Node Protection for RSVP-TE tunnels on a shared MPLS forwarding plane

A set of Segment Routed RSVP-TE LSPs can share a TE link label on an LSR only if all the LSPs in the set share the same outbound label forwarding action. For protected LSPs, having the same outbound label forwarding action means having the same primary forwarding action and the same backup forwarding action. In the case of LSPs that do not request local protection or LSPs that request only link protection, they can use the same outbound label forwarding action if they reach a common next-hop LSR via a common outgoing TE link. However, in the case of LSPs that request node protection, they can use the same outbound label forwarding action only if they reach a common next-next-hop LSR via a common outgoing TE link and a common next-hop LSR.

The label allocation and signaling procedures defined in can sufficiently cater to the following scenarios on an LSR: Offer no protection to LSPs that do not request local protection Offer no protection or link protection to LSPs that request link protection Offer no protection or link protection to LSPs that request node protection The label allocation and signaling procedures defined in this document are meant to enable LSRs to offer node protection to LSPs that request node protection.

If the protected next-hop LSR signals a TE link label for the LSP but does not set the Delegation Label flag in the RRO Label Subobject carried in Resv message, then the PLR SHOULD allocate multiple shared labels for the same TE link such that a unique label is allocated for every unique next-next-hop LSR that is reachable via the protected next-hop LSR.

In the example shown in , LSR C has allocated the following TE link labels: 321 for the TE link C-B to reach the next-next-hop LSR A 326 for the TE link C-B to reach the next-next-hop LSR F 345 for the TE link C-D to reach the next-next-hop LSR E 348 for the TE link C-D to reach the next-next-hop LSR H 376 for the TE link C-G to reach the next-next-hop LSR F 378 for the TE link C-G to reach the next-next-hop LSR H If a LSP requesting node protection transits PLR C and if the protected next-hop LSR after C along the LSP path is not a delegation hop, then LSR C signals the respective TE link label depending on the next-next-hop LSR on the LSP path. LSP path: A -> B -> C -> D -> E : Label = 345 LSP path: A -> B -> C -> D -> H : Label = 348 LSP path: A -> B -> C -> G -> H : Label = 378 In all LSP paths above, at PLR C, the protected next-hop LSRs D and G along the LSP paths signal TE link labels but are not delegation hops. If the primary TE link is operational, LSR C will pop the TE link label and forward the packet to the corresponding next-hop LSR over that TE link. During local repair, LSR C will pop the TE link label and also the label beneath the top label, and forward the packet over the node protecting bypass tunnel to the appropriate next-next-hop LSR, which is the Merge Point (MP).

The outgoing backup label forwarding action corresponding to a label shared by LSPs requesting node protection MUST bypass the protected next-hop LSR. The PLR MUST push the label stack on behalf of the next-hop delegation LSR. Hence, the number of labels that a delegation hop chooses to push also depends on the number of labels that the upstream hop (acting as PLR) along the primary LSP can push. This section extends the Effective Transport Label-Stack Depth (ETLD) signaling procedure specified in for LSPs requesting node protection. Considering , assume LER A and LSR B can push a maximum of 3 labels on an MPLS packet while the remaining nodes can push a maximum of 5 labels. LER A originates a Path message with an ETLD of 2 after reserving space for the bypass tunnel label that should be pushed for backup forwarding action. In addition to setting the ETLD, LER A also sets the Delegation Helper Label Depth (DHLD) to 2 in the Path message. The DHLD is computed as the maximum number of labels that the node can push after reserving space for the NNHOP bypass tunnel label that should be pushed for backup forwarding action. The ETLD procedures dictate that each LSR add its own ETLD value before sending the Path message downstream. LSRs C, E and I are automatically selected as delegation hops by the time the Path message reaches the egress LER L. LSR C uses the DHLD signaled by the upstream LSR B as input when calculating the outgoing ETLD in the Path message.

-----> -----> -----> -----> 1300d 1500d +---+ +---+ +---+ +---+ +---+ +---+ | A |-----| B |-----| C |-----| D |-----| E |-----| F | ETLD:3 +---+ +---+ +---+ +---+ +---+ +---+ DHLD:4 | | | | | | | | | | 1900d | | +---+ +---+ +---+ +---+ +---+ +---+ v | L |-----| K |-----| J |-----| I |-----| H |-----+ G + +---+ +---+ +---+ +---+ +---+ +---+ DHLD:4 DHLD:4 DHLD:4 DHLD:4 DHLD:4 ETLD:2 ETLD:3 ETLD:4 ETLD:1 ETLD:2 <----- <----- <----- <----- <----- Notation : d - delegation label ]]> As shown in , delegation hop LSR C does not set outgoing ETLD to 4 that it would have normally set given that LSR C can push a maximum of 5 labels on an outgoing packet. Instead, LSR C sets the outgoing ETLD to the minimum of the ETLD that it computes and the DHLD value of its previous hop i.e. minimum(computed ETLD = 4, previous hop DHLD = 2). The extension for signaling the DHLD in the Path message is defined in .

