[bmwg] Ready for IETF LAST CALL: Version 12, draft-ietf-bmwg-ngfw-performance
"MORTON JR., AL" <acmorton@att.com> Wed, 15 December 2021 16:25 UTC
Return-Path: <acmorton@att.com>
X-Original-To: bmwg@ietfa.amsl.com
Delivered-To: bmwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D59923A08CD for <bmwg@ietfa.amsl.com>; Wed, 15 Dec 2021 08:25:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.299
X-Spam-Level:
X-Spam-Status: No, score=-1.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URI_NOVOWEL=0.5] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=att.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RzGITjk3Ay6g for <bmwg@ietfa.amsl.com>; Wed, 15 Dec 2021 08:25:28 -0800 (PST)
Received: from mx0b-00191d01.pphosted.com (mx0b-00191d01.pphosted.com [67.231.157.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 280A63A089A for <bmwg@ietf.org>; Wed, 15 Dec 2021 08:25:28 -0800 (PST)
Received: from pps.filterd (m0288869.ppops.net [127.0.0.1]) by m0288869.ppops.net-00191d01. (8.16.1.2/8.16.1.2) with SMTP id 1BFEIs1K012327; Wed, 15 Dec 2021 11:25:26 -0500
Received: from alpi155.enaf.aldc.att.com (sbcsmtp7.sbc.com [144.160.229.24]) by m0288869.ppops.net-00191d01. with ESMTP id 3cxw37uykv-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 15 Dec 2021 11:25:25 -0500
Received: from enaf.aldc.att.com (localhost [127.0.0.1]) by alpi155.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id 1BFGPO9N003477; Wed, 15 Dec 2021 11:25:25 -0500
Received: from zlp27130.vci.att.com (zlp27130.vci.att.com [135.66.87.38]) by alpi155.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id 1BFGPIBL003256 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Wed, 15 Dec 2021 11:25:19 -0500
Received: from zlp27130.vci.att.com (zlp27130.vci.att.com [127.0.0.1]) by zlp27130.vci.att.com (Service) with ESMTP id B9E5A400AF73; Wed, 15 Dec 2021 16:25:18 +0000 (GMT)
Received: from MISOUT7MSGED1DC.ITServices.sbc.com (unknown [135.66.184.191]) by zlp27130.vci.att.com (Service) with ESMTP id 8BC4C400AF93; Wed, 15 Dec 2021 16:25:18 +0000 (GMT)
Received: from MISOUT7MSGEX2AE.ITServices.sbc.com (135.66.184.192) by MISOUT7MSGED1DC.ITServices.sbc.com (135.66.184.191) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.17; Wed, 15 Dec 2021 11:25:18 -0500
Received: from MISOUT7MSGETA02.tmg.ad.att.com (144.160.12.220) by MISOUT7MSGEX2AE.ITServices.sbc.com (135.66.184.192) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.17 via Frontend Transport; Wed, 15 Dec 2021 11:25:18 -0500
Received: from NAM02-BN1-obe.outbound.protection.outlook.com (104.47.51.42) by edgeso2.exch.att.com (144.160.12.220) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2375.17; Wed, 15 Dec 2021 11:25:16 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=L1Nr5CaxReR9mca/aSFWZNMAjrbPbxj/I4uIdSKJzHBw/4Pu+OpkSB5FywEweF2Us4nkAx46xUbWYiNXTworkpPVQwiwjk78kEq4mVI97VIU1zFDPMf29qK0fUFuEam5CM2OlCA7dxH3rOo5I5uabsmPbJlWfCd180Cc/Iufz22UQjxiZ8CK+K0dBYOWV0g5WniBT7CNiaRVkQaMvEqE7n9VtifooxlJUflys6Hi2SFbyhnXLXgfW/dqTCnvpPi1II1srdoXUR8TXkGdMNsexxuTYzXtzr76L4SZV3RvgtdxbN+yMhmxlk8zVyPRA6MUsiutsr0DqjyDDy4zsi+rWQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=nWXjhxTsr09Hv9PdyoZKLgKYrr2aEb1Aoje605Z2+4g=; b=ki8oNEX7O5pRq6LfURNndaeMtLSIqtPBd3yNSuLW0HoDbn3Qin+di2ulRDfSpofMb34HHm+Li6+KnkGIXH326aOkUQ5+MzEZ8bpvJTeKP77kqihgPaif8bvEMIE5FVQya+ArYh0RInStNCniDf86XU025JE45NYL4Ih7jpRybclAVQvFFB32VWsJtZzq3MmupDSmduf4g0aruthsC3ZgtHq15k+aOPOxvaQH3rGkOnwvfx+OjpzlBCdsXxlMTXVSdlITLivkILZ5Lm2waGksm7+Dkx32aQFLL6xOt3LXUL7uKiCFUqg8G6gB+Fw+BKy4KB7KKuE//R8hx1Y103FHiw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=att.com; dmarc=pass action=none header.from=att.com; dkim=pass header.d=att.