IETF Logo Mail Archive

Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases

Alexander Vainshtein <Alexander.Vainshtein@ecitele.com> Tue, 16 May 2017 16:28 UTC

Return-Path: <Alexander.Vainshtein@ecitele.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E86D01243F3; Tue, 16 May 2017 09:28:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.58
X-Spam-Level:
X-Spam-Status: No, score=-4.58 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=eci365.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QJgNSAB7ln3S; Tue, 16 May 2017 09:28:00 -0700 (PDT)
Received: from mail1.bemta5.messagelabs.com (mail1.bemta5.messagelabs.com [195.245.231.146]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56512127698; Tue, 16 May 2017 09:23:45 -0700 (PDT)
Received: from [85.158.136.83] by server-10.bemta-5.messagelabs.com id 2C/99-01734-F872B195; Tue, 16 May 2017 16:23:43 +0000
X-Brightmail-Tracker: H4sIAAAAAAAAA1WSa0gUURTH987M7ozixHXV9rQa0Wak0tq7jCg qCPxSZFBk77Gm3aXdcZvZTCtKsJfaC4usTXFLIyrTMsvS7LEFppiZmFhkthmxRhA96KEVzXh7 2LffnN9/zjn3cjna2Gwwc2KmR5QlwWkxhDKT47/GWvPGRKeOv9ISmXShO2hI+n55QVJl3Usqq aG1H81mko/0X9InX/d2scllZd+ohfQyvUNKS89co7d/OMm5q4+yma9/3NRno4t5bB4K5Ri8m4 bnNbnqRwhnxAUUBO4YNGHELxA8aG9HmjDgmVB1vsugcSSeBNU7+/RaiMZFNHibKgf+jsBuOOX rVEOcGtoIZw7KJC/Bzqvf9VqZwaPhYO80rczjFVBX8ZglszoYKHiRw2giBKdAd0PlACM8FL40 lVMa09gET1+VDDBgDGU3HtKEo6C356ee5PMR1PlmkfpIOPa8iCU8HNpK8pE2DPA+Gu687aC0h QDPh56bSwmOgurgShJX23TfXUp4A5y9VcgQ3gYlzZ8NpE0/BcEnDb9FDPx47/8t9rLQWFpLkT sxQ1d7LiIcA8Fn9XpyGAkC91qZQ2iMd9DZvIOUd+CSwqHx+CuVObUeD5W140hkJBzJD7CE42B XUTE7uO5D7DkUp4hyhihbJ05JTJMdNrvHJTic1gnjpyS6REURbKJTSFMS16a7qpD6snbodOga qt2zwI+GcZQlil+/1ZxqHJKWvi7LLij21fImp6j4UQzHWYCvHh2dagyXRZuYud7hVJ/nHw1cm CWSr9E0r7gFl+KwEdWErFx54Ns7yshI6ZJoNvHntRDWQvZN0t8Wfx55GxpujuCRTqczhrlF2e Xw/O/fIBOHLBH8HK1LmEPy/J30Rl2CUpdY0mvSlvAI/5Q5G9np3rywelfOmhGJM8L9PW7H3oL JKcXBbM6/fW0MyuVLuuuyjS1Vi64d3X9uT6epYsvx+tKi5d4hkMH6Gj6FT7XObJF8l8bOWew5 kBFVuC/lfk/outhHHQeY/IRdNaebuayNhXNtqz6W9h0uvj39xO7Cebc3Z8UHowPln6WEjqdX+ yyMYhcmJNCyIvwCvvtQV98DAAA=
X-Env-Sender: Alexander.Vainshtein@ecitele.com
X-Msg-Ref: server-8.tower-36.messagelabs.com!1494951811!105345456!1
X-Originating-IP: [52.41.248.36]
X-StarScan-Received:
X-StarScan-Version: 9.4.12; banners=ecitele.com,-,-
X-VirusChecked: Checked
Received: (qmail 8647 invoked from network); 16 May 2017 16:23:34 -0000
