idnits 2.17.1 

draft-ietf-mpls-lsr-self-test-02.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** Looks like you're using RFC 2026 boilerplate.  This must be updated to
     follow RFC 3978/3979, as updated by RFC 4748.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

  ** The document seems to lack a 1id_guidelines paragraph about
     Internet-Drafts being working documents. 


  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  ** There are 7 instances of too long lines in the document, the longest one
     being 3 characters in excess of 72.

  ** The abstract seems to contain references ([RSVP-TE], [LSP-Ping], [LDP]),
     which it shouldn't.  Please replace those with straight textual mentions
     of the documents in question.


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the RFC 3978 Section 5.4 Copyright Line does not
     match the current year

  == Line 280 has weird spacing: '...Request  messa...'

  == Line 292 has weird spacing: '...  Reply  messa...'

  == Line 569 has weird spacing: '...by this  when ...'

  == Line 734 has weird spacing: '...for the  purpo...'

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (February 2004) is 7375 days in the past.  Is this
     intentional?

  -- Found something which looks like a code comment -- if you have code
     sections in the document, please surround them with '<CODE BEGINS>' and
     '<CODE ENDS>' lines.


  Checking references for intended status: Proposed Standard
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  == Missing Reference: 'LDP' is mentioned on line 84, but not defined

  == Missing Reference: 'LSP-PING' is mentioned on line 251, but not defined

  == Unused Reference: 'RFC3036' is defined on line 662, but no explicit
     reference was found in the text

  ** Obsolete normative reference: RFC 3036 (Obsoleted by RFC 5036)

  -- Possible downref: Non-RFC (?) normative reference: ref. 'LSP-Ping'


     Summary: 5 errors (**), 0 flaws (~~), 8 warnings (==), 4 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------

1	Network Working Group                                     George Swallow
2	Internet Draft                                       Cisco Systems, Inc.
3	Category: Standards Track
4	Expiration Date: August 2004
5	                                                        Kireeti Kompella
6	                                                  Juniper Networks, Inc.

8	                                                              Dan Tappan
9	                                                     Cisco Systems, Inc.

11	                                                           February 2004

13	                    Label Switching Router Self-Test

15	                  draft-ietf-mpls-lsr-self-test-02.txt

17	Status of this Memo

19	   This document is an Internet-Draft and is in full conformance with
20	   all provisions of Section 10 of RFC2026.  Internet-Drafts are working
21	   documents of the Internet Engineering Task Force (IETF), its areas,
22	   and its working groups.  Note that other groups may also distribute
23	   working documents as Internet-Drafts.

25	   Internet-Drafts are draft documents valid for a maximum of six months
26	   and may be updated, replaced, or obsoleted by other documents at any
27	   time.  It is inappropriate to use Internet-Drafts as reference
28	   material or to cite them other than as "work in progress."

30	   The list of current Internet-Drafts can be accessed at
31	   http://www.ietf.org/1id-abstracts.html

33	   The list of Internet-Draft Shadow Directories can be accessed at
34	   http://www.ietf.org/shadow.html

36	Copyright Notice

38	   Copyright (C) The Internet Society (2004). All Rights Reserved.

40	   Abstract

42	      This document defines a means of self test for a Label-Switching
43	      Router (LSR) to verify that its dataplane is functioning for
44	      certain key Multi-Protocol Label Switching (MPLS) applications
45	      including unicast forwarding based on LDP [LDP] and traffic
46	      engineering tunnels based on [RSVP-TE].  A new Loopback FEC type
47	      is defined to allow an upstream neighbor to assist in the testing
48	      at very low cost.  MPLS Echo Request and MPLS Echo Reply messages
49	      [LSP-Ping] are extended to do the actual probing.

