IETF Logo Mail Archive

Re: [Lsr] Using IS-IS Multi-Topology (MT) for Segment Routing based Virtual Transport Network

John E Drake <jdrake@juniper.net> Thu, 26 March 2020 15:31 UTC

Return-Path: <jdrake@juniper.net>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F4E53A0BE2 for <lsr@ietfa.amsl.com>; Thu, 26 Mar 2020 08:31:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=wFh30/lv; dkim=pass (1024-bit key) header.d=juniper.net header.b=bQY+58Xs
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h4V4Jn0TMwoe for <lsr@ietfa.amsl.com>; Thu, 26 Mar 2020 08:31:07 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B0A73A0C3A for <lsr@ietf.org>; Thu, 26 Mar 2020 08:31:07 -0700 (PDT)
Received: from pps.filterd (m0108159.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 02QFM810003590; Thu, 26 Mar 2020 08:30:56 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=TVfEcWyzXLaXiCQCw166h8fgxtG5atptKvtNArHy7g0=; b=wFh30/lvCasuyo7vUxOQXMQNZZFWSvzLWFPdLdtG+XrE/HB9N0pnNJbiuPQA0CXMBY2b Tee9ffVL5VwYenAQ0p9O/1JtkxPfLetKj89o1bsx1FoWao4wvnSyxgsjpGe9qaGmi8wG DgOq4E0EVQmGxfFBh10ZyR34QShjyHGVIk+QZi1OHwJe1y5AIDNoYI4BnwB67T604X2m 7MgFbnzr26JIFqkkMr7RQlgZ0wRzSp7a8CWeuTbvGWNcMQ4M9bSBcIEwzTFJ8fQ09rVL 8Zb73gXI0iJAJFBsEHZRfVsFqX1KZPH6vI1ccXXGu5mJmyNWzM4rDPAS9sV5I5hDAzxw aQ==
Received: from nam12-dm6-obe.outbound.protection.outlook.com (mail-dm6nam12lp2174.outbound.protection.outlook.com [104.47.59.174]) by mx0a-00273201.pphosted.com with ESMTP id 300c9k1tmr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 26 Mar 2020 08:30:55 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JfqHi59805+E6vSU8Cf55T9w7N/A7r7YA8ceT4UAqcaF3heqarS2U8r98TZEfKK70lYoli5vOVyj0qPTDuVpWm9XQ6Vhi0vaXdTX13yJ57vy1PCnDNyCbmPWr8OjH5EI6Ui4L9jgGi9BVZRUU0bEEWajyIbo/lGBUqjUniPf1THGQ94wUfJhi0p9Ainpl94p4zJLvWlPNVazOni5bKN4/NIyRPq8gIyVSRTBtm4yTY7PaBR3ec/oA9S51x7Jh4OC9OcpspsjGFJFEXDXknbcAEzw9QALRzcUZCt1K9fE5jKuhZ0G1VCHsbLR6zohk4DKlR3H7b0x07Pyvjd0ij/5mA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TVfEcWyzXLaXiCQCw166h8fgxtG5atptKvtNArHy7g0=; b=LjhI4aZJlmu827lA4ki4HMnYB+ICMBCDDp5UD7H/KgRpHJBYvBhz9mQl0FGNggHM1+nCOhixwlJf5Zd110KP+AZBsli2hLDdqUa0rMn6uZlRbSXYKG15YEcEHCndrjMH/EEijVOl0W8drGKRGba5PWFRLQv/e3N3BMXeUi1A310+g7/WigohSgqhwtva00tkp5bHIisRaCXdfZCdbFyYPT5oXz/9hziS0BAamXMRHokQzldY4x6noknNYccKqz4+g6FNBFuVFefRm9ZrEu2j9zW6lJ31nkQhw28/RQb5ldy6pd4pgTwgJ9LEFM6NDtikYDilXqJEqdipHzgNpurMPw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TVfEcWyzXLaXiCQCw166h8fgxtG5atptKvtNArHy7g0=; b=bQY+58XsX2GR4qjT50Yo6hLbWfsJTCvK2t2futPOxH6SJhRKT5Uir4wSi9yhIV3UbqmvmPJ5y2hu/xzatStB/Dbi6qpeEO/DQho9xDbKYYpUY8nt5U+0c1BoLqsmrDWdWWoOePJTMvPdL9NODXyOQbHj21OdcI7CvIW5SUZuXL4=
Received: from DM5PR05MB3388.namprd05.prod.outlook.com (2603:10b6:4:40::18) by DM5PR05MB3450.namprd05.prod.outlook.com (2603:10b6:4:45::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2835.12; Thu, 26 Mar 2020 15:30:52 +0000
Received: from DM5PR05MB3388.namprd05.prod.outlook.com ([fe80::71ec:50b0:1f06:50e7]) by DM5PR05MB3388.namprd05.prod.outlook.com ([fe80::71ec:50b0:1f06:50e7%4]) with mapi id 15.20.2835.021; Thu, 26 Mar 2020 15:30:52 +0000