Received: from ec2-52-41-248-36.us-west-2.compute.amazonaws.com (HELO EUR01-DB5-obe.outbound.protection.outlook.com) (52.41.248.36) by server-8.tower-36.messagelabs.com with AES256-SHA256 encrypted SMTP; 16 May 2017 16:23:34 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ECI365.onmicrosoft.com; s=selector1-ecitele-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Csd3BEXTkTdF34LEuXb3uOnUlF+H/hXOKayHfE6EpiU=; b=JssHpGbd5mU66QSopjXaBCzEMm8AtyQRM6e+ObWbD46WId2Ly5MPhLnSmnV3nTgYnDISv7YEQ3Ruvx+P42oM8fn/qEu3H504Sh5kxGfAjtrWCgjwi0Ax1xT6VTh2PT/GiuW8rXBpXAZCAge0IWF0VWf28cnc6qUnZcTY4W4rWko=
Received: from AM4PR03MB1713.eurprd03.prod.outlook.com (10.167.88.15) by AM3PR03MB1025.eurprd03.prod.outlook.com (10.163.5.147) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1084.16; Tue, 16 May 2017 16:23:29 +0000
Received: from AM4PR03MB1713.eurprd03.prod.outlook.com ([fe80::21f9:af8d:c7ff:3e13]) by AM4PR03MB1713.eurprd03.prod.outlook.com ([fe80::21f9:af8d:c7ff:3e13%14]) with mapi id 15.01.1084.027; Tue, 16 May 2017 16:23:29 +0000
From: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
To: Muthu Arul Mozhi Perumal <muthu.arul@gmail.com>
CC: "Stefano Previdi (sprevidi)" <sprevidi@cisco.com>, "spring@ietf.org" <spring@ietf.org>, Shell Nakash <Shell.Nakash@ecitele.com>, Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com>, "draft-ietf-spring-resiliency-use-cases@ietf.org" <draft-ietf-spring-resiliency-use-cases@ietf.org>, Sidd Aanand <Sidd.Aanand@ecitele.com>, Ron Sdayoor <Ron.Sdayoor@ecitele.com>, Rotem Cohen <Rotem.Cohen@ecitele.com>
Thread-Topic: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases
Thread-Index: AdLKMfwZZp8yu5h/Ra+WsEpPtv/h+gDQnJYAAClgXmAAAR1WkAACTVYAAABuswAAAVfJAAAAP+pQAACkDVAACzIdAAAAL49A
Date: Tue, 16 May 2017 16:23:29 +0000
Message-ID: <AM4PR03MB17134890B40531136D7EE5719DE60@AM4PR03MB1713.eurprd03.prod.outlook.com>
References: <AM4PR03MB1713393C262301279EAF29039DED0@AM4PR03MB1713.eurprd03.prod.outlook.com> <4CE8B71E-1CB7-43AF-9DA3-D936E030A2CA@cisco.com> <AM4PR03MB1713F46B5662731126099CFE9DE60@AM4PR03MB1713.eurprd03.prod.outlook.com> <CAKz0y8wPO6VcMJ6Ba_m1A5L2F5bh2rv7761C8vGo51H+xSRfuA@mail.gmail.com> <AM4PR03MB1713AAD69441A6C92D63B5919DE60@AM4PR03MB1713.eurprd03.prod.outlook.com> <CAKz0y8zHzneU4SUtH8RGp0kjKVc=XfFZ3uO6e8NNFGn0X383LQ@mail.gmail.com> <AM4PR03MB171393C194C01D56F00513E59DE60@AM4PR03MB1713.eurprd03.prod.outlook.com> <CAKz0y8xnkL10YFr7+V8i5ECe0Zgzr7hELgKnHjDxm5WgOzdPjQ@mail.gmail.com>
In-Reply-To: <CAKz0y8xnkL10YFr7+V8i5ECe0Zgzr7hELgKnHjDxm5WgOzdPjQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.234.241.1]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM3PR03MB1025; 7:B5jmG96mOdlMcVGWVOwI6GoqI/OxfCrz1UGZXXmy0JWCi3WdQs123MQ+S8VyjnA1frk12gTjgZymxyuJqatoU0ndf2QxPssqopl3uxiFjORQQ1MavDqHrjWS7eXaXBOUbDlQSgX9GlvirLn5d68hPwu8Zeax06EhwBL0Q71OKI4r4FlcE/e+jqI/dM7uMs2jS1qSMPvhiQ4tlK7PMGcIujeQDmq+uoxe8m2ym1w+IMgdJxMW6Jt424jAJV/DVJnjaRrOpYkbMiKH8iEk1YWRuV03SvmLHcrvJEEgABcH8PrFZgKZPv92rII5iArmMcmXhvMt/eImI23apxJ7nf9O6g==