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=att.onmicrosoft.com; s=selector2-att-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nWXjhxTsr09Hv9PdyoZKLgKYrr2aEb1Aoje605Z2+4g=; b=kZVskkDJYWl5/TLdgXvx8w60PLo06sdSfLmoGZlQ/qQSKOOcdTBI75E+g6DtDriddaWLNCvBaXlttZ9skgFnj0D/0OpoLhSvVIhWYXpM+B/MGNvg3CbyczXDzSPrAZoPJdOR/T8Aq6ZMrosZ7bVMLK1gSvjkU9bYzF0m2t5pXlA=
Received: from DM8PR02MB7973.namprd02.prod.outlook.com (2603:10b6:8:12::9) by DM6PR02MB4137.namprd02.prod.outlook.com (2603:10b6:5:a1::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4778.13; Wed, 15 Dec 2021 16:25:14 +0000
Received: from DM8PR02MB7973.namprd02.prod.outlook.com ([fe80::314a:c7bd:1e46:a68f]) by DM8PR02MB7973.namprd02.prod.outlook.com ([fe80::314a:c7bd:1e46:a68f%9]) with mapi id 15.20.4778.018; Wed, 15 Dec 2021 16:25:13 +0000
From: "MORTON JR., AL" <acmorton@att.com>
To: Warren Kumari <warren@kumari.net>, "bmonkman@netsecopen.org" <bmonkman@netsecopen.org>, "bmwg@ietf.org" <bmwg@ietf.org>
CC: "bm.balarajah@gmail.com" <bm.balarajah@gmail.com>
Thread-Topic: Ready for IETF LAST CALL: Version 12, draft-ietf-bmwg-ngfw-performance
Thread-Index: Adfx0FU7lCj3gBroSI+VSrz405Rncg==
Date: Wed, 15 Dec 2021 16:25:13 +0000
Message-ID: <DM8PR02MB7973D15107FBDD93B2A0B1ACD3769@DM8PR02MB7973.namprd02.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: c90ebf06-beab-4b50-9e06-08d9bfe77916
x-ms-traffictypediagnostic: DM6PR02MB4137:EE_
x-microsoft-antispam-prvs: <DM6PR02MB4137F963D5A593F683EA13B7D3769@DM6PR02MB4137.namprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:983;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM8PR02MB7973.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(21615005)(64756008)(66446008)(66946007)(66556008)(4326008)(966005)(9686003)(166002)(83380400001)(8936002)(66476007)(8676002)(186003)(122000001)(5660300002)(76116006)(40140700001)(26005)(66574015)(82960400001)(55016003)(53546011)(86362001)(82202003)(110136005)(6506007)(71200400001)(38100700002)(2906002)(52536014)(38070700005)(33656002)(508600001)(7696005)(316002)(99936003)(559001)(579004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: MJQi8IxnxAUFZXg5DkMKJvZleUwa0cQHHk570ci0paldyb3S0iS/3HL5uThq47tX+xd1zDj/bCSA2DIKS8GtDE93+OfuMMzVyWjU4qlbAg3QoWClP0JcKIWai7Dh6VOcaIpKxcWEFjIwav1+9lB9fleeJb7bi0zdsBBpONDrwo6QZoPbe7US7kyI6oUXjVVk2PntDLzvn548jKVhEBa20whVICRVr25rtoOuZv/jt7mgv6IElx+oZIQhU/xDzDBORz/yVk3EalQfZPviVijoMW4dV5JbEbnKw/J3fGV9mK9hONKLpni2UxKaV/axzfmHO9uXqX7357GtUXtBgBOLfAvWOFBdtHzToTWwB0Y7yPZ3IdyCtj9xd3I3ie90IoVdrVPEq1/o1MzAJdq+OrVqtiOHKiujK8AUTuKRyz3vW2MVgc+WYlmjGBuO4TGc1CXtg7clC+P4QzKgHqhzluCHMnGFuptXC/d90NA9kzlOeG8CEMw59SrLCfDjVCC/RNsng6VR1+iDnyJiIZ3qzuhW0ZcY+CVOsSqwAAy3emsuvpmnG/Ni9xDpnbh6XkPtQPH7P6VeSlUg7Pn6WAiAZzzlK0sLoQj9NUATPJqoqLs7fH6ojdZxgGPb524Oo6K2jil8XbJrhIKT6zWJgTWOW1U9GV09Yw/EurEd///kLYKmY6vwY16DXsPBn73mfTByON1QlfxzyNDYFbOjdQqSP6iB1k/tK7NVTpH+OAeadgk+FzjDogWBCm7WQN31w/xkrwuN4pUg8WQ31ezNN3GsOqL+C1rm1nbQA9IWS5nbINRY1XyMvl8B8xa3IaiBU2fTHtIX3OPqEDsOoq/F3PiCRhlJajCheAcCSuLFAOdhnJbopQKIVnT4IomEcPT8aOOqdczmAuIE9ufQVJ14FI7ZwoT3vq8tilfmEqwKe6XK+VxuDXF+jVQFCZXMsTZ1KywXm0y93o2xRvBE7PDmj0CEtXBS6SfUjc8C53SLyv3PGPMNG1AQ3PAbZuYnkkU0APvFgBa/5N1BDi+S0IX59NHh3RN595TmYA4Kr6lG77g+C8pxsb6ds7BPCTSrwPUfn2ekuqTQiKXPG6BuqyER94AgwJLT7KILhowEvYJZTsqnLIpc9Gbwa4rOMmSpkbXMbDk61a2XIMqVDq82B5VSxwSc5ijCdXg77TGxYmpMF7ecqwJfzkzYk9/m9sqT6nipIoBomQh+/buq9Uxsej2WbGMotsyXJSZrzG5H3O1HBfEuLRYgiEVWU3HbB8Y0vjYnIFsuv+fbabbBmLezQ7tbudW+uZ6HY6qqFEaei7cIAlUKjKR5D5gGmToF7DSLVS93hbdZAMEni6b6gfOqtmZuKEcQCveIXp4uy99Fwk7/oyjNkXmo4Mq47wPLTeng1/q7ryl56kfh7fItekddkxFTD9ZlC5Y89ECXTnlla0t4YAlRKIzCQGy/HKER075mIeLxSrH0eCPvOq901IdNTo76Ucqhn9n2hge6PUGBZ3xcOH8u9QNkNcnZMZCb2/J4B2p1ixDV6zYsGVw8GZ9jnSx16J89HbAdtQ==
Content-Type: multipart/related; boundary="_004_DM8PR02MB7973D15107FBDD93B2A0B1ACD3769DM8PR02MB7973namp_"; type="multipart/alternative"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM8PR02MB7973.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c90ebf06-beab-4b50-9e06-08d9bfe77916
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Dec 2021 16:25:13.8237 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e741d71c-c6b6-47b0-803c-0f3b32b07556
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: g5DGyELW1e8ZjQkXTMBTgScq313YCYponz31R1GyUuPVPhb28LwwwoAD9ea93Xrg
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR02MB4137
X-OriginatorOrg: att.com
X-TM-SNTS-SMTP: C7E37798B87356E9B576647C623EB1A3096156B11747E50C113EBA129AE66DFF2
X-Proofpoint-ORIG-GUID: D8z38k0LYXeAumK9W2EY3evFP0PvCWje
X-Proofpoint-GUID: D8z38k0LYXeAumK9W2EY3evFP0PvCWje
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.790,Hydra:6.0.425,FMLib:17.11.62.513 definitions=2021-12-15_10,2021-12-14_01,2021-12-02_01
X-Proofpoint-Spam-Details: rule=outbound_policy_notspam policy=outbound_policy score=0 phishscore=0 adultscore=0 lowpriorityscore=0 impostorscore=0 mlxscore=0 spamscore=0 mlxlogscore=999 malwarescore=0 bulkscore=0 suspectscore=0 clxscore=1011 priorityscore=1501 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2110150000 definitions=main-2112150093
Archived-At: <https://mailarchive.ietf.org/arch/msg/bmwg/zujI0oKPvbg-Dl-hhJ0LMi99oaw>
X-Mailman-Approved-At: Wed, 15 Dec 2021 08:27:45 -0800
Subject: [bmwg] Ready for IETF LAST CALL: Version 12, draft-ietf-bmwg-ngfw-performance
X-BeenThere: bmwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Benchmarking Methodology Working Group <bmwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bmwg>, <mailto:bmwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bmwg/>
List-Post: <mailto:bmwg@ietf.org>
List-Help: <mailto:bmwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bmwg>, <mailto:bmwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Dec 2021 16:25:52 -0000
