<?xmlversion="1.0" encoding="UTF-8"?>version='1.0' encoding='utf-8'?> <!DOCTYPE rfc SYSTEM"rfc2629.dtd" [ <!-- One method to get references from the online citation libraries. There has to be one entity for each item to be referenced. An alternate method (rfc include) is described in the references. --> ]> <?rfc comments="yes"?> <?rfc compact="no"?> <?rfc inline="yes"?> <?rfc sortrefs="yes"?> <?rfc subcompact="no"?> <?rfc symrefs="yes"?> <?rfc toc="yes"?> <?rfc tocdepth="5"?> <?rfc tocindent="yes"?> <?rfc tocompact="yes"?>"rfc2629-xhtml.ent"> <rfc xmlns:xi="http://www.w3.org/2001/XInclude" number="8669" category="std" consensus="true" submissionType="IETF" ipr="trust200902" docName="draft-ietf-idr-bgp-prefix-sid-27"ipr="trust200902">obsoletes="" updates="" xml:lang="en" sortRefs="true" symRefs="true" tocInclude="true" version="3"> <front> <titleabbrev="">Segmentabbrev="SR Prefix-SID Extensions for BGP">Segment Routing PrefixSID extensionsSegment Identifier Extensions for BGP</title> <seriesInfo name="RFC" value="8669"/> <author fullname="Stefano Previdi" initials="S." surname="Previdi"><organization>Cisco Systems</organization><organization>Huawei Technologies</organization> <address> <postal> <street/> <city/><country>IT</country><country>Italy</country> <code/> </postal> <phone/> <email>stefano@previdi.net</email> </address> </author> <author fullname="Clarence Filsfils" initials="C." surname="Filsfils"> <organization>Cisco Systems</organization> <address> <postal> <street/> <city>Brussels</city> <country>Belgium</country> <code/> </postal> <phone/><email>cfilsfils@cisco.com</email><email>cfilsfil@cisco.com</email> </address> </author> <author fullname="Acee Lindem" initials="A." surname="Lindem" role="editor"> <organization>Cisco Systems</organization> <address> <postal> <street>301 Midenhall Way</street> <city>Cary, NC</city><country>USA</country><country>United States of America</country> <code>27513</code> </postal> <phone/> <email>acee@cisco.com</email> </address> </author> <author fullname="Arjun Sreekantiah" initials="A." surname="Sreekantiah"> <address> <email>arjunhrs@gmail.com</email> </address> </author> <author fullname="Hannes Gredler" initials="H." surname="Gredler"> <organization>RtBrick Inc.</organization> <address> <email>hannes@rtbrick.com</email> </address> </author><date/><date month="December" year="2019"/> <area>Routing</area> <workgroup>IDR</workgroup> <keyword>SR</keyword> <keyword>MPLS</keyword> <keyword>BGP</keyword> <keyword>Prefix-SID</keyword> <keyword>Label-Index</keyword> <keyword>SRGB</keyword> <abstract> <t>Segment Routing (SR) leverages thesource routingsource-routing paradigm. A node steers a packet through an ordered list ofinstructions,instructions calledsegments."segments". A segment can represent any instruction, topological orservice-based.service based. The ingress node prepends an SR header to a packet containing a set of segment identifiers(SID).(SIDs). Each SID represents a topological oraservice-based instruction. Per-flow state is maintained only on the ingress node of the SR domain. AnSR domain"SR domain" is defined as a single administrative domain for global SID assignment.</t> <t>This document defines an optional, transitive BGP attribute for announcing information about BGP Prefix Segment Identifiers (BGPPrefix-SID) informationPrefix-SIDs) and the specification for SR-MPLS SIDs.</t> </abstract><note title="Requirements Language"> <t>The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in BCP 14 <xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they appear in all capitals, as shown here.</t> </note></front> <middle> <section anchor="intro"title="Introduction">numbered="true" toc="default"> <name>Introduction</name> <t>The Segment Routing (SR) architecture leverages thesource routingsource-routing paradigm. A segment represents either a topologicalinstructioninstruction, such as "go to prefix P following shortestpath"path", or a service instruction. Other types of segments may be defined in the future.</t> <t>A segment is identified through a Segment Identifier (SID). AnSR domain"SR domain" is defined as a single administrative domain for global SID assignment. It may be comprised of a single Autonomous System (AS) or multiple ASes under consolidated global SID administration. Typically, the ingress node of the SR domain prepends an SR header containingsegments identifiers (SIDs)SIDs to an incoming packet.</t> <t>As described in <xreftarget="I-D.ietf-spring-segment-routing"/>,target="RFC8402" format="default"/>, when SR is applied to the MPLSdataplanedata plane (<xreftarget="I-D.ietf-spring-segment-routing-mpls"/>),target="RFC8660" format="default"/>), the SID consists of a label.</t> <t><xreftarget="I-D.ietf-spring-segment-routing"/>target="RFC8402" format="default"/> also describes howsegment routingSegment Routing can be applied to an IPv6dataplanedata plane (SRv6) using an IPv6 routing header containing a stack of SR SIDs encoded as IPv6 addresses <xreftarget="I-D.ietf-6man-segment-routing-header"/>.target="I-D.ietf-6man-segment-routing-header" format="default"/>. The applicability and support for Segment Routing over IPv6 is beyond the scope of this document.