Re: [spring] Binding SID in SRv6/SRv6 (was: Beyond SRv6)

[Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>]

Ketan,
Apologies.
Probably looked up a wrong version of the draft.

However, the question about compliance with RFC 8200 remains open IMHO.

Regards,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com

From: Ketan Talaulikar (ketant) <ketant@cisco.com>
Sent: Wednesday, September 4, 2019 3:19 PM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com>
Cc: SPRING WG List <spring@ietf.org>; Rob Shakir <robjs@google.com>; bruno.decraene@orange.com; rbonica@juniper.net
Subject: RE: Binding SID in SRv6/SRv6 (was: Beyond SRv6)

Hi Sasha,

My references were correct : https://tools.ietf.org/html/draft-ietf-spring-srv6-network-programming-01#section-4.13<https://clicktime.symantec.com/3KKXwPTZGsMHjQwm9dSXfUn6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-spring-srv6-network-programming-01%23section-4.13>

The section also refers to the individual draft in 6man (I-D.voyer-6man-extension-header-insertion) which covers the insertion.

You may also want to refer to this discussion : https://mailarchive.ietf.org/arch/msg/spring/yf_CsmaHd73xOELgSubsg5WN7Y8<https://clicktime.symantec.com/36FpzuYCCG5Ddbjs2eRPAr96H2?u=https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fmsg%2Fspring%2Fyf_CsmaHd73xOELgSubsg5WN7Y8>

Thanks,
Ketan

From: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>
Sent: 04 September 2019 17:31
To: Ketan Talaulikar (ketant) <ketant@cisco.com<mailto:ketant@cisco.com>>
Cc: SPRING WG List <spring@ietf.org<mailto:spring@ietf.org>>; Rob Shakir <robjs@google.com<mailto:robjs@google.com>>; bruno.decraene@orange.com<mailto:bruno.decraene@orange.com>; rbonica@juniper.net<mailto:rbonica@juniper.net>
Subject: RE: Binding SID in SRv6/SRv6 (was: Beyond SRv6)

Ketan,
Lots of thanks for a prompt response.

It seems that the sections in the draft should be 4.9 (Insert) and 4.11 (encap) and not as in the email.

With regard to the Insert  use case, the pseudocode in the draft suggest insertion of an additional SRH between the IPv6 header and the SRH  in which the Active Segment is BSID.

This seems to contradict Section 4.1 of RFC 8200 that states that “Each extension header should occur at most once, except for the Destination Options header, which should occur at most twice (once before a Routing header and once before the upper-layer header).”



While the quoted text is not a “real” IETF requirement (the word “should” is not capitalized),  it presumably expresses what Ron calls “IPv6 orthodoxy” in one of his emails.

Regards,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: Ketan Talaulikar (ketant) <ketant@cisco.com<mailto:ketant@cisco.com>>
Sent: Wednesday, September 4, 2019 2:27 PM
To: Alexander Vainshtein <Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>>; Rob Shakir <robjs@google.com<mailto:robjs@google.com>>; bruno.decraene@orange.com<mailto:bruno.decraene@orange.com>
Cc: SPRING WG List <spring@ietf.org<mailto:spring@ietf.org>>
Subject: RE: Binding SID in SRv6/SRv6 (was: Beyond SRv6)

Hi Sasha,

https://tools.ietf.org/html/draft-ietf-spring-srv6-network-programming-01<https://clicktime.symantec.com/38nQveSizJVERi76xLm6QE26H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-spring-srv6-network-programming-01> covers the pseudocode BSID for SRv6. Please refer to section 4.13-16 which describe both the insert and encap versions.

