IETF Logo Mail Archive

Re: [spring] Network Programming Interface for Provisioning of Underlay Services to Overlay Networks Using SRv6 (draft-xie-spring-srv6-npi-for-overlay)

Andrew Alston - IETF <andrew-ietf@liquid.tech> Thu, 10 March 2022 14:59 UTC

Return-Path: <andrew-ietf@liquid.tech>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E42A3A1803 for <spring@ietfa.amsl.com>; Thu, 10 Mar 2022 06:59:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=liquid.tech
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rbIyAt5BuSgm for <spring@ietfa.amsl.com>; Thu, 10 Mar 2022 06:59:04 -0800 (PST)
Received: from eu-smtp-delivery-182.mimecast.com (eu-smtp-delivery-182.mimecast.com [185.58.85.182]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 106AB3A17FB for <spring@ietf.org>; Thu, 10 Mar 2022 06:59:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=liquid.tech; s=mimecast20210406; t=1646924341; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=N9pcyL2QUCxMym2l5Qx8gbhzSl/Uu92VTGY7j8d4ZUE=; b=cCzKV6CeHfL0B94j7pqh8D0RLCNENH7mXUZ5djKUUt6uV9zrWvz0dv2lff/Wwbi8PCVXYd BkOOcLimyIfHkUMhCnw/1KpVYU2ooeRDSKJfbhdpMhD1EN9B/Lo5okvyUfbaYpeb/PuxK6 oVlMh1Q0fA6ajfFpmYzk+EV1vWiRViE=
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-vi1eur04lp2059.outbound.protection.outlook.com [104.47.14.59]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id uk-mta-196-2xueZ2AsN-abUYQsF93JJg-1; Thu, 10 Mar 2022 14:58:58 +0000
X-MC-Unique: 2xueZ2AsN-abUYQsF93JJg-1
Received: from AM7PR03MB6451.eurprd03.prod.outlook.com (2603:10a6:20b:1b3::22) by AM0PR03MB4067.eurprd03.prod.outlook.com (2603:10a6:208:74::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5061.22; Thu, 10 Mar 2022 14:58:56 +0000
Received: from AM7PR03MB6451.eurprd03.prod.outlook.com ([fe80::4840:edb3:af81:2086]) by AM7PR03MB6451.eurprd03.prod.outlook.com ([fe80::4840:edb3:af81:2086%7]) with mapi id 15.20.5038.018; Thu, 10 Mar 2022 14:58:56 +0000
From: Andrew Alston - IETF <andrew-ietf@liquid.tech>
To: "Xiejingrong (Jingrong)" <xiejingrong=40huawei.com@dmarc.ietf.org>, Tom Hill <tom@ninjabadger.net>, "spring@ietf.org" <spring@ietf.org>
Thread-Topic: [spring] Network Programming Interface for Provisioning of Underlay Services to Overlay Networks Using SRv6 (draft-xie-spring-srv6-npi-for-overlay)
Thread-Index: Adgyj2pEDTIYoRv+Rwm6VOp4IGlK2wBNJauAACFuVoAAEUkkQA==
Date: Thu, 10 Mar 2022 14:58:56 +0000
Message-ID: <AM7PR03MB64513AEDE5ED62ECE0F50280EE0B9@AM7PR03MB6451.eurprd03.prod.outlook.com>
References: <5138b23393b7434fa674eefd1886385d@huawei.com> <f2ba3c4a-e30d-d3f2-211b-0b42d99cd876@ninjabadger.net> <bdff393fee4e484fb364baf56b0391e6@huawei.com>
In-Reply-To: <bdff393fee4e484fb364baf56b0391e6@huawei.com>
Accept-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b13dbff8-bf5e-4b3d-3f51-08da02a6802b
x-ms-traffictypediagnostic: AM0PR03MB4067:EE_
x-microsoft-antispam-prvs: <AM0PR03MB4067B46FA35A1F104B1B65FEFA0B9@AM0PR03MB4067.eurprd03.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR03MB6451.eurprd03.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(38070700005)(9686003)(7696005)(53546011)(186003)(86362001)(2906002)(83380400001)(6506007)(52536014)(122000001)(66556008)(71200400001)(5660300002)(66574015)(8936002)(9326002)(110136005)(33656002)(64756008)(66446008)(76116006)(508600001)(316002)(66946007)(66476007)(55016003)(966005)(166002)(8676002)(38100700002); DIR:OUT; SFP:1102
