IETF Logo Mail Archive

Re: [bess] Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20

"Dikshit, Saumya" <saumya.dikshit@hpe.com> Tue, 05 March 2024 02:14 UTC

Return-Path: <saumya.dikshit@hpe.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89C68C180B7F; Mon, 4 Mar 2024 18:14:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.103
X-Spam-Level:
X-Spam-Status: No, score=-7.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hpe.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A2nw7X6FN-Bo; Mon, 4 Mar 2024 18:14:36 -0800 (PST)
Received: from mx0a-002e3701.pphosted.com (mx0a-002e3701.pphosted.com [148.163.147.86]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7F9C0C180B79; Mon, 4 Mar 2024 18:14:36 -0800 (PST)
Received: from pps.filterd (m0150241.ppops.net [127.0.0.1]) by mx0a-002e3701.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 42523wnZ015955; Tue, 5 Mar 2024 02:14:32 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hpe.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=pps0720; bh=3oYEirurJquxxo58bBSr9i/jnTBeX1pOaH0JPZXmeKM=; b=kBUUSEl+lbHiE40gt4CKQvqLmY2vukvlELpT80mlVYKwxiGe356qYsvwSumEU4aZmX1I lCkLCweAluTKw5WpIV83kr2FCzoI+2p+wnvM/SNNqU4glUfE1wf50hUHiWTYYF+1liqD TSjAz5KCS1QliMAMhse5NNjaLbkDdQgIXe6hH8DKA1jpSufstelvEExHXdEkF12HrASw C/0KSbVp2pD74yqisv31TDycD4673eQ7fsFbl872Eb6dOqaWYLzmzo/1HeBCpGpwfDLL TWoxh/Y5kpLBexyCqRETtReMxNGY01+9AlXY2RA3lNRXKFJ/IjiUcL7kQ/WOyHjP0Sw4 Ng==
Received: from p1lg14879.it.hpe.com ([16.230.97.200]) by mx0a-002e3701.pphosted.com (PPS) with ESMTPS id 3wn92t6f37-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 05 Mar 2024 02:14:31 +0000
Received: from p1wg14924.americas.hpqcorp.net (unknown [10.119.18.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by p1lg14879.it.hpe.com (Postfix) with ESMTPS id D28B7130F8; Tue, 5 Mar 2024 02:14:19 +0000 (UTC)
Received: from p1wg14926.americas.hpqcorp.net (10.119.18.115) by p1wg14924.americas.hpqcorp.net (10.119.18.113) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42; Mon, 4 Mar 2024 14:14:05 -1200
Received: from p1wg14920.americas.hpqcorp.net (16.230.19.123) by p1wg14926.americas.hpqcorp.net (10.119.18.115) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42 via Frontend Transport; Mon, 4 Mar 2024 14:14:05 -1200
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (192.58.206.35) by edge.it.hpe.com (16.230.19.123) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42; Mon, 4 Mar 2024 14:14:05 -1200
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EpIoSM7LvORU/5WhyzoaLlPZkzfSpLFMA9iEBaA+LXs/JfbpIcSGNiIjnnb1mEaTop0LblrvZsEvAgyJ2yYfEWRyEKp0TQ26UmF7r7h8vChztuR3nGF4fjGxCOyDEqn0PM2rbHnT5SCOM7rEYsYAPxqMY7alu8J57rngGgc1Nj+9mmQZngd7NdXX4pKlWv0SuzlfyIT6zyi31ZyxaKacz++iqK7UTfnG6CVS+hZbw+ADOcZSzzqRlVg1opbWggczBh9FRDdtsqMFB0CfCwtazdB00MTkrI2tFxnKdFLsZ71GQ5PXs7aJpfqIvrv90hG+yv4ag8F3Jrr2/dczxv56Jg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3oYEirurJquxxo58bBSr9i/jnTBeX1pOaH0JPZXmeKM=; b=dKocxGAVljpfoYE1SOVk0YI/swNSl3EBb/DmB3c4qeMxUW0SDwBspR5scbjfZOR+2M6FCLFTiYQnx7NBAo9T8tUem0abjfDwa/PchRxhwU6xVUsdYznRkZOx+oZemm0mZl64odpE0HLjpU8Jkrwm9BbITZOJblYqLXN7HiPCEAx5BTId+nT6QFjm1yWv6B+Ikp6kNyOcCHBqJEs94L2lH3NhDpCeSnYmwLfdmfjaDBDoixt9UAIUfKcUEYmM2qSRcpmtyej6JpyVB9uYML0qYldveBwN4rugWKhVvUCxAkA9xJOPH6nhdG3MMgx3eo2+QNP0f2syDeDhOXzU1Otk7A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=hpe.com; dmarc=pass action=none header.from=hpe.com; dkim=pass header.d=hpe.com; arc=none