51	Contents

53	    1      Introduction  ...........................................   3
54	    1.1    Conventions  ............................................   3
55	    2      Loopback FEC  ...........................................   4
56	    2.1    Loopback FEC Element  ...................................   4
57	    2.2    LDP Procedures  .........................................   5
58	    3      Data Plane Self Test  ...................................   5
59	    3.1    Data Plane Verification Request / Reply Messages  .......   7
60	    3.2    Downstream Verification Object  .........................   8
61	    3.2.1  IPv4 Downstream Verification Object  ....................   8
62	    3.2.2  IPv6 Downstream Verification Object  ....................  11
63	    3.3    Reply-To Object  ........................................  13
64	    3.3.1  IPv4 Reply-To Object  ...................................  14
65	    3.3.2  IPv6 Reply-To Object  ...................................  14
66	    3.4    Sending procedures  .....................................  15
67	    3.5    Receiving procedures  ...................................  16
68	    3.6    Upstream Neighbor Verification  .........................  16
69	    4      Security Considerations  ................................  17
70	    5      IANA Considerations  ....................................  17
71	    6      Acknowledgments  ........................................  17
72	    7      References  .............................................  18
73	    7.1    Normative References  ...................................  18
74	    7.2    Informative References  .................................  18
75	    8      Authors' Addresses  .....................................  18
76	    9      Intellectual Property Notice  ...........................  19
77	   10      Full Copyright Statement  ...............................  19

79	1. Introduction

81	   This document defines a means of self test for a Label-Switching
82	   Router (LSR) to verify that its dataplane is functioning for certain
83	   key Multi-Protocol Label Switching (MPLS) applications including
84	   unicast forwarding based on LDP [LDP] and traffic engineering tunnels
85	   based on [RSVP-TE].  MPLS Echo Request and MPLS Echo Reply messages
86	   [LSP-Ping] messages are extended to do the actual probing.  The pings
87	   are sent to an upstream neighbor, looped back through the LSR under
88	   test and intercepted, by means of TTL expiration by a downstream
89	   neighbor.  Extensions to LSP-Ping [LSP-Ping] are defined to allow the
90	   down stream neighbor to report the test results.

92	   In order to minimize the load on upstream LSRs a new loopback FEC is
93	   defined. Receipt of a packet labeled with a loopback label will cause
94	   the advertising LSR to pop the label off the label stack and send the
95	   packet out the advertised interface.

97	   Note that use of a loopback allows an LSR to test label entries for
98	   which the LSR is not currently some neighbor's next hop.  In this way
99	   label entries can be verified prior to the occurrence of a routing
100	   change.

102	   Some routing protocls, most notably OSPF have no means of exchanging
103	   the "Link Local Identifiers" used to identify unnumbered links and
104	   components of bundled links.  These test procedures can be used to
105	   associate the neighbor's interfaces with the probing LSRs interfaces.
106	   This is achieved by simply having the TTL of the MPLS Ping expire one
107	   hop sooner, i.e. at the testing LSR itself.

109	1.1. Conventions

111	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
112	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
113	   document are to be interpreted as described in RFC 2119 [KEYWORDS].

115	2. Loopback FEC

117	   The Loopback FEC type is defined to enable an upstream neighbor to
118	   assist in LSR self-testing at very low cost.  This FEC causes the
119	   loopback to occur in the dataplane without control plane involvement
120	   beyond the initial LDP exchange and dataplane setup.

122	   An LSR uses the Loopback FEC to selectively advertise loopback labels
123	   to its neighbor LSRs.  Each loopback label is bound to a particular
124	   interface.  For multi-access links, a unique label for each neighbor
125	   is required, since the link-level address is derived from the label
126	   lookup.  When an MPLS packet with its top label set to a loopback
127	   label is received from an interface over which that label was
128	   advertised, the loopback label is popped and the packet is sent on
129	   the interface to which the loopback label was bound.

131	   TTL treatment for loopback labels follows the Uniform model.  I.e.
132	   the TTL carried in the loopback label is decremented and copied to
133	   the exposed label or IP header as the case may be.

135	2.1. Loopback FEC Element

137	   FEC element type 130 is used.   The FEC element is encoded as
138	   follows: (note: 130 is provisionally assigned, the actual value will
139	   be assigned by IANA.)

141	       0                   1                   2                   3
142	       0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
143	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
144	      |     130       |      Res      | Interface Type|   Id Length   |
145	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
146	      |                     Interface Identifier                      |
147	      |                              "                                |
148	      |                              "                                |
149	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

151	      Reserved (Res)

153	         Must be set to zero on transmission and ignored on receipt.

155	      Interface Type

157	            #     Type              Interface Identifier
158	           ---    ----              --------------------
159	            0     Unnumbered        A 32 bit Link Identifier as
160	                                      defined in [RFC3477]
161	            1     IPv4 Numbered     IPv4 Address
162	            2     IPv6 Numbered     IPv6 Address

164	      Identifier Length

166	         Length of the interface identifier in octets.
167	         The length is 4 bytes for Unnumbered and IPv4, 16 bytes for IPv6.

