Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02
"Reinaldo Penno (repenno)" <repenno@cisco.com> Fri, 24 January 2014 17:14 UTC
Return-Path: <repenno@cisco.com>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3042B1A00A6 for <sfc@ietfa.amsl.com>; Fri, 24 Jan 2014 09:14:07 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.436
X-Spam-Level:
X-Spam-Status: No, score=-9.436 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, J_CHICKENPOX_91=0.6, RP_MATCHES_RCVD=-0.535, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yGEp8WaPdsga for <sfc@ietfa.amsl.com>; Fri, 24 Jan 2014 09:14:04 -0800 (PST)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) by ietfa.amsl.com (Postfix) with ESMTP id 0FB731A0008 for <sfc@ietf.org>; Fri, 24 Jan 2014 09:14:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8208; q=dns/txt; s=iport; t=1390583643; x=1391793243; h=from:to:cc:subject:date:message-id:in-reply-to: content-id:content-transfer-encoding:mime-version; bh=2p8vWcED0kbl/i235fdb2D0/kgGQBTIaD7QfdDLTGc0=; b=TrH9NFgnkzOje9Un1e05GUlVXc6Nzo4pBaMKQiqLqMwyezbnqF6pL6v+ Vj4KF/DwHwVj0io1YDEaM6PtvYpVOJg66XUIsnByOsKmfkfEfU6k+vLsG pyoks2LDZrQylFlVMf1gOvyspRYtxtZoNX5Iqkcb8DcJjdoqU8iXmr1N0 Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Ag8FAFue4lKtJV2a/2dsb2JhbABagww4Vqh3kz6BDRZ0giUBAQEEAQEBYgkLDAYBCBEBAgEBAQEnLgsUAwYIAgQBDQWHcQMRDcgwF4x2gWsrBwaEMgSJEI8XgTKQbIMtgio
X-IronPort-AV: E=Sophos;i="4.95,713,1384300800"; d="scan'208";a="15315407"
Received: from rcdn-core-3.cisco.com ([173.37.93.154]) by alln-iport-4.cisco.com with ESMTP; 24 Jan 2014 17:14:02 +0000
Received: from xhc-aln-x08.cisco.com (xhc-aln-x08.cisco.com [173.36.12.82]) by rcdn-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id s0OHE2ZC015180 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Fri, 24 Jan 2014 17:14:02 GMT
Received: from xmb-rcd-x04.cisco.com ([169.254.8.37]) by xhc-aln-x08.cisco.com ([173.36.12.82]) with mapi id 14.03.0123.003; Fri, 24 Jan 2014 11:14:02 -0600
From: "Reinaldo Penno (repenno)" <repenno@cisco.com>
To: Linda Dunbar <linda.dunbar@huawei.com>, "Paul Quinn (paulq)" <paulq@cisco.com>, "mikebianc@aol.com" <mikebianc@aol.com>
Thread-Topic: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02
Thread-Index: AQHPGR4EBBXmRpg9rk2thNSnYBnFRZqUcgwA//+e4mD//+qmgA==
Date: Fri, 24 Jan 2014 17:14:01 +0000
Message-ID: <CF07DBDB.82A5%repenno@cisco.com>
In-Reply-To: <4A95BA014132FF49AE685FAB4B9F17F645C707E2@dfweml701-chm.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.3.120616
x-originating-ip: [10.21.118.183]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <246C0E29EAC863429D800A6B8C04A0AB@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "Jim Guichard (jguichar)" <jguichar@cisco.com>, Cathy Zhang <Cathy.H.Zhang@huawei.com>, "<Ron_Parker@affirmednetworks.com>" <Ron_Parker@affirmednetworks.com>, "<sfc@ietf.org>" <sfc@ietf.org>, "<jmh@joelhalpern.com>" <jmh@joelhalpern.com>
Subject: Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jan 2014 17:14:07 -0000
You bring good point, but it seems it still aligned with current proposal. A Service Chain does not specify the actual stateless firewall (out of the hundreds of function equivalent firewalls) that are going to be used in a chain. Just that a firewall is present on a chain. A Service Function Path is an instantiation of a Service Chain. It specifies the actual firewall (say, firewall-3) that will be traversed by the packets. The Service Path needs to be known before hand or stitched run-time (given the dynamic LB decision) since a forwarding decision need to be made regardless. So, in your example there would one chain, many service paths. Other combinations are possible of course depending on implementation strategy. From: Linda Dunbar <linda.dunbar@huawei.com> Date: Friday, January 24, 2014 at 8:35 AM To: "Paul Quinn (paulq)" <paulq@cisco.com>, "mikebianc@aol.com" <mikebianc@aol.com> Cc: "Jim Guichard (jguichar)" <jguichar@cisco.com>, Cathy Zhang <Cathy.H.Zhang@huawei.com>, "<jmh@joelhalpern.com>" <jmh@joelhalpern.com>, "<sfc@ietf.org>" <sfc@ietf.org>, "<Ron_Parker@affirmednetworks.com>" <Ron_Parker@affirmednetworks.com> Subject: Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02 If a service function has a small number of instances, say less