Thanks,
Ketan

From: spring <spring-bounces@ietf.org<mailto:spring-bounces@ietf.org>> On Behalf Of Alexander Vainshtein
Sent: 04 September 2019 16:19
To: Rob Shakir <robjs@google.com<mailto:robjs@google.com>>; bruno.decraene@orange.com<mailto:bruno.decraene@orange.com>
Cc: SPRING WG List <spring@ietf.org<mailto:spring@ietf.org>>
Subject: [spring] Binding SID in SRv6/SRv6 (was: Beyond SRv6)

Rob, Bruno and all,
I have a naive question based, most probably, on insufficient understanding of SRv6 (not to mention SRv6+).
This question has been prompted by the complaints (on the Beyond SRv6 thread) about problems with supporting long lists of 128-bits of SIDs in the IPv6 Segment Routing Headers, and various approaches to mitigating these complaints.



Section 5 of RFC 8402<https://clicktime.symantec.com/3P7ww24j92zztg13wZN6RY6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Frfc8402%23section-5> defines Binding Segments (BSIDs) and says that “he BSID is bound to an SR Policy, instantiation of which may involve a list of SIDs.”   It also explains that BSIDs facilitate better scalability (among other things) of SR.  And, as is appropriate for the architecture document, RFC 8402 does not differentiate between SR-MPLS and SRv6 in the definition of Binding segments.



The SR-MPLS<https://clicktime.symantec.com/3UdERpojogcMNV39NXKxTjd6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-spring-segment-routing-mpls-22> draft (already approved for publication as an RFC)  mentions (e.g., in the example in Section A.3.2) that the node that has allocated a BSID label 1023 for a specific SR policy FEC-1 for which it is the head-end “installs a transit MPLS forwarding entry to SWAP incoming label=1023, with outgoing labels and outgoing interface determined by the SID-List for FEC1”. This explanation is fully compatible with the MPLS architecture where the top label of the label stack can be swapped with multiple new labels.



Can somebody please explain how (if at all) are Binding Segments going to be supported in SRv6 and/or in SRv6+?

To the best of my (admittedly, limited) understanding of IPv6, no equivalent of the SR-MPLS handling of the BSID is allowed with the IPv6 routing headers as per RFC 8200<https://clicktime.symantec.com/3DtKadCvXtpVdeNxX5X1djK6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Frfc8200>. For the reference, the IPv6 Segment Routing Header<https://clicktime.symantec.com/321kP6Wd2GDT4fmj5bmhXX36H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-6man-segment-routing-header-22> draft does not mention Binding SIDs at all.



From my POV, if Binding segments cannot be supported with SRv6 or SRv6+, a Technical Erratum on 8402 should posted.

Did I miss something here?

Your timely feedback would be highly appreciated.

Regards, and lots of thanks in advance,
Sasha

Office: +972-39266302
Cell:      +972-549266302
Email:   Alexander.Vainshtein@ecitele.com<mailto:Alexander.Vainshtein@ecitele.com>

From: spring <spring-bounces@ietf.org<mailto:spring-bounces@ietf.org>> On Behalf Of Nick Hilliard
Sent: Tuesday, September 3, 2019 9:22 PM
To: Rob Shakir <robjs@google.com<mailto:robjs@google.com>>
Cc: SPRING WG List <spring@ietf.org<mailto:spring@ietf.org>>; 6man@ietf.org<mailto:6man@ietf.org>
Subject: Re: [spring] Beyond SRv6.

Rob,

Clarifying what I wrote previously, I don't think it would be appropriate for draft-filsfils-spring-net-pgm-extension-srv6-usid to progress further unless the authors can demonstrate that the volume of IPv6 addressing required can be satisfied in a way that works within the constraints that the operational community operates within.

If there is an expectation that this address space will be assigned from the global unicast address block via standard RIR allocation policies, then the authors will need to demonstrate that the RIRs are going to be comfortable changing their allocation policies to accommodate this.

