IETF Logo Mail Archive

Re: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance

"MORTON JR., AL" <acmorton@att.com> Sat, 06 November 2021 18:08 UTC

Return-Path: <acmorton@att.com>
X-Original-To: bmwg@ietfa.amsl.com
Delivered-To: bmwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C55D3A058F for <bmwg@ietfa.amsl.com>; Sat, 6 Nov 2021 11:08:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.299
X-Spam-Level:
X-Spam-Status: No, score=-1.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URI_NOVOWEL=0.5] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=att.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PgP3oLIRSLDl for <bmwg@ietfa.amsl.com>; Sat, 6 Nov 2021 11:08:28 -0700 (PDT)
Received: from mx0a-00191d01.pphosted.com (mx0a-00191d01.pphosted.com [67.231.149.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 542513A04BB for <bmwg@ietf.org>; Sat, 6 Nov 2021 11:08:28 -0700 (PDT)
Received: from pps.filterd (m0049297.ppops.net [127.0.0.1]) by m0049297.ppops.net-00191d01. (8.16.1.2/8.16.1.2) with SMTP id 1A6Fvh6m013179; Sat, 6 Nov 2021 14:08:22 -0400
Received: from alpi155.enaf.aldc.att.com (sbcsmtp7.sbc.com [144.160.229.24]) by m0049297.ppops.net-00191d01. with ESMTP id 3c5pdt2yma-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sat, 06 Nov 2021 14:08:21 -0400
Received: from enaf.aldc.att.com (localhost [127.0.0.1]) by alpi155.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id 1A6I8Kcm025250; Sat, 6 Nov 2021 14:08:20 -0400
Received: from zlp27126.vci.att.com (zlp27126.vci.att.com [135.66.87.47]) by alpi155.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id 1A6I8EKw025165 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sat, 6 Nov 2021 14:08:15 -0400
Received: from zlp27126.vci.att.com (zlp27126.vci.att.com [127.0.0.1]) by zlp27126.vci.att.com (Service) with ESMTP id 432144013FA6; Sat, 6 Nov 2021 18:08:14 +0000 (GMT)
Received: from MISOUT7MSGEX2DD.ITServices.sbc.com (unknown [135.66.184.207]) by zlp27126.vci.att.com (Service) with ESMTP id 09AC14013FA1; Sat, 6 Nov 2021 18:08:14 +0000 (GMT)
Received: from MISOUT7MSGEX2CD.ITServices.sbc.com (135.66.184.224) by MISOUT7MSGEX2DD.ITServices.sbc.com (135.66.184.207) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.14; Sat, 6 Nov 2021 14:08:13 -0400
Received: from MISOUT7MSGETA03.tmg.ad.att.com (144.160.12.222) by MISOUT7MSGEX2CD.ITServices.sbc.com (135.66.184.224) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.14 via Frontend Transport; Sat, 6 Nov 2021 14:08:13 -0400
