Re: [spring] SRv6 PSP use case
"Darren Dukes (ddukes)" <ddukes@cisco.com> Wed, 04 March 2020 22:01 UTC
Return-Path: <ddukes@cisco.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB06B3A0A1B for <spring@ietfa.amsl.com>; Wed, 4 Mar 2020 14:01:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=SlCe88wG; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=o8GNt0m7
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5HdhFjpCs8YZ for <spring@ietfa.amsl.com>; Wed, 4 Mar 2020 14:01:09 -0800 (PST)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E730C3A0A14 for <spring@ietf.org>; Wed, 4 Mar 2020 14:01:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12521; q=dns/txt; s=iport; t=1583359268; x=1584568868; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=SHyutYQBVoc5zMtsCKRjVfSCHgpt1NUiG0+gOSWQ/H0=; b=SlCe88wGC79lvD3dztTN0jQrVsiQYf/UgHWOoDLIjrniB9XLY4YV2R/+ 2JviOPxhaq/HAAlU222SDph5OVNeuraGJaD5nUrXndn2/wKZUWu6ON+m1 J0oteOitrJ5mWHYyXGoB/yxcbiV1yjkP2V4qLZMlGlcdhWpWBZL/fMXiA k=;
IronPort-PHdr: 9a23:mhbWmBwwgt/piPPXCy+N+z0EezQntrPoPwUc9psgjfdUf7+++4j5YR2N/u1j2VnOW4iTq+lJjebbqejBYSQB+t7A1RJKa5lQT1kAgMQSkRYnBZuJBVD4IeXCZC0hF8MEX1hgrDm2
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D5CQByJGBe/5xdJa1mHgELHINPJCwFbFggBAsqCoQLg0YDimmCOpNYhGKCUgNUCQEBAQwBARgBDAgCBAEBg35FAheBaiQ4EwIDAQELAQEFAQEBAgEFBG2FVgyFZAIBAwEBEBEdAQEsCwEPAgEIPwMCAgIlCxQRAgQOBSKDBAGBfU0DLgEOonACgTmIYnWBMoJ/AQEFgkSCQhiCDAMGgTiMJxqBQT+BOAwUgk0+gmQBAQIBgg+CZDKCLI1NgxmFcIoLjz8KgjyHUoVNiUccgkmMbIt8l26STwIEAgQFAg4BAQWBaSKBWHAVOyoBgkFQGA2OHQwXg1CFFIVBdAIBgSaMDwGBDwEB
X-IronPort-AV: E=Sophos;i="5.70,515,1574121600"; d="scan'208,217";a="728544033"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 04 Mar 2020 22:01:07 +0000
Received: from XCH-ALN-005.cisco.com (xch-aln-005.cisco.com [173.36.7.15]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 024M17WD025933 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 4 Mar 2020 22:01:07 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-ALN-005.cisco.com (173.36.7.15) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 4 Mar 2020 16:01:07 -0600
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 4 Mar 2020 17:01:06 -0500
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Wed, 4 Mar 2020 16:01:06 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=NuvHuT7y8Jr+x4omX2/zmqYoBDOHLE+8lExBO1he/wmry00I+NlvooRbNFyQdAf6Qe96b6aFC0Bdz7SLjUNZocu/d5S4bZ6KOMLCCn1xvw5Go4tHlqvqxgkAmg3DhZcdTQrqdIzdktb0JdEgTONfm5efnSe9FtpfFTeCcF7Kl9HqXe0OATHAAatuEvn2VST9zPiIQupbjDbNwGkaf6rgvh0/2jZVGIiV8d53IFbiLbT6O+my8QD1MpVa0UxHVw6pJ3iweAL5emghn8+YaaQSpkSUmOFtCgLGDmEm3/zEccsiU0Wfhtxy2GggHO30s3/sbkIVTvkyP4NYczjT/gSYrw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=SHyutYQBVoc5zMtsCKRjVfSCHgpt1NUiG0+gOSWQ/H0=; b=POJvKHp4ZeffPHM8aXW9W2nGwoZUIJr5QAVpoahvxkwh0u/RAr9ACJNDufTikq8NKKAG6xBYQcbUTfIubjw3drqgR582G3pa/CkzPwEQA1Sez8JGSbyZlw31NISXx1pYt9wkFZOn9RCQE57GSadE7o3GnNg/+TpMnIhD8v0neTJf1t1WX6fWxA2cbo6uroLshXGMhI1sHXh1ZQkbkc6ZuCwIXTuo+8tHo999HkO7IPf3TvmxOdRlf4mQ1ukrV/Nwxv29vG30RJfwZNgBrmrPwmldv/Q1v/azUlBdv90SUZa2K2IPkIx2wEPZMFCxFjWFHDO0a7Onv/d1/2wpzOomzA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SHyutYQBVoc5zMtsCKRjVfSCHgpt1NUiG0+gOSWQ/H0=; b=o8GNt0m7Lm7z08EboZ4aO7fNONXD0+jzeOMM3er8Y8d9jxs/hJ3AlXfvNUWsm7SA1AlBs/UwrIGdq5hTcPEriT+ORJthG4zQdbo/tK1gCyCjMQbeBWle4QNCFpVLohw9DuqlmK75FfD27fzoIkGS/fVvIHRyzoQV80WxW6dj9+o=
