IETF Logo Mail Archive

Re: [spring] Regaining Focus on SRv6 and SRv6+

"Zafar Ali (zali)" <zali@cisco.com> Sat, 07 September 2019 14:33 UTC

Return-Path: <zali@cisco.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C71B1208A1; Sat, 7 Sep 2019 07:33:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.499
X-Spam-Level:
X-Spam-Status: No, score=-14.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=L+To4GxN; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=jBa5uX/o
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ldVlkXOgcEP5; Sat, 7 Sep 2019 07:32:57 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE1371208E0; Sat, 7 Sep 2019 07:32:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=52347; q=dns/txt; s=iport; t=1567866777; x=1569076377; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=OfGvFCQH3V+YkYGK6bRCHEbDWuyC7x5Hbxh1J4v1A9c=; b=L+To4GxNaOy4iKZsm4GybCH6ytGmKvwNYUqOkE6WdMfngMVT4VSq97GA 3WywfpTVQwPMc5GrzK3H8qE0my69G+mXnUkxCtbutl1JxQXQBYoXWrn6d tGlRYhnOFXQozWXuCag3gmqRMJvjgRNBulyQQJ6QCwIrfyb6DoL7+4DFc k=;
IronPort-PHdr: 9a23:VBHU7RUaHSYYMzmiBQFLj9gCdyrV8LGuZFwc94YnhrRSc6+q45XlOgnF6O5wiEPSANiJ8OpK3uzRta2oGXcN55qMqjgjSNRNTFdEwd4TgxRmBceEDUPhK/u/fSU+HexJVURu+DewNk0GUMs=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CyAABRvnNd/4QNJK1lGgEBAQEBAgEBAQEHAgEBAQGBZ4EWLyQsA21WIAQLKoQhg0cDinWCXIlljguBQoEQA1AECQEBAQwBARgBDAgCAQGEPwIXgiAjOBMCAwkBAQQBAQECAQYEbYUuDIVKAQEBAQMBARARHQEBLAsBDwIBCBEDAQEBIQEGAwICAh8GCxQJCAEBBAENBRsHgwABgR1NAx0BAgwDnD4CgTiIYXOBMoJ9AQEFgTIBg14NC4IWCYE0i3gYgUA/gREnH4JMPoIaRwEBAoEnBQESAT8NCQiCTTKCJoxdgmCFIYkXjWEtQQqCIYZ/iXWEABuCNIc8jxKNfogCggaOYwIEAgQFAg4BAQWBaSEqPXFwFTsqAYJBCYI5DBeDT4JkgjCFP3MBgSiMa4JFAQE
X-IronPort-AV: E=Sophos;i="5.64,477,1559520000"; d="scan'208,217";a="614437733"
Received: from alln-core-10.cisco.com ([173.36.13.132]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 07 Sep 2019 14:32:55 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by alln-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id x87EWtMI013724 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 7 Sep 2019 14:32:55 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 7 Sep 2019 09:32:55 -0500
Received: from xhs-aln-001.cisco.com (173.37.135.118) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 7 Sep 2019 09:32:54 -0500
Received: from NAM01-SN1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Sat, 7 Sep 2019 09:32:54 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=leiLUhWY8meMPruqy0UoRxMnRhmWbBvZQHJv/aHHuCktrL5MCAoWuKXm42Dkbsl/lMLRaqjUjPJKUR5zP4gHU51vttVjzhxMJQRLsnMNoozUwjdR1glxL+cFZlD2z0IsKoO87I7cQvg5wNVwa5IJPUUhAes5gtJ+u70hP+Cw2E9g8zI5rhAJJard5q1mAevyaD1SkMYtgr0PpRFdPAcwM/LSWyRceZ76AlXTTZYScFjNaebphxcu6a3vg7bHB3fyANClID61WZtE08Mkl5fjfFadPzzESBU3cA21sB99pWChA2Ik7Xbi3YhYtBjajrswDBz3FnVPrYLMHkF+9i8vbg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=OfGvFCQH3V+YkYGK6bRCHEbDWuyC7x5Hbxh1J4v1A9c=; b=Vs7luwWp2AdAiaP/3oWctr05wF3ZXX6DcpqoqFILClgK96ORF27x0PaOcEDrvzqi6xqkv9sfGhhymZeT0LS/mAa92YbOTnbpJ8kys1PMcnjq1xU3UDfWup3U3e1Gw5DmK3wJ3FEwOnfHF2W8iSDJIuRdJh180NNRVBBaxHmjFoChmKO6NvLba5zwDPQvvFJZOJ1LmB4sFslu369B7dTROr18FC848nljxzQ7a1fGSJbk/UJXN6U/h5sXhaosstJGHT+ppmsOLxEbjYGHeFxPYH9iUdCuqMdhtoDTOlxra1erEKTIZXmb28bKFyzTuPjQXKwyrXcsgYE3+LcAWKCKlg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=OfGvFCQH3V+YkYGK6bRCHEbDWuyC7x5Hbxh1J4v1A9c=; b=jBa5uX/oDhFTRjrtB3bk/jzNMaQYbFVR2reJgwqCH44eZVrs4um65yodLG0uHw+G6oU/CLfHrA+GTFuUwsbaUiPL35yPJC9lHXzNSd/+vQkWHJYjPBl7J9stUV/xyWEcC1jyEVGPvg4orVzQYn+eZyqHzkxP6SQEANn5Cb5oZFM=
Received: from DM6PR11MB3324.namprd11.prod.outlook.com (20.176.122.29) by DM6PR11MB3276.namprd11.prod.outlook.com (20.176.121.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2241.15; Sat, 7 Sep 2019 14:32:52 +0000