than 10, and they are relative stable, then it is doable for Service Chain to specify the specific instances. But if there are large number of instances, say in hundreds, and those instances¹ location/presence change over time (e.g. in NFV environment), then it is not scalable to have Service Chain path to specify the specific instances. The instances selection should be left up to implementation, or at least out of the SFC WG scope. Linda From: Paul Quinn (paulq) [mailto:paulq@cisco.com] To contextualize my comments: Assuming you needed to insert a CDN into a chain and had 8 equally viable instances (cdn1..cdn8), I see two primary methods of choosing which instance receives a particular flow: 1. The chain includes either the pool of services (CDN) or a shim service (proxy, service lb) where the specific instance is selected on the fly 2. The specific instance is part of the chain (cdn1) If the latter (instance in chain), should SFC include a mechanism for remapping the chain to use another instance? In either case, should the selection of the instance ("service distribution"? anyone? anyone?) be part of SFC or left up to implementation? It depends :) In case #1, does the "shim service" present itself as a SF? It might still have policy dependencies about being coupled with cdn, but is it externally "visible"? Since we've already discussed dynamically inserting and removing services into or from a chain (long flow use cases draft), it seems that specifying the specific service instance in a chain (#1 above) for a flow would be simpler than introducing a shim proxyish service. This approach might also simplify the requirements for stateful v non-stateful services. ________________________________________ From: Ron_Parker@affirmednetworks.com<Ron_Parker@affirmednetworks.com> To: Joel M. Halpern<jmh@joelhalpern.com>,Linda Dunbar<linda.dunbar@huawei.com>,Cathy Zhang<Cathy.H.Zhang@huawei.com>,Paul Quinn (paulq)<paulq@cisco.com>,Jim Guichard (jguichar)<jguichar@cisco.com> cc: sfc@ietf.org<sfc@ietf.org> Sent: Friday, January 24, 2014 Subject: Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02 Hi, Joel. I think you raise an excellent point on the ambiguity of load balancing. I would propose that there are more than 2 cases of load balancing: * mid-box service function (e.g., firewall) with internal load balancing * mid-box service function (e.g., firewall) requiring external load balancing * explicitly addressed service (e.g., DB server) with internal load balancing * explicitly addressed service (e.g., Web HTTP server) requiring external load balancing >From an SFC perspective, I think we can ignore the cases where the mid-box or explicit application is internally load balanced. Such applications would typically present a single locator (i.e., IP address) to the outside world and manage redirection internally to the clustered application. I think the last bullet, external load balancing for an explicitly addressed service (e.g., Web HTTP server) lends itself to load balancing as an explicit service function from an SFC perspective. That is, the service function in the service function chain is "load balancer". The second bullet, external load balancing for mid-box service function (e.g., firewall), is slightly trickier. From an SFC perspective, my view is that the service function that appears in the service function chain is still firewall and not load balancer. However, I do think that SFC should explicitly embrace the concept of a "load-balanced service function". I tried to address this in http://datatracker.ietf.org/doc/draft-parker-sfc-chain-to-path/ and would appreciate any feedback. Thanks. Ron -----Original Message----- From: sfc [mailto:sfc-bounces@ietf.org] On Behalf Of Joel M. Halpern Sent: Thursday, January 23, 2014 10:36 PM To: Linda Dunbar; Cathy Zhang; Paul Quinn (paulq); Jim Guichard (jguichar) Cc: sfc@ietf.org Subject: Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02 For apps that have their own internal load balancer, I agree that there is no point in the tenant using the data center offered load balancer service. But many apps do not have their own custom load balancer. So a data center might well offer load balancing as a service for those tenants who want it. My only