IETF Logo Mail Archive

Re: [Apn] Further revised draft Charter

Mirja Kuehlewind <ietf@kuehlewind.net> Fri, 20 January 2023 12:58 UTC

Return-Path: <ietf@kuehlewind.net>
X-Original-To: apn@ietfa.amsl.com
Delivered-To: apn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C99EDC1524B2 for <apn@ietfa.amsl.com>; Fri, 20 Jan 2023 04:58:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.894
X-Spam-Level:
X-Spam-Status: No, score=-6.894 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eS4G-Kb6lHQD for <apn@ietfa.amsl.com>; Fri, 20 Jan 2023 04:58:46 -0800 (PST)
Received: from wp513.webpack.hosteurope.de (wp513.webpack.hosteurope.de [80.237.130.35]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 938E5C1522D5 for <apn@ietf.org>; Fri, 20 Jan 2023 04:58:19 -0800 (PST)
Received: from dslb-002-202-026-080.002.202.pools.vodafone-ip.de ([2.202.26.80] helo=smtpclient.apple); authenticated by wp513.webpack.hosteurope.de running ExIM with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) id 1pIqyG-0000Ek-J5; Fri, 20 Jan 2023 13:58:16 +0100
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.300.101.1.3\))
From: Mirja Kuehlewind <ietf@kuehlewind.net>
X-Priority: 3
In-Reply-To: <21586947.1120715.1674134825741@www.getmymail.co.uk>
Date: Fri, 20 Jan 2023 13:58:06 +0100
Cc: Feng Yang <yangfeng@chinamobile.com>, apn@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <0D45C5C6-5803-40A7-A6F4-C196DD16C09F@kuehlewind.net>
References: <CAF4+nEFHcKBbc7J8v3yj_b6V1==4yUBOOhdazR2yrP75Gcd0mA@mail.gmail.com> <055a01d92b33$6c13be60$443b3b20$@com> <F0851BC5-42B4-4419-8638-6941FD5DD02E@kuehlewind.net> <05b801d92c02$df522680$9df67380$@com> <A4C86371-6DFF-454B-9C71-7448DE3F14B1@kuehlewind.net> <21586947.1120715.1674134825741@www.getmymail.co.uk>
To: Adrian Farrel <adrian@olddog.co.uk>
X-Mailer: Apple Mail (2.3731.300.101.1.3)
X-bounce-key: webpack.hosteurope.de;ietf@kuehlewind.net;1674219499;d4194ed7;
X-HE-SMSGID: 1pIqyG-0000Ek-J5
Archived-At: <https://mailarchive.ietf.org/arch/msg/apn/2RCBvfg4hpwc4lGeGjddileRHAw>
Subject: Re: [Apn] Further revised draft Charter
X-BeenThere: apn@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Application-aware Networking <apn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apn>, <mailto:apn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/apn/>
List-Post: <mailto:apn@ietf.org>
List-Help: <mailto:apn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apn>, <mailto:apn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jan 2023 12:58:50 -0000

Hi Adrian,

Thanks for the further explanation. Right, NSH also impact the IP routing, however, without being an expert, I guess you could just address an explicit egress node. Having such a tunnel where the encapsulation IP header uses the egress address would also be more secure regarding privacy, as the packet could not “escape” the network without being decapsulated.

I guess using a single existing field like DCSP (or maybe also MPLS labels) or having a full-fleshed, generic and extensible tunnel encapsulation are the two extremes. However, it is still not clear to me if something in the middle is needed, how that would look like, or is even really feasible (or would you only get the worse of both worlds, like more complexity but still limited functionality).

