IETF Logo Mail Archive

Re: [nvo3] enhancing VXLAN/NVGRE vs creating an new encap

"Zhou, Han" <hzhou8@ebay.com> Wed, 19 March 2014 02:41 UTC

Return-Path: <hzhou8@ebay.com>
X-Original-To: nvo3@ietfa.amsl.com
Delivered-To: nvo3@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B78131A0345 for <nvo3@ietfa.amsl.com>; Tue, 18 Mar 2014 19:41:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -23.048
X-Spam-Level:
X-Spam-Status: No, score=-23.048 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.547, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i0gBHfpwWHwb for <nvo3@ietfa.amsl.com>; Tue, 18 Mar 2014 19:41:35 -0700 (PDT)
Received: from den-mipot-002.corp.ebay.com (den-mipot-002.corp.ebay.com [216.113.175.153]) by ietfa.amsl.com (Postfix) with ESMTP id 970AB1A0341 for <nvo3@ietf.org>; Tue, 18 Mar 2014 19:41:35 -0700 (PDT)
DomainKey-Signature: s=ebaycorp; d=ebay.com; c=nofws; q=dns; h=X-EBay-Corp:X-IronPort-AV:Received:Received:From:To:CC: Subject:Thread-Topic:Thread-Index:Date:Message-ID: References:In-Reply-To:Accept-Language:Content-Language: X-MS-Has-Attach:X-MS-TNEF-Correlator:x-originating-ip: Content-Type:Content-Transfer-Encoding:MIME-Version: X-CFilter; b=JWm+DII0DPdHFHeL3zKnrLhP9a0v4AWS8uKFM5imdS7FBdUnzlbqbbwU JcOEW09xJq0O/Em4KrwD4FtAkCtUAMUq6w+OOupLDnqgesQwFPKsVw1Eq Ki/q3/8T8oNdg2V7bvdUArai282LA9k94OuuNY7GEFbJ8P+wwBVuCYed+ Y=;
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=ebay.com; i=@ebay.com; q=dns/txt; s=ebaycorp; t=1395196887; x=1426732887; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=0fAMzH9ft5fFCd5hmPvXJKrQ6He0wVJCJxAVrRiKQ0k=; b=alaNB/1z/0v/iWqMRb5WGoBO4qImwp43aWIdH0y55YnNtkzUuuZ/Xl8Y DSg3NUgZZV4g4jJ1exwu5kVu4o2qAKnnrUiHiaQIhxekF3mwr1aId09hu fz5EWk+dAUu0KC1wqPOqHt8mnI8j6I0+Bf5peFMTWdB14bBCxNST3naH6 4=;
X-EBay-Corp: Yes
X-IronPort-AV: E=Sophos;i="4.97,682,1389772800"; d="scan'208";a="42380352"
Received: from den-vteml-002.corp.ebay.com (HELO DEN-EXMHT-004.corp.ebay.com) ([10.101.112.213]) by den-mipot-002.corp.ebay.com with ESMTP; 18 Mar 2014 19:41:27 -0700
Received: from DEN-EXDDA-S32.corp.ebay.com ([fe80::e420:c190:6f77:31f7]) by DEN-EXMHT-004.corp.ebay.com ([fe80::a487:c570:9abc:bb59%14]) with mapi id 14.03.0174.001; Tue, 18 Mar 2014 20:41:27 -0600
From: "Zhou, Han" <hzhou8@ebay.com>
To: AshwoodsmithPeter <Peter.AshwoodSmith@huawei.com>, David Allan I <david.i.allan@ericsson.com>, Thomas D Nadeau <tnadeau@lucidvision.com>, Dino Farinacci <farinacci@gmail.com>
Thread-Topic: [nvo3] enhancing VXLAN/NVGRE vs creating an new encap
Thread-Index: AQIDa0gSssqk7an1OUyMG0jXpN0LQAJFldPfmmkMy6CAALLqgIAABeeAgAA/ZYCAAy6fgIAAAebw
Date: Wed, 19 Mar 2014 02:41:26 +0000
Message-ID: <9F56174078B48B459268EFF1DAB66B1A790386@DEN-EXDDA-S32.corp.ebay.com>
References: <2691CE0099834E4A9C5044EEC662BB9D45354603@dfweml701-chm.china.huawei.com> <48E1A67CB9CA044EADFEAB87D814BFF632A2BAD1@eusaamb107.ericsson.se> <026b01cf4108$9e58b070$db0a1150$@riw.us> <F10451DB-7C6E-4ED1-ABC0-37E8B3CD80FD@gmail.com> <5C5D3148-261D-4428-AC6B-AAAD4436D048@lucidvision.com> <E6C17D2345AC7A45B7D054D407AA205C39241E6A@eusaamb105.ericsson.se> <7AE6A4247B044C4ABE0A5B6BF427F8E20A369E6A@dfweml703-chm.china.huawei.com>
In-Reply-To: <7AE6A4247B044C4ABE0A5B6BF427F8E20A369E6A@dfweml703-chm.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.241.19.243]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter: Scanned den2
Archived-At: http://mailarchive.ietf.org/arch/msg/nvo3/nPqiRY4D_Dk2YhmBL4Up5kFiido
Cc: Russ White <russw@riw.us>, "<draft-gross-geneve@tools.ietf.org>" <draft-gross-geneve@tools.ietf.org>, "<nvo3@ietf.org>" <nvo3@ietf.org>, Lucy yong <lucy.yong@huawei.com>, Eric Gray <eric.gray@ericsson.com>
Subject: Re: [nvo3] enhancing VXLAN/NVGRE vs creating an new encap
X-BeenThere: nvo3@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Network Virtualization Overlays \(NVO3\) Working Group" <nvo3.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nvo3>, <mailto:nvo3-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nvo3/>
List-Post: <mailto:nvo3@ietf.org>
List-Help: <mailto:nvo3-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nvo3>, <mailto:nvo3-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Mar 2014 02:41:38 -0000

Hi,

So let's face the reality: how to enhance VXLAN with the scarce space
left in the header? Extend it with optional fields following the
original header? Would it create similar problems of introducing a new
protocol?

