IETF Logo Mail Archive

Re: [spring] FW: New Version Notification for draft-bonica-spring-srv6-plus-05.txt

Mark Smith <markzzzsmith@gmail.com> Thu, 29 August 2019 02:55 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53750120099; Wed, 28 Aug 2019 19:55:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.499
X-Spam-Level:
X-Spam-Status: No, score=-0.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4pAgtsWUeZvj; Wed, 28 Aug 2019 19:55:24 -0700 (PDT)
Received: from mail-oi1-x236.google.com (mail-oi1-x236.google.com [IPv6:2607:f8b0:4864:20::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48D0F12001A; Wed, 28 Aug 2019 19:55:24 -0700 (PDT)
Received: by mail-oi1-x236.google.com with SMTP id p127so1399505oic.8; Wed, 28 Aug 2019 19:55:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=87xHwGyHgPoKNpJX3HRxzLDR8e4eMwu+nPiUSi1q/HQ=; b=bSkmaRTCkFQkCbLDePNfAKDnvo/+LfMdhyXoNKgRhh3Dz6tGJZhYH3G257nmphCSpr fLNcP5z7TRxqhTtjTlhgpWGdgdD7jr3bNk64XbdBOCXHBnNR4t2ZZcUZvP99CS9l8AmQ 9k5bawRBpb1b1ZkUnVA/G5SrVAwffw4zMOEtMaMyGCPbFIdz4g6T/D5+XuJ4LGiYDIBY M46wTyMS7rVRDA0WqSWMNXpqc2lulFohH1qf1jUgfzOrgHa8n3MZscHzrQSyk8ZWfZyM F33l1gp+vX0xVRQJLoMi7r2z3X77/GJ3U5KAXXU4f5IduxiSEGiPoj7l2cWA6Rr8mDwp rMTg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=87xHwGyHgPoKNpJX3HRxzLDR8e4eMwu+nPiUSi1q/HQ=; b=r6jr+92DumccBTa63vFIX7Q48rBv2J1qIXYmwB4U9WE2dI5DbThu4OGpSAF1rMr5T+ pGnEhnyH94HOrZsV2PjddEElI8qRpfBnCcgN3mQyv+GeVZYuf4GG0zvfNrHHGILm/3yv zoKgbNN22KsfMgL8pBWPJX3/tNiJBcUqPjpFJ8b907WkF8t4Ks7sJ6xV0jB981jpjhEM q2zmWwN4zXkCZm+/p+ZTK/L7aKyvPA9jstVySy/igk5qNFx8i8uOEFPKm9CBI36gAoBk boHuvUCvLMoXLefBABB8npEL8O7Cw4rEFrNQtr/cdFcf0nwYHbAEik4jt/woesWzS4aP ZsGA==
X-Gm-Message-State: APjAAAX8Gbe8Ktl3LusCq0hPbTcoYfTVs/Int1Ii1K/hyTw86UB3bwG0 4TKJ+ZC20Um8wMPZnpGra0g6KUW/N2pBjyPnieiZFWx5
X-Google-Smtp-Source: APXvYqws0PCmLsTTZyfJW/qkjUUuY8eGYP9mlI+v+y6tsB5mYJH475RO2bcjF/xiSpyH8USdkw8explN49i/0yC2rWA=
X-Received: by 2002:aca:2209:: with SMTP id b9mr4987926oic.54.1567047323488; Wed, 28 Aug 2019 19:55:23 -0700 (PDT)
MIME-Version: 1.0
References: <156700628554.1233.13341317295523968354.idtracker@ietfa.amsl.com> <BYAPR05MB546360166E8DE83DE67B7843AEA30@BYAPR05MB5463.namprd05.prod.outlook.com> <CAO42Z2wyJPkYaPtRtHSo749mRdQLQb0wu3WRsiGeCQke7RNWGw@mail.gmail.com> <a065427b-31a2-36fc-01d1-8927810b532d@joelhalpern.com>
In-Reply-To: <a065427b-31a2-36fc-01d1-8927810b532d@joelhalpern.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Thu, 29 Aug 2019 12:54:56 +1000
Message-ID: <CAO42Z2wHyCcFpeqED77rro2ChiimbCyWC+dj4ryYE0Fs+7V1Lw@mail.gmail.com>
To: "Joel M. Halpern" <jmh@joelhalpern.com>
Cc: SPRING WG <spring@ietf.org>, IPv6 List <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/gs8PvEyEjYjig6-vPuFP9E7wqno>
Subject: Re: [spring] FW: New Version Notification for draft-bonica-spring-srv6-plus-05.txt
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Aug 2019 02:55:26 -0000

Hi Joel,

On Thu, 29 Aug 2019 at 11:50, Joel M. Halpern <jmh@joelhalpern.com> wrote:
>
> Mark, I had missed the earlier email suggesting that the SIDs could be
> address specific rather than just node specific.  That is an interesting
> idea.  At first glance, it appears to work, and warrants further thought.
>

I like the idea of having one-size-fits-most or one-size-fits-all
parameters or rather constants if possible, as it means one less
decision, and one less decision that could be wrong and then costly to
fix.

With per-address SID space, you could then use aggregate prefixes to
give a range of addresses and their SIDs some sort of significance
that may be operationally or business useful.

For example, I think ULAs should be used for the outer SR packet
addressing to help mitigate SR traffic leaking or its effects, and
since you can generate multiple of your own unique ULA /48s, you could
do something like have a SR ULA /48 per country, region etc., or
perhaps a ULA /48 per SR service type or type group.


