implementing ipv6 segment routing
play

Implementing IPv6 Segment Routing David Lebrun - PowerPoint PPT Presentation

Mar 01, 2023 •114 likes •470 views

Implementing IPv6 Segment Routing David Lebrun <david.lebrun@uclouvain.be> UCLouvain Netdev 1.2, Tokyo, October 2016 1/35 Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 2/35 Table of

  1. Implementing IPv6 Segment Routing David Lebrun <david.lebrun@uclouvain.be> UCLouvain Netdev 1.2, Tokyo, October 2016 1/35

  2. Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 2/35

  3. Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 3/35

  4. Segment Routing • Source routing paradigm • State embedded in packet ( segments ) • Segments: node, adjacency, service • IETF draft-spring-segment-routing-09 4/35

  5. Segment Routing: illustration (1) 5/35

  6. Segment Routing: illustration (2) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[0] (SD) 6/35

  7. Segment Routing: illustration (3) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[0] (SD) 7/35

  8. Segment Routing: illustration (4) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[1] (SB) 8/35

  9. Segment Routing: illustration (5) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[2] (SS) 9/35

  10. Segment Routing: illustration (6) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[3] (SF) 10/35

  11. Segment Routing: illustration (7) • Abstract SR Header • Segments = SD, SB, SS, SF, SE • Ptr = Segments[4] (SE) 11/35

  12. SR flavors • SR-MPLS ( segment : 20-bit label) • SR-IPv6 ( segment : 128-bit IPv6 addr) • IPv6 Routing Header extension • HMAC TLV for authenticity & integrity 12/35

  13. SR-IPv6 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Next Header | Hdr Ext Len | Routing Type | Segments Left | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | First Segment | Flags | RESERVED | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | | Segment List[0] (128 bits IPv6 address) | | | | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | | | ... | | | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | | Segment List[n] (128 bits IPv6 address) | | | | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ // // // Optional Type Length Value objects (variable) // // // +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 13/35

  14. HMAC TLV 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Type | Length | RESERVED | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | HMAC Key ID (4 octets) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ // // // HMAC (32 octets) // // // +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 14/35

  15. SR-IPv6 operations (1) • Origin SR host: push SRH in packet build 15/35

  16. SR-IPv6 operations (2) • SR ingress: encapsulate with outer IPv6 header + SRH 16/35

  17. SR-IPv6 operations (3) • Segment endpoint: route packet to next segment 17/35

  18. SR-IPv6 operations (4) • SR egress: decapsulate packet and route inner packet to DA 18/35

  19. Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 19/35

  20. Features • SR-enabled packet processing (data plane) • SRH insertion/encapsulation (control plane) • HMAC support (control + data plane) 20/35

  21. Data plane part (1) • net/ipv6/exthdrs.c • Processing of Routing Header type 4 • Decrement segments_left index • Update ipv6_hdr(skb)->daddr with next segment • Call ip6_route_input(skb) 21/35

  22. Data plane part (2) • SRH decapsulation (egress) • pull, reset headers, netif_rx • tcpdump shows the packet twice 22/35

  23. Control plane part (1) • net/ipv6/seg6.c net/ipv6/seg6_iptunnel.c • SRH encapsulation (ingress) • Lightweight tunnels support • ip -6 route add prefix via gw encap seg6 mode encap segs seg1 , seg2 , seg3 23/35

  24. Control plane part (2) • net/ipv6/ipv6_sockglue.c net/ipv6/exthdrs.c • Per-socket SRH insertion (endhost) • Pushed by ipv6_push_nfrag_opts • Set with setsockopt(fd, IPPROTO_IPV6, IPV6_RTHDR, ...); 24/35

  25. Insertion vs encapsulation • Missing support for IPv6 extension headers in drivers • ixgbe 0000:0b:00.1: partial checksum but l4 proto=2b! • IPv6 encapsulation works well incl. w/ GRO 25/35

  26. HMAC part (1) • net/ipv6/seg6_hmac.c • Calls in net/ipv6/exthdrs.c and net/ipv6/seg6_iptunnel.c • Validate SR-enabled packets with HMAC signature • Generate valid signature for locally imposed SRHs 26/35

  27. HMAC part (2) • HMACKeyID ⇒ < algo , secret > • Controlled through genetlink interface • Interface sysctl seg6_require_hmac 27/35

  28. Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 28/35

  29. NFV with SR 29/35

  30. NFV-SR requirements • Fast, generic kernel-to-app packet transfer • Packet modifiable by app • App-to-kernel packet transfer 30/35

  31. NFV-SR attempted solution • mmap-ed netlink tx/rx rings • Buffering, reordering issues • Not GRO-friendly • Very specific • Removed from mainline 31/35

  32. NFV-SR possible solutions • nfqueue w/ NF_REPEAT ? • GRO-friendliness issue • Interface-based solution ? • Suggestions welcome 32/35