Received: from SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM (2603:10b6:a03:435::16) by MW5PR84MB1892.NAMPRD84.PROD.OUTLOOK.COM (2603:10b6:303:1c6::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7339.24; Tue, 5 Mar 2024 02:14:00 +0000
Received: from SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM ([fe80::1886:d59f:a929:8023]) by SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM ([fe80::1886:d59f:a929:8023%3]) with mapi id 15.20.7339.019; Tue, 5 Mar 2024 02:14:00 +0000
From: "Dikshit, Saumya" <saumya.dikshit@hpe.com>
To: Linda Dunbar <linda.dunbar@futurewei.com>, "sajassi@gmail.com" <sajassi@gmail.com>, John E Drake <jdrake@juniper.net>, "basil.najem@bell.ca" <basil.najem@bell.ca>
CC: "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20
Thread-Index: AdptX6XYfCjcTW1OSsuXoWtjJucotQBQxe/A
Date: Tue, 05 Mar 2024 02:14:00 +0000
Message-ID: <SJ0PR84MB21107A2728D941EAD4036F3694222@SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM>
References: <SJ0PR84MB2110D859B5404BC86DF3B32D945C2@SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM>
In-Reply-To: <SJ0PR84MB2110D859B5404BC86DF3B32D945C2@SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM>
Accept-Language: en-IN, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR84MB2110:EE_|MW5PR84MB1892:EE_
x-ms-office365-filtering-correlation-id: 97be8c0f-b032-43cd-412f-08dc3cb9ebbe
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: wHaMVjWasKKDuBfvtdQFyCAYBUDKsw8No2TJhW7H8+fVoqEwvvox0j2edsFqwmeQKUIx+aOJR9m6V7E587GYe03uT8mj1BHFbIhpAzVBBPw6rTm016+6iq/WR98uqR3fY3dMIYJmhAs6VgQNI8i8VLpTgSNSHTI3RCkpHi0V5saj8oB+PgYPosR5skLx4lffgBzQzsAEmmPpGIlZLmsjdO5pOmNimCyZ9Brp5g+3YFOjhaNuT1o5nD/zvyPOovs+QcjMrTvUx60YLXqlUYQbJMZkWj9LP2dRLP+3ihJqjSmdM6fKbstyz/gmXHIZOeumyUTcyQjPAivfjOH2yRd3HNAalUcpEqAD1oOmoIiOQo8hBFa+UzuAUzIi7Dju8svAbTv6BjMgqr91HFKtSH+Ia1m8sQUaCAoNCLGqznLKrWeKDe2gVLLiICaGMM/SsaYNu+FfAmxVJKHyMa1tpmVtW7DkKA4DwXAHYJ6fhqR0QiNdq+cC+H8gL9M6UVgN99it7Lwnm0dATwzSjn8JHiQqL35MeewpteZdJtR/hHx2VWEg1LYH0yu8JR8fVoOy1Z6odiwP567qevXSQVXIUskAPudVX9DN3e+l2/WxWna5KkWqJTeC2ykCxaoHDvROQm9Ion2sXLTSP/boCWcIaRrQNa7X49d9PeNQnOZUbgDiDk8=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(376005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0PR84MB21107A2728D941EAD4036F3694222SJ0PR84MB2110NAMP_"
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 97be8c0f-b032-43cd-412f-08dc3cb9ebbe
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Mar 2024 02:14:00.1296 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 105b2061-b669-4b31-92ac-24d304d195dc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: IwrP/D/3x3TlbcJKnFPIu1GerfIORAnW3DmV/kMMmUq++TeKKfFTyBt0nWjC/x/nwkF070i/kMng7fcq8THYuQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW5PR84MB1892
X-OriginatorOrg: hpe.com
X-Proofpoint-ORIG-GUID: xeIaX2N8KCKooxup7oFjgQZwwXKB6FSR
X-Proofpoint-GUID: xeIaX2N8KCKooxup7oFjgQZwwXKB6FSR
X-Proofpoint-UnRewURL: 0 URL was un-rewritten
MIME-Version: 1.0
X-HPE-SCL: -1
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1011,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2024-03-04_20,2024-03-04_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 clxscore=1015 lowpriorityscore=0 phishscore=0 mlxscore=0 suspectscore=0 bulkscore=0 spamscore=0 impostorscore=0 priorityscore=1501 adultscore=0 malwarescore=0 mlxlogscore=999 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2311290000 definitions=main-2403050014
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/GhUA4JG5lwTWzs0aFlzR9ADsy18>
Subject: Re: [bess] Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2024 02:14:40 -0000