Mirja



> On 19. Jan 2023, at 14:27, Adrian Farrel <adrian@olddog.co.uk> wrote:
> 
> You can do a lot with the NSH because it is a layer 3.5 encapsulation. But that comes at a price because the packet has to be built as IP to the next service function forwarder, NSH, original IP payload.
>  
> The NSH basically allows you to put quasi-arbitrary meta data with a packet, so it is not totally free to implement in hardware.
>  
> I'd say there are plus and minus points and it is worth looking at the benefits of a simple approach.
>  
> It may be worth asking why SFC deployments eschew the NSH in favour of MPLS, SRv6, or native IP in IP approaches.
>  
> Cheers,
> Adrian
>  
>  
> On 19/01/2023 14:14 CET Mirja Kuehlewind <ietf@kuehlewind.net> wrote:
>  
>  
> Hi Feng,
>  
> My understanding is that NSH provides such a clean and generic solution. What is missing?
>  
> Mirja
>  
>  
>  
> On 19. Jan 2023, at 13:38, Feng Yang <yangfeng@chinamobile.com> wrote:
> Hi Mirja,
>  
> Thanks for your suggestion.  
>  
> We have associated quite a lot information on the source IP, for example, location/address/user/services(mainly for user who paid will get better bandwidth resource gareentee), etc. Maybe there would be more in future. So I feel to reuse some existing field will create a more “discreted space” , thus even harder to handle.  
>  
> If there is a clean, generic mechanism, that will great simplify the solution and give more possbility on the service we can define.
>  
> BR,
>  
> 杨锋
> Feng Yang
>  
> 发件人: Apn [mailto:apn-bounces@ietf.org] 代表 Mirja Kuehlewind
> 发送时间: 2023年1月19日 00:37
> 收件人: Feng Yang
> 抄送: apn@ietf.org
> 主题: Re: [Apn] Further revised draft Charter
>  
> Hi Feng,
>  
> Why are not just using the DSCP field or, if you need to provide more information to the network nodes, Network Service Header (NSH) encapsulation?
>  
>  
> Mirja
>  
>  
>  
>  
>  
>  
> On 18. Jan 2023, at 12:53, Feng Yang <yangfeng@chinamobile.com> wrote:
>  
> Dear WG,
>  
> In the operator's network, we provide corresponding services for Internet services and bussiness services to meet the needs of a group of users with the same service requirements for the network, such as acceleration, and security for Internet services (e.g. SAVNet), and leased line for bussiness services,(e.g. slicing and service chaining).
>  
> Currently, we are distinguishing services by source IP address at our network edge devices. But the source addresses are discrete, we hope there is a way to transform the address from discrete space into a linear space , which will make it be easier for classification, so that the services and policies can be combined in a simple way. Eventually that can improve our efficiency and reduce costs. 
>  
> This actually solves the fundamental problem that ACLs are difficult to apply at scale, and facilitates us to aggregate services in a linear space and statically configure a number of matching conditions by means of planning.
>  
> I think this Charter clearly presents the work we would like to see, so I suggest it is best not to postpone APN Charter any longer, we should setup the WG first and discuss the actual work as soon as possible.
>  
> The Spring festival is coming on this weekend. Best wishes for everyone. J
>  
> BR,
>  
> 杨锋
> Feng Yang
>  
> 发件人: Apn [mailto:apn-bounces@ietf.org] 代表 Donald Eastlake
> 发送时间: 2023年1月18日 10:04
> 收件人: apn@ietf.org
> 抄送: apn-chairs@ietf.org
> 主题: [Apn] Further revised draft Charter
>  
> I've gotten some comments and I've re-read some of the AD DISCUSSES and comments. Based on that I've updated the draft Charter as attached. Comments are welcome. 
>  
> Thanks,
> Donald
> ===============================
>  Donald E. Eastlake 3rd +1-508-333-2270 (cell)
>  2386 Panoramic Circle, Apopka, FL 32703 USA
>  d3e3e3@gmail.com
> -- 
> Apn mailing list
> Apn@ietf.org
> https://www.ietf.org/mailman/listinfo/apn
> --
> Apn mailing list
> Apn@ietf.org
> https://www.ietf.org/mailman/listinfo/apn
> -- 
> Apn mailing list
> Apn@ietf.org
> https://www.ietf.org/mailman/listinfo/apn

v2.23.0 | Report a Bug | By Email