x-ms-office365-filtering-correlation-id: 07a0e2bd-2a40-4eee-6b2f-08d49c77e34b
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(48565401081)(201703131423075)(201703031133081); SRVR:AM3PR03MB1025;
x-microsoft-antispam-prvs: <AM3PR03MB1025DD43424BE41A400363F49DE60@AM3PR03MB1025.eurprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(72170088055959)(131327999870524)(95692535739014)(21748063052155)(279101305709854);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(601004)(2401047)(5005006)(8121501046)(93006095)(93001095)(3002001)(10201501046)(6055026)(6041248)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123564025)(20161123562025)(20161123558100)(20161123555025)(20161123560025)(6072148); SRVR:AM3PR03MB1025; BCL:0; PCL:0; RULEID:; SRVR:AM3PR03MB1025;
x-forefront-prvs: 03094A4065
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39400400002)(39850400002)(39450400003)(39860400002)(39840400002)(39410400002)(377454003)(252514010)(24454002)(37854004)(53754006)(13464003)(102836003)(790700001)(8936002)(8676002)(3846002)(6116002)(81166006)(25786009)(76176999)(50986999)(5250100002)(54356999)(5660300001)(93886004)(966005)(189998001)(2906002)(86362001)(230783001)(7906003)(74316002)(229853002)(7736002)(66066001)(6506006)(478600001)(2900100001)(53546009)(33656002)(38730400002)(6246003)(6436002)(107886003)(55016002)(606005)(99286003)(54896002)(110136004)(236005)(72206003)(16200700003)(53946003)(54906002)(6306002)(3280700002)(53936002)(39060400002)(7696004)(3660700001)(9686003)(19609705001)(4326008)(6916009)(2950100002)(579004)(559001)(569005); DIR:OUT; SFP:1102; SCL:1; SRVR:AM3PR03MB1025; H:AM4PR03MB1713.eurprd03.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_AM4PR03MB17134890B40531136D7EE5719DE60AM4PR03MB1713eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ecitele.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 May 2017 16:23:29.3556 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2c514a61-08de-4519-b4c0-921fef62c42a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM3PR03MB1025
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/5OK8cXZh-1DtxPrM7wbaixE8JhA>
Subject: Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Stacked Tunnels for Source Routing \(STATUS\)." <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 May 2017 16:28:05 -0000