point was to distinguish load balancing as a service selected by the customer from load balancing used by the oeprator internall;y to deliver some other service. Yours, Joel On 1/23/14 10:18 PM, Linda Dunbar wrote: > Joel, > Questions inserted below: > -----Original Message----- > From: sfc [mailto:sfc-bounces@ietf.org] On Behalf Of Joel M. Halpern > Sent: Thursday, January 23, 2014 3:17 PM > To: Cathy Zhang; Paul Quinn (paulq); Jim Guichard (jguichar) > Cc: sfc@ietf.org > Subject: Re: [sfc] WG adoption of draft-quinn-sfc-problem-statement-02 > In looking at the services, we need to be careful about who the > service is for. Using load balancing as an example, there are two >different cases. > One case, common in a data center, will bw where load balncing is > part of the service being delivered to the tenant, to help manage the > tenants application traffic. > [Linda] do you mean when "Load Balancing" among cluster of servers for > one tenant application being offered as a service? > Isn't this kind of "load balancing" application specific? Like Oracle > DB has its own Load Balancer among cluster of servers. > A different situation is when load balancing is used internally to the > service chaining to manage instances of the internal services (where > cardinality is invisible to the tenant / user). > In the former case, LB is a service. And has to be able to direct > traffic to the correct tenant application instance. > In the latter case, the load balancing may well be bundled in with a > collection of co-located service instances, with the whole looking > like a service instance to service chaining and the end user. (There > appear to be a multiplicity of ways to deliver this behavior. How > much we need to specify in the architecture remains to be seen.) > Yours, Joel _______________________________________________ > sfc mailing list > sfc@ietf.org <mailto:sfc@ietf.org> > https://www.ietf.org/mailman/listinfo/sfc _______________________________________________ sfc mailing list sfc@ietf.org https://www.ietf.org/mailman/listinfo/sfc _______________________________________________ sfc mailing list sfc@ietf.org https://www.ietf.org/mailman/listinfo/sfc _______________________________________________ sfc mailing list sfc@ietf.org https://www.ietf.org/mailman/listinfo/sfc
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Paul Quinn (paulq)
- [sfc] WG adoption of draft-quinn-sfc-problem-stat… Jim Guichard (jguichar)
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Cathy Zhang
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Chris Frederick
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Ron Parker
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Ron Parker
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Chris Frederick
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Jerome Moisand
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Jim Guichard (jguichar)
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Cathy Zhang
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Joel M. Halpern
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Linda Dunbar
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Joel M. Halpern
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Ron Parker
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… mikebianc@aol.com
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Nicolas BOUTHORS
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Jerome Moisand
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… mikebianc@aol.com
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Paul Quinn (paulq)
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Linda Dunbar
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Chris Frederick
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Reinaldo Penno (repenno)
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Linda Dunbar
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Nicolas BOUTHORS
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… mikebianc@aol.com
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Reinaldo Penno (repenno)
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… mikebianc@aol.com
- Re: [sfc] WG adoption of draft-quinn-sfc-problem-… Liushucheng (Will)