IETF Logo Mail Archive

Re: [Anima] Not the Intents we were looking for: SUPA Intents

John Strassner <strazpdj@gmail.com> Thu, 20 August 2015 03:02 UTC

Return-Path: <strazpdj@gmail.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B0E041A90AD for <anima@ietfa.amsl.com>; Wed, 19 Aug 2015 20:02:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c8jhrj1EG6Sb for <anima@ietfa.amsl.com>; Wed, 19 Aug 2015 20:02:52 -0700 (PDT)
Received: from mail-ig0-x22f.google.com (mail-ig0-x22f.google.com [IPv6:2607:f8b0:4001:c05::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4518E1A90C6 for <anima@ietf.org>; Wed, 19 Aug 2015 20:02:52 -0700 (PDT)
Received: by igui7 with SMTP id i7so4561083igu.1 for <anima@ietf.org>; Wed, 19 Aug 2015 20:02:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=rutrWYaXCIkipzuon/WkExJGdn6yuFCyF6KWZKgaDfk=; b=k7YYQhWJ9KAWf0dgLPB5ThfaeWtPeSRNadav9c6A2i1fPZg5dF4+nb3Jct5NjfHSZS cLWHsjw1pComQPJNK/JUU3vMlVdZ1pOGLZILaddNM3JF83eAtxInLvVmBDX7FKr/grt8 rcGlCSZ8QI9okPUriUK2MmCuM+RIe5HpWV3fEzfMDOwMZpZXkbGVrxax4b3wKLM4kM/4 R4TpDoO96CAtuHeYpEN8opB579d1jkzPlukdIgCQqB+0RhtR2+UHos5lYSb6HBFUF4Kb BDBBIyzqX54fqWX/20ePIn8sreI8Y0YBxhsURPtq2acuLz41J3Sq+7wQNZMyvPNUUtLX aq1w==
MIME-Version: 1.0
X-Received: by 10.50.64.212 with SMTP id q20mr5660263igs.5.1440039771667; Wed, 19 Aug 2015 20:02:51 -0700 (PDT)
Received: by 10.79.107.196 with HTTP; Wed, 19 Aug 2015 20:02:51 -0700 (PDT)
In-Reply-To: <55D534A2.4060603@gmail.com>
References: <55C4D6C1.5040504@cisco.com> <27284.1439927422@sandelman.ca> <55D391BA.3000000@gmail.com> <CAJwYUrEjgaxvV7W5V7UOX2QQi8Ky73ce13KDGg3MikmGoBmhdQ@mail.gmail.com> <55D534A2.4060603@gmail.com>
Date: Wed, 19 Aug 2015 20:02:51 -0700
Message-ID: <CAJwYUrE3VgM+xV+EXQ8LUTesu=sgGitskzrvfi9CiJ3oLEQxvA@mail.gmail.com>
From: John Strassner <strazpdj@gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, John Strassner <strazpdj@gmail.com>
Content-Type: multipart/alternative; boundary="047d7bd75fce0d82e5051db563d3"
Archived-At: <http://mailarchive.ietf.org/arch/msg/anima/Aa78rZXllb1A4CBAD0VUK_JAlJI>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, Anima WG <anima@ietf.org>
Subject: Re: [Anima] Not the Intents we were looking for: SUPA Intents
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Aug 2015 03:02:56 -0000

Hi Brian,

please see <jcs2/>. I'm on a mailer with limited capabilities, so
please excuse the verbosity...

> Hi Brian,
>
>> I didn't do that, but having looked at the SUPA minutes, I then
>> looked at the IBNEMO documents, which make more sense to
>> me than SUPA.
>
> <jcs>
> I'd like to know why. This could actually help both SUPA and NEMO.
> </jcs>

To be blunt, I found a clear statement of purpose in Sue's draft
(draft-hares-ibnemo-overview) and I have never found that for SUPA except
in language that is too abstract for my thought processes.

<jcs2>
Does the following help:
>From the abstract of draft-klyus-supa-proposition-02:
   Simplified Use of Policy Abstractions (SUPA) defines an interface
   to a network management function that takes high-level, possibly
   network-wide policies as input and creates element configuration
   snippets as output. SUPA expresses policies using a generic policy
   information model, and outputs generic YANG data models.
</jcs2>

>> However, both IBNEMO and SUPA are definitely in the top/down
>> north/south configuration management tradition.
>
> <jcs>
> As opposed to what?
> </jcs>

Interactions between autonomic service agents (ASAs) are peer-to-peer;
there is no assumed hierarchy. Even intent could in theory come from
anywhere (anywhere authorized, that is) although we tend to assume it
will come from a NOC.

