IETF Logo Mail Archive

Re: [spring] draft-ietf-spring-srv6-network-programming: Relative advantages of SRv6

Gyan Mishra <hayabusagsm@gmail.com> Fri, 03 January 2020 07:18 UTC

Return-Path: <hayabusagsm@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE38A120072 for <spring@ietfa.amsl.com>; Thu, 2 Jan 2020 23:18:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lLAVi9pD47Jc for <spring@ietfa.amsl.com>; Thu, 2 Jan 2020 23:18:23 -0800 (PST)
Received: from mail-io1-xd2e.google.com (mail-io1-xd2e.google.com [IPv6:2607:f8b0:4864:20::d2e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F08A120043 for <spring@ietf.org>; Thu, 2 Jan 2020 23:18:23 -0800 (PST)
Received: by mail-io1-xd2e.google.com with SMTP id v3so40563023ioj.5 for <spring@ietf.org>; Thu, 02 Jan 2020 23:18:23 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=P+5neP7hgHkVwCr/mLlOhTsOjdvLlJiMQQBFB+VPkXQ=; b=kZfqys4CunCMrCWhBELI5Meyz/OeFwHnQu3d/n2CgJdCKKg/BKkOmNRkkmFXs7Ra3j S4eYDTpuLtIX35rEKfYequPdZv6RPF0pLefKCrHORFPmjF31mXdAGHHs7uyeIb6xq2/a 8/3Q7QmYFdnlZDJtBaoV92+qC8PiHTxk0vtKZYFDRL2azyD/4ummK1hIghvNAUXHhV+V dcjXchItFlW2dRsm7t30X8eFTGgZaRIbv1KbLHDEv4H6dL1vmHzpdvDws7Ixi5NnraE5 GX1rP5t10ly31kHRtWDwvoE9ok7IcEk3T3sTILEeyg2ucsm9CFX6McGX30801ApPTD6z 1FIg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=P+5neP7hgHkVwCr/mLlOhTsOjdvLlJiMQQBFB+VPkXQ=; b=t88D4ZSPy7glIz7Xjs3hY5/A6Gvt1QL3Bt4yiLZja+ayzH+RFODiosGyFPpqFQnHjd +mpE+ZRKmN0oIbsj44Bmwc9S9r/aRt83kb8BqfcxpMdXbOzgvUabcojnRBu5JSX1RLL3 zsQVIcFeF1sJ799Ok4WwlXYx1VD7KvCW2AR/0RbCYJ7yRcRDB+vQjJsmjr6WZrnar746 jseK8xRQQ10OIS16Llla4PLoCC2+F1ZiTXFLH/K4U2xd3l2DYftCT5wW5+jsLMC5DAlQ 9q9bKYlRZacYGvjE6t8GwRiyGOHhoV283aQ84/bVZmWRdTBOGUpnkozVARiO6UP9wy1r t/ww==
X-Gm-Message-State: APjAAAU9rYB4Qf4RgtrwEFeSUPqn4D3kPAanbzQyeGZNaIjP5eQJIpuI oQ5zEteM3fUx/iwO7xrlnK3+UmqtCCvcbqqlGhs=
X-Google-Smtp-Source: APXvYqzY0qEqKT6JLlOL4SGnZvhAfAA9EsLSlh0wOtsKDXx6EbchwRLEXHE5tjpZiTLZX0ylyeXAoqEvhWcr/imkFxg=
X-Received: by 2002:a5e:8505:: with SMTP id i5mr54811278ioj.158.1578035902643; Thu, 02 Jan 2020 23:18:22 -0800 (PST)
MIME-Version: 1.0
References: <BN7PR05MB393899B40E06055BCEE73B13AE270@BN7PR05MB3938.namprd05.prod.outlook.com> <CAOj+MMFes1Sz0rzMY61maoQhH-soc_6f_Ni7D78dDimxuDjwEQ@mail.gmail.com> <BN7PR05MB393849548B10852E021EB9D2AE270@BN7PR05MB3938.namprd05.prod.outlook.com> <CAOj+MMEikwu581tBkXjx0nXb_asfrmLYSrbVgCyduq+oXMXS=g@mail.gmail.com> <BN7PR05MB393811632AA9BAA112FDF26CAE270@BN7PR05MB3938.namprd05.prod.outlook.com> <BN7PR05MB3938963BCD78C8747521ED3FAE210@BN7PR05MB3938.namprd05.prod.outlook.com> <CAOj+MMHvY4b5o=GOAhFGCX1ZqiSGVDM3UKC0Jrj2ZweZe0ph0w@mail.gmail.com> <CAO42Z2yr1w0cjZ_GyDUszadCEzgJf6eW6Fec=ZE=87YiNTEcQw@mail.gmail.com> <CAOj+MMHqkhVo1-yAvkmQk=z+mn--wkkUXiZE-WDkb_fFhb-dTA@mail.gmail.com>
In-Reply-To: <CAOj+MMHqkhVo1-yAvkmQk=z+mn--wkkUXiZE-WDkb_fFhb-dTA@mail.gmail.com>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Fri, 03 Jan 2020 02:18:12 -0500
Message-ID: <CABNhwV1wjmQ9H4oUXb8h=vN3EMD8JziPtvh6unJW_EciniSRRg@mail.gmail.com>
To: Robert Raszuk <robert@raszuk.net>
Cc: Mark Smith <markzzzsmith@gmail.com>, Ron Bonica <rbonica@juniper.net>, SPRING WG <spring@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000006b840f059b371ddc"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/pEtE0B_FGdGpN65_LHc9tcmnk1A>
Subject: Re: [spring] draft-ietf-spring-srv6-network-programming: Relative advantages of SRv6
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Jan 2020 07:18:27 -0000

