Re: [bess] Queries and comments on draft-ietf-bess-bgp-sdwan-usage
"Dikshit, Saumya" <saumya.dikshit@hpe.com> Wed, 06 March 2024 03:32 UTC
Return-Path: <saumya.dikshit@hpe.com>
X-Original-To: bess@ietfa.amsl.com
Delivered-To: bess@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8593DC14F5E3; Tue, 5 Mar 2024 19:32:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.102
X-Spam-Level:
X-Spam-Status: No, score=-2.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hpe.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JOLrW-GinAGb; Tue, 5 Mar 2024 19:32:23 -0800 (PST)
Received: from mx0b-002e3701.pphosted.com (mx0b-002e3701.pphosted.com [148.163.143.35]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1EF9FC14F60F; Tue, 5 Mar 2024 19:32:22 -0800 (PST)
Received: from pps.filterd (m0148664.ppops.net [127.0.0.1]) by mx0b-002e3701.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 425MpF62024912; Wed, 6 Mar 2024 03:32:18 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hpe.com; h=from : to : cc : subject : date : message-id : content-type : mime-version; s=pps0720; bh=RtyGnMTjJAEQ6Imyo0lEZ4k6mBSxCNverZ+hjQKx1ow=; b=cMJ3KJhtxY5JtLuld+vrRpa8jZTdoLmklUm5I6B8UvPARL4EyV+ITVOg7WIHTCNDv8RN /q3PET0WwjU+lad7xwJimG++o1Eti/HhTI+0qrEHERQBKQqjDRghrB8atyi2JrTx7Vm9 sPe04/3QRWX1TW8LgTYZj7/iQC6T2+jm8vZsSx1Y0x2cIrYWzWF4mYhhKT6oI8QTDvXf 3vmC0lSQOhEhK8NHPNxGUM6vgDApm3E4ktiAvA92B4e/MuHAYzkjJrN7lW+GVTuUpSme ztWuQGahfaTaXxPvBnUzNojzCjAdxbzjuzRbG3lR1VFTCRZvrMu5+KezZ1jTKJDVGRSV 1g==
Received: from p1lg14878.it.hpe.com ([16.230.97.204]) by mx0b-002e3701.pphosted.com (PPS) with ESMTPS id 3wnygt689q-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 06 Mar 2024 03:32:17 +0000
Received: from p1wg14926.americas.hpqcorp.net (unknown [10.119.18.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by p1lg14878.it.hpe.com (Postfix) with ESMTPS id 0E5762F9AB; Wed, 6 Mar 2024 03:32:16 +0000 (UTC)
Received: from p1wg14926.americas.hpqcorp.net (10.119.18.115) by p1wg14926.americas.hpqcorp.net (10.119.18.115) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42; Tue, 5 Mar 2024 15:32:07 -1200
Received: from P1WG14918.americas.hpqcorp.net (16.230.19.121) by p1wg14926.americas.hpqcorp.net (10.119.18.115) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42 via Frontend Transport; Tue, 5 Mar 2024 15:32:07 -1200
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (192.58.206.35) by edge.it.hpe.com (16.230.19.121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.42; Wed, 6 Mar 2024 03:32:06 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=X8wrYgeZ3dtq9/NKM/Sp9oSdnEgaRLYQVi/G/eJRZEt0oarvc5DC98U3iqZlcocLTC0wfOkDcE4wR4e7SRX5qLtuZX1V8Niwf/4576UpzLTRtd3AmYi2BpfQRyx4d8uqKtcgX8Lz/JAJCp3KZcSMhtTKnwN2tLoWQ1OClfzd3oaTpHxeksDn2nbBZ83lc5qVKPpJmSNmrJCwPZeknOC+nSfhds4UX8L3t7pK+Ko8JJgwe9Xni4xZXfKOtgLkFfjiXNrMHC3DKVculq/SDWuSYzQvc18q1k5NbZzuOuamPbk3RfpZ61DNK6hx6rXA30qJsGFb3mlUhbiTPAQcbIVJKA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=RtyGnMTjJAEQ6Imyo0lEZ4k6mBSxCNverZ+hjQKx1ow=; b=WMaqiszgKSHkOiT+FYKH2nJ0o1bzU1ZDJUFCuDlN2LuWcQ80gopUPZHEJh7Cy1ZiZWU0rbqLmPWdnQ2BnY0XDK1oIUroJgaPKPBnH5Dde+OKRSWliahuIIKqTY82ntzNiXcCSZnnEtkNX7qel1my6xf5xbGJ0KE9dWnPSLbby6OOvHxC1q+N5ZiRllQ7dHaVMs45ezG9S3QnDqG3ZbU2vpjrDvIBvP72xkh9/MAxmHAW/F9zWk46wKkgH+tfgOyG7VmT68aDfTTSv+vug79ULUpqbQP3wVhZTzv/yEaA+L9pDJoulGCoJQunMOA+JXXozlz4V7jyLtRNEgTGnpq7Mg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=hpe.com; dmarc=pass action=none header.from=hpe.com; dkim=pass header.d=hpe.com; arc=none