Nick
Ron Bonica<mailto:rbonica=40juniper.net@dmarc.ietf.org>
1 September 2019 at 22:10
Hi Fernando,

6man participants should look at the following:

- https://tools.ietf.org/html/draft-ietf-spring-srv6-network-programming-01<https://clicktime.symantec.com/3XtGMsvx1pLfDs2UgbiiJSG6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-spring-srv6-network-programming-01> (In particular, Sections 4 and 5)
- https://tools.ietf.org/html/draft-filsfils-spring-net-pgm-extension-srv6-usid-02<https://clicktime.symantec.com/3GTugpKX6MEkQtxjkPN4sFA6H2?u=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-filsfils-spring-net-pgm-extension-srv6-usid-02>

Ron


Juniper Business Use Only

-----Original Message-----
From: Fernando Gont <fgont@si6networks.com><mailto:fgont@si6networks.com>
Sent: Saturday, August 31, 2019 4:53 PM
To: Ron Bonica <rbonica@juniper.net><mailto:rbonica@juniper.net>; Rob Shakir <robjs@google.com><mailto:robjs@google.com>; SPRING WG List <spring@ietf.org><mailto:spring@ietf.org>; 6man@ietf.org<mailto:6man@ietf.org>
Subject: Re: [spring] Beyond SRv6.

Hi, Ron,

For those 6man-ers that have not been following the sprin work, could you please clarify what do you mean by "stretching the interpretation of
RFC8200 or RFC4291"?

In the past we have seen outright violation of RFC8200 (formerly RFC2460), so I'm curious if there are any documents trying to do the same, or what.

Thanks!

Cheers,
Fernando


--
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com<mailto:fgont@si6networks.com>
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492



--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org<mailto:ipv6@ietf.org>
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6<https://clicktime.symantec.com/33tKyquDDwPJxhZF9gfXr6D6H2?u=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fipv6>
--------------------------------------------------------------------
Fernando Gont<mailto:fgont@si6networks.com>
31 August 2019 at 21:53
Hi, Ron,

For those 6man-ers that have not been following the sprin work, could
you please clarify what do you mean by "stretching the interpretation of
RFC8200 or RFC4291"?

In the past we have seen outright violation of RFC8200 (formerly
RFC2460), so I'm curious if there are any documents trying to do the
same, or what.

Thanks!

Cheers,
Fernando

Ron Bonica<mailto:rbonica=40juniper.net@dmarc.ietf.org>
31 August 2019 at 21:33
Rob,

The following are arguments for proceeding with SRv6+:

-          Efficient forwarding with deep SID lists
-          Operational Simplicity
-          SRv6+ work may finish before SRv6

Efficient forwarding with deep SID Lists
----------------------------------------------------

SR customers have stated a firm requirement to support SR paths that contain 8 to 12 segments. They have also stated a requirement for implementations to forward at line speed  and without consuming excessive overhead bandwidth.

SRv6, as defined in draft-ietf-6man-segment-routing-header, cannot satisfy these requirements. In order to support an SR path with 8 segments, SRv6 would require a 128-byte SRH. Even if ASICs could process such a long SRH at line speed, the bandwidth overhead would be prohibitive.

Therefore, one of the four solutions  that you mention below is required to make SRv6 deployable. While draft-ietf-6man-segment-routing-header is close to maturity, the four competing solutions mentioned below are equally mature and should be given equal consideration.


The four solutions are SRv6+, uSID, draft-li and draft-mirsky.

Operational Simplicity
-----------------------------
Network operators strive for operational simplicity. By loosely interpreting (and sometimes bending) the requirements of RFCs 4291 and RFC 8200, SRv6 introduces architectural quirks that introduce operational complexity. The following are architectural quirks of  draft-ietf-6man-segment-routing-header:

-          The Segment Routing Header (SRH) serves purposes other than routing. Therefore, the SRH is sometimes required for packets that traverse the least-cost path from source to destination
-          The SRH and the IPv6 Authentication Header are incompatible.
-          The IPv6 destination address determines whether an SRH is valid and how it is processed. For example, if the IPv6 destination address contains one locally instantiated value, the SRH might be processed in one particular way, while if the IPv6 destination address contains another locally instantiated value, the SRH might be totally invalid.