From: John E Drake <jdrake@juniper.net>
To: "Joel M. Halpern" <jmh@joelhalpern.com>, "xiechf@chinatelecom.cn" <xiechf@chinatelecom.cn>, lsr <lsr@ietf.org>
Thread-Topic: [Lsr] Using IS-IS Multi-Topology (MT) for Segment Routing based Virtual Transport Network
Thread-Index: AQHWAqunJgnkEdaIE0esgKz1qRvkkahZVAKAgAEI9RSAAISngIAAHtHw
Date: Thu, 26 Mar 2020 15:30:52 +0000
Message-ID: <DM5PR05MB3388321814E27A7DBB1491DEC7CF0@DM5PR05MB3388.namprd05.prod.outlook.com>
References: <2020032521444882209619@chinatelecom.cn> <9f717ab0-96f4-c20f-f80a-ea7ea527a01a@joelhalpern.com> <2020032613401931877336@chinatelecom.cn> <e9d643e7-4779-2b1a-fbd6-2830458da92b@joelhalpern.com>
In-Reply-To: <e9d643e7-4779-2b1a-fbd6-2830458da92b@joelhalpern.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=jdrake@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-03-26T15:30:50.4601670Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=964fe5d9-7d3e-4981-abfd-e707ad24f58c; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.3.2.8
dlp-reaction: no-action
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: b5856ac8-394c-4fe4-6f46-08d7d19aab6f
x-ms-traffictypediagnostic: DM5PR05MB3450:
x-microsoft-antispam-prvs: <DM5PR05MB345026427C9B580744E4446CC7CF0@DM5PR05MB3450.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0354B4BED2
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM5PR05MB3388.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10019020)(4636009)(39860400002)(346002)(136003)(396003)(376002)(366004)(316002)(52536014)(966005)(26005)(478600001)(186003)(86362001)(5660300002)(33656002)(19627235002)(110136005)(8676002)(81156014)(71200400001)(7696005)(6506007)(2906002)(81166006)(8936002)(64756008)(66446008)(9686003)(66946007)(76116006)(55016002)(66556008)(66476007)(53546011); DIR:OUT; SFP:1102;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: XDk2YpLvOX2VTVRpv9P9B8RNeEquOB+KfyeW2BmZleDRxgClEnpAkuyItpBvxY8JtVuO9yMuUKzouxZ74U8ntpiVHvMnNbpod9Y+mWJ76cwVj/TmpcUPtVPTnoo+r+TpCx/MSSWJUlHjC/icdiGMBA==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: b5856ac8-394c-4fe4-6f46-08d7d19aab6f
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Mar 2020 15:30:52.6151 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 30DAbUKCcWFC7PCgRZmtbYvZc1Bc8putV7idiZOMdU8leRfO4NOjNPo88SH45bsmFmMyG8IY+wm+qOaV6BYh7w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3450
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.645 definitions=2020-03-26_06:2020-03-26, 2020-03-26 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 adultscore=0 phishscore=0 suspectscore=0 mlxscore=0 bulkscore=0 clxscore=1011 spamscore=0 malwarescore=0 mlxlogscore=999 lowpriorityscore=0 priorityscore=1501 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2003020000 definitions=main-2003260118
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/G1VF1tO3_PuXn9P3GcGy-UiV3bI>
Subject: Re: [Lsr] Using IS-IS Multi-Topology (MT) for Segment Routing based Virtual Transport Network
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Mar 2020 15:31:10 -0000