  33. Table of Contents Segment Routing Implementation Network Function Virtualization Conclusion 33/35

  34. Conclusion • Draft fully implemented • Need driver support for IPv6 extension headers • Need packet transfer mechanism for NFV support 34/35

  35. Conclusion • Thanks to Cisco and ARC-SDN grant from Fédération Wallonie-Bruxelles for funding • Patch submission by end of October • Contact: david.lebrun@uclouvain.be 35/35

Recommend

PCEP Extensions for Service Segment Support in Segment Routing

PCEP Extensions for Service Segment Support in Segment Routing

PCEP Extensions for Service Segment Support in Segment Routing draft-dw-pce-service-segment-routing-00 Qin Wu(bill.wu@huawei.com) Dhruv Dhody (dhruv.ietf@gmail.com ) PCEP Extensions for Service Segment support Objective allow a stateful

380 views • 5 slides
Segment routing in container networks Ben de Graaff Supervisor: Marijke Kaat (SURFnet/UvA) Best

Segment routing in container networks Ben de Graaff Supervisor: Marijke Kaat (SURFnet/UvA) Best

RP95 Segment routing in container networks Ben de Graaff Supervisor: Marijke Kaat (SURFnet/UvA) Best path Background A B Arbitrary paths Background 1 1 2 A 3 B 4 4 5 A &gt; 1 &gt; 4 &gt; B Pure IPv6 (SRv6) Background 2000:1::

470 views • 34 slides
Segment Routing (SR) Introduction and Tutorial Adrian Farrel (afarrel@juniper.net) Take-Aways

Segment Routing (SR) Introduction and Tutorial Adrian Farrel (afarrel@juniper.net) Take-Aways

Segment Routing (SR) Introduction and Tutorial Adrian Farrel (afarrel@juniper.net) Take-Aways Some historical context What Segment Routing is trying to achieve Basic building blocks How it works in different SR environments

605 views • 49 slides
1 IPv6 Packet Format IPv6 Packet Format 40 Byte minimum 0 8 16 31 Mandatory fields

1 IPv6 Packet Format IPv6 Packet Format 40 Byte minimum 0 8 16 31 Mandatory fields

IPv6 IPv6, MPLS History Next generation IP (AKA IPng) Intended to extend address space and routing limitations of IPv4 Requires header change Attempted to include everything new in one change IETF moderated Based

506 views • 5 slides
IPv6 Introduction by Harald Welte &lt;laforge@rfc2460.org&gt; IPv6 Introduction What? Why?

IPv6 Introduction by Harald Welte &lt;laforge@rfc2460.org&gt; IPv6 Introduction What? Why?

IPv6 Introduction by Harald Welte &lt;laforge@rfc2460.org&gt; IPv6 Introduction What? Why? What is IPv6? Successor of currently used IP Version 4 Specified 1995 in RFC 2460 Why? Address space in IPv4 too small Routing tables too large

476 views • 19 slides
IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR)

IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR)

IPv6 - The Next Generation Internet Subnetting and Classless Inter-domain Routing (CIDR) improve utilization of IP address space and slow growth of routing information, but at some point, they will not be sufficient more than 32 bits

579 views • 18 slides
IPv6 Routing Header Security. Philippe BIONDI Arnaud EBALARD phil(at)secdev.org /

IPv6 Routing Header Security. Philippe BIONDI Arnaud EBALARD phil(at)secdev.org /

IPv6 prerequisite All about Routing Header extension Security implications Solutions and workaround IPv6 Routing Header Security. Philippe BIONDI Arnaud EBALARD phil(at)secdev.org / philippe.biondi(at)eads.net arno(at)natisbad.org /

896 views • 61 slides
Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF,

Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF,

Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF, RIP, BGP 3. Other protocols: DHCP, NAT, and Mobile IP Chapter 8 Communication Networks and Services IPv6 Fall 2012 Prof. Chung-Horng Lung 2 IPv6

552 views • 52 slides
The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6

The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6

COLE POLYTECHNIQUE FDRALE DE LAUSANNE The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6 2. NATs 3. Interworking IPv4 / IPv6 4. Routing Implications 5. Recap Some slides come from:

911 views • 73 slides
IPv6 Potential Routing Table Size IPv6 Potential Routing Table Size IPv6 Potential Routing Table

IPv6 Potential Routing Table Size IPv6 Potential Routing Table Size IPv6 Potential Routing Table

IPv6 Potential Routing Table Size IPv6 Potential Routing Table Size IPv6 Potential Routing Table Size Jason Schiller Jason Schiller schiller@uu.net schiller@uu.net Sven Maduschke Sven Maduschke sven.maduschke@verizonbusiness.com

763 views • 22 slides
Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF,

Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF,

Chapter 8 Communication Networks and Services 1. IPv6 2. Internet Routing Protocols: OSPF, RIP, BGP 3. Other protocols: DHCP, NAT, and Mobile IP Chapter 8 Communication Networks and Services IPv6 SYSC5201 2 IPv6 Longer address

