►
From YouTube: DASH Behavioral Model WG Apr 20 2023
Description
PR327 - Add Private Link Mapping
Service Tunnel is for VMs to access public resources via Internet; the overlay will have a public IP as the address
The service is exposed as public IP, but there might be different scenarios where we have the same service hidden behind NAT, which is where we need Private Link.
The transposition happens on a different table.
We re-use ST encoding
A
Coming
to
the
dash
behavioral
model,
meeting
I've
gone
ahead
and
started
the
recording
it's
April
20th
today
and
then
the
last
time
we
were
here,
we
talked
about
PR
I'll.
Do
the
people
get
led
into
the
meeting
automatically
I
think
they
do
Christy
you
let
people
in
or
Yusuf
for
me,
yeah
I
can
do
that.
A
Okay
thanks,
so
it
looks
like
last
time
we
talked
about
PR
358,
the
PSI
attribute
Generations
from
annotations,
and
then
we
talked
about
308
from
Andy
and
maybe
he'll
join
today
and
give
us
a
little
update
or
maybe
Rush,
McCann
and
or
Chris,
possibly,
and
then,
if
anyone
wanted
to
present
something
else,
just
let
me
know
I
think
possibly
Marianne
wanted
to
present
something
so
Marianna
reshma
did
you
want
to
go
first.
D
Possibly
so
this
one's
a
bit
easier
to
digest
because
all
of
the
infrastructure
was
done
together
with
the
service
tunnel
and
this
one
Builds
on
top
of
it
so
yeah.
Let
me
just
open
one
link
so
here
in
the
Sonic
design.
D
Private
link
is
already
there
described
with
the
with
the
use
cases
and
examples
looking
into
v-net
go
down
service
down
on
private
link.
So
there
is
an
example
configuration
like,
for
instance,.
D
Over
here
yeah
there,
it
is
like
there
are
new
Fields
for
you
and
I
added
and
a
new
kind.
D
For
private
link
that
also
adds
a
few
more
fields
for
packet
manipulation,
but
in
general,
to
describe
the
difference
between
a
private
link
and
service
tunnel
is
that
service
tunnel
is
meant
for
virtual
machines
to
access
public
resource
via
public
IQ
or
Internet
routable
IAP,
or
something
like
that,
which
means
that
in
in
the
overly
destination,
you
will
already
have
a
public
IPS
your
desk
address.
So
you
don't
really
need
to
do
any
mapping
because
Services
already
exposed
as
a
public
IP.
D
But
then
there
might
be
different
scenarios
where
the
same
service
somewhere
else
over
the
Internet.
It
still
can
be
hidden
behind
net
and
it
still
can
be
exposed
as
a
private
IP.
So
that's
what
we
have
private
link
for,
meaning
that
this
service
tunnel
transformation
happens
on
the
on
a
different
table.
So,
in
contrast
to
service
panel,
private
link
is
a.
D
Is
an
action
of
CA
to
p810,
meaning
we
do
all
of
the
same
things
as
we
need
twin
and
trouting,
but
at
the
end
we
do
the
translation
according
to
service
tunnel
transformation.
So
we
reuse
service
tunnel
encoding
for
those
purposes
like
again,
controller
will
encode
this
metadata
and
the
overlay
and
and
then
we
will
set
other
attributes
for
the
underlay
encapsulation,
which
will
be
mapping
for
or
not
the
mapping,
but
the
regular
entrance
translation
which
most
common
to
use
case.
D
Our
packet
transport
will
go
on
the
underly
using
a
public
IPS.
So
this
isn't
really
changed,
so
we
will
have
overly
diff
provided
sorry
underly
that
provided
overlay
with
the
service
tunnel,
private
link,
encodings
yeah,
oh
actually,
I,
see
one
issue
in
here.
This
one
is
redundant
but
copy
paste,
but
it's
not
used.
If
you
would
look
at
the
implementation,
but
generally
what
we
get
we
get
underlay
dip
we
get.
Oh
actually
they
are
used.
D
So
this
is
sorry
I
will
I'll
actually
need
to
leave
a
comment
in
here
because
I
asked
friends
about
it.
Overlay
DMACC
is
unchanged
and
it
is
always.
A
D
Yeah
I
mean
I
already
asked
him
about
it.
Is
it
similar
to
Vietnam
or
where
we
set,
like
the
other
sides,
Mac
or
it
doesn't
really
matter
so.
The
Assumption
here
is
that
DMACC
is
unchanged.
D
So
I
will
just
pass
the
same
value
from
the
header,
and
this
is
always
true.
So
these
are
the
two
operations
done
again.
They
are
done
on
the
ca
to
PA
mapping.