If the fixed 8 bytes size is still preferred, would it be better that
the extension proposals co-work together to make the best use of the
header space? E.g. VXLAN-GPE protocol type doesn't really needs 16 bits
for the possible 3 (or more in the future, but not that huge) values.

Best regards,
Han

On Tue, 2014-03-18 at 20:32 +0000, AshwoodsmithPeter wrote:
> I agree enhancing rather than inventing new is a good idea. For example CR-LDP did not create a new encapsulation (it is normal MPLS) nor did it create a new control protocol (its LDP) although it did add some TLV's to LDP of course for the ERO and QOS. It was a simple idea with very small code delta over LPD ... ..oh wait .. I guess that's a bad example ;)
> 
> As Dave points out politics is far from impotent here, let's not kid ourselves.
> 
> Peter
> 
> -----Original Message-----
> From: nvo3 [mailto:nvo3-bounces@ietf.org] On Behalf Of David Allan I
> Sent: Sunday, March 16, 2014 3:57 PM
> To: Thomas D Nadeau; Dino Farinacci
> Cc: Russ White; <draft-gross-geneve@tools.ietf.org>; <nvo3@ietf.org>; Lucy yong; Eric Gray
> Subject: Re: [nvo3] enhancing VXLAN/NVGRE vs creating an new encap
> 
> The actual examples cited are artifacts of an industry power structure that may not apply in this case, as far as past performance predicting future outcomes....
> 
> D
> 
> -----Original Message-----
> From: nvo3 [mailto:nvo3-bounces@ietf.org] On Behalf Of Thomas D Nadeau
> Sent: Sunday, March 16, 2014 9:10 AM
> To: Dino Farinacci
> Cc: Russ White; <draft-gross-geneve@tools.ietf.org>; <nvo3@ietf.org>; Lucy yong; Eric Gray
> Subject: Re: [nvo3] enhancing VXLAN/NVGRE vs creating an new encap
> 
> This road is littered with many examples in recent history of new alternatives presenting the dream of "a new encap/protocol will fix everything" such as crldp, PBT and PBB-TE. let's not make this mistake if we can help it...
> 
> Tom 
> 
> 
> > On Mar 16, 2014, at 11:48, Dino Farinacci <farinacci@gmail.com> wrote:
> > 
> > Decades of experience tells us what Russ says below. Those who choose to ignore are bound to repeat ...
> > 
> > Dino
> > 
> >> On Mar 16, 2014, at 4:12 AM, "Russ White" <russw@riw.us> wrote:
> >> 
> >> 
> >>> 3) create a new encapsulation that meets requirements - and find out 
> >>> that the
> >>>    industry doesn't entirely switch over to the new (read untried 
> >>> and
> >> possibly
> >>>    immature) encapsulation, existing deployed alternatives are
> >> documented
> >>> in
> >>>    some (possibly non-standard) way and we incur the costs 
> >>> associated
> >> with
> >>>    living with three alternatives additional encapsulations until 
> >>> such
> >> time (if
> >>> ever)
> >>>    when the DCN industry settles on fewer (possibly as few as one)
> >> choices,
> >>> and
> >>>    we move on.
> >> 
> >> This is, in fact, the most likely result... Vendors would need to 
> >> remove support for the old encaps over time, which isn't going to 
> >> happen so long as someone is actually using them, which means support 
> >> will still be in code, which means new people will start using them, which means...
> >> 
> >> There is also a cost in security when it comes to defining new encap 
> >> types we often don't consider -- it's one more tunnel type that needs 
> >> to be accounted for by middle boxes, network hardening routines, etc.
> >> For every new encap we create, we also create a lot of work in the 
> >> security world in tracking vulnerabilities, understanding the semantics of the protocol, etc.
> >> 
> >> The right answer, IMHO, is to modify, rather than creating a new encap.
> >> 
> >> :-)
> >> 
> >> Russ
> >> 
> >> _______________________________________________
> >> nvo3 mailing list
> >> nvo3@ietf.org
> >> https://www.ietf.org/mailman/listinfo/nvo3
> > 
> > _______________________________________________
> > nvo3 mailing list
> > nvo3@ietf.org
> > https://www.ietf.org/mailman/listinfo/nvo3
> > 
> 
> _______________________________________________
> nvo3 mailing list
> nvo3@ietf.org
> https://www.ietf.org/mailman/listinfo/nvo3
> 
> _______________________________________________
> nvo3 mailing list
> nvo3@ietf.org
> https://www.ietf.org/mailman/listinfo/nvo3
> 
> _______________________________________________
> nvo3 mailing list
> nvo3@ietf.org
> https://www.ietf.org/mailman/listinfo/nvo3

v2.23.0 | Report a Bug | By Email