Received: from DM6PR11MB3324.namprd11.prod.outlook.com ([fe80::4099:9726:6b62:cdfa]) by DM6PR11MB3324.namprd11.prod.outlook.com ([fe80::4099:9726:6b62:cdfa%7]) with mapi id 15.20.2241.018; Sat, 7 Sep 2019 14:32:52 +0000
From: "Zafar Ali (zali)" <zali@cisco.com>
To: Huzhibo <huzhibo@huawei.com>, Robert Raszuk <rraszuk@gmail.com>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
CC: "spring@ietf.org" <spring@ietf.org>, "6man@ietf.org" <6man@ietf.org>, "Zafar Ali (zali)" <zali@cisco.com>
Thread-Topic: [spring] Regaining Focus on SRv6 and SRv6+
Thread-Index: AdVksp60lvODxAs3RT63wMugcqrHYQABP60AACBJYAAAC7XRAA==
Date: Sat, 07 Sep 2019 14:32:51 +0000
Message-ID: <F2ADBBE8-94EB-4A45-AEAA-0009B8A17E99@cisco.com>
References: <BYAPR05MB5463153B47BFE83350C566E7AEBA0@BYAPR05MB5463.namprd05.prod.outlook.com> <CA+b+ERm4x072JQZQovX0MVcea3=0DOCSESopAXj_SE1vMi8qkQ@mail.gmail.com> <06CF729DA0D6854E8C1E5121AC3330DFAE9362F9@dggemm529-mbs.china.huawei.com>
In-Reply-To: <06CF729DA0D6854E8C1E5121AC3330DFAE9362F9@dggemm529-mbs.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1c.0.190812
authentication-results: spf=none (sender IP is ) smtp.mailfrom=zali@cisco.com;
x-originating-ip: [2001:420:c0cc:1004::ee]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 74cd6c61-0eaa-44a6-67ac-08d733a043cd
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600166)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:DM6PR11MB3276;
x-ms-traffictypediagnostic: DM6PR11MB3276:
x-ms-exchange-purlcount: 8
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <DM6PR11MB3276EF5DF9FBE1073C89DD5FDEB50@DM6PR11MB3276.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0153A8321A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(366004)(136003)(376002)(346002)(396003)(39860400002)(51444003)(199004)(189003)(66476007)(33656002)(86362001)(606006)(966005)(6506007)(53546011)(561944003)(229853002)(81156014)(8676002)(36756003)(8936002)(76176011)(478600001)(2616005)(476003)(14454004)(99286004)(81166006)(5660300002)(486006)(5070765005)(9326002)(186003)(2906002)(66556008)(46003)(6246003)(446003)(6512007)(53936002)(11346002)(53376002)(6436002)(25786009)(256004)(4326008)(54896002)(54906003)(316002)(71190400001)(71200400001)(58126008)(102836004)(110136005)(6116002)(7736002)(76116006)(91956017)(64756008)(66446008)(107886003)(66946007)(6486002)(236005)(6306002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM6PR11MB3276; H:DM6PR11MB3324.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: o7lJensbD2nw0HMMQh3EzU1Yw88AcMUmKE0f5WwiMEvNkwFRlRSjIig5ohH/IhykTt/czrVjvITW3uX8rqOsV12/jRVMFbm5F0FN3sNGouXtjWVFXYoPxKLC9GI6EBMtZxA/7gLNui31dZ3semf1f6fKn/FM9A9UIT6uea0dI88B9LV27SFJc7YtKfh9yu+TfjVgk92ROpboRXJ107iltxI74s8P1zhWo1gpZlimJqskPhixAJm+kSe5nRX+a/ykmZfsGZvzBYmD24h/4szjCtrj0hvkTcy9lJ9cLuVVVhNoSO81NHMjx1etXcc9dyO48AjqfOju4KOOgVIV0amcq0EVlac86QMdt4RYt/fwh1ucqDZHR1OAu2jp2nxi9gh84FWp1n/bGCimd95RqvRpPWMVXOXf2Ccllyq+CRXFR7s=
Content-Type: multipart/alternative; boundary="_000_F2ADBBE894EB4A45AEAA0009B8A17E99ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 74cd6c61-0eaa-44a6-67ac-08d733a043cd
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Sep 2019 14:32:51.9024 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 0XFYTKKxUlYTktqSlc+dWbRTeUkHCuEiJEFmChNwNukvLfgG7yp+FKfwVQTAXp4A
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB3276
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: alln-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/wFDK_Be7lEt4s191m61WdUOEzL4>
Subject: Re: [spring] Regaining Focus on SRv6 and SRv6+
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Sep 2019 14:33:02 -0000