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: KTAJFUyOJjZKVDTZ8TFZxnsky27BRnVOmk6RIABgWDB1ssaHRIRYJfylpGkKKEofXHGACPg6yiTXHBVj6C8Ym9duFt0xeJVx2mfFPcFh2rB2caPPblbe9DUxMUw1EGEHBG1wrsjYCfzY4CGutPjbxVQhpOXNd2rgrBXW9u/D1i4VfCH3JLg0/NOKuHy3yzWXCiXSmnYUTc6qtDS4CmTh7t+z2ZafF24SchouyyfGIjDNwcPXJgMldtHwedJuBVtO7nl29XyR+ecs4+iZ3Y2mMCpnv5rAKoUsFszrdA4HdWvAb/pKDl0VB3DWjEwGQA5f4P78Bv50pH3tiySaZbwJtEnZWiKmkUOHCNhr1R2Zu8JHtrDFtA3Dzoib+4g+NJFfSd3BG4aNhVwwW6fYAIkTN6SfClumnrCSv7X1SUR2B3mDY08yY3zObhMh6cD6tJlmVJRoYOcX7CPR2h2FSkIF9fcIaB14ByQO0QKIONGS8Qapt5vthU6EpsxAIrb3UtaCzF2u+pPWFxNaGBtaJhvoF50MBSnj7tRRNNNGIaf02huz/JsnbnmeaPw5v8nYN7SaoFhIJU4HfCDx6MY4mkK0a0vcRawnJ7fYolaHTEzd5ol/Tk9wt8cwk6cl1SuggiLm9STABXu2OeXa1e5vcFpka8q9sbjKtsHw+fCqdEFLyHCsyBAVMtPDc61TTdxbIIr3xdXieE4Xz7B+zB5WFXVoMV1Glr5V5iGucfx00ok0cG8HrGX1rt2QHF3xMh6+do6B1k5mWnKtzPEez3FXn91Ncust9xmjoS1aivjiJ3AZ1OJ0WzRAXHhbkvO8XztnTjcVVOnpheNwT+cLrhaKIahDpnurFRY3eS5ZMln8jraekUCO9Um0Mh30ysk/b/swzi1cTPDuOL9HWqBh7b7CPfRzHyay/vj6qulEUCZHd8cmeNh6QBi+PKrOSWXUXo3RQera9JXddoOQfO//q1xMryPsP4mLS2iCjy/STAF+RAVx9BecdZ91siaHOcZ0PPz8ERy9lAoDtTDlUW8YKc8MqnYe7DZ68C4QJsGuPBROeeNFx5r37ipEBKXtS5IKUht1AQJA/2bYxEnuBofgeHPLTJvaMM/idp5yeXV/OTCh6LXPOTMiUYlk9hl2LbU1ksCdWkgLc6HG6na4j5xQPGIgoAssDn6R9aIBOVXPol/mMR5vnCeENndl16KDV4JNdIjwMCOV6qnXtWsmFsqbnWvvy4WlaN57v31qCqy1yX2YwF5m87TQ+jftiZ7hmv0qLydtqJmsbLKCaWR0Dw4u8brke+vYoabpafXcv+DSf1GJnru5VU3r4NxB6lc8nErxMcTAY0ENmFAhAl5pUIa3MiMVwLfhv/ViSJNE/oapq7sNKcZGGITaxiyJ+ISCrDe5eLbBhpRgAjW781vSK8aZtHWl34nnYi+DGKjfA2LaLJUWlFCUIi1ad0ChIWX73XKva5G6HaWGOBPDn0HyJD7ytZp2Jl2KTzmTWoT/ty4F/d7vU1jFtmjEky/M6RAo/SY33KZiHK/qul2Nw4s2gC+QbfTn+Iu5dw==
MIME-Version: 1.0
X-OriginatorOrg: liquid.tech
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR03MB6451.eurprd03.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b13dbff8-bf5e-4b3d-3f51-08da02a6802b
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Mar 2022 14:58:56.3866 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 68792612-0f0e-46cb-b16a-fcb82fd80cb1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: OkDamHiGlkgYCv7LfsBdLeQOf4hG8TN5u4EnxnPMvAJHyI+T3kgj/a081OAcneCERM9f45yj14ESxtEdRMOMzayI3NkcAu7LcXhXJbmuJkc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR03MB4067
Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=C82A168 smtp.mailfrom=andrew-ietf@liquid.tech
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: liquid.tech
Content-Language: en-US
Content-Type: multipart/alternative; boundary="_000_AM7PR03MB64513AEDE5ED62ECE0F50280EE0B9AM7PR03MB6451eurp_"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/8TS9IpR0ghm6unogdYe8yhNqQ1c>
Subject: Re: [spring] Network Programming Interface for Provisioning of Underlay Services to Overlay Networks Using SRv6 (draft-xie-spring-srv6-npi-for-overlay)
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2022 14:59:16 -0000

Hi Jingrong,

I'm struggling to entirely understand this.  I think the question for me is - if you are sending packets with SID's over the open internet - are you encapsulating those packets and is this encapsulation cryptographically protected - I.E the SID's are not visible outside of the encapsulation, to preserve the limited domain.