So
there
is
a
new
action
over
here,
so
this
is
just
I.
Don't
know
why
this
diff
is
showing
it
should
have
been
from
from
service
tunnel.
It's
the
same
thing:
I
will
double
check,
but
it's
just
extending
encapsulation
options
to
vxlan
and
NV
GRE
and
support
both
so
eni
is
extended,
so
the
the
other
side
of
of
the.
D
So
this
is
kind
of
like
a
point
to
point
connectivity.
So
there
there
is
like
a
private
link
representation
for
the
eni,
so
he
and
I
will
have
its
own.
A
private
link,
Source
ID
and
pirate
link
underlay
Source
ID
to
be
used.
C
D
C
The
service
could
be
public
or
private,
and
what
tunnel
overlay
we
need
to
use
to
Traverse.
You
know
public
IPS
or
private
Cloud
IPS.
All
this
is
still
you
know.
The
number
of
the
the
same
overlay
IP
address
need
to
change
our
Mac
need
to
change
and
all
that
information
I
thought
that
you
know
should
be
written
Anyway
by
the
controller
based
on
the
service
that
the
VM
is
looking
for
in
that
flow.
C
So
I'm
wondering
the
Capa
tables
would
be
updated
by
the
controller
accordingly,
based
on
what.
C
Is
ETC
right
so
do
we
need
any
change
as
such
other
than
the
encapsulation
change?
Do
we
need
to
make
a
separate
set
of
you
know
variables
here
that
you
have
PLC
PL
sip
mask?
Can
we
not
overwrite
the
existing
set
suppose.
D
I
mean
like
have
these
values
for
entry
and
not
per
eni.
C
It
is
today
right
up
when
I,
however,
it
is
defined.
The
cipa
mapping
table
should
give
that
translation.
D
Yes,
so
underlying
so
we
we
have
two
things:
we
have
private
link
sip,
which
is
overly
Sip
and
we
have
underlays
it.
Probably
I
should
rename
it
to
all
release.
So
underly
sick
today
is
for
dpu
or
per
clients
per
GPU.
It's
actually
your
web
right.
So
when
we
do
the
encapsulation
with
a
vxlan
or
energy
tunnel,
sip
is
only
one
value.
So
here
we
can
probably
clarify
with
friends
it's
no
longer
true
for
private
link,
it,
oh
and
by
the
way
service
tunnel.
D
C
D
Yeah,
so
this
is
the
diff
and
regarding
the
floor
request
itself,
there
is
one
issue
bounds
and
too
much
time
on
it,
but
for
some
reason
say
tests
fail.
D
D
Where
are,
they
are
later
passed
to
the
metadata
and
they
change
a
list
of
attributes
of
eni,
but
they
are
optional,
although
for
some
reason
test
fails,
so
I
will
look
into
that.
That
doesn't
seem
right
because
tests
shouldn't
say
tests
shouldn't
fail
if
we
add
more
more
parameters
to
the
action
because
they
are
optional,
anyways
right
now,
all
of
them
are
optional.
D
So
I'll
look
into
that.
That's
the
only
issue
that
is
left
with,
like
passing,
pull
request,
CI
checks
other
than
that
I
have
resolved
all
of
the
conflicts
that
were
outstanding.
So
please
leave
comments.
Hear
anything
else.
You
think
is
still
needs
to
be
updated.
A
A
D
You
yeah
and
once
more
thing
there
is
a
pull
request.
I
will
look
into
that
today.
Christina
I,
guess
it's
mostly
for
you.
These
bulk
apis
I
will
also
bump
that
to
the
latest
master
and
wanted
for
you
to
be
merged.
I.
Think,
oh.
D
D
A
And
Chris
or
reshma
did
you
know
anything
about
Andy's
attempt
to
compile
for
the
dpdk
backend
there's.
C
Don't
know:
okay,
okay,
I
did
not
get
any
update
on
this
one.
Okay,.
A
No
problem,
no
problem
I
can
check
with
him
separately
or
I'm.
Just
control,
z,
I
can
check
with
them
separately
or
I
can
check
in
with
them.
Okay,
anyone
else
have
anything
for
the
day.
B
Workshop
is
next
Monday
and
Tuesday
and
registration's
already
closed.
So
if,
if
you've
signed
up
I
hope
to
see
you
there
in
person,
it's.
B
A
A
Oh
wow,
fun,
okay,
cool,
well,
Marion!
Thank
you
for
presenting
that
and
if
you
guys
don't
have
anything
else,
we
can
let
go
for
the
day.
What
do
you
think
I
guess
I'm
doing
a
seven
second
rule,
John
Bud
Suresh,
anything.