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.108) by edgeso3.exch.att.com (144.160.12.222) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2375.7; Sat, 6 Nov 2021 14:08:13 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=PEybw9vVqvRffhHpD0krWJerKweuCamHnQMQs47tYOqEMSTuu/W1rbgwbeyF89HWuvKCkUJMrAizYRiiEd6lajxngjPL95t+BTh8US3rWa2KszjuRF/ZADgtYo91SJ1glKT+d4n63OyClXB+dMw6uYFswb+/vxtTFsuXhl0VZVmDpLrtsnGMxcejcaSH4l3xn0uLX6Fz2YwLNDekhY8V0kQut/Eq+oZp/UCsdqusJyl3Bq3udLqpYF4BNvCHOqyxzzVj598u9X33TlMJZKjEIgZZAG7g9JNzMi+Au/e+qf0bvinHCOZr3N7suyQks8lTGu5ZN5VN5d+YJ4G61Dhj2A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=SeB97zHxSF/LGGC5KQNLJ9ijxT2klmFkHF9AYyc8+Vo=; b=PjAU8aEwzqqamKP0GgGxUCqE+tNeG1b3ecVvvOPpZjQJGa5tvSPdrMmCr+GkVsITSRnNkgcIatOGeVfKtRogBoaQiEl4DlaDnTa6OzfLV76gFKT/BcvRcCHZgEDRogWL5Wju/3BRbslTDBrYV8smi14mFU/giA1zChXUcOOPP7x/xew0n+A4RTLSiOPopwsoziJ1b4+swBc749fU79mo9nK8pMhd19e1A4zXyW73siFQVWZt62vydBKwyaS1kHhLqEYcsG1byBuZ3j7ogUajTSN+rtvKCJHl4vf+36N2d+kgObaVBGoEBwjX/C3SGQ2hco4bNxA9v4iFz4trbh2YlA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=att.com; dmarc=pass action=none header.from=att.com; dkim=pass header.d=att.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=att.onmicrosoft.com; s=selector2-att-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SeB97zHxSF/LGGC5KQNLJ9ijxT2klmFkHF9AYyc8+Vo=; b=H/YpBLP990GgUJVOOo3G3OuOJZxmyzhlufNt38NTzsfhA68gRj4VEqOjH0itPr1LV5uOAOzyQozFCAUlZF4JiPlzSV0k7yYdV3TZvVnJxdK/m4a5H06bPwsoIz+Uq06NyODF3F+K/qQoVYJB7Ejzg+di5p5GyPvKU/BgvVpVz5Q=
Received: from CH0PR02MB7980.namprd02.prod.outlook.com (2603:10b6:610:105::17) by CH2PR02MB6728.namprd02.prod.outlook.com (2603:10b6:610:7e::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4669.10; Sat, 6 Nov 2021 18:08:11 +0000
Received: from CH0PR02MB7980.namprd02.prod.outlook.com ([fe80::b175:5501:1d48:931f]) by CH0PR02MB7980.namprd02.prod.outlook.com ([fe80::b175:5501:1d48:931f%7]) with mapi id 15.20.4669.015; Sat, 6 Nov 2021 18:08:11 +0000
From: "MORTON JR., AL" <acmorton@att.com>
To: "bmonkman@netsecopen.org" <bmonkman@netsecopen.org>, "bmwg@ietf.org" <bmwg@ietf.org>
CC: "bm.balarajah@gmail.com" <bm.balarajah@gmail.com>, 'Carsten Rossenhoevel' <cross@eantc.de>
Thread-Topic: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance
Thread-Index: Adey4izhXQMeeaMDTuC62XLqnd4r2AAFLIPQA/cA6xAEF972oA==
Date: Sat, 06 Nov 2021 18:08:11 +0000
Message-ID: <CH0PR02MB79807C8B574E3B063F74D4DCD38F9@CH0PR02MB7980.namprd02.prod.outlook.com>
References: <70d001d7b2e3$1d2b3450$57819cf0$@netsecopen.org> <SJ0PR02MB78532EADE2FF19EEED161C26D3A69@SJ0PR02MB7853.namprd02.prod.outlook.com> <SJ0PR02MB7853E0ADD2A3A1CBF28CD16FD3BA9@SJ0PR02MB7853.namprd02.prod.outlook.com>
In-Reply-To: <SJ0PR02MB7853E0ADD2A3A1CBF28CD16FD3BA9@SJ0PR02MB7853.namprd02.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: netsecopen.org; dkim=none (message not signed) header.d=none;netsecopen.org; dmarc=none action=none header.from=att.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 904348b3-c6fd-4d7f-90d5-08d9a150650e