</t> <t>ABGP-PrefixBGP Prefix Segment is a BGP prefix with a Prefix-SID attached. A BGP Prefix-SID is always a global SID (<xreftarget="I-D.ietf-spring-segment-routing"/>)target="RFC8402" format="default"/>) within the SR domain and identifies an instruction to forward the packet over the Equal-CostMulti-PathMultipath (ECMP)best-pathbest path computed by BGP to the related prefix. The BGP Prefix-SID is the identifier of the BGPprefix segment.Prefix Segment. In this document, we always refer to theBGP-Prefix segmentBGP Prefix Segment by the BGP Prefix-SID.</t> <t>This document describes the BGPextensionextensions to signal the BGP Prefix-SID. Specifically, this document defines a BGP attribute known as theBGP"BGP Prefix-SIDattributeattribute" and specifies the rules to originate, receive, and handle error conditions for the attribute.</t> <t>The BGP Prefix-SID attribute defined in this document can be attached to prefixes from Multiprotocol BGP IPv4/IPv6 Labeled Unicast (<xreftarget="RFC4760"/>,target="RFC4760" format="default"/> <xreftarget="RFC8277"/>).target="RFC8277" format="default"/>). Usage of the BGP Prefix-SID attribute for other Address Family Identifier(AFI)/(AFI) / Subsequent Address Family Identifier (SAFI) combinations is not defined herein but may be specified in future specifications.</t> <t><xreftarget="I-D.ietf-spring-segment-routing-msdc"/>target="RFC8670" format="default"/> describes example use cases where the BGP Prefix-SID is used for the above AFI/SAFI combinations.</t> <t>It should be notedthat:<list style="symbols"> <t>Athat:</t> <ul spacing="normal"> <li>A BGP Prefix-SID will be global across ASes when the interconnected ASes are part of the same SR domain. Alternatively, when interconnecting ASes, the ASBRs of each domain will have to handle the advertisement of unique SIDs. The mechanisms for such interconnection are outside the scope of the protocol extensions defined in thisdocument.</t> <t>Adocument.</li> <li>A BGP Prefix-SIDMAY<bcp14>MAY</bcp14> be attached to a BGP prefix. This implies that each prefix is advertised individually, reducing the ability to pack BGP advertisements (when sharing commonattributes).</t> </list></t>attributes).</li> </ul> <t> The key words "<bcp14>MUST</bcp14>", "<bcp14>MUST NOT</bcp14>", "<bcp14>REQUIRED</bcp14>", "<bcp14>SHALL</bcp14>", "<bcp14>SHALL NOT</bcp14>", "<bcp14>SHOULD</bcp14>", "<bcp14>SHOULD NOT</bcp14>", "<bcp14>RECOMMENDED</bcp14>", "<bcp14>NOT RECOMMENDED</bcp14>", "<bcp14>MAY</bcp14>", and "<bcp14>OPTIONAL</bcp14>" in this document are to be interpreted as described in BCP 14 <xref target="RFC2119" format="default"/> <xref target="RFC8174" format="default"/> when, and only when, they appear in all capitals, as shown here. </t> </section> <section anchor="MPLSPREFIXSID"title="MPLSnumbered="true" toc="default"> <name>MPLS BGPPrefix SID">Prefix-SID</name> <t>The BGP Prefix-SID is realized on the MPLSdataplanedata plane (<xreftarget="I-D.ietf-spring-segment-routing-mpls"/>)target="RFC8660" format="default"/>) in the followingway:<list style="hanging"> <t>Theway:</t> <ul empty="true" spacing="normal"> <li>The operator assigns a globally unique label index, L_I, to a locally originated prefix of a BGP speakerNN, which is advertised to all other BGP speakers in the SRdomain.</t> <t>Accordingdomain.</li> <li>According to <xreftarget="I-D.ietf-spring-segment-routing"/>,target="RFC8402" format="default"/>, each BGP speaker is configured with a label block called the Segment Routing Global Block (SRGB). While <xreftarget="I-D.ietf-spring-segment-routing"/>target="RFC8402" format="default"/> recommends using the same SRGB across all the nodes within the SR domain, the SRGB of a node is a local property and could be different on different speakers. The drawbacks of the use case where BGP speakers have different SRGBs are documented in <xreftarget="I-D.ietf-spring-segment-routing"/>target="RFC8402" format="default"/> and <xreftarget="I-D.ietf-spring-segment-routing-msdc"/>.</t> <t>If traffic-engineeringtarget="RFC8670" format="default"/>.</li> <li>If traffic engineering within the SR domain is required, each node may also be required to advertise topological information andPeeringPeer SIDs for each of its links and peers. This information is required to perform the explicit path computation and to express an explicit path as a list of SIDs. The advertisement of topological information and peer segments (Peer SIDs) is done through <xreftarget="I-D.ietf-idr-bgpls-segment-routing-epe"/>.</t> <t>Iftarget="I-D.ietf-idr-bgpls-segment-routing-epe" format="default"/>.</li> <li>If a prefix segment is to be included in an MPLS label stack, e.g., fortraffic engineeringtraffic-engineering purposes,theknowledge of theSRGB of the originator of theprefix originator's SRGB is required in order to compute the local label used by theoriginator.</t> <t>Thisoriginator.