An LSR that decides to become a delegation hop for one or more LSPs requesting node protection MUST allocate a delegation label separate from delegation label assigned for LSPs that are offered no protection or link protection - even though the delegation segments share the same hops. In the example shown in , the delegation hops LSRs C, E and I will set the Delegation Label flag in the Label sub-object that they add to the Resv message. A PLR node that offers node protection to a delegation hop SHOULD be capable of helping the downstream delegation when the primary TE link to the delegation hop goes down. In the example shown in , the LSRs B, D and H act as helpers for their respective downstream delegation hops. The PLR nodes that are delegation helpers along the path of LSPs requesting node protection SHOULD allocate a unique label for every delegation label signaled by the protected delegation node. Before primary TE link failure, the PLR playing the role of a delegation helper pops the incoming label and forwards the packet on the primary TE link. During local repair, the delegation helper PLR pops the incoming label and also the label beneath it and pushes the label stack on behalf of the next hop delegation LSR and forwards the packet over the bypass tunnel. Any LSR that creates label stack upstream of the delegation helper MUST include the label signaled by the delegation helper onto the outgoing label stack just as it uses the TE link label to construct outgoing label stack.

As defined in , any LSR along the path of an LSP requesting node protection may choose to instead offer no protection or link protection. Hence, it must be possible to build an LSP where some LSRs along the path support the node protection extensions defined in this document whereas the rest of the LSRs support only . Any PLR along the LSP path that does not support the procedures defined in this document MUST provide either no protection or link protection for the LSPs requesting node protection.

-----> -----> -----> -----> 1300d +---+ +---+ +---+ +---+ +---+ +---+ | A |-----| B |-----| C |-----| D |-----| E |-----| F | ETLD:1 +---+ +---+ +---+ +---+ +---+ +---+ DHLD:4 | | | | | | | | | | 1500d | | +---+ +---+ +---+ +---+ +---+ +---+ v | L |-----| K |-----| J |-----| I |-----| H |-----+ G + +---+ +---+ +---+ +---+ +---+ +---+ 1700d DHLD:4 DHLD:4 DHLD:4 DHLD:4 DHLD:4 ETLD:4 ETLD:1 ETLD:2 ETLD:3 ETLD:4 <----- <----- <----- <----- <----- Notation : d - delegation label ]]> In , assume LER A and LSR B can push a maximum of 3 labels to the MPLS packet while the remaining nodes can push a maximum of 5 labels. Also assume that LSR C supports the extensions defined in but does not support the extensions defined in this document. Based on ETLD signaling procedure, LSR C will become a delegation hop. However, as LSR C cannot understand the DHLD signaled by the previous hop LSR B, LSR C will set outgoing ETLD to 4. If LSR C had supported the DHLD signaling, it would have set outgoing ETLD to 2 (see ). When PLR B receives shared label from the protected next-hop LSR C in the Resv message, it must determine the number of labels it has to push in order to offer node protection from the RRO sub-object carried in Resv. As the label stack depth of the delegation hop C is greater than the number of labels LSR C can push, it must either not provide local protection or provide only link protection for the LSP.

If the ingress LER has requested label stacking to reach delegation hop for the LSP requesting node protection, and if the next-hop LSR allocates a regular label for the LSP, then the LSR MUST also allocate a regular label for the LSP. If the ingress LER has requested label stacking to reach the egress LER for the LSP requesting node protection, and if the next-hop LSR has allocated a regular label for the LSP, then the PLR MUST become a delegation hop and set the RRO Label Subobject delegation label flag in the RRO carried in Resv message. The PLR MUST set ETLD to 1 in its outgoing Path message.

If an LSR determines that its immediate upstream LSR (PLR) has not included an ETLD in the incoming Path message, then the LSR MUST become a delegation hop and set the ETLD to 1 in the outgoing Path message. The outgoing ETLD is set to 1 because the upstream LSR does not support shared labels and cannot push the label stack on behalf of this LSR.