169	      Address

171	         An identifier encoded according to the Identifier Type field.

173	2.2. LDP Procedures

175	   It is RECOMMENDED that loopback labels only be distributed in
176	   response to a Label Request message, irrespective of the label
177	   advertisement mode of the LDP session.  However it is recognized that
178	   in certain cases such as OSPF with unnumbered links, the upstream LSR
179	   may not have sufficiently detailed information of the neighbor's link
180	   identifier to form the request.  In these cases, the downstream LSR
181	   will need to be configured to make unsolicited advertisements.

183	3. Data Plane Self Test

185	   A self test operation involves three LSRs, the LSR doing the test, an
186	   upstream neighbor and a downstream neighbor.  We refer to these as
187	   LSRs T, U, and D respectively.  In order to minimize the processing
188	   load on LSRD, two new LSP Ping messages are defined, called the MPLS
189	   Data Plane Verification Request and the MPLS Data Plane Verification
190	   Reply.  These messages are used to allow LSRT to obtain the label
191	   stack, address and interface information of LSRD.

193	   If FEC verification is required, the MPLS Echo Request and Reply
194	   messages are used.

196	   The packet flow is shown below. Although the figure shows LSRD
197	   adjacent to LSRT it may in some cases be an arbitrary number of hops
198	   away.

200	                 +------+       +------+       +------+
201	                 |    ,-|-------|<DPVRq|       |      |
202	                 |    `-|-------|------|-------|->    |
203	                 |      |       |    <-|-------|<DPVRp|
204	                 +------+       +------+       +------+
205	                   LSRU           LSRT           LSRD

207	               DPVRq: MPLS Data Plane Verification Request
208	               DPVRp: MPLS Data Plane Verification Reply

210	                    Figure 1: Self Test Message Flow

212	   In order to perform a test on an incoming label stack, LSRT forms an
213	   MPLS Data Plane Verification Request.  Included in that is a Data
214	   Plane Verification Object which requests that the interface and label
215	   stack seen by LSRD be returned.  Optionally LSRT could have included
216	   FEC Stack TLV to verify that LSRD's labels are mapped to the expected
217	   FECs.  In that case an MPLS Echo Request Message would have been
218	   used.

220	   LSRT prepends the packet with the incoming label stack being tested
221	   and the loopback label received from LSRU.  The TTL values are set
222	   such that they will expire at LSRD.  LSRT then forwards the packet to
223	   LSRU.

225	   LSRU receives the packet and performs normal MPLS forwarding.  That
226	   is, the loopback label is popped, the TTL is decremented and
227	   propagated (in this case) to the exposed label.

229	   LSRT receives the packet and performs normal MPLS forwarding.  If
230	   everything is functioning as expected this will cause the packet to
231	   arrive at LSRD with a TTL of 1.

233	   In this example, we assume that all is working properly.  The TTL
234	   expires at LSRD causing it to receive the packet LSRD notes the the
235	   interface and the label stack on which the packet was received and
236	   records these in a Downstream Verification TLV.  The results are
237	   recorded in an MPLS Data Plane Verification Reply message and sent to
238	   LSRT.

240	   If a FEC Stack TLV had been included, the procedures in [LSP-Ping]
241	   would be followed.  Additionally, a Downstream Verification TLV would
242	   be included in the MPLS Echo Reply message.

244	3.1. Data Plane Verification Request / Reply Messages

246	   Two new LSP Ping messages are defined for LSR self test.  The purpose
247	   of the new messages is two fold.  First the timestamps are removed to
248	   minimize processing.  Second the message type allows simple
249	   recognition that minimal processing is necessary to service this
250	   request.  The definitions of all fields are identical to those found
251	   in [LSP-PING].

