Re: [nvo3] Role of control plane in draft-dt-nvo3-encap-01
Tom Herbert <tom@herbertland.com> Fri, 19 May 2017 15:00 UTC
Return-Path: <tom@herbertland.com>
X-Original-To: nvo3@ietfa.amsl.com
Delivered-To: nvo3@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A3701293F5 for <nvo3@ietfa.amsl.com>; Fri, 19 May 2017 08:00:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XO2fbnC3cnF1 for <nvo3@ietfa.amsl.com>; Fri, 19 May 2017 08:00:28 -0700 (PDT)
Received: from mail-qk0-x22f.google.com (mail-qk0-x22f.google.com [IPv6:2607:f8b0:400d:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 394AC129405 for <nvo3@ietf.org>; Fri, 19 May 2017 08:00:28 -0700 (PDT)
Received: by mail-qk0-x22f.google.com with SMTP id u75so63022450qka.3 for <nvo3@ietf.org>; Fri, 19 May 2017 08:00:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=6MXkyRMa9vdGrW8f+ucuoNq4Akt0lO7LBozPbWXA4u4=; b=XPGdgbe1TGjC4+UEv8FAEWrRuUumtJJX52DCVU+M5oYpj1zTa5DVBd8TbQPwvA/631 yVuGkF2XUJBA1UmOe2wmfJT6LteSK1WcTmtUR0abuQlic291AcirkRCzP2pf6CSHi3E4 CwyETjXdgiXCT8dmt8hDLq6zOI2bLJ01Tb25qRRW09K/PehnZz97WU0JRAPOsy+aySja tSBSnLHvvB/deQOSCCtVQTI8/0q4e/hecnvk8PFUd5esku/DMXjGsJRK2mqYEMg1Csp4 lBcUPHH30czMc5CrSAMXQ+KKrL8en53HLmrjTSVWbQHW8TOjHQttufggkcVww/jgKhEU zMkA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=6MXkyRMa9vdGrW8f+ucuoNq4Akt0lO7LBozPbWXA4u4=; b=HaTNVImkFglSAAAjoTvNJrtKK3n61k7fV1MccIcXIBnoyyO5PoDB49YBhahj0okNip 3l+JeS9i9Zh+OE4SHokt9JboGrSrcfYS+66vwl2rehhaulL9LIUERB2YpUlDYOSjhV41 lQ9UpoK6uneKMTJ/JhSsxLQKRuvJ998lMSWHj908jK3AWs/91HCnz1Dozs+IPROkmSD+ UK5FgTlM5MrUDr1newS4rSOB8vdQmTrCi39RvIcrDi+muqArjECLUIaG95YFvWkqpNul fvRPsOvg5TAyeTkaHMHto9lir8pnzBITFGeIL29HlPe2UoedVbV74i56NjkBelqK1J+F WtiA==
X-Gm-Message-State: AODbwcAQyouMcIY8ByK3F6q9dbEUjG0ZY0PLnEObY2AekxGZel1fIJDZ RO1YzdKdi50oLS982Qrx+4WbSzXJu2SB
X-Received: by 10.55.197.92 with SMTP id p89mr8720766qki.34.1495206027203; Fri, 19 May 2017 08:00:27 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.140.97.10 with HTTP; Fri, 19 May 2017 08:00:26 -0700 (PDT)
In-Reply-To: <EABBD98B-89CA-41DD-A86D-FB3C3EFEECEB@vmware.com>
References: <CALx6S35GXTSx=eiBrVqbDDYrkaE1syQhStLBgRGyAVKGPzzfUg@mail.gmail.com> <7662c052-0bae-d409-c7bd-58f33797567d@acm.org> <CALx6S37QiGuDUnKsiJwani9oYm-5vGLTwP8jRnJ8ZFb1jHzQ-g@mail.gmail.com> <17e069b7-0ac8-5e64-f1c3-a45ff6a99f78@sonic.net> <CALx6S35q7guNUeWQCw4Azys9fB2SJds_ObTHS_8a0OtR02Gv4Q@mail.gmail.com> <EABBD98B-89CA-41DD-A86D-FB3C3EFEECEB@vmware.com>
From: Tom Herbert <tom@herbertland.com>
Date: Fri, 19 May 2017 08:00:26 -0700
Message-ID: <CALx6S36sN0th4Lr0f5nTdB_fZ_-dwu-1jxBZ=MOo9pq3Q-xekg@mail.gmail.com>
To: Sami Boutros <sboutros@vmware.com>
Cc: Erik Nordmark <nordmark@sonic.net>, Erik Nordmark <nordmark@acm.org>, "nvo3@ietf.org" <nvo3@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/nvo3/uE_VeRDzTxH0xDNPqV-jllT-Z9I>
Subject: Re: [nvo3] Role of control plane in draft-dt-nvo3-encap-01
X-BeenThere: nvo3@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Network Virtualization Overlays \(NVO3\) Working Group" <nvo3.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nvo3>, <mailto:nvo3-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nvo3/>
List-Post: <mailto:nvo3@ietf.org>
List-Help: <mailto:nvo3-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nvo3>, <mailto:nvo3-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 May 2017 15:00:30 -0000
On Fri, May 19, 2017 at 7:34 AM, Sami Boutros <sboutros@vmware.com> wrote: > > > > > > On 5/19/17, 7:19 AM, "nvo3 on behalf of Tom Herbert" <nvo3-bounces@ietf.org on behalf of tom@herbertland.com> wrote: > >>On Thu, May 18, 2017 at 10:50 PM, Erik Nordmark <nordmark@sonic.net> wrote: >>> On 05/18/2017 01:44 PM, Tom Herbert wrote: >>>> >>>> On Thu, May 18, 2017 at 10:03 AM, Erik Nordmark <nordmark@acm.org> wrote: >>>>> >>>>> >>>>> Tom, >>>>> >>>>> I'm trying to make sure we capture the discussion about the control plane >>>>> accurately. >>>>> >>>>> On 04/15/2017 03:19 PM, Tom Herbert wrote: >>>>>> >>>>>> >>>>>> - I do not believe this is at all plausible. 1) This could only help >>>>>> the endpoints and not intermediate devices. As point out two sentences >>>>>> below transit nodes may need to process extensions. 2) This creates an >>>>>> a dependency between data plane and control plane that is at odds with >>>>>> the requirement for control plane independence (section 2.1 of Geneve >>>>>> draft) 3) This would entail a serious design and implementation effort >>>>>> that would likely only be ready long after the dataplane has been >>>>>> deployed. 