</li> <li>This document assumes thatBGP-LSBorder Gateway Protocol - Link State (BGP-LS) is the preferred method for a collecting both peer segments (Peer SIDs) and SRGB information through <xreftarget="RFC7752"/>,target="RFC7752" format="default"/>, <xreftarget="I-D.ietf-idr-bgpls-segment-routing-epe"/>,target="I-D.ietf-idr-bgpls-segment-routing-epe" format="default"/>, and <xreftarget="I-D.ietf-idr-bgp-ls-segment-routing-ext"/>.target="I-D.ietf-idr-bgp-ls-segment-routing-ext" format="default"/>. However, as an optional alternative for the advertisement of the local SRGB without the topologynoror the peerSIDs, henceSIDs and, therefore, without applicability for TE, the Originator SRGB TLV of the BGP Prefix-SID attribute is specified in <xreftarget="ORIGINSRGBTLV"/>target="ORIGINSRGBTLV" format="default"/> of thisdocument.</t> <t>Adocument.</li> <li>A BGP speaker will derive its local MPLS label L from the label index L_I and its local SRGB as described in <xreftarget="I-D.ietf-spring-segment-routing-mpls"/>.target="RFC8660" format="default"/>. The BGP speaker then programs the MPLS label L in its MPLSdataplanedata plane as its incoming/local label for the prefix. See <xreftarget="RECMPLSLABEL"/>target="RECMPLSLABEL" format="default"/> for moredetails.</t> <t>Thedetails.</li> <li>The outgoing label for the prefix is found in the Network Layer Reachability Information (NLRI) of the Multiprotocol BGP IPv4/IPv6 Labeled Unicast prefix advertisement as defined in <xreftarget="RFC8277"/>.target="RFC8277" format="default"/>. The label index L_I is only used as a hint to derive the local/incominglabel.</t> <t><xref target="LABELINDEX"/>label.</li> <li> <xref target="LABELINDEX" format="default"/> of this document specifies the Label-Index TLV of the BGP Prefix-SID attribute; this TLV can be used to advertise the label index for a givenprefix.</t> </list></t>prefix.</li> </ul> </section> <section anchor="PREFIXSIDATTR"title="BGPnumbered="true" toc="default"> <name>BGP Prefix-SIDAttribute">Attribute</name> <t>The BGP Prefix-SID attribute is an optional, transitive BGP path attribute. The attribute type code 40 has been assigned by IANA (see <xreftarget="IANA"/>).</t>target="IANA" format="default"/>).</t> <t>The BGP Prefix-SID attribute is defined here to be a set of elements encoded as "Type/Length/Value" tuples (i.e., a set of TLVs). All BGP Prefix-SID attribute TLVs will start with a 1-octet type and a 2-octet length. The following TLVs are defined in thisdocument:<list style="symbols"> <t>Label-Index TLV</t> <t>Originatordocument:</t> <ul spacing="normal"> <li>Label-Index TLV</li> <li>Originator SRGBTLV</t> </list></t>TLV</li> </ul> <t>The Label-Index and Originator SRGB TLVs are used only when SR is applied to the MPLSdataplane.</t>data plane.</t> <t>For future extensibility, unknown TLVsMUST<bcp14>MUST</bcp14> be ignored and propagated unmodified.</t> <section anchor="LABELINDEX"title="Label-Index TLV">numbered="true" toc="default"> <name>Label-Index TLV</name> <t>The Label-Index TLVMUST<bcp14>MUST</bcp14> be present in the BGP Prefix-SID attribute attached to IPv4/IPv6 Labeled Unicast prefixes (<xreftarget="RFC8277"/>).target="RFC8277" format="default"/>). ItMUST<bcp14>MUST</bcp14> be ignored when received for other BGP AFI/SAFI combinations. The Label-Index TLV has the followingformat:<figure align="center">format:</t> <artworkalign="left">align="left" name="" type="" alt=""><![CDATA[ 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Type | Length | RESERVED | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Flags | Label Index | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Label Index |+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+</artwork> </figure>where: <list style="symbols"> <t>Type is 1.</t> <t>Length: is 7,+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+]]></artwork> <t>where: </t><ul empty="true"><li> <dl newline="false" spacing="normal"> <dt>Type:</dt> <dd>1</dd> <dt>Length:</dt><dd>7, the total length in octets of the value portion of theTLV.</t> <t>RESERVED: 8-bitTLV.</dd> <dt>RESERVED:</dt><dd>8-bit field.MUSTIt <bcp14>MUST</bcp14> be clear on transmission andMUST<bcp14>MUST</bcp14> be ignored onreception.</t> <t>Flags: 16reception.</dd> <dt>Flags:</dt><dd>16 bits of flags. None are defined by this document. TheflagFlags fieldMUST<bcp14>MUST</bcp14> be clear on transmission andMUST<bcp14>MUST</bcp14> be ignored onreception.</t> <t>Label Index: 32-bitreception.</dd> <dt>Label Index:</dt><dd>32-bit value representing the index value in the SRGBspace.</t> </list></t>space.</dd> </dl></li></ul> </section> <section anchor="ORIGINSRGBTLV"title="Originatornumbered="true" toc="default"> <name>Originator SRGBTLV">TLV</name> <t>The Originator SRGB TLV is an optional TLV and has the followingformat:<figure align="center">format:</t> <artworkalign="left">align="left" name="" type="" alt=""><![CDATA[ 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Type | Length | Flags | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Flags | +-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | SRGB 1 (6 octets) | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | SRGB n (6 octets) | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+</artwork> </figure>where: <list style="symbols"> <t>Type is 3.