Received: from DM5PR11MB1818.namprd11.prod.outlook.com (2603:10b6:3:114::9) by DM5PR11MB1899.namprd11.prod.outlook.com (2603:10b6:3:10b::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.15; Wed, 4 Mar 2020 22:01:05 +0000
Received: from DM5PR11MB1818.namprd11.prod.outlook.com ([fe80::d136:2a22:28ef:2075]) by DM5PR11MB1818.namprd11.prod.outlook.com ([fe80::d136:2a22:28ef:2075%12]) with mapi id 15.20.2772.019; Wed, 4 Mar 2020 22:01:05 +0000
From: "Darren Dukes (ddukes)" <ddukes@cisco.com>
To: "Joel M. Halpern" <jmh@joelhalpern.com>
CC: "spring@ietf.org" <spring@ietf.org>
Thread-Topic: [spring] SRv6 PSP use case
Thread-Index: AQHV8mVsn3vbUlErAEeLut6ggMYLfKg4/AEA
Date: Wed, 04 Mar 2020 22:01:05 +0000
Message-ID: <7E6EF284-A5FB-4120-87C8-616C12FB8FEA@cisco.com>
References: <2e26bfcf-b5a6-203b-e4f3-3ee654e59598@joelhalpern.com>
In-Reply-To: <2e26bfcf-b5a6-203b-e4f3-3ee654e59598@joelhalpern.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=ddukes@cisco.com;
x-originating-ip: [161.44.192.63]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 35923067-b95e-4e02-4f50-08d7c087894d
x-ms-traffictypediagnostic: DM5PR11MB1899:
x-microsoft-antispam-prvs: <DM5PR11MB1899DCEA67316C54EEBE92C2C8E50@DM5PR11MB1899.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0332AACBC3
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(366004)(396003)(346002)(39860400002)(136003)(376002)(199004)(189003)(6916009)(71200400001)(5660300002)(26005)(6486002)(36756003)(33656002)(86362001)(186003)(8936002)(2906002)(64756008)(8676002)(316002)(66946007)(66556008)(66476007)(478600001)(81166006)(6512007)(91956017)(6506007)(81156014)(53546011)(66446008)(4326008)(2616005)(966005)(76116006); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR11MB1899; H:DM5PR11MB1818.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: syzjfeImw+o9r8ATMQpkEem2d4C6UeQQYfFyV29hwYCvjKMt45ZT4kqD42o2YF+9b6vgI2E3tbBub/dzveRa5Dk7S+YWITREpnhOiVUMa4oyDDSp6h2gDoNkfXT2kMbrfrzx1gHLx8OI6u+JHWmm1g==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_7E6EF284A5FB412087C8616C12FB8FEAciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 35923067-b95e-4e02-4f50-08d7c087894d
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Mar 2020 22:01:05.2327 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: x66nX7V6EHOLObw2fikhfU/nvyYgKFHyPRBYHEhwhx7ihE8UPZ+uzyagViwMUGxtkmavYTVA9WNuR9gaFvMGZw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR11MB1899
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.15, xch-aln-005.cisco.com
X-Outbound-Node: rcdn-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/2P848xhOteeOE2VtR1vy6BTCO2Y>
Subject: Re: [spring] SRv6 PSP use case
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Mar 2020 22:01:11 -0000
Hi Joel, what you describe was also described by Dan Voyer and Jingrong previously. You’ve added some signalling color but otherwise the same. If you’ve read https://tools.ietf.org/html/draft-filsfils-spring-srv6-net-pgm-illustration-00#section-2.4 you can see how SRv6 is used for an L3VPN without an SRH present. Combine that with the TE description with PSP here https://tools.ietf.org/html/draft-filsfils-spring-srv6-net-pgm-illustration-00#section-2.8.1 Now you should be able to see how to put this together. The WG decided illustrations such as this belong in