Muthu,
Again lots of thanks for a prompt response.

We seem to agree on the following points:

·         In SR some failures cannot be handled by local protection (actually, there is an expired draft that defines how this could be done, but it introduces serious complexity)

·         Combining local protection with end-to-end path protection is possible. In particular, such a combination speeds up handling of failures that that can be handled locally while also handling failures that could not be addressed by local protection.

Whether combining both forms of protection carries with it some new problems or not is a different story.

Regards,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com

From: Muthu Arul Mozhi Perumal [mailto:muthu.arul@gmail.com]
Sent: Tuesday, May 16, 2017 7:11 PM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
Cc: Stefano Previdi (sprevidi) <sprevidi@cisco.com>; spring@ietf.org; Shell Nakash <Shell.Nakash@ecitele.com>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com>; draft-ietf-spring-resiliency-use-cases@ietf.org; Sidd Aanand <Sidd.Aanand@ecitele.com>; Ron Sdayoor <Ron.Sdayoor@ecitele.com>; Rotem Cohen <Rotem.Cohen@ecitele.com>
Subject: Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases

Sasha,

On Tue, May 16, 2017 at 4:29 PM, Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>> wrote:
Muthu,
An additional clarification:

•         If the link BC were OK, B could pop B from the stack and send packets to C with just D in the stack

•         When the link BC fails, B will leave the stack as (CD) IMHO – it would be  just trying to bypass the failed link BC.

•         If the failure of BC as perceived by B was cause by the failure of node B, such a failure could not be recovered by local protection. This is exactly the scenario where local protection for shortest SR path comprising an SR-TE path should be augmented by end-to-end path protection.
​If node B fails, the e2e path monitoring at  node A would anyway detect the failure and switch the traffic over an alternate disjoint path...​

Regarding combination of local protection with end-to-end protection for RSVP-TE – AFAIK this was never used because it would not provide any added value.
In SR this is not so because local protection is usually faster (and scales better) than end-to-end protection, but, as opposed to RSVP-TE, there are failures that local protection cannot fix.

​Agree, there are failures in SR-TE that local protection cannot fix as desired, so it calls for e2e path protection. However, enabling them together is not always the best approach since it can introduce other problems to solve.

Regards,
Muthu


Regards,
Sasha

Office: +972-39266302<tel:+972%203-926-6302>
Cell:      +972-549266302<tel:+972%2054-926-6302>
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: Alexander Vainshtein
Sent: Tuesday, May 16, 2017 1:42 PM
To: 'Muthu Arul Mozhi Perumal' <muthu.arul@gmail.com<mailto:muthu.arul@gmail.com>>
Cc: Stefano Previdi (sprevidi) <sprevidi@cisco.com<mailto:sprevidi@cisco.com>>; spring@ietf.org<mailto:spring@ietf.org>; Shell Nakash <Shell.Nakash@ecitele.com<mailto:Shell.Nakash@ecitele.com>>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com<mailto:Michael.Gorokhovsky@ecitele.com>>; draft-ietf-spring-resiliency-use-cases@ietf.org<mailto:draft-ietf-spring-resiliency-use-cases@ietf.org>; Sidd Aanand <Sidd.Aanand@ecitele.com<mailto:Sidd.Aanand@ecitele.com>>; Ron Sdayoor <Ron.Sdayoor@ecitele.com<mailto:Ron.Sdayoor@ecitele.com>>; Rotem Cohen <Rotem.Cohen@ecitele.com<mailto:Rotem.Cohen@ecitele.com>>
Subject: RE: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases

Muthu,
Again lots of thanks for a prompt response. I still do not think a loop would really form because:

•         A sends packet to its local next hop for B with the stack (B, C, D)

•         B receives this packet with the stack (C, D), but the link C has failed. So B sends to its next hop for it back to A with stack (C,D)

•         A now sends the packet to its next hop for C with the same stack.

Regards,
Sasha

Office: +972-39266302<tel:+972%203-926-6302>
Cell:      +972-549266302<tel:+972%2054-926-6302>
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: Muthu Arul Mozhi Perumal [mailto:muthu.arul@gmail.com]
Sent: Tuesday, May 16, 2017 1:25 PM