</t> <t>Length is the+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+]]></artwork> <t>where:</t><ul empty="true"><li> <dl newline="false" spacing="normal"> <dt>Type:</dt><dd>3</dd> <dt>Length:</dt><dd>The total length in octets of the value portion of the TLV: 2 + (non-zero multiple of6).</t> <t>Flags: 166).</dd> <dt>Flags:</dt><dd>16 bits of flags. None are defined in this document. The FlagsMUSTfield <bcp14>MUST</bcp14> be clear on transmission andMUST<bcp14>MUST</bcp14> be ignored onreception.</t> <t>SRGB: 3reception.</dd> <dt>SRGB:</dt><dd>3 octets specifying the first label in the range followed by 3 octets specifying the number of labels in the range. Note that the SRGB fieldMAY<bcp14>MAY</bcp14> appear multiple times. If the SRGB field appears multiple times, the SRGB consists of multiple ranges that areconcatenated.</t> </list></t>concatenated.</dd> </dl></li></ul> <t>The Originator SRGB TLV contains the SRGB of the node originating the prefix to which the BGP Prefix-SID is attached. The Originator SRGB TLVMUST NOT<bcp14>MUST NOT</bcp14> be changed during the propagation of the BGP update. It is used to buildsegment routingSR policies when different SRGBs are used in the fabric, forexample (<xref target="I-D.ietf-spring-segment-routing-msdc"/>).</t>example, <xref target="RFC8670" format="default"/>.</t> <t>Examples of how the receiving routers concatenate the ranges and build their neighbor's Segment Routing Global Block (SRGB) are included in <xreftarget="I-D.ietf-spring-segment-routing-mpls"/>).</t>target="RFC8660" format="default"/>.</t> <t>The Originator SRGB TLV may only appear in a BGP Prefix-SID attribute attached to IPv4/IPv6 Labeled Unicast prefixes (<xreftarget="RFC8277"/>).target="RFC8277" format="default"/>). ItMUST<bcp14>MUST</bcp14> be ignored when received for other BGP AFI/SAFI combinations. Since the Label-Index TLV is required for IPv4/IPv6 prefix applicability, the Originator SRGB TLV will be ignored if it is not specified in a manner consistent with <xreftarget="ERRORHANDLING"/>.</t>target="ERRORHANDLING" format="default"/>.</t> <t>If a BGP speaker receives anode’snode's SRGB as an attribute of the BGP-LS Node NLRI and the BGP speaker also receives the samenode’snode's SRGB in a BGP Prefix-SID attribute, then the received values should be the same. If the values are different, the values advertised in the BGP-LS NLRISHOULD<bcp14>SHOULD</bcp14> bepreferredpreferred, and an error should be logged.</t> </section> </section> <sectiontitle="Receivingnumbered="true" toc="default"> <name>Receiving BGP Prefix-SIDAttribute">Attribute</name> <t>A BGP speaker receiving a BGP Prefix-SID attribute from an External BGP (EBGP) neighbor residing outside the boundaries of the SR domainMUST<bcp14>MUST</bcp14> discard the attribute unless it is configured to accept the attribute from the EBGP neighbor. A BGP speakerSHOULD<bcp14>SHOULD</bcp14> log an error for further analysis when discarding an attribute.</t> <section anchor="RECMPLSLABEL"title="MPLS Dataplane:numbered="true" toc="default"> <name>MPLS Data Plane: LabeledUnicast">Unicast</name> <t>A BGP session supporting the Multiprotocol BGPlabeledLabeled IPv4 or IPv6 Unicast (<xreftarget="RFC8277"/>)target="RFC8277" format="default"/>) AFI/SAFI is required.</t> <t>When the BGP Prefix-SID attribute is attached to a BGPlabeledLabeled IPv4 or IPv6 Unicast <xreftarget="RFC8277"/>target="RFC8277" format="default"/> AFI/SAFI, itMUST<bcp14>MUST</bcp14> contain the Label-Index TLV andMAY<bcp14>MAY</bcp14> contain the Originator SRGB TLV. A BGP Prefix-SID attribute received without a Label-Index TLVMUST<bcp14>MUST</bcp14> be consideredasto be "invalid" by the receiving speaker.</t> <t>The label index provides guidance to the receiving BGP speaker as to the incoming label thatSHOULD<bcp14>SHOULD</bcp14> be allocated to the prefix.</t> <t>A BGP speaker may be locally configured with an SRGB=[SRGB_Start, SRGB_End]. The preferred method for deriving the SRGB is a matter of local node configuration.</t> <t>The mechanisms through which a givenlabel indexlabel-index value is assigned to a given prefix are outside the scope of this document.</t> <t>Given a label index L_I, we refer to (L = L_I + SRGB_Start) as the derived label. A BGP Prefix-SID attribute is designated "conflicting" for a speaker M if the derived label value L lies outside the SRGB configured on M.OtherwiseOtherwise, the Label-Index TLV is designated "acceptable" to speaker M.</t> <t>If multiple different prefixes are received with the same label index, all of the different prefixesMUST<bcp14>MUST</bcp14> have their BGP Prefix-SID attribute consideredas “conflicting”.</t>to be "conflicting".</t> <t>If multiple valid paths for the same prefix are received from multiple BGP speakers or, in the case of <xreftarget="RFC7911"/>,target="RFC7911" format="default"/>, from the same BGP speaker, and the BGP Prefix-SID attributes do not contain the same label index, then the label index from the best path BGP Prefix-SID attributeSHOULD<bcp14>SHOULD</bcp14> be chosen with a notable exception being when <xreftarget="RFC5004"/>target="RFC5004" format="default"/> is being used to dampen route changes.