Chiming in on SR-MPLS and SRv6 feature parity discussion.

SRv6 and SR-MPLS serve as future MPLS replacement options for operators.
The architecture of both technologies are completely different as to how
they  operate.

>From a timeline historical perspective we had atm and frame relay followed
by MPLS and now            SR-MPLS and final end state SRv6

Both SR-MPLS and SRv6 replace the outermost header for SRv6 is now an IPv6
outer header encapsulation and with SR-MPLS it’s reuses the same topmost 4
byte label in the label stack that sits between the L2 and L3 header.


SR-MPLS reused the MPLS forwarding plane and is an IPv4 LFIB label binding
forwarding plane for the node SID FEC destination.

Both SR-MPLS and SRv6 eliminate state from each node along a service chain
path and all state created on demand and maintained by the ingress source
PE origin point within the SR domain.

SRv6 uses an IPv6 forwarding plane and requires all nodes in the SRv6
domain to be SRv6 aware.  SRv6 for L3 VPN migration has a concept called
“best effort” L3 VPN where the egress PE signals the L3 VPN services SID
directly to the ingress PE thus not requiring intermediate P routers to be
SRv6 aware.

SR-MPLS reuses the MPLS data plane so requires it to be intact even when
ldp is removed from the core.
Due to MPLS forwarding plane remaining intact this does incur additional
Opex.

SRv6 eliminates the need for MPLS data plane since it used IPv6 data plane
for transport.

Both SRV6 and SR-MPLS both have the same node SID which is the egress PE
FEC destination for binding.  Both SRv6 and SR-MPLS have a prefix SID which
is the connected interfaces on each SR node that is adversed into the IGP.

How they differ vastly in how traffic steering is accomplished.

SR-MPLS utilizes the adj-sid for SR-TE ERO explicit path traffic steering.
SR-TE policy is required for label stacking and cSPF constraint based
dynamic path only has one adj-sid label where explicit path had an adj-sid
per hop.

Both SR-MPLS and SRv6 can have centralized controller based model,
distributed model or hybrid for control plane SID istantiation.

SRv6 can provide traffic steering natively by the source node without
requiring extra TE policy as with SR-MPLS requires SR-TE for dynamic cSPF
or explicit paths.

Both SR-MPLS and SRv6 provide 50ms fast reroute link and node protection
pre-programmed backup path to the merge point PQ space node via TI-LFA.


SRv6 utilizes SRv6 programming End.x for xconnext processing and End.T for
traffic for hop by hop traffic steering.

Both SRV6 and SR-MPLS require SR IGP & BGP extensions for centralized
distributed and hybrid control planes to distribute SID TLVs.

Both SR-MPLS and SRv6 have IGP topology algorithm per service chain to
provide latency or bandwidth or other constraint based cSPF algorithm.

Each SR node along the path for both SR-MPLS and SRv6 per SR IGP extensions
has the option to use strict SPF using  traffic steering policy or use
default SPF algorithm.

SR-MPLS requires Binding SID at Ingress PE with SR-TE policy.

SRv6 only requires binding SID for inter domain stitching of service chains
steered between domains.

Both SR-MPLS and SRv6 inter as options a b c ab that exist today with MPLS
can be reused with SR-MPLS.  With SRV6 the options can all be used in a
slightly modified fashion with MPLS forwarding removed since their is not a
MPLS dataplane. The vpnv4 vpnv6 peering for opt b remains the same between
ASBRs and opt C between the RRs with next-hop-unchanged.  Opt A is
identical since it’s a back to back VRF PE-CE and opt AB hybrid as well
remains the same excluding MPLS forwarding.

There are similarities as far as the BGP overlay services for customer L3
VPNs as all the features BGP AFI/SAFI vpnv4 vpnv6 IPv4 IPv6 & MVPN can be
reused over both SRv6 and SR-MPLS. Also Next Gen L2 vpn services EVPN can
be reused over SRv6 and SR-MPLS.

For operators that have been using MPLS for decades SR-MPLS is an easy
migration option.  This allows for elimination of MPLS ldp state and as
Robert mentioned Opex savings.