898 views • 55 slides
Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by Andreas Tnnesen andreto@olsr.org http://www.olsr.org Agenda MANET routing Optimized LinkState Routing The UniK OLSR implementation

715 views • 55 slides
Optimum Implementation of TI-LFA and Segment Routing on SURFnet 8 RP #22 Peter Prjevara &amp;

Optimum Implementation of TI-LFA and Segment Routing on SURFnet 8 RP #22 Peter Prjevara &amp;

Optimum Implementation of TI-LFA and Segment Routing on SURFnet 8 RP #22 Peter Prjevara &amp; Fouad Makioui Supervisors: Marijke Kaat &amp; Wouter Huisman The Goals of Networks ARPANET - 1974 2 https://en.wikipedia.org/wiki/ARPANET What

648 views • 48 slides
IPv6, MPLS IPv6 History Next generation IP (AKA IPng) Intended to extend address space

IPv6, MPLS IPv6 History Next generation IP (AKA IPng) Intended to extend address space

IPv6, MPLS IPv6 History Next generation IP (AKA IPng) Intended to extend address space and routing limitations of IPv4 Requires header change Attempted to include everything new in one change IETF moderated Based

775 views • 46 slides
IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

Outline IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer Science and IPv6 Autoconfiguration Institute of Communications Engineering National Tsing Hua University jcchen@cs.nthu.edu.tw

783 views • 11 slides
6Lo 6LoWP WPAN AN an and d IP IPv6 v6 Antonio Lin Colina, Zolertia Co Conti tiki

6Lo 6LoWP WPAN AN an and d IP IPv6 v6 Antonio Lin Colina, Zolertia Co Conti tiki

UD UDP on on 6Lo 6LoWP WPAN AN an and d IP IPv6 v6 Antonio Lin Colina, Zolertia Co Conti tiki ki Stac ack HTTP, CoAP, MQTT, Application WebSockets TCP, UDP Transport IPv6/IPv4, RPL Network/Routing Adaptation 6LoWPAN

1.34k views • 54 slides
Chapter 3: Implementing Inter-VLAN Routing CCNP-RS SWITCH Ali Aydemir Chapter 3 Objectives

Chapter 3: Implementing Inter-VLAN Routing CCNP-RS SWITCH Ali Aydemir Chapter 3 Objectives

Chapter 3: Implementing Inter-VLAN Routing CCNP-RS SWITCH Ali Aydemir Chapter 3 Objectives Explain methods of inter-VLAN routing. Configure and verify inter-VLAN routing in a Layer 2 topology using multilayer switching. Explain

698 views • 69 slides
Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI

Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI

Implementing IPv6 for Windows NT Richard P. Draves, Microsoft Research Allison Mankin, USC/ISI Brian D. Zill, Microsoft Research Main Points Windows NT is a good base for network protocol development Our release is great sample code:

171 views • 16 slides
Implementing EMV in the U.S. How the U.S. Common Debit AIDs Facilitate Debit Transaction Routing

Implementing EMV in the U.S. How the U.S. Common Debit AIDs Facilitate Debit Transaction Routing

Implementing EMV in the U.S. How the U.S. Common Debit AIDs Facilitate Debit Transaction Routing and Ensure Durbin Compliance August 7, 2017 1 Background Dodd-Frank Wall Street Reform and Consumer Protection Act, Section 1075, a.k.a.

270 views • 25 slides
Green Days @ Toulouse Segment Routing based Traffjc Engineering for Energy Effjcient Backbone

Green Days @ Toulouse Segment Routing based Traffjc Engineering for Energy Effjcient Backbone

Green Days @ Toulouse Segment Routing based Traffjc Engineering for Energy Effjcient Backbone Networks Radu Crpa, Olivier Glck, Laurent Lefvre radu.carpa@ens-lyon.fr 16 / 03 / 2015 INRIA AVALON / LIP Ecole Normale CHIST -ERA STAR

584 views • 25 slides
Technical feasibility of Segment Routing Traffic Engineering to steer traffic through VNFs

Technical feasibility of Segment Routing Traffic Engineering to steer traffic through VNFs

R. van der Gaag, M. Slotboom Technical feasibility of Segment Routing Traffic Engineering to steer traffic through VNFs Research Project 1 SURF is the collaborative ICT organisation for Dutch education and research. - Education institutions

462 views • 14 slides
Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6 Global allocations by RIR APNIC 337 21% RIPENCC 737 45% ARIN 438 LACNIC AFRINIC 27% 87 37 5% 2% Unit: IPv6 pref i x 3 IPv6

603 views • 24 slides
IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6 Ready Logo Goal 2001-Present: Conformance and Interoperability test program intended to increase user confidence and promote IPv6 deployment.

403 views • 11 slides
BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview

BIRD Internet Routing Daemon Ond rej Zaj cek CZ.NIC z.s.p.o. RIPE 66 BIRD overview BIRD Internet Routing Daemon Routing protocols BGP, OSPF and RIP IPv4 and IPv6 support Linux and BSD kernel support Free and open

241 views • 13 slides

More recommend