Hi,



I agree on Huzhibo on his observation on SRv6 SIDs and their benefit for scaling, among other aspects he mentioned.



CRH based solution, on the other hand, inherits all the characteristics of a “mapping table” based solution, including scaling. Here is a partial list:



MPLS over UDP Redone:



Many have pointed out that CRH does all this to achieve what can be achieved using already defined, adopted, and deployed specification. Like Dirk mentioned: "No need to re-invent MPLS over UDP using a different encapsulation inappropriately named "SRv6+".

Please see:

Comments from Dirk: https://mailarchive.ietf.org/arch/msg/spring/6Bm4nN5ah8rFb7VutexK30kRUPM

Many emails from Robert, including https://mailarchive.ietf.org/arch/msg/spring/6bdX_gb47uFYnd6ytwFLPYxXCYo



Need for new Routing Extension Header for SR:



Not to mention the need for defining a new routing extension header for Segment Routing. Where 6man working group has defined SRH: the work started in March 2014. The 6man WG spent a lot of efforts (1000s of email, dozens of document revision, dozens of IETF presentations, control plan work that is adopted by multiple workgroups, etc.). Not to mention - Implementation on 12 hardware platforms, including Merchant Silicon. Multiple providers have deployed the SRv6 network programming solution and its SRH encapsulation with line-rate performance carrying a significant amount of commercial traffic. Several independent public interoperability reports documenting successful interoperability of implementation from multiple vendors exist. In this regard, please also see Like Dan's email: https://mailarchive.ietf.org/arch/msg/spring/OB1l41EhhUu8x8XEnKaBTdczDj4.



Need for Control Plane Extensions for all protocols:



All the routing protocols require extensions to carry the mapping table.

Changes in BGP, ISIS, OSPF, BGP-LS, PCE, etc. and all control plan protocols are required. Some extension has been already proposed and were presented at IETF105.

Not to mention new extensions for manageability.



OAM:



We have already established on this mailing tread that MPLS like OAM tool kit is also needed for debuggability.

ICMP error processing does not work for CRH.



Incomplete Solution/ TI-LFA:



The CRH solution is incomplete. E.g., it does not talk about TI-LFA and how protection works with O(50 msec) performance in this solution.



Scaling:



Overall, CRH based solution does not scale in a large-scale network.

