IETF Logo Mail Archive

Re: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?

Jeff Tantsura <jefftant.ietf@gmail.com> Fri, 19 July 2019 19:13 UTC

Return-Path: <jefftant.ietf@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA7FD120473; Fri, 19 Jul 2019 12:13:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qn_jN6mw2fqW; Fri, 19 Jul 2019 12:13:16 -0700 (PDT)
Received: from mail-pg1-x52c.google.com (mail-pg1-x52c.google.com [IPv6:2607:f8b0:4864:20::52c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DB73512045C; Fri, 19 Jul 2019 12:13:15 -0700 (PDT)
Received: by mail-pg1-x52c.google.com with SMTP id s1so8559329pgr.2; Fri, 19 Jul 2019 12:13:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:message-id:in-reply-to:references:subject:mime-version; bh=VDv0UgQs5G3L59NEzW7xrvSTwoQmcvd5VeECaU+ligw=; b=aPhVvPxyii79pq8tWmNgqTH0Ln08i9/9kA/LJk5F7w23Gub1aMW/uGrqLMBYntsB+j M1vPrZXnRS79W+yXI3066JdhelMewCIuVWwaxWWDTRtHtWHquTQ8DNRKSnm7LJMU+fE+ tyOoAhklm2gqZQfHddZr490+0tIMXJjpTCkBGMJuA2dF0OCpGEg4/1YGJ9LiMNABAd2v 3yLBDdqkj+40LAVZtG4d+zlkhxnm1atV/XQzANhFdhKLLW4oeu8Hb2qYFgmF4so+nxby QnPoeQN5PFex3M/L/JEwSQQ6j2/JE07HdiUC0inWbNEe5uoSWR9oMRt01sr0GLCKVfvE gvjQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:message-id:in-reply-to:references :subject:mime-version; bh=VDv0UgQs5G3L59NEzW7xrvSTwoQmcvd5VeECaU+ligw=; b=KS6IFp80n3ZvPEokPi25lSKpl7Lo2yr64tUoVf19vLlKICU/+mlYMdB7i+o37qzzua 1DaPSAxr6T2JZ8TVHFLHk1SXiTjdR3Z7aJUd9GLyZY6b36tOrxx5Nhz2xhQs5iqeoEYX +uLscviZeQftjM2evrBVE1oWJjEauzyhUl8Ni2CsVLtlrpAJ0YmQC9uPlAVQrT0nF6S5 xA7SGcAfIDR7G1ggfyQl0PGrhzHwU2/oT9R4vqPW9cBqJ6qdj6EqEZHvAQ4SehLnurbO cYIukKkhMUrWZH1EN6XaC3Mv+vhcTNjcDooQib2TNkV0rI0XlxicllTzRMh+I5jUo4LX GdTg==
X-Gm-Message-State: APjAAAWc9HNEjBNZSRU693WvT4/l5j912mikmxpX+zYLd2N26CdUGHfi gWuDrWBY2YQ4BHoRr649UqD3+KUN
X-Google-Smtp-Source: APXvYqzraaoCLdxk+qiiADRRyhEHu+CiQre7nZ8u5/HvC8xJDsq8UajTRAUYq7zipM5/xu3mcesLzw==
X-Received: by 2002:a17:90a:9f0b:: with SMTP id n11mr21920375pjp.98.1563563594982; Fri, 19 Jul 2019 12:13:14 -0700 (PDT)
Received: from [192.168.1.22] (c-73-189-13-44.hsd1.ca.comcast.net. [73.189.13.44]) by smtp.gmail.com with ESMTPSA id l31sm56709455pgm.63.2019.07.19.12.13.13 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 19 Jul 2019 12:13:14 -0700 (PDT)
Date: Fri, 19 Jul 2019 12:13:07 -0700
From: Jeff Tantsura <jefftant.ietf@gmail.com>
To: spring <spring-bounces@ietf.org>, SPRING WG <spring@ietf.org>, "徐小虎(义先)" <xiaohu.xxh@alibaba-inc.com>, Linda Dunbar <linda.dunbar@futurewei.com>
Message-ID: <d09e1420-f318-4af1-b69d-4fabf62c79cd@Spark>
In-Reply-To: <MN2PR13MB35824AE83868CE440CCC9F5B85CB0@MN2PR13MB3582.namprd13.prod.outlook.com>
References: <MN2PR13MB35821DA403CCE784CB3B065D85F60@MN2PR13MB3582.namprd13.prod.outlook.com> <MN2PR13MB3582CAA473AD49E7357B6CD085F60@MN2PR13MB3582.namprd13.prod.outlook.com> <c4f2a5ff-cac2-4d5f-9f9d-2dd810009384.xiaohu.xxh@alibaba-inc.com> <53f3a00b-2dc1-4762-99c3-de7f57b592d2@Spark> <MN2PR13MB358219A35895BE96008D1DDB85CF0@MN2PR13MB3582.namprd13.prod.outlook.com> <b1f72412-c484-41ad-b5f9-1922458819c6@Spark> <MN2PR13MB358203FF79A59C59A460CE5185C80@MN2PR13MB3582.namprd13.prod.outlook.com> <b64d9d05-b2c9-42d6-896b-02e3411ad0c3@Spark> <MN2PR13MB35824AE83868CE440CCC9F5B85CB0@MN2PR13MB3582.namprd13.prod.outlook.com>
X-Readdle-Message-ID: d09e1420-f318-4af1-b69d-4fabf62c79cd@Spark
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="5d321648_3a4be92a_c7f7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/0jCM2UDt1yA0CdV1YDFMETzTp8E>
Subject: Re: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Jul 2019 19:13:19 -0000