253	   The new message types are: (Provisionally; to be assigned)

255	      Type     Message
256	      ----     -------
257	        3      MPLS Data Plane Verification Request
258	        4      MPLS Data Plane Verification Reply

260	   The messages have the following format:

262	    0                   1                   2                   3
263	    0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
264	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
265	   |         Version Number        |         Must Be Zero          |
266	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
267	   |  Message Type |   Reply mode  |  Return Code  | Return Subcode|
268	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
269	   |                        Sender's Handle                        |
270	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
271	   |                        Sequence Number                        |
272	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
273	   |                            TLVs ...                           |
274	   .                                                               .
275	   .                                                               .
276	   .                                                               .
277	   |                                                               |
278	   +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

280	   The MPLS Data Plane Verification  Request  message  MAY  contain  the
281	   following objects:

283	          Type #            Object
284	          ------            -----------
285	            3               Pad
286	            5               Vendor Enterprise Code
287	            7 (tba)         IPv4 Downstream Verification Object
288	            8 (tba)         IPv6 Downstream Verification Object
289	            9 (tba)         IPv4 Reply-to Object
290	           10 (tba)         IPv6 Reply-to Object

292	   The MPLS Data  Plane  Verification  Reply  message  MAY  contain  the
293	   following objects:

295	          Type #            Object
296	          ------            -----------
297	            3               Pad
298	            4               Error Code
299	            5               Vendor Enterprise Code
300	            7 (tba)         IPv4 Downstream Verification Object
301	            8 (tba)         IPv6 Downstream Verification Object

303	3.2. Downstream Verification Object

305	   The Downstream Verification Object is an optional TLV in an MPLS Echo
306	   Request or MPLS Verification Request message.  Only one such object
307	   may appear.  It's presence signifies a request that a Downstream
308	   Verification Object be included in the corresponding reply message.
309	   The purpose of the object is to allow the upstream router to obtain
310	   the exact interface and label stack information as it appears at the
311	   replying LSR.  It has two formats, type 7 for IPv4 and type 8 for
312	   IPv6 (to be assigned by IANA).

314	3.2.1. IPv4 Downstream Verification Object

316	   In a request message the Length is always 12.  In a reply message the
317	   length is 16 + 4*N octets, N is the number of Downstream Labels.  The
318	   value field of a Downstream Verification TLV has the following
319	   format:

321	       0                   1                   2                   3
322	       0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
323	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
324	      |     Flags     | Address Type  |            Reserved           |
325	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
326	      |                    Downstream IPv4 Address                    |
327	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
328	      |                  Downstream Interface Address                 |
329	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
330	      .                                                               .
331	      .                                                               .
332	      .                          Label Stack                          .
333	      .                                                               .
334	      .                                                               .
335	      .                                                               .
336	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

338	      Flags

340	         Two flags are defined as shown.  All other flags are reserved
341	         and MUST be set to zero.

343	            +-+-+-+-+-+-+-+-+
344	            |0|0|0|0|0|0|V|R|
345	            +-+-+-+-+-+-+-+-+

347	         The R flag can only be set in a request message.  It requests
348	         that the receiving router verify that the Downstream IPv4
349	         Address is an address belonging to this router.

351	         The V flag can only be set in a reply message.  The flag is set
352	         as a positive verification response to a received R flag.  If
353	         the R flag was not set in the request this Flag MUST be set
354	         to zero.

356	      Address Type

358	         The Address Type indicates if the interface is numbered or
359	         unnumbered and is set to one of the following values:

361	            Address Type        Value
362	            ------------        -----
363	            No Address            0
364	            IPv4                  1
365	            Unnumbered            2

367	         The value 0, "No Address" is only valid in a Verification
368	         Request message.

370	      Reserved

372	         MUST be set to zero on transmission and ignored on receipt.

374	      Downstream IPv4 Address

376	         If the address type is 'No Address', the address field MUST be
377	         set to zero and ignored on receipt.

379	         If the address type is 'IPv4', the address field MUST either be
380	         set to the downstream LSR's Router ID or the downstream LSR's
381	         interface address.

383	         If the address type is 'unnumbered', the address field MUST be set
384	         to the downstream LSR's Router ID.

386	      Downstream Interface Address

388	         If the address type is 'IPv4', the interface address field MUST
389	         MUST be set to the downstream LSR's interface address.

391	         If the address type is 'unnumbered', interface address field
392	         MUST be set to the index assigned by the downstream LSR to the
393	         interface.

395	      Label Stack

397	         The label stack of the received echo request message.  If any
398	         TTL values have been changed by this router, they SHOULD be
399	         restored.