4) This creates new problems for interoperability, for >>>>>> instance two devices could support same set of options but can't >>>>>> interoperate because they need different orderings. >>>>> >>>>> >>>>> >>>>> First of all, the intermediate devices would always have a harder time, >>>>> especially as they might be of an older vintage than the NVEs; the >>>>> classical >>>>> ossification problem caused by things in the middle. >>>>> >>>>> The draft suggests >>>>> The Geneve draft could specify that the subset and order of option >>>>> TLVs should be configurable for each remote NVE in the absence of a >>>>> protocol control plane. >>>>> thus there is a way to get this off the ground. >>>>> >>>>> I don't think it would be hard to specify how this is carried in an IETF >>>>> standard control plane such as EVPN. >>>>> >>>>> Note that there are two places where the control plane can help. >>>>> 1. The egress NVE only needing to deal with the subset of the defined >>>>> extensions that it implements. >>>>> 2. The egress NVE being able to control the order of the extensions in >>>>> the >>>>> packet. >>>>> >>>>> Are your concerns only about the second? >>> >>> >>> Repeating the above question since you didn't answer: Do you have any >>> concerns about #1 i.e. the ability for the egress NVE to specify the set of >>> extensions it supports? >>> >>I'm sorry, I thought I answered the question below. No to that. > > Not sure, I get that, why wouldn’t an NVE be capable to specify the set of > Extensions it support? > I don't have any concerns of the NVE's ability to specify a set of extensions it want to support. > Thanks, > > Sami >> >>> >>>>> >>>> It's not clear to me how negotiated ordering helps, nor how to resolve >>>> conflicting ordering constraints between to nodes: e.g. for options >>>> A,B,C I might want to send them in order ABC, but maybe you can only >>>> receive them as CBA. Who wins? >>> >>> >>> For the ordering part (i.e., #2 above) just as the set (#1) it is the egress >>> NVE which makes a statement in the control plane. >>> Hence no conflicts. >>> But an ingress NVE would need to be capable of including different subsets >>> (#1) and different order (#2) when encapsulating to different egress NVEs. >>> >>Sounds like a lot of complexity to me without a well defined benefit. >>I'd suggest investigating some specific examples and implementation to >>evaluate whether a negotiated ordering can be helpful and to whom. >> >>Tom >> >>> Erik >>> >>> >>> >>>> >>>>> I think for concerns about the amount of headers the hardware can parse, >>>>> the >>>>> first one is the key one. And it also handles the somewhat esoteric case >>>>> of >>>>> an egress NVE only supporting one extension. >>>>> >>>>> Thus if the WG thinks the ordering (for egress NVEs which support two or >>>>> more extensions) is not important then WG can remove the ordering part >>>>> while >>>>> keeping the subset part. >>>>> >>>> It always makes sense to send the minimal amount of information and no >>>> more, but endpoint negotiation doesn't take intermediate nodes into >>>> account and they might drop packets if their parsing buffer is >>>> exceeded. This is a generic problem that is not specific to >>>> encapsulation, for instance extension headers can push things over the >>>> limit. To that end I proposed a "Headers too long" ICMP error in 6man >>>> to provide a feedback signal. >>>> >>>> Tom >>>> >>>>> Erik >>>>> >>>>> >>>>> >>>>> >>>> >>> >> >>_______________________________________________ >>nvo3 mailing list >>nvo3@ietf.org >>https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_nvo3&d=DwICAg&c=uilaK90D4TOVoH58JNXRgQ&r=IVzcTRLQdpta08L0b_y2zDkqvwJhRKMCAbX-2K-LV98&m=o-PlsWullzzWQ-0KCJSX46anwVXVyMF9dg80UDgScZA&s=1qGNWNtbytQZXrTSRn6Gm49QmBEParIlBAVi-eVZTVM&e=
- [nvo3] Review of draft-dt-nvo3-encap-01 Tom Herbert
- Re: [nvo3] Review of draft-dt-nvo3-encap-01 Sami Boutros
- Re: [nvo3] Review of draft-dt-nvo3-encap-01 Tom Herbert
- Re: [nvo3] Review of draft-dt-nvo3-encap-01 Tom Herbert
- [nvo3] Role of control plane in draft-dt-nvo3-enc… Erik Nordmark
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Tom Herbert
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Erik Nordmark
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Tom Herbert
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Sami Boutros
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Tom Herbert
- Re: [nvo3] Role of control plane in draft-dt-nvo3… Erik Nordmark