Linda,

We are not converging, please read the draft.

Note - SRinUDP doesn’t require device that imposes the SIDs to the device that encapsulates it in IP/UDP, neither should it be directly connected.
SR allows you to encode the desired  path in data plane, either directly, by imposing 1 or more SID’s, where the bottom one if the destination, or by encoding meta-data in a Binding SID, when BSID gets lookup up by the anchor node (device that own the BSID) - SR Edge in your case, it would expand BSID into a full path or a combination of BSID’s and NSIDs  (AKA segmented path).
In your case specifically and in a most simple way - SDWAN edge would be programmed to impose a SID stack that is: dest->BSID (desired SR path - could have another level(s) of indirections)->SR edge. As per draft-ietf-mpls-sr-over-ip - IP/UDP header would be imposed with DIP of SR edge (that is also the anchor for BSID) and DPORT set to 6635 (RFC7510), there are also other ways to resolve desired SR path on demand (BGP, PCEP, etc). Note you need co-operation between WAN (SR) controller and SDWAN controller.

There’s absolutely no need to (ab)using GRE/VxLAN header bits.

Please let me know if anything is still unclear, we could also meet in Montreal.

Cheers,
Jeff
On Jul 18, 2019, 5:09 PM -0700, Linda Dunbar <linda.dunbar@futurewei.com>, wrote:
> Jeff,
>
> There are several scenarios (which have been documented in the draft):
> One scenario has SDWAN edge node not directly attached to SR edge. The draft is suggesting VxLAN or GRE to connect the SDWAN edge and the SR edge.
>
> Linda
>
> From: Jeff Tantsura <jefftant.ietf@gmail.com>
> Sent: Thursday, July 18, 2019 2:25 PM
> To: spring <spring-bounces@ietf.org>; SPRING WG <spring@ietf.org>; 徐小虎(义先) <xiaohu.xxh@alibaba-inc.com>; Linda Dunbar <linda.dunbar@futurewei.com>
> Subject: RE: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
>
> Linda,
>
> In context of draft-ietf-mpls-sr-over-ip it would be IP->SRinUDP->SR-native-> SRinUDP->IP
>
> Cheers,
> Jeff
> On Jul 18, 2019, 9:16 AM -0700, Linda Dunbar <linda.dunbar@futurewei.com>, wrote:
>
> > Jeff,
> >
> > For SDWAN case, the Source node and Destination nodes (a.k.a. SDWAN edge nodes) are IP based.
> >
> > So it should be reversed, IP segments -> SR segments which include both SRv6 & MPLS-SR -> IP segments
> >
> > Linda
> >
> > From: Jeff Tantsura <jefftant.ietf@gmail.com>
> > Sent: Monday, July 15, 2019 5:48 PM
> > To: spring <spring-bounces@ietf.org>; SPRING WG <spring@ietf.org>; 徐小虎(义先) <xiaohu.xxh@alibaba-inc.com>; Linda Dunbar <linda.dunbar@futurewei.com>
> > Subject: RE: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
> >
> > Linda,
> >
> > What you want is to use native MPLS when available and encapsulate MPLS packets in IP/UDP when you need to travers IP, you destination in the imposed IP header would be that of the next SR capable device as described in draft-ietf-mpls-sr-over-ip.
> >
> > Cheers,
> > Jeff
> > On Jul 15, 2019, 3:24 PM -0700, Linda Dunbar <linda.dunbar@futurewei.com>, wrote:
> > >
> > > Jeff,
> > >
> > > The draft-ietf-mpls-sr-over-ip only has MPLS packets being tunneled by IP, but not reversed (IP packets tunneled over MPLS).
> > >
> > > Do you think it worthwhile to add some similar sections (of course with different content), such as Forwarding entry Construction, forwarding procedures as in draft-ietf-mpls-sr-over-ip?
> > >
> > > Linda
> > >
> > > From: Jeff Tantsura <jefftant.ietf@gmail.com>
> > > Sent: Tuesday, July 09, 2019 4:03 PM
> > > To: spring <spring-bounces@ietf.org>; Linda Dunbar <linda.dunbar@futurewei.com>; SPRING WG <spring@ietf.org>; 徐小虎(义先) <xiaohu.xxh@alibaba-inc.com>
> > > Subject: Re: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
> > >
> > > +1
> > >
> > > take a look at draft-ietf-mpls-sr-over-ip
> > >
> > > Cheers,
> > > Jeff
> > > On Jul 8, 2019, 11:45 PM -0700, 徐小虎(义先) <xiaohu.xxh@alibaba-inc.com>, wrote:
> > > > Hi Linda,
> > > >
> > > > Why not directly use the MPLSoUDP encapsulation to carry the B-SID label so as to indicate the preferred path? For more details, please read https://tools.ietf.org/html/draft-dukes-spring-sr-for-sdwan-02#section-7.3
> > > >
> > > > Best regards,
> > > > Xiaohu
> > > >
> > > > > ------------------------------------------------------------------
> > > > > From:Linda Dunbar <linda.dunbar@futurewei.com>
> > > > > Send Time:2019年7月9日(星期二) 06:26
> > > > > To:Linda Dunbar <linda.dunbar@futurewei.com>; SPRING WG <spring@ietf.org>
> > > > > Subject:Re: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
> > > > >
> > > > > Sorry, I meant to ask:
> > > > >
> > > > > When the SDWAN edge nodes are NOT directly connected to the PEs of SR domain, is it appropriate for SDWAN edge nodes to use GRE/VxLAN header bits to indicate the desired SR Path?
> > > > >
> > > > > Linda
> > > > >
> > > > > From: spring <spring-bounces@ietf.org> On Behalf Of Linda Dunbar
> > > > > Sent: Monday, July 08, 2019 5:11 PM
> > > > > To: SPRING WG <spring@ietf.org>
> > > > > Subject: [spring] Seeking comments for draft-dunbar-sr-sdwan-over-hybrid-networks: is it appropriate for not-directly connect SDWAN edges to use GRE/VxLAN header bits to indicate the desired SR path?
> > > > >
> > > > > SD-WAN, as described by ONUG (Open Network User Group), is about pooling WAN bandwidth from multiple service providers to get better WAN bandwidth management, visibility & control.
> > > > > Because of the ephemeral property of the selected Cloud DCs, an enterprise or its network service provider may not have the direct links to the Cloud DCs that are optimal for hosting the enterprise’s specific workloads/Apps. Under those circumstances, SD-WAN is a very flexible choice to interconnect the enterprise on-premises data centers & branch offices to its desired Cloud DCs...
> > > > > However, SD-WAN paths over public internet can have unpredictable performance, especially over long distances and cross state/country boundaries. Therefore, it is highly desirable to place as much as possible the portion of SD-WAN paths over service provider VPN (e.g. enterprise’s existing VPN) that have guaranteed SLA and to minimize the distance/segments over public internet.
> > > > >
> > > > > https://datatracker.ietf.org/doc/draft-dunbar-sr-sdwan-over-hybrid-networks/ describes a method to enforce a SD-WAN path’s head-end selected route traversing through a list of specific nodes of multiple network segments without requiring the nodes in each network segments to have the intelligence (or maintaining states) of selecting next hop or next segments.
> > > > >
> > > > > When a SR domain has multiple PEs with ports facing the external networks (such as the public internet or LTE termination), SD-WAN paths can traverse the SR domain via different ingress/egress PEs resulting in different E2E performance.
> > > > >
> > > > > Even with the same ingress/egress, some flows may need different segments across the SR Domain. It is not practical, or even possible, for PEs to determine which Apps’ flows should egress.
> > > > > Segment Routing can be used to steer packets (or path) to traverse the explicit egress node, or explicit segments through the SR Domain based on the SLA requested by the SD-WAN head-end nodes.
> > > > >
> > > > > When the SDWAN edge nodes are directly connected to the PEs of SR domain, is it appropriate for SDWAN edge nodes to use GRE/VxLAN header bits to indicate the desired SR Path?
> > > > >
> > > > > We are looking for feedback, criticisms, or suggestion on the the proposed approach.
> > > > >
> > > > > Thank you,
> > > > > Linda
> > > > _______________________________________________
> > > > spring mailing list
> > > > spring@ietf.org
> > > > https://www.ietf.org/mailman/listinfo/spring

v2.23.0 | Report a Bug | By Email