> As far as I know, routers tend not to use SLAAC for interface address
> generation, and tend not to be worried about the privacy properties of
> their interface addresses, so at least for most use cases I am having
> trouble following your last paragraph.
>

They might not be using the SLAAC "protocol" i.e. RA PIOs, however
they are supposed to be using the SLAAC method to generate their
Link-Local addresses.

RFC 4862, "IPv6 Stateless Address Autoconfiguration":

"The autoconfiguration process specified in this document applies only
   to hosts and not routers.  Since host autoconfiguration uses
   information advertised by routers, routers will need to be configured
   by some other means.  However, it is expected that routers will
   generate link-local addresses using the mechanism described in this
   document.  In addition, routers are expected to successfully pass the
   Duplicate Address Detection procedure described in this document on
   all addresses prior to assigning them to an interface."

RFC 7217 naturally applies to routers too due to their use of SLAAC
above, including their link-local addresses. The specific idea was to
be able to couple a router's interface addresses to something else
independent of interface MAC address, such as module slot, so that
swapping a router interface module didn't cause the IPv6 interface
addresses to change.

Of course you can avoid that problem by configuring static IPv6
addresses on router interfaces, although it's work a computer could do
instead, and I wonder how often people have typed in fe80::1 when they
really meant to type in fe80::2? DAD would catch it, however it's
better to avoid a problem.

I'm pretty sure globally unique Link-Local IIDs weren't a goal of RFC
7217, however I think they're useful because within your network they
can be come a network wide IPv6 interface identifier independent of
GUA/ULA addresses.

Their local network uniqueness also means they could be put in a local
instance of authoritative reverse DNS for fe80::/10 e.g. PTR
<intfname>.<routername>. That could be useful during troubleshooting
e.g. have an end-user read out their default gateway's interface
address name rather than fe80::<blah>. (fe80::1 is good for end-users
to read or type, but tells you nothing link or router specific. )

Regards,
Mark.


> Thank you,
> Joel
>
> On 8/28/2019 7:39 PM, Mark Smith wrote:
> > Hi Ron,
> >
> > In an email a while back I think you mentioned that the SID space is
> > unique in the context of an address, where as this draft is saying
> > that SIDs have node-local significance, which I think means the same
> > single SID space across all the addresses of the node.
> >
> > The reason I'm wondering is that if the SID space is per-address, then
> > I'd think it could be possible to have a single 16 bit SID space,
> > rather than two sizes and needing an operator to make a choice (with
> > the risk of making an incorrect choice, and the consequences of having
> > to migrate a network from one size to another).
> >
> > If 16 bits is enough for TCP/UDP etc. ports in most cases then I'd
> > guess it would probably be enough for SIDs. Of course, as with running
> > out of TCP/UDP port numbers, an operator could give a node or
> > interface another IPv6 address to create another 16 bit SID space if
> > necessary.
> >
> >
> > I also remember from that email you mentioning the idea of unique
> > link-local addresses. If IPv6 implementations follow RFC 8064,
> > "Recommendation on Stable IPv6 Interface Identifiers", which
> > recommends RFC 7217, "A Method for Generating Semantically Opaque
> > Interface Identifiers with IPv6 Stateless Address Autoconfiguration
> > (SLAAC)", then nodes' link-local addresses (specifically the IID part)
> > should not only be network wide unique, but also globally unique.
> >
> > Regards,
> > Mark.
> >
> > On Thu, 29 Aug 2019 at 01:38, Ron Bonica
> > <rbonica=40juniper.net@dmarc.ietf.org> wrote:
> >>
> >> FYI
> >>
> >>
> >> Juniper Public
> >>
> >> -----Original Message-----
> >> From: internet-drafts@ietf.org <internet-drafts@ietf.org>
> >> Sent: Wednesday, August 28, 2019 11:31 AM
> >> To: Ron Bonica <rbonica@juniper.net>; Shraddha Hegde <shraddha@juniper.net>; Andrew Alston <Andrew.Alston@liquidtelecom.com>; Gang Chen <phdgang@gmail.com>; Joel Halpern <joel.halpern@ericsson.com>; Andrew Alston <andrew.alston@liquidtelecom.com>; Daniam Henriques <daniam.henriques@liquidtelecom.com>; Jen Linkova <furry@google.com>; Yuji Kamite <y.kamite@ntt.com>
> >> Subject: New Version Notification for draft-bonica-spring-srv6-plus-05.txt
> >>
> >>
> >> A new version of I-D, draft-bonica-spring-srv6-plus-05.txt
> >> has been successfully submitted by Ron Bonica and posted to the IETF repository.
> >>
> >> Name:           draft-bonica-spring-srv6-plus
> >> Revision:       05
> >> Title:          IPv6 Support for Segment Routing: SRv6+
> >> Document date:  2019-08-28
> >> Group:          Individual Submission
> >> Pages:          23
> >>
> >>
> >> Abstract:
> >>     This document describes SRv6+. SRv6+ is a Segment Routing (SR)
> >>     solution that leverages IPv6.  It supports a wide variety of use-
> >>     cases while remaining in strict compliance with IPv6 specifications.
> >>     SRv6+ is optimized for ASIC-based forwarding devices that operate at
> >>     high data rates.
> >>
> >>
> >>
> >>
> >> Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.
> >>
> >> The IETF Secretariat
> >> --------------------------------------------------------------------
> >> IETF IPv6 working group mailing list
> >> ipv6@ietf.org
> >> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> >> --------------------------------------------------------------------
> >
> > --------------------------------------------------------------------
> > IETF IPv6 working group mailing list
> > ipv6@ietf.org
> > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> > --------------------------------------------------------------------
> >

v2.23.0 | Report a Bug | By Email