</t> <t>When a BGP speaker receives a path from a neighbor with an "acceptable" BGP Prefix-SID attribute and that path is selected as the best path, itSHOULD<bcp14>SHOULD</bcp14> program the derived label as the label for the prefix in its local MPLSdataplane.</t>data plane.</t> <t>When a BGP speaker receives a path from a neighbor with an "invalid" or "conflicting" BGP Prefix-SIDattributeattribute, or when a BGP speaker receives a path from a neighbor with a BGP Prefix-SID attribute but is unable to process it (e.g., local policy disables the functionality), itMUST<bcp14>MUST</bcp14> ignore the BGP Prefix-SID attribute. For the purposes of label allocation, a BGP speakerMUST<bcp14>MUST</bcp14> assign a local (also called dynamic) label (non-SRGB) for such a prefix as per classic Multiprotocol BGP IPv4/IPv6 Labeled Unicast (<xreftarget="RFC8277"/>)target="RFC8277" format="default"/>) operation.</t> <t>In the case of an "invalid" BGP Prefix-SID attribute, a BGP speakerMUST<bcp14>MUST</bcp14> follow theerror handlingerror-handling rules specified in <xreftarget="ERRORHANDLING"/>.target="ERRORHANDLING" format="default"/>. A BGP speakerSHOULD<bcp14>SHOULD</bcp14> log an error for further analysis. In the case of a "conflicting" BGP Prefix-SID attribute, a BGP speakerSHOULD NOT<bcp14>SHOULD NOT</bcp14> treat it as an error andSHOULD<bcp14>SHOULD</bcp14> propagate the attribute unchanged. A BGPSpeaker SHOULDspeaker <bcp14>SHOULD</bcp14> log a warning for further analysis, i.e., in the case the conflict is not due to alabel indexlabel-index transition.</t> <t>When a BGP Prefix-SID attribute changes and transitions from "conflicting" to "acceptable", the BGP Prefix-SID attributes for other prefixes may also transition to "acceptable" as well. ImplementationsSHOULD assure<bcp14>SHOULD</bcp14> ensure all impacted prefixes revert to using the label indices corresponding to these newly "acceptable" BGP Prefix-SID attributes.</t> <t>The outgoing label is always programmed as per classic Multiprotocol BGP IPv4/IPv6 Labeled Unicast (<xreftarget="RFC8277"/>)target="RFC8277" format="default"/>) operation. Specifically, a BGP speaker receiving a prefix with a BGP Prefix-SID attribute and a label NLRI field of Implicit NULL <xreftarget="RFC3032"/>target="RFC3032" format="default"/> from a neighborMUST<bcp14>MUST</bcp14> adhere to standard behavior and program its MPLSdataplanedata plane to pop the top label when forwarding traffic to the prefix. The label NLRI defines the outbound label thatMUST<bcp14>MUST</bcp14> be used by the receiving node.</t> </section> </section> <sectiontitle="Advertisingnumbered="true" toc="default"> <name>Advertising BGP Prefix-SIDAttribute">Attribute</name> <t>The BGP Prefix-SID attributeMAY<bcp14>MAY</bcp14> be attached to BGP IPv4/IPv6LabelLabeled Unicast prefixes <xreftarget="RFC8277"/>.target="RFC8277" format="default"/>. In order to prevent distribution of the BGP Prefix-SID attribute beyond its intended scope of applicability, attribute filteringSHOULD<bcp14>SHOULD</bcp14> be deployed to remove the BGP Prefix-SID attribute at the administrative boundary of thesegment routingSR domain.</t> <t>A BGP speaker that advertises a path received from one of its neighborsSHOULD<bcp14>SHOULD</bcp14> advertise the BGP Prefix-SID received with the path withoutmodification,modification as long as the BGP Prefix-SID was acceptable. If the path did not come with a BGP Prefix-SID attribute, the speakerMAY<bcp14>MAY</bcp14> attach a BGP Prefix-SID to the path if configured to do so. The content of the TLVs present in the BGP Prefix-SID is determined by the configuration.</t> <section anchor="ADVMPLSLABEL"title="MPLS Dataplane:numbered="true" toc="default"> <name>MPLS Data Plane: LabeledUnicast">Unicast</name> <t>A BGP speaker that originates a prefix attaches the BGP Prefix-SID attribute when it advertises the prefix to its neighbors via Multiprotocol BGP IPv4/IPv6 Labeled Unicast (<xreftarget="RFC8277"/>).target="RFC8277" format="default"/>). The value of the label index in the Label-Index TLV is determined by configuration.</t> <t>A BGP speaker that originates a BGP Prefix-SID attributeMAY<bcp14>MAY</bcp14> optionally announce the Originator SRGB TLV along with the mandatory Label-Index TLV. The content of the Originator SRGB TLV is determined by configuration.</t> <t>Since thelabel indexlabel-index value must be unique within an SR domain, by default an implementationSHOULD NOT<bcp14>SHOULD NOT</bcp14> advertise the BGP Prefix-SID attribute outside anAutonomous SystemAS unless it is explicitly configured to do so.</t> <t>In all cases, thelabelLabel field of the advertised NLRI (<xreftarget="RFC8277"/>,target="RFC8277" format="default"/> <xreftarget="RFC4364"/>) MUSTtarget="RFC4364" format="default"/>) <bcp14>MUST</bcp14> be set to the local/incoming label programmed in the MPLSdataplanedata plane for the given advertised prefix. If the prefix is associated with one of the BGP speaker's interfaces, this is the usual MPLS label (such as the Implicit or Explicit NULL label <xreftarget="RFC3032"/>).</t>target="RFC3032" format="default"/>).