x-ms-traffictypediagnostic: CH2PR02MB6728:
x-microsoft-antispam-prvs: <CH2PR02MB672812C0D9F026ED73AAAC1BD38F9@CH2PR02MB6728.namprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:1186;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: xGva0HNGOk/gVRd46z7KS7qKFbS48DpT5sa3/qgr3U3tbN+149i07eIdGMuWZ9ziju2vf0Ge06zh2bo+nnIyk9e5eNBugvJPqDAaa0IBPjPUoxu4RKzN2zN5S4LjEL/7LtjzyYGT/YoQ73kIvlTLRq0H7mp4Kn7XPvf+8tQitp551WNXREcDpPeT4Z5EXI0JZbsMdlRlRRGVMlqD2Wig8V2BC0UVmJzfLLv9741rEhRmIo8gXdBmrOtAwjeAYtlKUCYDsaVK3Ryd4Io8XPcqvpZCqMhmyqE4cW90gs1EoT4JXHn5fHku2hVtn61uOpshIO7noqvMgj+v6oMJsMdCXOyGf8m0gAVbFTlfQdPGsR1M+/pB+U46r8p4ieasrqHGVaQwwxsBlgFQ8kQzDC2n8wezU2iHjuyhbCWdcv5rQaao8XYvO5tSw6UvQF8CDyzgv/3UxTJWLI94g15lHa67M0ogiaf5eLqbrRQRoORuK9jzBf65VmH6COqIQP6e8UWDv6VBh8xdtg3InB9S0dfLqFjo4ppR4EdgeFoRGKofA/16Ir0niBmjUx3cclSqEGAo66cGiqs4iP6dYilsLJ0ZeEV9zs0SQmu8ilP9pQBY+iN4jZblK0PjAiBZMLl+jQi4BW0n8hjCcZAy1tBM+xhvSJhBCp4h7zyQ37Tl3NTwH7qvU86YOD2HwEANO/Kbz9J651kCwVORj00mLBRm927KeDu/0KyUAKaryOMG01XT2YI1nRXLJMoiHDZlY8Qj54MQ4y2Kt/O4L4Ee3DPdFhcOAVDjz5r7gmJ5wbVJPyzSfHRwNnHZpDdHCf9w4qvp4GQAcp5X+XJM3CJL6/HoaaIDxg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR02MB7980.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(9686003)(53546011)(40140700001)(2906002)(966005)(52536014)(71200400001)(508600001)(38070700005)(66946007)(55016002)(186003)(8676002)(6506007)(9326002)(26005)(7696005)(316002)(38100700002)(99936003)(21615005)(83380400001)(33656002)(122000001)(82960400001)(64756008)(66556008)(66476007)(66446008)(5660300002)(8936002)(82202003)(76116006)(86362001)(110136005)(66574015)(4326008)(54906003)(166002)(559001)(579004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: VGh4UfRvMWBJzwUu/0aOilo/ZwtwobGljWl2TNLm3TkxWeSEMx4guOj4HyB98B/Ip5lQW7WJkpV8ODYFndUzOJEadFGeMhM8mMZ4bmyH+LPkco3JRbIJdeqhiqZScRrNae/PCEnL2EymfQfRM6nYr5EhCEhzcx88ehyC9NtMMzLN5Hqt7fNz5boTNUMDdmM7Ol85KXODEOnkekekeMJu8b3LA84ApBv3FsWbWe4baKnnuGrRpEVqYaE5j54B7b+WeYDBAToOQlsej7S5hdiMYI0Pauv4bqNE5GMg7bQ1yIB/xJ2XNdXT1wY0jY79ObV7JnOhxsLwSucOsD8RVIJCelIZ5EZUlFikybaeHz4G/WjGj2JMgUQnkLIBBd/8Z3w2T1CmoMow8No8fN67dAqQQyOjZYQobZKTL1BDHRp3lqTlc+OnZz4PhWpz11GdtxZFClA3aGK5RwF+VPgOknLa7hIEEQgd76E05lWnCq2ZBVWpo5tdg1vfYsXzcd6twI5ANNd6pmltqr8k1k0OwGhLPtMuOp1g1aHFtooTQJUha8h1xuTaT6Mn0VwYlp8nylChv9H4UJhycbcS/xoxICEbMbgwp4oupbJub+QlKuJn17elFtMXWqtRBAeJCndLZFMurqZoAtLkdXoRFsagQ1m66ruvM4pj4iSNR9/gp0Bg0CC49juP+KQtVGVZ+IjFjkqUgtHhTSMmJ5rY+CuiaHK7Sv49p4pARiBvDdgQUCPFsJTyYawzUdSxOuDb0VvgYLmf0xrmH8Ld4LAPTjXGlIcO4lXrfrqLqMPEFRgtKzNjfsAEV3OmkD0t6EVnTLaN/+Aqv6D5zTA+C4nPlZPAUv7fyYTyhTm8HLvwIXtJtUR3ayhWX/xLvtl9omgN/36Bq+rrLI02WhdyN57wJz86qwLUQOyzJKt79QGCPWMRN9IxF7Fjrer9KAXB3wPRUklxXzZxOIlsiHhHMzyDd1e8KfarIlLIGrDAs6mwIrLBdoOqm1SvJUcU/8/RLzoEI/uiR2IBRBD5SbcYd1A2uNijUnhNGV8+6hijlnkacW1Bg9YEY2Mroio4RcKZ8mZZv5j8KztBzp/mde9QyCB1YyucpjbGvLxxF0wS6zhPe6KaJ7qcF1JLCOS+R+NyecUITT2/DXtF+An2yM7o1qXAGz+otKyir/FnIF9vt1owmIvUE9f4TSHZvsuyOMm4hTij1hSfe3T1E/ZN+J4aHa0L6tIQcr/mPaBuHrZq9AyNQDn1t7tKtQCykf2QUHR3d+ogWrIdz4TM+HZAyyxeO6M4QK38zsyQR6tpHDvxylzW9cMtFmtcEw4GmIui0GUbz4tZ5EKpfl+TFuva1NunbkC7KZefm9vQSkGQa7fPrqF7U1jCjt7ahcXoTkhFo91roscInYR41Ux9nprT/9G8msOqoVvSliyaRu9AVo8a8qWJPedOsmqyj+EWV/gyarN88GjOU8d2ztL0FnUKJi7qTyy/5vXfEknIjIdYfj3qSxVEU5g4nJw12bNLNPr4+ueT7UKSv4GYgf3Or+ltM5QLWd/LJxSjK/SNBQ==
Content-Type: multipart/mixed; boundary="_006_CH0PR02MB79807C8B574E3B063F74D4DCD38F9CH0PR02MB7980namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR02MB7980.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 904348b3-c6fd-4d7f-90d5-08d9a150650e
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Nov 2021 18:08:11.2852 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e741d71c-c6b6-47b0-803c-0f3b32b07556
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: oULiyMTIVwOOsRWEJphpg/cc9ku4Whbbov2SDdI/6SmBUNwljk3JR6rdnPtXobM9
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR02MB6728
X-OriginatorOrg: att.com
X-TM-SNTS-SMTP: B01B2418F284CF1F7AA10E105AF7F57A3D903CFFCC062B39297ED8127C974D042
X-Proofpoint-GUID: KPA2nSZe1JnllyjU3aPjuynhAd3auXhY
X-Proofpoint-ORIG-GUID: KPA2nSZe1JnllyjU3aPjuynhAd3auXhY
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.790,Hydra:6.0.425,FMLib:17.0.607.475 definitions=2021-11-06_02,2021-11-03_01,2020-04-07_01
X-Proofpoint-Spam-Details: rule=outbound_policy_notspam policy=outbound_policy score=0 lowpriorityscore=0 malwarescore=0 clxscore=1015 adultscore=0 spamscore=0 priorityscore=1501 phishscore=0 suspectscore=0 mlxscore=0 mlxlogscore=999 impostorscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2110150000 definitions=main-2111060112
Archived-At: <https://mailarchive.ietf.org/arch/msg/bmwg/EonLD10nf0xQfWzHt0YT0QDK6lU>
X-Mailman-Approved-At: Sat, 06 Nov 2021 11:10:26 -0700
Subject: Re: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance
X-BeenThere: bmwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Benchmarking Methodology Working Group <bmwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bmwg>, <mailto:bmwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bmwg/>
List-Post: <mailto:bmwg@ietf.org>
List-Help: <mailto:bmwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bmwg>, <mailto:bmwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Nov 2021 18:08:34 -0000