Received: from SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM (2603:10b6:a03:435::16) by DM4PR84MB2312.NAMPRD84.PROD.OUTLOOK.COM (2603:10b6:8:53::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7362.23; Wed, 6 Mar 2024 03:32:00 +0000
Received: from SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM ([fe80::1886:d59f:a929:8023]) by SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM ([fe80::1886:d59f:a929:8023%3]) with mapi id 15.20.7339.019; Wed, 6 Mar 2024 03:32:00 +0000
From: "Dikshit, Saumya" <saumya.dikshit@hpe.com>
To: Linda Dunbar <linda.dunbar@futurewei.com>, "sajassi@gmail.com" <sajassi@gmail.com>, John E Drake <jdrake@juniper.net>, "basil.najem@bell.ca" <basil.najem@bell.ca>
CC: "bess-chairs@ietf.org" <bess-chairs@ietf.org>, "bess@ietf.org" <bess@ietf.org>
Thread-Topic: Queries and comments on draft-ietf-bess-bgp-sdwan-usage
Thread-Index: Adpvds7qlOURR1WrQ2uKNB+cBD1VTA==
Date: Wed, 06 Mar 2024 03:31:59 +0000
Message-ID: <SJ0PR84MB2110B2F233F98D6408B975E794212@SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM>
Accept-Language: en-IN, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR84MB2110:EE_|DM4PR84MB2312:EE_
x-ms-office365-filtering-correlation-id: 7d3df82a-7ea2-42e3-95a9-08dc3d8dfb8c
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(376005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0PR84MB2110B2F233F98D6408B975E794212SJ0PR84MB2110NAMP_"
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR84MB2110.NAMPRD84.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 7d3df82a-7ea2-42e3-95a9-08dc3d8dfb8c
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Mar 2024 03:31:59.9333 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 105b2061-b669-4b31-92ac-24d304d195dc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 6OWLLD6mf1lFiH2taHwsHQcme0/Ng+nxkzpo/Z//XwGDOZegKUUe1xL8K7kKvmdqQJpD5/S2hvieBxfMGVfHzw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR84MB2312
X-OriginatorOrg: hpe.com
X-Proofpoint-GUID: jLbiaZXOzcKZeqkZKSQP1ZKfxj43cRY5
X-Proofpoint-ORIG-GUID: jLbiaZXOzcKZeqkZKSQP1ZKfxj43cRY5
X-Proofpoint-UnRewURL: 0 URL was un-rewritten
MIME-Version: 1.0
X-HPE-SCL: -1
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1011,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2024-03-05_20,2024-03-05_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 impostorscore=0 phishscore=0 adultscore=0 bulkscore=0 lowpriorityscore=0 mlxlogscore=999 clxscore=1015 mlxscore=0 malwarescore=0 priorityscore=1501 spamscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2311290000 definitions=main-2403060027
Archived-At: <https://mailarchive.ietf.org/arch/msg/bess/sQqAa0gTLm_u01P-rqeeI1FRIi4>
Subject: Re: [bess] Queries and comments on draft-ietf-bess-bgp-sdwan-usage
X-BeenThere: bess@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: BGP-Enabled ServiceS working group discussion list <bess.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bess>, <mailto:bess-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bess/>
List-Post: <mailto:bess@ietf.org>
List-Help: <mailto:bess-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bess>, <mailto:bess-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Mar 2024 03:32:27 -0000