<jcs2>
Yup, this is how FOCALE worked. If you think that SUPA implies a
hierarchy, then that is bad and it should be fixed.
</jcs2>

>> I don't see much overlap with SUPA.
>
> <jcs>
> I'd like to know why. Is this because you don't envision using ECA
> or logic rules, or some other reason?
> </jcs>

I could imagine a particular ASA or group of collaborating ASAs
that are designed to use SUPA, for whatever their purpose in life
is. We have to co-exist with traditional NMS methods, and with
NETCONF, so why not with SUPA too?

<jcs>
Indeed, ANIMA should be able to handle other types of policies,
not just those of SUPA.
</jcs>

>> But actually the Nemo intent language looks more specific
>> than I expect Anima intent to be: compare with
>> draft-du-anima-an-intent and
>>
>
https://tools.ietf.org/html/draft-jiang-anima-prefix-management-01#section-5.1
>
> <jcs>
> Please see my earlier reply to Michael Richardson.
> One could argue that this example is not "intent" as defined by ONF,
> ODL GBP, OpenStack Congress, or SUPA's declarative logic
> (though SUPA's ECA policy rule could easily express this). This is
> because in other declarative designs, those SDOs have decided
> that intent should NOT specify low-level parameters like IP
> addresses or port numbers or DSCPs. That of course doesn't
> mean that ANIMA couldn't do this, but it would mean that ANIMA's
> intent model diverges from the industry.

It's possible. Personally I want to put myself in the shoes of a NOC
operator or a network designer and ask: what does she want to tell or
authorize the network to do? That will set the level of abstraction or
detail in intent statements.

<jcs2>
I absolutely agree with this. In fact, this is why I stood up in the SUPA
BoF and said that SUPA intent is different than ANIMA, mainly because
ANIMA intent is not yet formally defined. But since ANIMA intent is
not yet formally defined, I don't understand why people immediately
conclude that ANIMA is different from SUPA.

Note that I am not arguing whether ANIMA intent should be different
than SUPA intent (or not); I am simply saying that you cannot compare
something that is not formally defined to anything else.
</jcs2>

> This also clearly influences the underlying data model that you choose.
> </jcs>

Well, if the syntax is sufficiently flexible, we should be able to
cope with a wide range of levels of abstraction. As for declarative
vs imperative, I think it's too soon to know for sure, but my feeling
is that we will find use cases that need both.

<jcs2>
SUPA is (at least right now) envisioned as primarily an effort in modeling.
I have posted on SUPA that a model, all by its lonesome, does NOT
provide any type of policy management solution. A data model is just
a set of data structures, it lacks the logic requirement to implement the
policy. I've also posted that a DSL whose nouns and verbs are
defined by an info model is likely what is needed.

 Rgds
   Brian



regards,
John

On Wed, Aug 19, 2015 at 7:00 PM, Brian E Carpenter <
brian.e.carpenter@gmail.com> wrote:

> Hello John,
>
> On 20/08/2015 09:13, John Strassner wrote:
> > Hi Brian,
> >
> >> I didn't do that, but having looked at the SUPA minutes, I then
> >> looked at the IBNEMO documents, which make more sense to
> >> me than SUPA.
> >
> > <jcs>
> > I'd like to know why. This could actually help both SUPA and NEMO.
> > </jcs>
>
> To be blunt, I found a clear statement of purpose in Sue's draft
> (draft-hares-ibnemo-overview) and I have never found that for SUPA except
> in language that is too abstract for my thought processes.
>
> >> However, both IBNEMO and SUPA are definitely in the top/down
> >> north/south configuration management tradition.
> >
> > <jcs>
> > As opposed to what?
> > </jcs>
>
> Interactions between autonomic service agents (ASAs) are peer-to-peer;
> there is no assumed hierarchy. Even intent could in theory come from
> anywhere (anywhere authorized, that is) although we tend to assume it
> will come from a NOC.
>
> >> I don't see much overlap with SUPA.
> >
> > <jcs>
> > I'd like to know why. Is this because you don't envision using ECA
> > or logic rules, or some other reason?
> > </jcs>
>
> I could imagine a particular ASA or group of collaborating ASAs
> that are designed to use SUPA, for whatever their purpose in life
> is. We have to co-exist with traditional NMS methods, and with
> NETCONF, so why not with SUPA too?
>
> >> But actually the Nemo intent language looks more specific
> >> than I expect Anima intent to be: compare with
> >> draft-du-anima-an-intent and
> >>
> >
> https://tools.ietf.org/html/draft-jiang-anima-prefix-management-01#section-5.1
> >
> > <jcs>
> > Please see my earlier reply to Michael Richardson.
> > One could argue that this example is not "intent" as defined by ONF,
> > ODL GBP, OpenStack Congress, or SUPA's declarative logic
> > (though SUPA's ECA policy rule could easily express this). This is
> > because in other declarative designs, those SDOs have decided
> > that intent should NOT specify low-level parameters like IP
> > addresses or port numbers or DSCPs. That of course doesn't
> > mean that ANIMA couldn't do this, but it would mean that ANIMA's
> > intent model diverges from the industry.
>
> It's possible. Personally I want to put myself in the shoes of a NOC
> operator or a network designer and ask: what does she want to tell or
> authorize the network to do? That will set the level of abstraction or
> detail in intent statements.
>
> > This also clearly influences the underlying data model that you choose.
> > </jcs>
>
> Well, if the syntax is sufficiently flexible, we should be able to
> cope with a wide range of levels of abstraction. As for declarative
> vs imperative, I think it's too soon to know for sure, but my feeling
> is that we will find use cases that need both.
>
> Rgds
>    Brian
>
> >
> >>     Brian
> >
> > regards,
> > John
> >
> > On Tue, Aug 18, 2015 at 1:12 PM, Brian E Carpenter <
> > brian.e.carpenter@gmail.com> wrote:
> >
> >> On 19/08/2015 07:50, Michael Richardson wrote:
> >>>
> >>> {intentionally not cross-posted to SUPA}
> >>>
> >>> While working on other things today (and being at home with a pink-eyed
> >> kid),
> >>> I found the tab that was open to watch the IETF93 SUPA BOF.
> >>
> >> I didn't do that, but having looked at the SUPA minutes, I then looked
> >> at the IBNEMO documents, which make more sense to me than SUPA.
> >> However, both IBNEMO and SUPA are definitely in the top/down north/south
> >> configuration management tradition.
> >>
> >>> I also had saved ~80 emails from the SUPA list to read.
> >>> I found that the use cases from the SUPA BOF do not really match how we
> >>> envision Intents to work with ANIMA ASAs.  In particular, the model
> that
> >>> is envisioned is far more SDN-like; that is with a uber-intelligent
> >>> centralized command and control system that interprets SUPA Intents
> into
> >>> things like Virtual Private Cloud (VPC/VPN) configurations, via various
> >>> things like YANG/NETCONF/RESTCONF models, (but probably other data
> >> models)
> >>>
> >>> It isn't clear to me if SUPA Intents are going to be designed to
> cross-AS
> >>> boundaries, but it seems like they could easily do this.
> >>>
> >>> It seems like the ANIMA ACP is critically important for SUPA to be able
> >> to
> >>> implement policies, but that's an operator convenience.  They could
> >> equally
> >>> well use other (more expensive!) management networks.
> >>>
> >>> In the recording, I heard various things about ANIMA... I don't think
> >>> anyone overstated the situation, but I think that the message that
> ANIMA
> >>> Intents != SUPA Intents was too understated.
> >>
> >> Agreed, judging by the documents. Anyway it seems clear that SUPA is
> >> not yet ready to get chartered.
> >>
> >>> Bert Wijnen (didn't he declare he was retired?)
> >>
> >> Well yes, but as I told him when he said that, retirement often
> >> doesn't work first time ;-).
> >>
> >>> points on the list to
> >>>      IBNEMO - https://www.ietf.org/mailman/listinfo/ibnemo
> >>>
> >>> There was a SUPA telecon yesterday morning, but I had a nomcom call,
> >>> so I missed it.  It seems that there ought to be significant overlap,
> >>> and yet I don't see it.
> >>
> >> I don't see much overlap with SUPA.
> >>
> >> If IBNEMO comes up with a good data model and syntax for expressing
> >> intent, we should consider using it. I guess one of the authors of
> >> draft-zhou-netmod-intent-nemo and draft-xia-sdnrg-nemo-language
> >> can advise us about that. But actually the Nemo intent language looks
> >> more specific than I expect Anima intent to be: compare with
> >> draft-du-anima-an-intent and
> >>
> >>
> https://tools.ietf.org/html/draft-jiang-anima-prefix-management-01#section-5.1
> >>
> >>     Brian
> >>
> >> _______________________________________________
> >> Anima mailing list
> >> Anima@ietf.org
> >> https://www.ietf.org/mailman/listinfo/anima
> >>
> >
> >
> >
>



-- 
regards,
John

v2.23.0 | Report a Bug | By Email