Hi,

As Joel notes, it is true that enhanced VPNs require the use of specific underlay network resources, either dedicated or shared, but the this needs to be done without installing overlay VPN awareness in the P routers, which is inherently unscalable and operationally complex.  Also, since VPNs span multiple ASes, putting overlay VPN state in an IGP doesn't work. 

Please see:  https://tools.ietf.org/html/draft-drake-bess-enhanced-vpn-02

Yours Irrespectively,

John


Juniper Business Use Only

> -----Original Message-----
> From: Lsr <lsr-bounces@ietf.org> On Behalf Of Joel M. Halpern
> Sent: Thursday, March 26, 2020 9:36 AM
> To: xiechf@chinatelecom.cn; lsr <lsr@ietf.org>
> Subject: Re: [Lsr] Using IS-IS Multi-Topology (MT) for Segment Routing based
> Virtual Transport Network
> 
> [External Email. Be cautious of content]
> 
> 
> In once sense, the statement is inherently true.  A VPN technology without
> underlay support would seem to have significant difficulty in consistently
> meeting an SLA.  Having said that much, the rest does not seem to follow.
> 
> Yours,
> Joel
> 
> On 3/26/2020 1:40 AM, xiechf@chinatelecom.cn wrote:
> >
> > Hi, Joel,
> >
> > The statement is that pure overlay VPNs cannot meet the requirement of
> > some new services, and it would require integration between the
> > underlay and the overlay networks.
> >
> > As mentioned in this document, there is existing technology in the
> > underlay to support enhanced VPNs , such as using a set of MPLS-TE
> > based resource reserved point-to-point paths, while it scalability is
> > the concern of many operators.
> >
> > Thus VTN is introduced to provide the required topology and resource
> > attribute in the underlay in a scalable manner. This is described in
> > the introduction section.
> >
> > Hope this helps.
> >
> >
> > Chongfeng
> >
> >
> >     *From:* Joel M. Halpern <mailto:jmh@joelhalpern.com>
> >     *Date:* 2020-03-25 21:52
> >     *To:* xiechf@chinatelecom.cn <mailto:xiechf@chinatelecom.cn>; lsr
> >     <mailto:lsr@ietf.org>
> >     *Subject:* Re: [Lsr] Using IS-IS Multi-Topology (MT) for Segment
> >     Routing based Virtual Transport Network
> >     This drafts starts by asserting that there are limitations on what can
> >     be done with the existing technology.  As the description is quite
> >     vague, I can not be certain.  But I do not know of any difficulty in
> >     providing the described capabilities with current technology, without
> >     introducing a new, undescribed, construct called a VTN.
> >     Yours,
> >     Joel
> >     On 3/25/2020 9:44 AM, xiechf@chinatelecom.cn wrote:
> >      >
> >      > Hello, folks,
> >      >
> >      > we have submitted a new draft of
> >      >   https://urldefense.com/v3/__https://tools.ietf.org/html/draft-xie-lsr-
> isis-sr-vtn-mt-00__;!!NEt6yMaO-gk!UC57ahoSTr0MI_h20crJfu--
> 3Q_Skbm0IIKvdcQHjUvsVslOpTl1bsfyXyHvpt8$  .
> >      >
> >      > It is about Using IS-IS Multi-Topology (MT) for Segment Routing
> >     based
> >      > Virtual Transport Network. Enhanced VPN (VPN+) as defined in
> >      > I-D.ietf-teas-enhanced-vpn aims to provide enhanced VPN service to
> >      > support some applications's needs of enhanced isolation and
> >     stringent
> >      > performance requirements.  VPN+ requries integration between the
> >     overlay
> >      > VPN and the underlay network.  A Virtual Transport Network (VTN)
> >     is a
> >      > virtual network which consists of a subset of the network toplogy
> >     and
> >      > network resources allocated from the underlay network.  A VTN
> >     could be
> >      > used as the underlay for one or a group of VPN+ services.. This
> >     document
> >      > describes a simplified mechanism to build the SR based VTNs using
> >     IGP
> >      > multi- topology together with other well-defined IS-IS extensions.
> >      >
> >      > Comments and suggestions are highly appreciated.
> >      >
> >      > Chongfeng Xie
> >      >
> >      >
> >      >
> >      > _______________________________________________
> >      > Lsr mailing list
> >      > Lsr@ietf.org
> >      >
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/lsr__;!!NEt
> 6yMaO-gk!UC57ahoSTr0MI_h20crJfu--
> 3Q_Skbm0IIKvdcQHjUvsVslOpTl1bsfyCiP9TE0$
> >      >
> >     _______________________________________________
> >     Lsr mailing list
> >     Lsr@ietf.org
> >
> > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/lsr_
> > _;!!NEt6yMaO-gk!UC57ahoSTr0MI_h20crJfu--
> 3Q_Skbm0IIKvdcQHjUvsVslOpTl1bs
> > fyCiP9TE0$
> >
> >
> > _______________________________________________
> > Lsr mailing list
> > Lsr@ietf.org
> > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/lsr_
> > _;!!NEt6yMaO-gk!UC57ahoSTr0MI_h20crJfu--
> 3Q_Skbm0IIKvdcQHjUvsVslOpTl1bs
> > fyCiP9TE0$
> >
> 
> _______________________________________________
> Lsr mailing list
> Lsr@ietf.org
> https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/lsr__;!!NEt
> 6yMaO-gk!UC57ahoSTr0MI_h20crJfu--
> 3Q_Skbm0IIKvdcQHjUvsVslOpTl1bsfyCiP9TE0$

v2.23.0 | Report a Bug | By Email