401	3.2.2. IPv6 Downstream Verification Object

403	   In a request message the Length is always 24.  In a reply message the
404	   length is 40 + 4*N octets, N is the number of Downstream Labels.  The
405	   value field of a Downstream Verification TLV has the following
406	   format:

408	       0                   1                   2                   3
409	       0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
410	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
411	      |     Flags     | Address Type  |            Reserved           |
412	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
413	      |                    Downstream IPv6 Address                    |
414	      |                Downstream IPv6 Address (Cont.)                |
415	      |                Downstream IPv6 Address (Cont.)                |
416	      |                Downstream IPv6 Address (Cont.)                |
417	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
418	      |                  Downstream Interface Address                 |
419	      |              Downstream Interface Address (Cont.)             |
420	      |              Downstream Interface Address (Cont.)             |
421	      |              Downstream Interface Address (Cont.)             |
422	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
423	      .                                                               .
424	      .                                                               .
425	      .                          Label Stack                          .
426	      .                                                               .
427	      .                                                               .
428	      .                                                               .
429	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
430	      Flags

432	         Two flags are defined as shown.  All other flags are reserved
433	         and MUST be set to zero.

435	            +-+-+-+-+-+-+-+-+
436	            |0|0|0|0|0|0|V|R|
437	            +-+-+-+-+-+-+-+-+

439	         The R flag can only be set in a request message.  It requests
440	         that the receiving router verify that the Downstream IPv6
441	         Address is an address belonging to this router.

443	         The V flag can only be set in a reply message.  The flag is set
444	         as a positive verification response to a received R flag.  If
445	         the R flag was not set in the echo request this Flag MUST be set
446	         to zero.

448	      Address Type

450	         The Address Type indicates if the interface is numbered or
451	         unnumbered and is set to one of the following values:

453	            Address Type        Value
454	            ------------        -----
455	            No Address            0
456	            IPv6                  1
457	            Unnumbered            2

459	         The value 0, "No Address" is only valid in a Verification
460	         Request message.

462	      Reserved

464	         MUST be set to zero on transmission and ignored on receipt.

466	      Downstream IPv6 Address

468	         If the address type is 'No Address', the address field MUST be
469	         set to zero and ignored on receipt.

471	         If the address type is 'IPv6', the address field MUST either be
472	         set to the downstream LSR's Router ID or the downstream LSR's
473	         interface address.

475	         If the address type is 'unnumbered', the address field MUST be set
476	         to the downstream LSR's Router ID.

478	      Downstream Interface Address

480	         If the address type is 'IPv6', the interface address field MUST
481	         MUST be set to the downstream LSR's interface address.

483	         If the address type is 'unnumbered', first four octets of
484	         interface address field MUST be set to the index assigned by the
485	         downstream LSR to the interface.  The remaining 12 octets MUST
486	         be set to zero.

488	      Label Stack

490	         The label stack of the received echo request message.  If any
491	         TTL values have been changed by this router, they SHOULD be
492	         restored.

494	3.3. Reply-To Object

496	   In order to perform detailed diagnostics of a particular failing flow
497	   in the face of ECMP, it is useful to be able to use the exact source
498	   and destination addresses of that flow.  The Reply-To Object is an
499	   optional TLV in a MPLS Data Plane Verification Request message.  The
500	   Object has two formats, type 9 for IPv4 and type 10 for IPv6 (to be
501	   assigned by IANA).

503	3.3.1. IPv4 Reply-To Object

505	   The length of an IPv4 Reply-To Object is 5 octets; the value field
506	   has the following format:

508	       0                   1                   2                   3
509	       0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
510	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
511	      |                     Reply-to IPv4 Address                     |
512	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
513	      |    DS-Byte    |
514	      +-+-+-+-+-+-+-+-+

516	      Reply-to IPv4 Address

518	         The address to which the MPLS Data Plane Verification Reply
519	         message is to be sent.

521	      DS-Byte

523	         The DS-Byte to be used in the MPLS Data Plane Verification Reply
524	         packet.

526	3.3.2. IPv6 Reply-To Object

528	   The length of an IPv6 Reply-To Object is 17 octets; the value field
529	   has the following format:

531	       0                   1                   2                   3
532	       0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
533	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
534	      |                     Reply-to IPv6 Address                     |
535	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
536	      |                 Reply-to IPv6 Address (Cont.)                 |
537	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
538	      |                 Reply-to IPv6 Address (Cont.)                 |
539	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
540	      |                 Reply-to IPv6 Address (Cont.)                 |
541	      +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
542	      |    DS-Byte    |
543	      +-+-+-+-+-+-+-+-+
544	      Reply-to IPv6 Address