I think the eventual direction of all operators will be to migrate to
SR-MPLS and then down the road migrate to SRv6 as a separate phase once the
core is dual stacked.

One way to think of the evolution is eventually as the operators migrate
their core to support dual stack since ldp supports both IPv4 and IPv6 ;
that would be a stepping stone to prep to migrate from SR-MPLS to SRV6.

For Green and Brown field deployments SRv6 is an attractive option for
operators.

One major use case and driver for SRv6 is that since it uses the IPv6
data-plane and for best effort L3 vpn ONLY  the PEs are required to be SRV6
aware.  This has tremendous benefit as the SRV6 can be used as a ubiquitous
use case Swiss Army knife over the internet between carriers as well as
within enterprises independent of the traditional MPLS only replacement.


Happy New Year!!

Gyan

On Wed, Jan 1, 2020 at 8:00 PM Robert Raszuk <robert@raszuk.net> wrote:

> Hi Mark,
>
> I am the last one who would recommend you more state and more intelligence
> or even new mapping into the network. Networks should just be dumb and
> should be just able to forward IPv4 and IPv6 with proper QoS treatment.
>
> All "extra functionality" is about the edges and service processing nodes.
> Hint: take a look at Terastream architecture.
>
> /* Disclaimer: Yes there is overlap of SRv6 in that respect with NSH - but
> allow me not to get into this battle field here. I think both will continue
> for a while fwd. */
>
> For use case - There is a lot of them which I can see very useful. And
> since some of them can be commercial value naturally are not to be
> discussed in public. But I will illustrate just one ... Imagine today a
> network connecting to some services it offers customers. Those can be IPv4
> RFC1918 or IPv6 customers. Well if you do not want to turn each IPv4
> customer into separate VPN you need to NAT (some of them may be coming with
> the same address space to you). NAT has its own set of issues .. so one
> alternative would be to encapsulate all of them into SRv6 and add into SRH
> sufficient info about customer ID, function required, etc ... such that
> your service can be accomplished. I can not see how to do that with
> SR-MPLS.
>
> I think your statement about fit into IPv6 architecture is coming from a
> completely different perspective. Pls keep in mind that I am using IPv6 as
> an encapsulation so my edge is the actual v6 host just taking a v6 payload.
> Not also that those fancy service processing mentioned above Terastream
> dpes are also all (at least originally) done by x86 IPv6 service nodes. In
> IPv6 terminology those are real v6 hosts.
>
> Ron started this thread trying to prove that SRv6 services can all be done
> with SR-MPLS so why do we need SRv6 in the first place. While I am sure
> bashing MPLS transport would be fun let's move it to some other forum and
> form.
>
> For networks already running MPLS transport and are really happy with it
> SR-MPLS can provide few real benefits - one getting rid of LDP. By all
> means great move. For those who in addition to some VPN support would also
> like to enable some SR-MPLS for TE .. again very simple and incremental
> change. Those folks should not hesitate and go for it.
>
> But those who like to enable more services on their networks, those who
> have extra spare capacity to accommodate SRv6 encap overhead, and those who
> can think outside of their vendor manual - will likely see a benefit to
> consider SRv6.
>
> Btw I do think that EH addition to IPv4 is a good thing and SRv4 should be
> defined and also progressed in SPRING.
>
> Yes I just barely scratched the surface of the questions you posted. But
> again I would like to highlight that the main decision of choice of SR-MPLS
> vs SRv6 or maybe even SRv4 (one day) would be mainly dependent on given
> network's transport protocol and service needs.
>
> Best regards,
> Robert.
>
>
>
>> I am afraid feature or capability parity between SRv6 and SR-MPLS is far
>>> from equal. Sure if you consider just TE or VPN applications one could draw
>>> such a conclusion. However where I see SRv6 evolving is actually into very
>>> flexible operator defined embedded functions with dynamic arguments.
>>>
>>
>> Can you elaborate on this further, or provide some links to descriptions
>> of these use cases?
>>
>> This sounds a bit like an "intelligent network" vision.
>>
>> That doesn't fit IPv6's architecture, prohibits encryption, and makes
>> scaling harder. There's a reason that the smart and complex functions are
>> done in hosts at the edge, and the network does dumb forwarding, and that
>> is it's much easier to scale.
>>
>> Does it also mean that SR-MPLS shouldn't be used, or at least its
>> possibly severe SR limitations should be called out in SR-MPLS specs?
>>
>
>
>
>
>
> _______________________________________________
> spring mailing list
> spring@ietf.org
> https://www.ietf.org/mailman/listinfo/spring
>
-- 

Gyan S. Mishra

IT Network Engineering & Technology

Verizon Communications Inc. (VZ)

13101 Columbia Pike FDC1 3rd Floor

Silver Spring, MD 20904

United States

Phone: 301 502-1347

Email: gyan.s.mishra@verizon.com

www.linkedin.com/in/networking-technologies-consultant

v2.23.0 | Report a Bug | By Email