To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>
Cc: Stefano Previdi (sprevidi) <sprevidi@cisco.com<mailto:sprevidi@cisco.com>>; spring@ietf.org<mailto:spring@ietf.org>; Shell Nakash <Shell.Nakash@ecitele.com<mailto:Shell.Nakash@ecitele.com>>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com<mailto:Michael.Gorokhovsky@ecitele.com>>; draft-ietf-spring-resiliency-use-cases@ietf.org<mailto:draft-ietf-spring-resiliency-use-cases@ietf.org>; Sidd Aanand <Sidd.Aanand@ecitele.com<mailto:Sidd.Aanand@ecitele.com>>; Ron Sdayoor <Ron.Sdayoor@ecitele.com<mailto:Ron.Sdayoor@ecitele.com>>; Rotem Cohen <Rotem.Cohen@ecitele.com<mailto:Rotem.Cohen@ecitele.com>>
Subject: Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases

On Tue, May 16, 2017 at 3:27 PM, Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>> wrote:
Muthu,
Lots of thanks for a prompt response.

I do not think that the loop you have described would actually appear in the scenario you’ve described.

To the best of my understanding of TI-LFA, B would send the traffic back to A complete with an explicit route that says B--> A--> C-->D, and no loop would be formed.

Not necessarily. B was asked to send the traffic to C and knows that if it sends the traffic to A, then A will send it to C over the shortest path (i.e from B's perspective only the labeled next-hop changes). Unfortunately, A has an explicit route pointing back to B (over the SR-TE tunnel T1) that B isn't aware of. If B does strict explicit route for everything, then B can run out of its MSD..

​

Similar “loops” can happen also in MPLS FRR with RSVP-TE when the PLR sends some traffic back  - but it sends it with the suitable label stack of the bypass tunnel so that eventually it reaches the MP.

​Are there existing deployments where both e2e path protection and local protection are used together with RSVP-TE?

Regards,
Muthu


Regards,
Sasha

Office: +972-39266302<tel:+972%203-926-6302>
Cell:      +972-549266302<tel:+972%2054-926-6302>
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: Muthu Arul Mozhi Perumal [mailto:muthu.arul@gmail.com<mailto:muthu.arul@gmail.com>]
Sent: Tuesday, May 16, 2017 12:34 PM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>
Cc: Stefano Previdi (sprevidi) <sprevidi@cisco.com<mailto:sprevidi@cisco.com>>; spring@ietf.org<mailto:spring@ietf.org>; Shell Nakash <Shell.Nakash@ecitele.com<mailto:Shell.Nakash@ecitele.com>>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com<mailto:Michael.Gorokhovsky@ecitele.com>>; draft-ietf-spring-resiliency-use-cases@ietf.org<mailto:draft-ietf-spring-resiliency-use-cases@ietf.org>; Sidd Aanand <Sidd.Aanand@ecitele.com<mailto:Sidd.Aanand@ecitele.com>>; Ron Sdayoor <Ron.Sdayoor@ecitele.com<mailto:Ron.Sdayoor@ecitele.com>>; Rotem Cohen <Rotem.Cohen@ecitele.com<mailto:Rotem.Cohen@ecitele.com>>

Subject: Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases

Using end-to-end path protection together with local protection can result in traffic loops. Consider the foll. topology:

B-----C
|    / \
|   /   \
|  /     \
| /       \D----+
A/              Z (CE)
 \         F----+
  \       /
   \     /
    \   /
     \E/

- All links are of equal cost.
- A, D and F are BGP peers.
- Z is a dual-homed CE.

A resolves its BGP next-hop D over the SR-TE tunnel T1.
T1: A->B, B->C, C->D (loosely routed)

Suppose A has enabled end-to-end path protection over tunnel T1 and B has TI-LFA enabled, and the detection timers are configured as described in your previous email. If the BC link goes down, B will immediately start rerouting the traffic via A (in FRR fashion) creating a loop b/w A and B.

A solution would be to make the A-B link ineligible for TI-LFA backup computation at B. However, managing this network-wide could become operational expensive. Hence, deploying one of end-to-end path protection or local protection with sufficiently short detection timers keeps things simple, IMHO.