Kindly respond to the comments below.

Regards,
Saumya.

From: Dikshit, Saumya
Sent: Sunday, March 3, 2024 5:14 PM
To: Linda Dunbar <linda.dunbar@futurewei.com>; sajassi@gmail.com; John E Drake <jdrake@juniper.net>; basil.najem@bell.ca
Cc: bess-chairs@ietf.org; bess@ietf.org
Subject: Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20

Hello Authors of draft-ietf-bess-bgp-sdwan-usage,

I have following comments/queries:

>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-1: "over one or more underlay connectivity services by recognizing applications and determining forwarding"
[SD] "Underlay" is being very generic ? it can be hierarchy of overlays on top of which "real security overlay is provisioned between the SD0WAN end points". I think it should be changed.


>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.1 "As SD-WAN is an overlay network arching over multiple types of networks, MPLS L2VPN[RFC4761][RFC4762<https://datatracker.ietf.org/doc/html/rfc4762>]/L3VPN[RFC4364][RFC4659<https://datatracker.ietf.org/doc/html/rfc4659>] or pure L2 underlay can continue using the VPN ID (Virtual Private Network Identifier), VN-ID (Virtual Network Identifier), or VLAN (Virtual LAN) in the data plane to differentiate packets belonging to different SD-WAN VPNs.
[SD] Why only native MPLS VPNs. EVPN based MPLS or over Vxlan fabric can also be extended over IPSec, or underlying MPLS underlay.

>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.3
[SD] The section should explicitly mention, "dynamically provisioned policies based on evolving security threats and service provisioning" and also "dynamic segmentation"

>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.5: "Each edge node informs the Route-Reflector (RR) [RFC4456<https://datatracker.ietf.org/doc/html/rfc4456>] on its interested SD-WAN VPNs. The RR only propagates the BGP UPDATE from an edge to others within the same SD-WAN VPN."
[SD] Route-Reflector should be generalized to include Route-Servers in a over-the-WAN deployment of network fabrics. This may involve BGP instances deployments in different ASs (eBGP)

>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1
[SD] there is not requirement "scope for optimization of client routes at the WAN Gateway in the control plane" as the CE device can be lowly scaled w.r.t to FIB/RIB tables and performance/convergence of control plane. This one is not specific to dataplane/traffic optimization


>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-4.1 : Client Service Provisioning Model

[SD] Aggregation/Summarization of routes is an integral part of client provisioning



>>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-5.1: Why BGP as Control Plane for SD-WAN?

[SD] One organic reason is that BPG is a tcp based protocol and hence can easily align with TLS based security.



Regards,

Saumya.

v2.23.0 | Report a Bug | By Email