Hi Bala, Carsten, and Brian,
(Authors of Version 11, draft-ietf-bmwg-ngfw-performance)

I just checked version 11, and it appears that some of the comments raised during my document shepherd's review have not yet been addressed. I'm sorry for the tardiness of this finding, but it means there is a simple way to find the comments (and they are all in category: editorial).  These comments were included in the document shepherd's form (which was attached to my original message, and attached here again), in addition to a small number of comments at the end of my message about version 10 (which may have caused some confusion).

This time, in case there is a problem finding the >>> comments in the attachment, I will extract them below.

I don't feel that any of these comments should hold-up a publication request, but we can discuss this on Monday with Warren, our AD-Advisor.

many thanks for your patience and your efforts,
Al

(in the doc shepherd form technical summary)

>>> One important comment remains to be addressed:
Since this memo Obsoletes RFC 3511, a sentence indicating this action must be added to the Abstract according to current practice.

>>> One additional comment on version 10:
The Security Directorate Review usually goes more smoothly when the Security Considerations section (9) re-enforces that the scope of this document is a laboratory Isolated Test Environment (and not production network testing). Sample text is available to use in this section, consistent with BMWG's lab-only charter.

Also, see a few ">>>" below.
....

(11) Identify any ID nits the Document Shepherd has found in this document. (See http://www.ietf.org/tools/idnits/ and the Internet-Drafts Checklist). Boilerplate checks are not enough; this check needs to be thorough.

The current nits-check is below, with [acm] comments:
...

  -- The draft header indicates that this document obsoletes RFC3511, but the
     abstract doesn't seem to mention this, which it should.
[acm]
>>> This needs fix, as mentioned earlier.

...

  Checking references for intended status: Informational
  ----------------------------------------------------------------------------

  -- Obsolete informational reference (is this intentional?): RFC 2616
     (Obsoleted by RFC 7230, RFC 7231, RFC 7232, RFC 7233, RFC 7234, RFC 7235)
[acm]
>>>> Authors, Please check this ref, see if it can be updated.  <<<<

...
(16) Will publication of this document change the status of any existing RFCs? Are those RFCs listed on the title page header, listed in the abstract, and discussed in the introduction? If the RFCs are not listed in the Abstract and Introduction, explain why, and point to the part of the document where the relationship of this document to the other RFCs is discussed. If this information is not in the document, explain why the WG considers it unnecessary.

>>> As mentioned twice above, RFC 3511 will become obsolete, and this fact needs to appear in the Abstract.
...
(17) Describe the Document Shepherd's review of the IANA considerations section, especially with regard to its consistency with the body of the document. Confirm that all protocol extensions that the document makes are associated with the appropriate reservations in IANA registries. Confirm that any referenced IANA registries have been clearly identified. Confirm that newly created IANA registries include a detailed specification of the initial contents for the registry, that allocations procedures for future registrations are defined, and a reasonable name for the new registry has been suggested (see RFC 8126).

>>> The draft discusses the BMWG address assignments in this section (8). However, the draft makes no specific request of IANA, and should say that first.




From: MORTON JR., AL <acmorton@att.com>
Sent: Saturday, October 16, 2021 6:12 PM
To: MORTON JR., AL <acmorton@att.com>; bmonkman@netsecopen.org; bmwg@ietf.org
Cc: bm.balarajah@gmail.com; 'Carsten Rossenhoevel' <cross@eantc.de>
Subject: RE: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance

Hi authors and BMWG,

Thank you for all efforts to complete the review, comment resolution, and document revisions!

I have completed the "first-pass" document shepherd's review of this draft.

I attached and uploaded the current version of the shepherd's review form, which contains Q&A with some action items for the authors.

I want to be sure that the authors considered the "early" Security review from Kathleen Moriarty:
https://datatracker.ietf.org/doc/review-ietf-bmwg-ngfw-performance-00-secdir-early-moriarty-2019-07-08/

Also, I have a few small suggestions below.