Regards,
Muthu

On Tue, May 16, 2017 at 1:59 PM, Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>> wrote:


Regards,
Sasha

Office: +972-39266302<tel:+972%203-926-6302>
Cell:      +972-549266302<tel:+972%2054-926-6302>
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: Alexander Vainshtein
Sent: Tuesday, May 16, 2017 11:28 AM
To: 'Stefano Previdi (sprevidi)' <sprevidi@cisco.com<mailto:sprevidi@cisco.com>>
Cc: draft-ietf-spring-resliency-use-cases@ietf.org<mailto:draft-ietf-spring-resliency-use-cases@ietf.org>; spring@ietf.org<mailto:spring@ietf.org>; Shell Nakash <Shell.Nakash@ecitele.com<mailto:Shell.Nakash@ecitele.com>>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com<mailto:Michael.Gorokhovsky@ecitele.com>>; Sidd Aanand <Sidd.Aanand@ecitele.com<mailto:Sidd.Aanand@ecitele.com>>; Ron Sdayoor <Ron.Sdayoor@ecitele.com<mailto:Ron.Sdayoor@ecitele.com>>; Rotem Cohen <Rotem.Cohen@ecitele.com<mailto:Rotem.Cohen@ecitele.com>>
Subject: RE: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases


Stefano,

Lots of thanks for a prompt response.



A couple of short comments if you do not mind:



Using 2119 language in a "use cases" document:

1.       Going back to the source I see that “MUST NOT… mean that the definition is an absolute prohibition of the specification”

2.       I agree that the use case document defines which scenarios should be addressed, but I do not see how it can impose an absolute prohibition on a certain scenario.



Little sense link protection has in the case of path protection:

1.       This was definitely correct for traditional traffic engineering because the “shortest traffic paths” (e.g., LDL PSPs) could be easily differentiated from the “engineered traffic paths”.

2.       In addition, traditional local protection (e.g., MPLS FRR using RSVP-TE) could deal with link and node failures regardless of whether the failed link or node appeared in the ERO of the protected path.

3.       IMHO and FWIW, with SR  the situation is quite different:

o   The shortest traffic paths not only coexist with engineered traffic paths: the latter are in many cases “tunneled” within the former.

o   Path protection cannot be applied to shortest traffic paths so they must rely on local protection

o   Local protection in the case of failure of a node or link that appears in the ERO of an engineered SR path is highly non-trivial at best, so path protection for the engineered LSPs looks like a preferred solution to me.

I fully agree with you that the operators deploying SR should provide feedback on this point based on actual operational experience.

Meanwhile I doubt that a priori declaring some use cases as absolutely prohibited is the right thing to do.



My 2c,

Sasha



Office: +972-39266302<tel:+972%203-926-6302>

Cell:      +972-549266302<tel:+972%2054-926-6302>

Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>





-----Original Message-----
From: Stefano Previdi (sprevidi) [mailto:sprevidi@cisco.com]
Sent: Monday, May 15, 2017 11:12 AM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>
Cc: draft-ietf-spring-resliency-use-cases@ietf.org<mailto:draft-ietf-spring-resliency-use-cases@ietf.org>; spring@ietf.org<mailto:spring@ietf.org>; Shell Nakash <Shell.Nakash@ecitele.com<mailto:Shell.Nakash@ecitele.com>>; Michael Gorokhovsky <Michael.Gorokhovsky@ecitele.com<mailto:Michael.Gorokhovsky@ecitele.com>>; Sidd Aanand <Sidd.Aanand@ecitele.com<mailto:Sidd.Aanand@ecitele.com>>; Ron Sdayoor <Ron.Sdayoor@ecitele.com<mailto:Ron.Sdayoor@ecitele.com>>; Rotem Cohen <Rotem.Cohen@ecitele.com<mailto:Rotem.Cohen@ecitele.com>>
Subject: Re: [spring] A belated comment on end-to-end path protection in draft-ietf-spring-resiliency-use-cases





> On May 11, 2017, at 12:04 PM, Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>> wrote:

>

> Hi all,

> I have a belated (but hopefully late is still better than never) comment on path protection as defined in Section 2 of the draft.