</t> </section> </section> <section anchor="ERRORHANDLING"title="Errornumbered="true" toc="default"> <name>Error Handling of BGP Prefix-SIDAttribute">Attribute</name> <t>When a BGPSpeakerspeaker receives a BGPUpdateUPDATE message containing a malformed or invalid BGP Prefix-SID attribute attached toaan IPv4/IPv6 Labeled Unicast prefix<xref target="RFC8277"/>,(<xref target="RFC8277" format="default"/>), itMUST<bcp14>MUST</bcp14> ignore the received BGP Prefix-SIDattributesattribute and not advertise it to other BGP peers. In this context, a malformed BGP Prefix-SID attribute is one that cannot be parsed due to not meeting the minimum attribute length requirement,containscontaining a TLV length that doesn't conform to the length constraints for the TLV, or containing acontainsTLV length that would extend beyond the end of the attribute (as defined by the attribute length). This is equivalent to the "Attribute discard" action specified in <xreftarget="RFC7606"/>.target="RFC7606" format="default"/>. When discarding an attribute, a BGP speakerSHOULD<bcp14>SHOULD</bcp14> log an error for further analysis.</t> <t>As perwith<xreftarget="RFC7606"/>,target="RFC7606" format="default"/>, if the BGP Prefix-SID attribute appears more than once in an UPDATE message,thenall the occurrences of the attribute other than the first oneSHALL<bcp14>SHALL</bcp14> be discarded and the UPDATE message will continue to be processed. Similarly, if a recognized TLV appears more than once inana BGP Prefix-SID attribute while the specification only allows for a single occurrence, then all the occurrences of the TLV other than the first oneSHALL<bcp14>SHALL</bcp14> be discarded and the Prefix-SID attribute will continue to be processed.</t> <t>For future extensibility, unknown TLVsMUST<bcp14>MUST</bcp14> be ignored and propagated unmodified.</t> </section> <section anchor="IANA"title="IANA Considerations">numbered="true" toc="default"> <name>IANA Considerations</name> <t>This document defines a BGP path attribute known as the BGP Prefix-SID attribute.This document requestsIANAto assign anhas assigned attribute code type(suggested value: 40)40 to the BGP Prefix-SID attribute from theBGP"BGP PathAttributesAttributes" registry.</t><t>IANA temporarily assigned the following: <list> <t>40 BGP Prefix-SID (TEMPORARY - registered 2015-09-30, expires 2018-09-30) [draft-ietf-idr-bgp-prefix-sid]</t> </list></t><t>This document defines two TLVs for the BGP Prefix-SID attribute. These TLVsneed to behave been registered with IANA.We requestIANAto createhas created a registry for BGP Prefix-SID Attribute TLVs as follows:</t> <t>Under the "Border Gateway Protocol (BGP) Parameters" registry, the new registry titled "BGP Prefix-SID TLV Types"Reference: draft-ietf-idr-bgp-prefix-sid Registration Procedure(s): Values 1-254 -has been created and points to this document as the reference.</t> <t>Registration Procedure(s):</t> <ul empty="true" spacing="compact"> <li>Values 1-254, Expert Review as defined in <xreftarget="RFC8126"/>, Valuetarget="RFC8126" format="default"/></li> <li>Values 0 and255 reserved</t> <figure align="center"> <artwork align="left">Value Type Reference 0 Reserved this document 1 Label-Index this document 2 Deprecated this document 3 Originator SRGB this document 4-254 Unassigned 255 Reserved this document</artwork> </figure>255, Reserved</li></ul> <table anchor="IANA1" align="left"> <name>BGP Prefix-SID TLV Types</name> <thead> <tr> <th>Value</th> <th>Type</th> <th>Reference</th> </tr> </thead> <tbody> <tr> <td>0</td> <td>Reserved</td> <td>This document</td> </tr> <tr> <td>1</td> <td>Label-Index</td> <td>This document</td> </tr> <tr> <td>2</td> <td>Deprecated</td> <td>This document</td> </tr> <tr> <td>3</td> <td>Originator SRGB</td> <td>This document</td> </tr> <tr> <td>4-254</td> <td>Unassigned</td> <td></td> </tr> <tr> <td>255</td> <td>Reserved</td> <td>This document</td> </tr> </tbody> </table> <t>The value 2 previously corresponded to the IPv6 SIDTLVTLV, which was specified in previous versions of this document. It wasremovedremoved, andusageuse of the BGP Prefix-SID for Segment Routing over the IPv6dataplanedata plane <xreftarget="I-D.ietf-spring-segment-routing"/>target="RFC8402" format="default"/> has been deferred to future specifications.</t><t>This document<t>IANA has alsorequests creation ofcreated the "BGP Prefix-SID Label-Index TLV Flags" registry under the "Border Gateway Protocol (BGP) Parameters" registry,Reference: draft-ietf-idr-bgp-prefix-sid.with a reference to this document. Initially, this 16-bit flags registrywill beis empty. The registration policy for flag bitswillis Expert Review <xreftarget="RFC8126"/>target="RFC8126" format="default"/>, consistent with theBGP"BGP Prefix-SID TLVTypesTypes" registry.</t> <t>Finally,this document requests creation ofIANA has created the "BGP Prefix-SID Originator SRGB TLV Flags" registry under the "Border Gateway Protocol (BGP) Parameters" registry,Reference: draft-ietf-idr-bgp-prefix-sid.with a reference to this document. Initially, this 16-bit flags registrywill beis empty. The registration policy for flag bitswillis Expert Review <xreftarget="RFC8126"/>target="RFC8126" format="default"/> consistent with the BGP Prefix-SID TLV Types registry.