546	         The address to which the MPLS Data Plane Verification Reply
547	         message is to be sent.

549	      DS-Byte

551	         The DS-Byte to be used in the MPLS Data Plane Verification Reply
552	         packet.

554	3.4. Sending procedures

556	   In order to perform a test on an incoming label stack, an LSR first
557	   determines the expected outgoing label stack, next hop router and
558	   next hop interface.

560	   The LSR creates an MPLS Data Plane Verification Request message and
561	   includes a Data Plane Verification Object.  Optionally a FEC Stack
562	   TLV may be included.  In this case an MPLS Echo Request Message MUST
563	   be used.

565	   In normal use, the source address is set to an address belonging to
566	   the LSR and the destination set to an address in the range of 127/8.
567	   The IP TTL SHOULD be set to 1.  The incoming label stack is prepended
568	   to the packet.  The TTL of these labels SHOULD be set to appropriate
569	   values - 2 for those labels which will be process by this  when the
570	   packet is looped back; 1 for those labels which will be carried
571	   through.  Finally the loopback label bound to the incoming interface
572	   is prepended to the packet.  The TTL is set such that it will have
573	   the value of 3 on the wire.

575	   The packet is sent to the upstream neighbor on an interface for which
576	   the loopback label is valid.

578	   In diagnostic situations, the source and destination addresses MAY be
579	   set to any value.  In this case, a Reply-to IPv4 or IPv6 Object MUST
580	   be included.  The IP TTL MUST be set to 1.  The TTL of labels other
581	   than the loopback label MUST be set to appropriate values - 2 for
582	   those labels which will be process by this LSR when the packet is
583	   looped back; 1 for those labels which will be carried through.

585	3.5. Receiving procedures

587	   An LSR X that receives an MPLS Verification Request message formats a
588	   MPLS Verification Reply message.  The Sender's Handle and Sequence
589	   Number are copied from the Request message.

591	   X then parses the packet to ensure that it is a well-formed packet,
592	   and that the TLVs that are not marked "Ignore" are understood.  If
593	   not, X SHOULD send an MPLS echo reply with the Return Code set to
594	   "Malformed echo request received" or "TLV not understood" (as
595	   appropriate), and the Subcode set to zero.  In the latter case, the
596	   misunderstood TLVs (only) are included in the reply.

598	   If the echo request is good, X notes the interface I over which the
599	   echo was received, and the label stack with which it came. If the
600	   MPLS echo request contained a Downstream Verification object, then X
601	   must format this information as a Downstream Verification object and
602	   include it in its MPLS echo reply message.

604	   The source address of the Reply message MUST be an address of the
605	   replying LSR.  If the request included a Reply-to IPv4 or IPv6
606	   Object, the MPLS Data Plane Verification Reply message MUST be sent
607	   to that address.  Otherwise the Reply message is sent to the source
608	   address of the Verification Request message.

610	   An LSR MUST be capable of filtering addresses that are to be replied
611	   to.  If a filter has been invoked (i.e. configured) and an address
612	   does not pass the filter, then a reply MUST NOT be sent, and the
613	   event SHOULD be logged.

615	3.6. Upstream Neighbor Verification

617	   To verify that an upstream neighbor is properly echoing packets an
618	   LSR may send an MPLS Data Plane Verification Request packet with the
619	   TTL set so that the packet will expire upon reaching reaching itself.
620	   This procedure not only tests that the neighbor is correctly
621	   processing the loopback label, it also allow the node to verify the
622	   neighbor's interface mapping.

624	           +------+       +------+    DPVRq: MPLS Data Plane
625	           |    ,-|-------|<DPVRq|           Verification Request
626	           |    `-|-------|->    |
627	           |      |       |      |
628	           +------+       +------+
629	             LSRU           LSRT

631	              Figure 2: Upstream Neighbor Verification

633	   No TLVs need to be included in the MPLS Data Plane Verification
634	   Request.  By noting the Sender's Handle and Sequence Number, as well
635	   as the loopback label, LSRT is able to detect that a) the packet was
636	   looped, and b) determine (or verify) the interface on which the
637	   packet was received.