Limited domains are typically extended via tunnel mechanisms, very often with cryptographic protection, hence the question

Thanks

Andrew


From: spring <spring-bounces@ietf.org> On Behalf Of Xiejingrong (Jingrong)
Sent: Thursday, March 10, 2022 9:40 AM
To: Tom Hill <tom@ninjabadger.net>; spring@ietf.org
Subject: Re: [spring] Network Programming Interface for Provisioning of Underlay Services to Overlay Networks Using SRv6 (draft-xie-spring-srv6-npi-for-overlay)

Hi Tom,

Thanks for reading the draft and raise discussions.

In the proposal the SRv6 domain is the overlay network, belonging to one administrative domain -- the overlay network operator(say ONO).

For your concern about use of SIDs "across" the public Internet. Let me try to explain using following figure (hope it works):

CPE1 CPE2 CPE3
+ + + +
| +--------+ | | +----------+ |
+---[1] TN1 [1]---+ +---+ Internet |---+
+--------+ +----------+

In the perspective of the ONO, it has the following SIDs:
SID1/2/3: allocated on CPE1/CPE2/CPE3 by the ONO.
SID4/5: allocated by TN operator but serves for the ONO (Tenant-1 of TN, marked [1] in the figure).
The ONO can use these SIDs, and I would think they are all "in the overlay network", and are running "Over the Internet".

You mentioned in the last sentence "the use of SIDs over the public Internet". That is what I am modeling above.

Thanks
Jingrong


-----Original Message-----
From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Tom Hill
Sent: Wednesday, March 9, 2022 10:43 PM
To: spring@ietf.org<mailto:spring@ietf.org>
Subject: Re: [spring] Network Programming Interface for Provisioning of Underlay Services to Overlay Networks Using SRv6 (draft-xie-spring-srv6-npi-for-overlay)

Hi Jinrong,

On 08/03/2022 01:58, Xiejingrong (Jingrong) wrote:
> I just posted a draft that specifies a framework and some more detail
> of the idea for provisioning of underlay services
> (Slice/SR-policy/Mcast/etc) to overlay networks(SD-WAN/CDN/etc), using SRv6.
>
> https://datatracker.ietf.org/doc/html/draft-xie-spring-srv6-npi-for-ov<https://datatracker.ietf.org/doc/html/draft-xie-spring-srv6-npi-for-ov>
> erlay
> <https://datatracker.ietf.org/doc/html/draft-xie-spring-srv6-npi-for-o<https://datatracker.ietf.org/doc/html/draft-xie-spring-srv6-npi-for-o>
> verlay>
>
> Please comment and send any feedback.
>
> I would like to discuss this document over e-mail/mail-list.


I'm concerned that this draft is explicitly violating the concept of
SRv6 as a protocol that operates within a Limited Domain.

As per Section 3.2 of this draft, "... the network operator of AN, TN and Internet can be different from each other."

Further, "In some scenarios, the AN can be an Internet exchange provider
(IXP) independent of ISP and NSP. In some other scenarios, the AN can be an ISP that running Internet backbone as well."

This would read to me that the proposal is explicitly intended to be inter-domain, and not at all limited to any one administrative domain.
Additionally, I cannot determine if the draft implicitly requires the use of SIDs across the public Internet?

Could I ask for some clarification on the scope of the draft, with respect to Limited Domains, and also the use of SIDs over the public Internet?

Kind regards,

--
Tom

_______________________________________________
spring mailing list
spring@ietf.org<mailto:spring@ietf.org>
https://www.ietf.org/mailman/listinfo/spring<https://www.ietf.org/mailman/listinfo/spring>

_______________________________________________
spring mailing list
spring@ietf.org<mailto:spring@ietf.org>
https://www.ietf.org/mailman/listinfo/spring<https://www.ietf.org/mailman/listinfo/spring>

v2.43.4 | Report a Bug | By Email | System Status