>

> This second para in this section says:

>    A first protection strategy consists in excluding any local repair

>

>    but instead use end-to-end path protection where each SPRING path

> is

>

>    protected by a second disjoint SPRING path.  In this case local

>

>    protection MUST NOT be used.

>

> First of all, I do not think that RFC 2119 language should be used in Informational documents, especially in the documents that describe use cases.





this document is also a requirements document for the resiliency use-case. RFC2119 terminology is perfectly usable and even more, it adds clarity on what the solution is expected to provide.





> In addition, I specifically disagree with the quoted statement above, because, from my POV:

> ·         Local repair and end-to-end path protection can be combined for the same path

> ·         Such a combination may be beneficial for the operators.





are you talking by experience or is it just something that came into your mind ? I’d like to hear from operators using a combination of path and link protection.



This document has been deeply reviewed also by operators and it has been always obvious the little sense link protection has in case of path protection.





> One possible way to combine the two is described below:

>

> 1.       A pair of SR paths is set up between the given two nodes – later referred to as source and destination -  in the network. These paths are “SR-disjoint” in the sense that their “explicit routes”  do not have any common elements, be they nodes or adjacencies, with exclusion of the final destination

> 2.       Local repair for these paths is enabled in the network. It is triggered by locally observed events (link failures etc.), applied by the nodes adjacent to the failure and guarantees that, in the case of a link or node failure that is not specified in the explicit route, traffic along the affected path would be restored within <X> milliseconds

> 3.       End-to-end liveness monitoring is enabled for the two SR paths, and detects end-to-end failures of these paths within <Y> milliseconds where Y >> X. In other words, end-to-end liveness monitoring for these paths will ignore any failures that local repair can fix, but will detect failures that cannot be locally repaired (e.g., failures of nodes or links that have been specified in the explicit route of one of the paths

> 4.       End-to-end liveness monitoring triggers end-to-end path protection to be applied by the source node in the following way:

> a.       If it recognizes both paths as alive, one of them will carry the customer traffic, while the other one will be idle. The rules for selecting the active path in this scenario may vary

> b.      If end-to-end failure of one of these paths is detected while the other one remains alive, traffic will be carried across the live path

> c.       If end-to-end failure of both paths is detected (e.g., if the final destination node fails, or if the network is partitioned), this is recognized as an unrecoverable failure.

>

> From my POV the combination of local repair and end-to-end protection for SR paths is one of a few possibilities to protect such paths against failures of nodes and/or links that have been specified in their explicit routes. (Another option has been described in Node Protection for SR-TE Paths, but this draft has expired).

>

> Do I miss something substantial?





to my view you created a use-case that doesn’t bring much to the picture but I’d let operators to comment.



s.





>

> Regards,

> Sasha

>

> Office: +972-39266302<tel:+972%203-926-6302>

> Cell:      +972-549266302<tel:+972%2054-926-6302>

> Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

>

>

> ______________________________________________________________________

> _____

>

> This e-mail message is intended for the recipient only and contains

> information which is CONFIDENTIAL and which may be proprietary to ECI

> Telecom. If you have received this transmission in error, please

> inform us by e-mail, phone or fax, and then delete the original and all copies thereof.

> ______________________________________________________________________

> _____ _______________________________________________

> spring mailing list

> spring@ietf.org<mailto:spring@ietf.org>

> https://www.ietf.org/mailman/listinfo/spring



___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________

_______________________________________________
spring mailing list
spring@ietf.org<mailto:spring@ietf.org>
https://www.ietf.org/mailman/listinfo/spring


___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________


___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________


___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is 
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this 
transmission in error, please inform us by e-mail, phone or fax, and then delete the original 
and all copies thereof.
___________________________________________________________________________

v2.23.0 | Report a Bug | By Email