</t> <t>The designated experts must be good and faithful stewards of the above registries,assuringensuring that each request is legitimate and corresponds to a viable use case. Given the limited number of bits in the flags registries and the applicability to a single TLV, additional scrutiny should be afforded toflag bit allocation requests.requests for flag-bit allocation. In general, no single use case should require more than one flag bit and, should the use case require more, alternate encodings using new TLVs should be considered.</t> </section> <section anchor="MANAGE"title="Manageability Considerations">numbered="true" toc="default"> <name>Manageability Considerations</name> <t>This document defines a BGP attribute to address use cases such as the one described in <xreftarget="I-D.ietf-spring-segment-routing-msdc"/>.target="RFC8670" format="default"/>. It is assumed that advertisement of the BGP Prefix-SID attribute is controlled by the operator in orderto:<list style="symbols"> <t>Preventto:</t> <ul spacing="normal"> <li>Prevent undesired origination/advertisement of the BGP Prefix-SID attribute. By default, a BGP Prefix-SID attributeSHOULD NOT<bcp14>SHOULD NOT</bcp14> be attached to a prefix and advertised. Hence, BGP Prefix-SIDadvertisement SHOULDAdvertisement <bcp14>SHOULD</bcp14> require explicitenablement.</t> <t>Preventenablement.</li> <li>Prevent any undesired propagation of the BGP Prefix-SID attribute. By default, the BGP Prefix-SID is not advertised outside the boundary of a single SR/administrative domainwhichthat may include one or more ASes. The propagation to other ASesMUST<bcp14>MUST</bcp14> be explicitlyconfigured.</t> </list></t>configured.</li> </ul> <t>The deployment model described in <xreftarget="I-D.ietf-spring-segment-routing-msdc"/>target="RFC8670" format="default"/> assumes multipleAutonomous Systems (ASes)ASes under a common administrative domain. For this use case, the BGP Prefix-SIDadvertisementAdvertisement is applicable to the inter-AS context, i.e., EBGP, while it is confined to a single administrative domain.</t> </section> <section anchor="Security"title="Security Considerations">numbered="true" toc="default"> <name>Security Considerations</name> <t>This document introduces a BGP attribute (BGPPrefix-SID)Prefix-SID), which inherits the security considerations expressed in: <xreftarget="RFC4271"/>,target="RFC4271" format="default"/>, <xreftarget="RFC8277"/>,target="RFC8277" format="default"/>, and <xreftarget="I-D.ietf-spring-segment-routing"/>.</t>target="RFC8402" format="default"/>.</t> <t>When advertised using BGPsec as described in <xreftarget="RFC8205"/>,target="RFC8205" format="default"/>, the BGP Prefix-SID attribute doesn't impose any unique security considerations. It should be noted that the BGP Prefix-SID attribute is not protected by the BGPsec signatures.</t> <t>It should be noted that, as described in <xreftarget="MANAGE"/>,target="MANAGE" format="default"/>, this document refers to a deployment model where all nodes are under the single administrative domain. In this context, we assume that the operator doesn't want to leak any information related to internal prefixes and topology outside of the administrative domain. The internal information includes the BGP Prefix-SID. In order to prevent such leaking, the common BGP mechanisms (filters) are applied at the boundary of the SR/administrative domain. LocalBGP attribute filteringBGP-attribute-filtering policies and mechanisms are not standardized and, consequently, are beyond the scope of this document.</t> <t>To prevent a Denial-of-Service (DoS) or Distributed-Denial-of-Service (DDoS) attack due to excessive BGP updates with an invalid or conflicting BGP Prefix-SID attribute, error log messagerate-limitingrate limiting as well as suppression of duplicate error log messagesSHOULD<bcp14>SHOULD</bcp14> be deployed.</t> <t>Since BGP-LS is the preferred method for advertising SRGB information, the BGP speakerSHOULD<bcp14>SHOULD</bcp14> log an error if a BGP Prefix-SID attribute is received with SRGB information different from that received as an attribute of the same node's BGP-LS Node NLRI.</t> </section><section anchor="Contributors" title="Contributors"> <figure> <artwork>Keyur Patel Arrcus, Inc. US Email: Keyur@arrcus.com</artwork> </figure> <figure> <artwork>Saikat Ray Unaffiliated US Email: raysaikat@gmail.com</artwork> </figure> </section></middle> <back> <displayreference target="I-D.ietf-idr-bgpls-segment-routing-epe" to="BGPLS-SR-EPE"/> <displayreference target="I-D.ietf-idr-bgp-ls-segment-routing-ext" to="BGPLS-SR-EXT"/> <displayreference target="I-D.ietf-6man-segment-routing-header" to="IPv6-SRH" /> <references> <name>References</name> <references> <name>Normative References</name> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.2119.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.4271.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.4364.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.4760.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.7606.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.7911.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.8126.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.8174.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.8205.