Draft-ietf-spring-srv6-network-programming  promises more architectural quirks. For example:

-          Segment endpoints can insert and/or delete IPv6 extension headers
-          An IPv6 packet can contain two Segment Routing headers
-          IPv6 packets are no longer self-describing. For example, the Next Header Field in the SRH can carry a value of No Next Header, even though the SRH is followed by Ethernet payload.

Other emerging drafts promise still more architectural quirks. For example, in draft-ali-6man-spring-srv6-oam, implementations need to examine the SRH even when Segment Left equals zero. This is because the SRH has been overloaded to carry OAM as well as routing information.

Furthermore, draft-filsfils-spring-net-pgm-extension-srv6-usid requires network operators to obtain address space and number their networks in a particular way to make routing work.

SRv6+ Work May Finish Before SRv6 work
--------------------------------------------------------
SRv6+  has been implemented on LINUX and is being implemented on JUNOS. Implementation experience demonstrates that specification is fairly complete. For example, there is no need for an SRv6+ OAM document. It’s just IPv6 and IPv6 OAM just works.

Furthermore, the SRv6+ specifications adhere to a strict interpretation of RFC 8200. Therefore, as they progress through the working group, they won’t need to overcome the objections that are inevitably encountered when stretching the interpretation of a specification that is so fundamental as RFC 8200.

                                                                                                      Thanks,
                                                                                                          Ron








From: spring <spring-bounces@ietf.org><mailto:spring-bounces@ietf.org> On Behalf Of Rob Shakir
Sent: Sunday, August 4, 2019 5:04 PM
To: SPRING WG List <spring@ietf.org><mailto:spring@ietf.org>
Subject: [spring] Beyond SRv6.


Hi SPRING WG,


Over the last 5+ years, the IETF has developed Source Packet Routing in NetworkinG (SPRING) aka Segment Routing for both the MPLS (SR-MPLS) and IPv6 (SRv6) data planes. SR-MPLS may also be transported over IP in UDP or GRE.


These encapsulations are past WG last call (in IESG or RFC Editor).


During the SPRING WG meeting at IETF 105, two presentations were related to the reduction of the size of the SID for IPv6 dataplane:

  *   SRv6+ / CRH -- https://tools.ietf.org/html/draft-bonica-spring-srv6-plus-04<https://clicktime.symantec.com/3XuwzQk4bWzHWmJ3PNZzRWh6H2?u=https%3A%2F%2Furldefense.proofpoint.com%2Fv2%2Furl%3Fu%3Dhttps-3A__tools.ietf.org_html_draft-2Dbonica-2Dspring-2Dsrv6-2Dplus-2D04%26d%3DDwMFaQ%26c%3DHAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI%26r%3DFch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8%26m%3DackZC9evRf_LWYu2a-1NaGRDJKdxnE2ieIC4dD_FL6s%26s%3DKUhAfjVsx_wK645uJk0FHzs2vxiAVr-CskMPAaEhEQQ%26e%3D>
  *   uSID -- https://tools.ietf.org/html/draft-filsfils-spring-net-pgm-extension-srv6-usid-01<https://clicktime.symantec.com/3XUeUBC1vrovLBUoCPCKDzD6H2?u=https%3A%2F%2Furldefense.proofpoint.com%2Fv2%2Furl%3Fu%3Dhttps-3A__tools.ietf.org_html_draft-2Dfilsfils-2Dspring-2Dnet-2Dpgm-2Dextension-2Dsrv6-2Dusid-2D01%26d%3DDwMFaQ%26c%3DHAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI%26r%3DFch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8%26m%3DackZC9evRf_LWYu2a-1NaGRDJKdxnE2ieIC4dD_FL6s%26s%3DAq1DK7fu73axZ1PXLIE8xnHE2AhTtNZy9LTHgWqx4CQ%26e%3D>


During the IETF week, two additional drafts have been proposed:

  *   https://tools.ietf.org/html/draft-li-spring-compressed-srv6-np-00<https://clicktime.symantec.com/3RsA24LYYDz2wXB3s3USU4K6H2?u=https%3A%2F%2Furldefense.proofpoint.com%2Fv2%2Furl%3Fu%3Dhttps-3A__tools.ietf.org_html_draft-2Dli-2Dspring-2Dcompressed-2Dsrv6-2Dnp-2D00%26d%3DDwMFaQ%26c%3DHAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI%26r%3DFch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8%26m%3DackZC9evRf_LWYu2a-1NaGRDJKdxnE2ieIC4dD_FL6s%26s%3DXWUDAD2FMhWLfeT5sgUb1lgthJhugcyT98GJ2N-CrKs%26e%3D>
  *   https://tools.ietf.org/html/draft-mirsky-6man-unified-id-sr-03<https://clicktime.symantec.com/3QHabsdCZRy35Awz9b6QUCR6H2?u=https%3A%2F%2Furldefense.proofpoint.com%2Fv2%2Furl%3Fu%3Dhttps-3A__tools.ietf.org_html_draft-2Dmirsky-2D6man-2Dunified-2Did-2Dsr-2D03%26d%3DDwMFaQ%26c%3DHAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI%26r%3DFch9FQ82sir-BoLx84hKuKwl-AWF2EfpHcAwrDThKP8%26m%3DackZC9evRf_LWYu2a-1NaGRDJKdxnE2ieIC4dD_FL6s%26s%3DgcbkHYxXm7FU7vblOB1vI58SDaaWf62pa7YvLmsP4nI%26e%3D>


As we expressed during the meeting, it is important for the WG to understand what the aims of additional encapsulations are. Thus, we think it is important that the WG should first get to a common understanding on the requirements for a new IPv6 data plane with a smaller SID - both from the perspective of operators that are looking to deploy these technologies, and from that of the software/hardware implementation.


Therefore, we would like to solicit network operators interested in SR over the IPv6 data plane to briefly introduce their:

  *   use case (e.g. Fast Reroute, explicit routing/TE)
  *   forwarding performance and scaling requirements

     *   e.g., (number of nodes, network diameter, number of SID required in max and average). For the latter, if possible using both SRv6 128-bit SIDs and shorter (e.g. 32-bit) SIDs as the number would typically be different (*).

  *   if the existing SRv6 approach is not deployable in their circumstances, details of the requirement of a different solution is required and whether this solution is needed for the short term only or for the long term.


As well as deployment limitations, we would like the SPRING community to briefly describe the platform limitations that they are seeing which limit the deployment of SRv6  In particular limitations related to the number of SIDs which can be pushed and forwarded and how much the use of shorter SIDs would improve the deployments .


For both of these sets of feedback if possible, please post this to the SPRING WG. If the information cannot be shared publicly, please send it directly to the chairs & AD (Martin).


This call for information will run for four weeks, up to 2019/09/03. As a reminder, you can reach the SPRING chairs via spring-chairs@ietf.org<mailto:spring-chairs@ietf.org> and ADs via spring-ads@ietf.org<mailto:spring-ads@ietf.org>.


Thank you,

-- Rob & Bruno


(*) As expressed on the mailing list, a 128 bit SID can encode two instructions a node SID and an adjacency SID hence less SID may be required.



Juniper Business Use Only

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org<mailto:ipv6@ietf.org>
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6<https://clicktime.symantec.com/33tKyquDDwPJxhZF9gfXr6D6H2?u=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fipv6>
--------------------------------------------------------------------


___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________

___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this
transmission in error, please inform us by e-mail, phone or fax, and then delete the original
and all copies thereof.
___________________________________________________________________________

___________________________________________________________________________

This e-mail message is intended for the recipient only and contains information which is 
CONFIDENTIAL and which may be proprietary to ECI Telecom. If you have received this 
transmission in error, please inform us by e-mail, phone or fax, and then delete the original 
and all copies thereof.
___________________________________________________________________________