Hi Warren and BMWG, I now confirm that the Document Shepherd's comments have been resolved in version 12 of the draft, and I changed the state to "Publication Requested" to begin next steps (AD-Review. Warren has completed AD-review now, and IETF Last Call can begin. Al doc shepherd and bmwg co-chair From: bmwg <bmwg-bounces@ietf.org> On Behalf Of MORTON JR., AL Sent: Saturday, November 6, 2021 2:08 PM To: bmonkman@netsecopen.org; bmwg@ietf.org Cc: bm.balarajah@gmail.com Subject: Re: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance ***Security Advisory: This Message Originated Outside of AT&T *** Reference http://cso.att.com/EmailSecurity/IDSP.html for more information. Hi Bala, Carsten, and Brian, (Authors of Version 11, draft-ietf-bmwg-ngfw-performance) I just checked version 11, and it appears that some of the comments raised during my document shepherd's review have not yet been addressed. I'm sorry for the tardiness of this finding, but it means there is a simple way to find the comments (and they are all in category: editorial). These comments were included in the document shepherd's form (which was attached to my original message, and attached here again), in addition to a small number of comments at the end of my message about version 10 (which may have caused some confusion). This time, in case there is a problem finding the >>> comments in the attachment, I will extract them below. I don't feel that any of these comments should hold-up a publication request, but we can discuss this on Monday with Warren, our AD-Advisor. many thanks for your patience and your efforts, Al (in the doc shepherd form technical summary) >>> One important comment remains to be addressed: Since this memo Obsoletes RFC 3511, a sentence indicating this action must be added to the Abstract according to current practice. >>> One additional comment on version 10: The Security Directorate Review usually goes more smoothly when the Security Considerations section (9) re-enforces that the scope of this document is a laboratory Isolated Test Environment (and not production network testing). Sample text is available to use in this section, consistent with BMWG's lab-only charter. Also, see a few ">>>" below. .... (11) Identify any ID nits the Document Shepherd has found in this document. (See http://www.ietf.org/tools/idnits/<https://urldefense.com/v3/__http:/www.ietf.org/tools/idnits/__;!!BhdT!x7N0Uz6TqXL1jrqLzzXck77axqknF-T75gHEm813qW8RHjUburKzta7yzBDv$> and the Internet-Drafts Checklist). Boilerplate checks are not enough; this check needs to be thorough. The current nits-check is below, with [acm] comments: ... -- The draft header indicates that this document obsoletes RFC3511, but the abstract doesn't seem to mention this, which it should. [acm] >>> This needs fix, as mentioned earlier. ... Checking references for intended status: Informational ---------------------------------------------------------------------------- -- Obsolete informational reference (is this intentional?): RFC 2616 (Obsoleted by RFC 7230, RFC 7231, RFC 7232, RFC 7233, RFC 7234, RFC 7235) [acm] >>>> Authors, Please check this ref, see if it can be updated. <<<< ... (16) Will publication of this document change the status of any existing RFCs? Are those RFCs listed on the title page header, listed in the abstract, and discussed in the introduction? If the RFCs are not listed in the Abstract and Introduction, explain why, and point to the part of the document