Changing the subject line (removing the version) Gentle reminder for the response from the authors From: Dikshit, Saumya Sent: Tuesday, March 5, 2024 7:44 AM To: Linda Dunbar <linda.dunbar@futurewei.com>; sajassi@gmail.com; John E Drake <jdrake@juniper.net>; basil.najem@bell.ca Cc: bess-chairs@ietf.org; bess@ietf.org Subject: RE: Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20 Kindly respond to the comments below. Regards, Saumya. From: Dikshit, Saumya Sent: Sunday, March 3, 2024 5:14 PM To: Linda Dunbar <linda.dunbar@futurewei.com<mailto:linda.dunbar@futurewei.com>>; sajassi@gmail.com<mailto:sajassi@gmail.com>; John E Drake <jdrake@juniper.net<mailto:jdrake@juniper.net>>; basil.najem@bell.ca<mailto:basil.najem@bell.ca> Cc: bess-chairs@ietf.org<mailto:bess-chairs@ietf.org>; bess@ietf.org<mailto:bess@ietf.org> Subject: Queries and comments on draft-ietf-bess-bgp-sdwan-usage-20 Hello Authors of draft-ietf-bess-bgp-sdwan-usage, I have following comments/queries: >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-1: "over one or more underlay connectivity services by recognizing applications and determining forwarding" [SD] "Underlay" is being very generic ? it can be hierarchy of overlays on top of which "real security overlay is provisioned between the SD0WAN end points". I think it should be changed. >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.1 "As SD-WAN is an overlay network arching over multiple types of networks, MPLS L2VPN[RFC4761][RFC4762<https://datatracker.ietf.org/doc/html/rfc4762>]/L3VPN[RFC4364][RFC4659<https://datatracker.ietf.org/doc/html/rfc4659>] or pure L2 underlay can continue using the VPN ID (Virtual Private Network Identifier), VN-ID (Virtual Network Identifier), or VLAN (Virtual LAN) in the data plane to differentiate packets belonging to different SD-WAN VPNs. [SD] Why only native MPLS VPNs. EVPN based MPLS or over Vxlan fabric can also be extended over IPSec, or underlying MPLS underlay. >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.3 [SD] The section should explicitly mention, "dynamically provisioned policies based on evolving security threats and service provisioning" and also "dynamic segmentation" >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1.5: "Each edge node informs the Route-Reflector (RR) [RFC4456<https://datatracker.ietf.org/doc/html/rfc4456>] on its interested SD-WAN VPNs. The RR only propagates the BGP UPDATE from an edge to others within the same SD-WAN VPN." [SD] Route-Reflector should be generalized to include Route-Servers in a over-the-WAN deployment of network fabrics. This may involve BGP instances deployments in different ASs (eBGP) >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-3.1 [SD] there is not requirement "scope for optimization of client routes at the WAN Gateway in the control plane" as the CE device can be lowly scaled w.r.t to FIB/RIB tables and performance/convergence of control plane. This one is not specific to dataplane/traffic optimization >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-4.1 : Client Service Provisioning Model [SD] Aggregation/Summarization of routes is an integral part of client provisioning >>> https://datatracker.ietf.org/doc/html/draft-ietf-bess-bgp-sdwan-usage-20#section-5.1: Why BGP as Control Plane for SD-WAN? [SD] One organic reason is that BPG is a tcp based protocol and hence can easily align with TLS based security. Regards, Saumya.
- Re: [bess] Queries and comments on draft-ietf-bes… Dikshit, Saumya
- Re: [bess] Queries and comments on draft-ietf-bes… Linda Dunbar
- Re: [bess] Queries and comments on draft-ietf-bes… Dikshit, Saumya
- Re: [bess] Queries and comments on draft-ietf-bes… Dikshit, Saumya
- Re: [bess] Queries and comments on draft-ietf-bes… Dikshit, Saumya
- Re: [bess] Queries and comments on draft-ietf-bes… Dikshit, Saumya
- Re: [bess] Queries and comments on draft-ietf-bes… Linda Dunbar