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.8277.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.8402.xml"/> <!-- draft-ietf-spring-segment-routing-mpls-22: Companion Document --> <reference anchor="RFC8660" target="https://www.rfc-editor.org/info/rfc8660"> <front> <title>Segment Routing with the MPLS Data Plane</title> <author initials='A' surname='Bashandy' fullname='Ahmed Bashandy' role="editor"> <organization/> </author> <author initials='C' surname='Filsfils' fullname='Clarence' role="editor"> <organization/> </author> <author initials='S' surname='Previdi' fullname='Stefano Previdi'> <organization/> </author> <author initials="B" surname="Decraene" fullname="Bruno Decraene"> <organization/> </author> <author initials='S' surname='Litkowski' fullname='Stephane Litkowski'> <organization/> </author> <author initials='R' surname='Shakir' fullname='Rob Shakir'> <organization/> </author> <date month='December' year='2019'/> </front> <seriesInfo name="RFC" value="8660"/> <seriesInfo name="DOI" value="10.17487/RFC8660"/> </reference> </references> <references> <name>Informative References</name> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.3032.xml"/> <!-- I-D.ietf-spring-segment-routing-msdc: Companion Document --> <xi:include href="https://xml2rfc.ietf.org/public/rfc/bibxml3/reference.I-D.ietf-6man-segment-routing-header.xml"/> <reference anchor='RFC8670' target='https://www.rfc-editor.org/info/rfc8670'> <front> <title>BGP Prefix Segment in Large-Scale Data Centers</title> <author initials='C' surname='Filsfils' fullname='Clarence Filsfils' role="editor"> <organization /> </author> <author initials='S' surname='Previdi' fullname='Stefano Previdi'> <organization /> </author> <author initials='G' surname='Dawra' fullname='Gaurav Dawra'> <organization /> </author> <author initials='E' surname='Aries' fullname='Ebben Aries'> <organization /> </author> <author initials='P' surname='Lapukhov' fullname='Petr Lapukhov'> <organization /> </author> <date month='December' year='2019' /> </front> <seriesInfo name='RFC' value='8670' /> <seriesInfo name='DOI' value='10.17487/RFC8670'/> </reference> <xi:include href="https://xml2rfc.ietf.org/public/rfc/bibxml3/reference.I-D.ietf-idr-bgpls-segment-routing-epe.xml"/> <xi:include href="https://xml2rfc.ietf.org/public/rfc/bibxml3/reference.I-D.ietf-idr-bgp-ls-segment-routing-ext.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.5004.xml"/> <xi:include href="https://xml2rfc.tools.ietf.org/public/rfc/bibxml/reference.RFC.7752.xml"/> </references> </references> <section anchor="Acknowledgements"title="Acknowledgements">numbered="false" toc="default"> <name>Acknowledgements</name> <t>The authors would like to thank Satya Mohanty for his contribution to this document.</t> <t>The authors would like to thank Alvaro Retana for substantive comments as part of the Routing AD review.</t> <t>The authors would like to thank Bruno Decraene for substantive comments and suggested text as part of the Routing Directorate review.</t> <t>The authors would like to thank Shyam Sethuram for comments and discussion of TLV processing and validation.</t> <t>The authors would like to thank Robert Raszuk for comments and suggestions regarding the MPLSdata planedata-plane behavior.</t> <t>The authors would like to thank Krishna Deevi, Juan Alcaide, Howard Yang, and Jakob Heitz for discussions on conflicting BGP Prefix-SID label indices and BGP add paths.</t> <t>The authors would like to thank Peter Yee, Tony Przygienda, MirjaKühlewind,Kuhlewind, Alexey Melnikov, Eric Rescorla, Suresh Krishnan, Warren Kumari, Ben Campbell Sue Hares, and Martin Vigoureux for IDR Working Group last call, IETF Last Call, directorate, and IESG reviews.</t> </section></middle> <back> <references title="Normative References"> <?rfc include="reference.RFC.2119"?> <?rfc include="reference.RFC.4271"?> <?rfc include="reference.RFC.4364"?> <?rfc include="reference.RFC.4760"?> <?rfc include="reference.RFC.7606"?> <?rfc include="reference.RFC.7911"?> <?rfc include="reference.RFC.8126"?> <?rfc include="reference.RFC.8174"?> <?rfc include="reference.RFC.8205"?> <?rfc include="reference.RFC.8277"?> <?rfc include="reference.I-D.ietf-spring-segment-routing.xml"?> <?rfc include="reference.I-D.ietf-spring-segment-routing-mpls.xml"?> </references> <references title="Informative References"> <?rfc include="reference.RFC.3032"?> <?rfc include="reference.I-D.ietf-spring-segment-routing-msdc.xml"?> <?rfc include="reference.I-D.ietf-idr-bgpls-segment-routing-epe.xml"?> <?rfc include="reference.I-D.ietf-idr-bgp-ls-segment-routing-ext.xml"?> <?rfc include="reference.I-D.ietf-6man-segment-routing-header.xml"?> <?rfc include="reference.RFC.5004"?> <?rfc include="reference.RFC.7752"?> </references><section anchor="Contributors" numbered="false" toc="default"> <name>Contributors</name> <artwork name="" type="" align="left" alt=""><![CDATA[Keyur Patel Arrcus, Inc. United States of America Email: Keyur@arrcus.com]]></artwork> <artwork name="" type="" align="left" alt=""><![CDATA[Saikat Ray Unaffiliated United States of America Email: raysaikat@gmail.com]]></artwork> </section> </back> </rfc>