where the relationship of this document to the other RFCs is discussed. If this information is not in the document, explain why the WG considers it unnecessary. >>> As mentioned twice above, RFC 3511 will become obsolete, and this fact needs to appear in the Abstract. ... (17) Describe the Document Shepherd's review of the IANA considerations section, especially with regard to its consistency with the body of the document. Confirm that all protocol extensions that the document makes are associated with the appropriate reservations in IANA registries. Confirm that any referenced IANA registries have been clearly identified. Confirm that newly created IANA registries include a detailed specification of the initial contents for the registry, that allocations procedures for future registrations are defined, and a reasonable name for the new registry has been suggested (see RFC 8126). >>> The draft discusses the BMWG address assignments in this section (8). However, the draft makes no specific request of IANA, and should say that first. From: MORTON JR., AL <acmorton@att.com<mailto:acmorton@att.com>> Sent: Saturday, October 16, 2021 6:12 PM To: MORTON JR., AL <acmorton@att.com<mailto:acmorton@att.com>>; bmonkman@netsecopen.org<mailto:bmonkman@netsecopen.org>; bmwg@ietf.org<mailto:bmwg@ietf.org> Cc: bm.balarajah@gmail.com<mailto:bm.balarajah@gmail.com>; 'Carsten Rossenhoevel' <cross@eantc.de<mailto:cross@eantc.de>> Subject: RE: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance Hi authors and BMWG, Thank you for all efforts to complete the review, comment resolution, and document revisions! I have completed the "first-pass" document shepherd's review of this draft. I attached and uploaded the current version of the shepherd's review form, which contains Q&A with some action items for the authors. I want to be sure that the authors considered the "early" Security review from Kathleen Moriarty: https://datatracker.ietf.org/doc/review-ietf-bmwg-ngfw-performance-00-secdir-early-moriarty-2019-07-08/<https://urldefense.com/v3/__https:/datatracker.ietf.org/doc/review-ietf-bmwg-ngfw-performance-00-secdir-early-moriarty-2019-07-08/__;!!BhdT!x7N0Uz6TqXL1jrqLzzXck77axqknF-T75gHEm813qW8RHjUburKztVJ0OPt2$> Also, I have a few small suggestions below. Thanks again, Al bmwg co-chair We haven't tied the "in-line" terminology to the Figures; I think it would be good to do that. Many non-benchmarking experts will read this doc in the coming months (and this is an easy future comment to avoid). OLD 3. Scope This document provides testing terminology and testing methodology for modern and next-generation network security devices that are configured in Active ("Inline") mode. NEW 3. Scope This document provides testing terminology and testing methodology for modern and next-generation network security devices that are configured in Active ("Inline", see Figures 1 and 2) mode. -=-=-=-=-=- In section 4.3.3, the word "balanced\" appears, and the trailing slash needs to be deleted. -=-=-=-=-=-=- In section 7.1.1, the sentence beginning OLD Based on customer use case, users can choose... tripped me up, and a few more words will help, I think: NEW Based on the test customer's specific use