The obvious value of using something like the flow label is that it is
>> a zero overhead solution in the wire protocol. No encpasulation and no
>> EH. The route lookup for this could be implemented in a TCAM on
>> src,dst,flow label and the action is just to write a 20 bit value.
>
> Using the flow label has the advantages you mention, however updating
> it is still putting complexity back into the forwarding plane, and is
> a fork lift upgrade of the forwarding plane to get it.
>
> The use of the flow label for ECMP also faces this forwarding plane
> upgrade problem, although much less so - the upgrade to gain it is
> localised to the parts of the network where you need it. You don't
> need to universally upgrade all your forwarding plane devices just to
> gain flow label ECMP balancing across multiple links between two of
> your forwarding plane devices.
>
> Broadly, there seems to be a view that flag day upgrades are
> acceptable for new network technologies. That's a far more expensive
> and disruptive way to upgrade the capabilities network than the
> piecemeal, incremental and localised method that has been used to
> build the Internet since the ARPANET flag day. I don't think it should
> be preferred, I think it should be the last resort.
>
>
>> ILA, which serves the overlay network use case, is even simpler-- this
>> is a fixed length lookup on the destination and a write back to the
>> destination address. Flow label is not used and no change to standard
>> protocols is required,
>>
>
> Agree. I think ILA's techniques are much better because they leave the
> core forwarding plane alone, with the ILA changes occurring either in
> the host or in the first hop network device. The IPv6 forwarding plane
> remains conventional, simpler and standard.
>
Less is more!

Tom

> Regards,
> Mark.

v2.23.0 | Report a Bug | By Email