  *   In a large-scale multi-domain interconnect, a seamless MPLS like solution is needed for the CRH to work. Specifically, the CRH suffers from the large label stack and protection/ convergence challenges.
  *   CRH based solution will also impact the size of the FIB. It requires a SID to IPv6 address mapping table (not to mention lookup). This requires more memory and causes FIB scaling issues. Not to mention, the code complexity in an IP implementation.
  *   Similar to FIB, RIB will need to introduce a new route table/entry type for ID mapping in case of CRH. That requires more memory and causes RIB scaling issues. Not to mention, the code complexity in an IP implementation.
  *   Etc.



Performance:



I also agree with Cheng Li https://mailarchive.ietf.org/arch/msg/spring/XK0F40oEuZv-3ule-X5685d_6Mc, “I don’t think the performance of processing TLVs in DOH will be good, seems very complicated.”

I agree and to add the need for processing multiple extension headers.



Ecosystem:



CRH has no ecosystem, no public proof of concept on hardware with linerate performance. SRv6 and SRH based implementation has a large ecosystem. The SRv6 ecosystem includes several open-source implementations: (Linux: Kernel and srext module, FD.io<http://fd.io/>: VPP, Apps: Snort, iptables and nftables, tcpdump and Wireshark). All this took the industry over 5 years to get to that level of maturity and adoption.



Summary:



In summary, nothing adds up; it makes no sense.



It will take more than hijacking an email thread for the authors of CRH to justify why 6man should define a new routing extension header for Segment Routing.



Thanks



Regards … Zafar

From: ipv6 <ipv6-bounces@ietf.org> on behalf of Huzhibo <huzhibo@huawei.com>
Date: Saturday, September 7, 2019 at 12:58 AM
To: Robert Raszuk <rraszuk@gmail.com>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
Cc: "spring@ietf.org" <spring@ietf.org>, "6man@ietf.org" <6man@ietf.org>
Subject: RE: [spring] Regaining Focus on SRv6 and SRv6+

Hi Robert:

Agree with you.
SRv6 is a completely different technology from SR MPLS. The biggest difference is that SRv6's Sid itself has routing capabilities. For example, it is aggregatable, it is programmable, it is globally unique over a larger scope. of. Sid's routing capabilities bring many benefits to the network. For example: network scalability, reliability, and simplified Overlay programming. So, I think that any optimization we do for SRv6 should not sacrifice Sid's own routing capabilities. If we just want to solve the interoperability problem between MPLS network and IP network, we can solve this problem in the field of SR MPLS.

Thank you,
Zhibo

From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Robert Raszuk
Sent: Friday, September 06, 2019 9:33 PM
To: Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
Cc: spring@ietf.org; 6man@ietf.org
Subject: Re: [spring] Regaining Focus on SRv6 and SRv6+

Dear Ron,

I think you forgot few main points in the summary:

* Many operators use SR-MPLS successfully and it has been both standardized and successfully deployed in the network with interoperable implementations

* The overhead on the data plane of SRv6+ is very comparable to overhead of SR-MPLS

* The control plane extensions BGP, IGP are available for SR-MPLS and non are available for SRv6+

* SRv6+ requires a new mapping of SIDs to prefixes to be distributed by control plane

* If operators choose not to use MPLS transport SR-MPLS can be easily transported over IPv4 or IPv6 vanilla data plane

* Extensions for additional applications like L3VPNs or L2VPNs will require another set of protocol and implementation changes.

* If there are vendors who do not want to provide SR-MPLS SID mapping to IPv6 addresses in their control planes let's focus standardization and industry work in this direction.

With all of the above I think it would be a serious mistake - at this point of time - to continue work on SRv6+ in the IETF.

Thank you,
Robert.


On Fri, Sep 6, 2019 at 3:08 PM Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org<mailto:40juniper.net@dmarc.ietf.org>> wrote:
Folks,

We have explored many facets of SRv6 and SRv6, sometime passionately. I think that this exploration is a good thing. In the words of Tolkien, “All who wander are not lost.”

But it may be time to refocus on the following:


  *   For many operators, SRv6 is not deployable unless the problem of header length is addressed
  *   Many objections the uSID proposal remain unanswered
  *   SRv6+ offers an alternative solution

Given these three facts, I think that it would be a mistake to discontinue work on SRv6+.

                                                                                   Ron



Juniper Business Use Only
--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org<mailto:ipv6@ietf.org>
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email