case, testers can choose... (note that there is only one instance of "customer" in the doc, so we should make the customer's role clear here) -=-=-=-=-=-=- From: bmwg <bmwg-bounces@ietf.org<mailto:bmwg-bounces@ietf.org>> On Behalf Of MORTON JR., AL Sent: Sunday, September 26, 2021 12:54 PM To: bmonkman@netsecopen.org<mailto:bmonkman@netsecopen.org>; bmwg@ietf.org<mailto:bmwg@ietf.org> Cc: bm.balarajah@gmail.com<mailto:bm.balarajah@gmail.com> Subject: Re: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance ***Security Advisory: This Message Originated Outside of AT&T *** Reference http://cso.att.com/EmailSecurity/IDSP.html for more information. BMWG, Those who have submitted comments on recent versions (8,9) should check the diffs now. Please confirm that your comments have been addressed in version 10, by e-mail, ASAP. thanks, Al bmwg co-chair From: bmwg <bmwg-bounces@ietf.org<mailto:bmwg-bounces@ietf.org>> On Behalf Of bmonkman@netsecopen.org<mailto:bmonkman@netsecopen.org> Sent: Sunday, September 26, 2021 10:31 AM To: bmwg@ietf.org<mailto:bmwg@ietf.org> Cc: bm.balarajah@gmail.com<mailto:bm.balarajah@gmail.com> Subject: [bmwg] Version 10, draft-ietf-bmwg-ngfw-performance Folks, An update to draft-ietf-bmwg-ngfw-performance has been posted. I believe the next step is WG Chair review. Version 10 has gone through multiple reviews . As a result, we have corrected a number of typos and grammatical errors. Additionally, we clarified wording in a few spots. The following has also been changed as a result of comments/discussions from/with Sarah Banks. (Sarah, thank you.) * Removed NGIDS from the draft * Added the following text in section 3 for "Inline" mode and "Fail-open" clarification: " This document provides testing terminology and testing methodology for modern and next-generation network security devices that are configured in Active ("Inline") mode." * Also, we added the following text in section 4.2: "DUT/SUT MUST be configured in "Inline" mode so that the traffic is actively inspected by the DUT/SUT. Also "Fail-Open" behavior MUST be disabled on the DUT/SUT." * Added more clarification for the parameters and values defined in section "4.3.1. Client Configuration": This section specifies which parameters SHOULD be considered while configuring clients using test equipment. Also, this section specifies the RECOMMENDED values for certain parameters. The values are the defaults used in most of the client operating systems currently. * Rephrased section 5 " Testbed Consideration". Added recommended steps for reference test. * Explained the usage of the parameter "Initial throughput": "Initial throughput is not a KPI to report. This value is configured on the traffic generator and used to perform Step 1: "Test Initialization and Qualification" described under the Section 7.1.4." Brian --------- Brian Monkman Executive Director, NetSecOPEN Office: +1-717-610-0808 Fax: +1-717-506-0460 Mobile: +1-717-462-5422 [cid:image001.png@01D7F1A5.B7165170] https://www.netsecopen.org<https://urldefense.com/v3/__https:/www.netsecopen.org__;!!BhdT!wpaM8GOInxvNJdztL0uqXkYCL1UWmjmmAASp8hiMJEKN0JgjzEyGqz2m7207$>
- [bmwg] Ready for IETF LAST CALL: Version 12, draf… MORTON JR., AL