the illustration draft. I believe the WG requested that be split from draft-filsfils-spring-srv6-network-programming draft before adoption. That was over a year ago. Darren On Mar 4, 2020, at 3:41 PM, Joel M. Halpern <jmh@joelhalpern.com<mailto:jmh@joelhalpern.com>> wrote: I think I have now inferred what the intended use case is for PSP. I really wish folks had stated it in full and explicitly, rather than implicitly a piece at a time, on the list. As noted below after the explanation, I think that supporting this use case does require some explanations somewhere. And given that the support is in terms of PSP, I guess the NP draft is the place to put the caveats. As far as I can tell, the use case is as follows. The operator has devices, that they reasonably wish to continue to use. These devices can support encapsulation and decapsulation with sufficiently arbitrary content. These devices comply with the RFC 8200 requirement for ignoring routing headers by punting those to the slow path. With significant performance penalty. -- Presumably, these devices have some form of protection to prevent this slow-pathing from becoming a DoS on the other necessary control functions. I don't think that protection is an SRv6 or NP problem. But it is necessary. Thus, the SRv6 designers want to be able to use these devices as part of the SRv6 domain, strictly at entry and exit. They use PSP as a way to avoid hitting the slow path on decapsulate. (Presumably because the check that punts the packet to the slow path is before the check that says "decapsulate". And it probably should be in that order.) In order to support this, the authors have also pretended that maximum SID depth is meaningful for a thing that is not a stack, and that 0 means "no SRH permitted". While an interesting stretch on the routing protocol semantics, it is not SPRING's problem. The fact that these nodes can not be SRv6 end nodes other than as terminal nodes with a prior node that advertised PSP SID(s) and where those PSP SIDs are used on any path that terminates at these end nodes is important. It probably should be called out. It would have helped a number of the examples that were discussed on the list. There is another implication that needs to be stated explicitly. And I do not know how the necessary property can be indicated. These nodes MUST NOT be transit nodes in an SRv6 path. Having parsed the use case, I would note that the topological constraints are pretty severe. the operator must ensure that there are PSP processing nodes sufficiently close to these edge nodes that they do not destroy the traffic engineering properties in order to achieve the ingress / egress utilization. If all of this had been stated explicitly, I think we could have had a clear discussion of teh costs and benefits. Yours, Joel _______________________________________________ spring mailing list spring@ietf.org<mailto:spring@ietf.org> https://www.ietf.org/mailman/listinfo/spring
- [spring] SRv6 PSP use case Joel M. Halpern
- Re: [spring] SRv6 PSP use case Andrew Alston
- Re: [spring] SRv6 PSP use case Darren Dukes (ddukes)
- Re: [spring] SRv6 PSP use case Joel Halpern Direct
- Re: [spring] SRv6 PSP use case Mark Smith
- Re: [spring] SRv6 PSP use case Ketan Talaulikar (ketant)
- Re: [spring] SRv6 PSP use case Pengshuping (Peng Shuping)