Thanks again,
Al
bmwg co-chair

We haven't tied the "in-line" terminology to the Figures; I think it would be good to do that. Many non-benchmarking experts will read this doc in the coming months (and this is an easy future comment to avoid).
OLD
3.  Scope

   This document provides testing terminology and testing methodology
   for modern and next-generation network security devices that are
   configured in Active ("Inline") mode.
NEW

3.  Scope



   This document provides testing terminology and testing methodology

   for modern and next-generation network security devices that are

   configured in Active ("Inline", see Figures 1 and 2) mode.



-=-=-=-=-=-



In section 4.3.3, the word "balanced\" appears, and the trailing slash needs to be deleted.



-=-=-=-=-=-=-



In section 7.1.1, the sentence beginning

OLD

   Based on customer use case, users can choose...



tripped me up, and a few more words will help, I think:

NEW

   Based on the test customer's specific use case, testers can choose...



(note that there is only one instance of "customer" in the doc, so we should make the customer's role clear here)

-=-=-=-=-=-=-








From: bmwg <bmwg-bounces@ietf.org<mailto:bmwg-bounces@ietf.org>> On Behalf Of MORTON JR., AL
Sent: Sunday, September 26, 2021 12:54 PM
To: bmonkman@netsecopen.org<mailto:bmonkman@netsecopen.org>; bmwg@ietf.org<mailto:bmwg@ietf.org>
Cc: bm.balarajah@gmail.com<mailto:bm.balarajah@gmail.com>
Subject: Re: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance

***Security Advisory: This Message Originated Outside of AT&T ***
Reference http://cso.att.com/EmailSecurity/IDSP.html for more information.
BMWG,

Those who have submitted comments on recent versions (8,9) should check the diffs now.
Please confirm that your comments have been addressed in version 10, by e-mail, ASAP.

thanks,
Al
bmwg co-chair

From: bmwg <bmwg-bounces@ietf.org<mailto:bmwg-bounces@ietf.org>> On Behalf Of bmonkman@netsecopen.org<mailto:bmonkman@netsecopen.org>
Sent: Sunday, September 26, 2021 10:31 AM
To: bmwg@ietf.org<mailto:bmwg@ietf.org>
Cc: bm.balarajah@gmail.com<mailto:bm.balarajah@gmail.com>
Subject: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance

Folks,

An update to draft-ietf-bmwg-ngfw-performance has been posted. I believe the next step is WG Chair review.

Version 10 has gone through multiple reviews . As a result, we have corrected a number of typos and grammatical errors. Additionally, we clarified wording in a few spots. The following has also been changed as a result of comments/discussions from/with Sarah Banks. (Sarah, thank you.)

  *   Removed NGIDS from the draft
  *   Added the following text in section 3 for "Inline" mode and "Fail-open" clarification: " This document provides testing terminology and testing methodology for modern and next-generation network security devices that are configured in Active ("Inline") mode."
  *   Also, we added the following text in section 4.2:  "DUT/SUT MUST be configured in "Inline" mode so that the traffic is actively inspected by the DUT/SUT.  Also "Fail-Open" behavior MUST be disabled on the DUT/SUT."
  *   Added more clarification for the parameters and values defined in section "4.3.1.  Client Configuration": This section specifies which parameters SHOULD be considered while configuring clients using test equipment.  Also, this section specifies the RECOMMENDED values for certain parameters.  The values are the defaults used in most of the client operating systems currently.
  *   Rephrased section 5 " Testbed Consideration". Added recommended steps for reference test.
  *   Explained the usage of the parameter "Initial throughput": "Initial throughput is not a KPI to report.  This value is configured on the traffic generator and used to perform Step 1: "Test Initialization and Qualification" described under the Section 7.1.4."
Brian

---------
Brian Monkman
Executive Director, NetSecOPEN
Office: +1-717-610-0808
Fax: +1-717-506-0460
Mobile: +1-717-462-5422

[cid:image001.png@01D7D314.8D601550]
https://www.netsecopen.org<https://urldefense.com/v3/__https:/www.netsecopen.org__;!!BhdT!wpaM8GOInxvNJdztL0uqXkYCL1UWmjmmAASp8hiMJEKN0JgjzEyGqz2m7207$>

v2.23.0 | Report a Bug | By Email