639	4. Security Considerations

641	   Were loopback labels widely known, they might be subject to abuse.
642	   It is therefore RECOMMENDED that loopback labels only be shared
643	   between trusted neighbors.  Further, if the loopback labels are drawn
644	   from the Global Label Space, or any other label space shared across
645	   multiple LDP sessions, it is RECOMMENDED that all loopback labels be
646	   filtered from a session except those labels pertaining to interfaces
647	   directly connected to the neighbor participating in that session.

649	5. IANA Considerations

651	   TBD

653	6. Acknowledgments

655	   The authors would like to thank Vanson Lim, Tom Nadeau, and Bob
656	   Thomas for their comments and suggestions.

658	7. References

660	7.1. Normative References

662	   [RFC3036]  Andersson, L. et al., "LDP Specification", January 2001.

664	   [LSP-Ping] Bonica, R. et al., "Detecting MPLS Data Plane Liveness",
665	              work-in-progress.

667	   [RFC3477]  Kompella, K. & Y. Rekhter, "Signalling Unnumbered Links
668	              in Resource ReSerVation Protocol - Traffic Engineering
669	              (RSVP-TE)", January 2003.

671	   [KEYWORDS] Bradner, S., "Key words for use in RFCs to Indicate
672	              Requirement Levels", BCP 14, RFC 2119, March 1997.

674	7.2. Informative References

676	   [RSVP-TE]  Awduche, D., et al, "RSVP-TE: Extensions to RSVP for LSP
677	              tunnels", RFC 3209, December 2001.

679	8. Authors' Addresses

681	      Kireeti Kompella
682	      Juniper Networks, Inc.
683	      1194 N. Mathilda Ave.
684	      Sunnyvale, CA 94089
685	      Email:  kireeti@juniper.net

687	      George Swallow
688	      Cisco Systems, Inc.
689	      1414 Massachusetts Ave
690	      Boxborough, MA 01719

692	      Email:  swallow@cisco.com

694	      Dan Tappan
695	      Cisco Systems, Inc.
696	      1414 Massachusetts Ave
697	      Boxborough, MA 01719

699	      Email:  tappan@cisco.com

701	9. Intellectual Property Notice

703	   The IETF takes no position regarding the validity or scope of any
704	   intellectual property or other rights that might be claimed to
705	   pertain to the implementation or use of the technology described in
706	   this document or the extent to which any license under such rights
707	   might or might not be available; neither does it represent that it
708	   has made any effort to identify any such rights.  Information on the
709	   IETF's procedures with respect to rights in standards-track and
710	   standards-related documentation can be found in BCP-11 [RFC2028].
711	   Copies of claims of rights made available for publication and any
712	   assurances of licenses to be made available, or the result of an
713	   attempt made to obtain a general license or permission for the use of
714	   such proprietary rights by implementors or users of this
715	   specification can be obtained from the IETF Secretariat.  The IETF
716	   invites any interested party to bring to its attention any
717	   copyrights, patents or patent applications, or other proprietary
718	   rights that may cover technology that may be required to practice
719	   this standard.  Please address the information to the IETF Executive
720	   Director.

722	10. Full Copyright Statement

724	   Copyright (C) The Internet Society (2004). All Rights Reserved.

726	   This document and translations of it may be copied and furnished to
727	   others, and derivative works that comment on or otherwise explain it
728	   or assist in its implementation may be prepared, copied, published
729	   and distributed, in whole or in part, without restriction of any
730	   kind, provided that the above copyright notice and this paragraph are
731	   included on all such copies and derivative works.  However, this
732	   document itself may not be modified in any way, such as by removing
733	   the copyright notice or references to the Internet Society or other
734	   Internet organizations, except as needed for the  purpose of
735	   developing Internet standards in which case the procedures for
736	   copyrights defined in the Internet Standards process must be
737	   followed, or as required to translate it into languages other than
738	   English.

740	   The limited permissions granted above are perpetual and will not be
741	   revoked by the Internet Society or its successors or assigns.

743	   This document and the information contained herein is provided on an
744	   "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING
745	   TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING
746	   BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION
747	   HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF
748	   MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.