[forces] AD Review of draft-ietf-forces-ceha
"Adrian Farrel" <adrian@olddog.co.uk> Wed, 24 July 2013 08:49 UTC
Return-Path: <adrian@olddog.co.uk>
X-Original-To: forces@ietfa.amsl.com
Delivered-To: forces@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4712511E83DA for <forces@ietfa.amsl.com>; Wed, 24 Jul 2013 01:49:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.299
X-Spam-Level:
X-Spam-Status: No, score=-2.299 tagged_above=-999 required=5 tests=[AWL=-0.300, BAYES_00=-2.599, J_CHICKENPOX_44=0.6]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kJyPZkYTqWAe for <forces@ietfa.amsl.com>; Wed, 24 Jul 2013 01:48:58 -0700 (PDT)
Received: from asmtp5.iomartmail.com (asmtp5.iomartmail.com [62.128.201.176]) by ietfa.amsl.com (Postfix) with ESMTP id 4313311E83AE for <forces@ietf.org>; Wed, 24 Jul 2013 01:48:57 -0700 (PDT)
Received: from asmtp5.iomartmail.com (localhost.localdomain [127.0.0.1]) by asmtp5.iomartmail.com (8.13.8/8.13.8) with ESMTP id r6O8muiw015622; Wed, 24 Jul 2013 09:48:56 +0100
Received: from 950129200 (dsl-sp-81-140-15-32.in-addr.broadbandscope.com [81.140.15.32]) (authenticated bits=0) by asmtp5.iomartmail.com (8.13.8/8.13.8) with ESMTP id r6O8mtNs015594 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Wed, 24 Jul 2013 09:48:56 +0100
From: Adrian Farrel <adrian@olddog.co.uk>
To: draft-ietf-forces-ceha.all@tools.ietf.org
Date: Wed, 24 Jul 2013 09:48:54 +0100
Message-ID: <02b001ce884a$a1585040$e408f0c0$@olddog.co.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: Ac6ISp3ROD3H0VgGQwGFXHrzZAO3EA==
Content-Language: en-gb
Cc: forces@ietf.org
Subject: [forces] AD Review of draft-ietf-forces-ceha
X-BeenThere: forces@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: adrian@olddog.co.uk
List-Id: ForCES WG mailing list <forces.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/forces>, <mailto:forces-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/forces>
List-Post: <mailto:forces@ietf.org>
List-Help: <mailto:forces-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/forces>, <mailto:forces-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jul 2013 08:49:04 -0000
Hi, I have done my AD review of your document and see nothing major to hold it back, but there are a large number of nits and a few petty questions. We have a responsibility to send the I-D to IETF last call in the best possible shape so that it gets a good review. Therefore, I have put the I-D into "Revised I-D Needed" state and will issue IETF last call when I see a new revision. Thanks for the work, Adrian === Section 1 Need to fix the 2119 boilerplate to include a reference to [RFC2119] --- Section 1 OLD The following definitions are taken from [RFC3654]and [RFC3746]: NEW The following definitions are taken from [RFC3654] and [RFC3746]. They are repeated here for convenience, but the normative definitions are found in the referenced RFCs. END --- Section 1 o ForCES Protocol -- The protocol used at the Fp reference point in the ForCES Framework in [RFC3746]. You need to explain what "Fp" is. --- Section 1 o ForCES Protocol Layer (ForCES PL) -- A layer in the ForCES architecture that embodies the ForCES protocol and the state transfer mechanisms as defined in [RFC5810]. How can this definition come from 3654 or 3746 when it has a reference to 5810? --- Figure 1 Maybe more normal to use "CEn" rather than "CEN" --- Section 2 The master CE controls the FEs via the ForCES protocol operating in the Fp interface. s/in/on/ --- Section 3 To achieve CE High Availability (HA), FEs and CEs MUST inter-operate per [RFC5810] definition which is repeated for contextual reasons in Section 3.1. While you are repeating some of the material from 5810, you are also restating some of it in new words, and adding text. This gives a real problem with determining where the normative definition sits. We have to fix this! Can you determine which sections are informational for this document and which contain new text? Possibly the whole of Section 3 is just informational. If this is the case you can replace the text quoted above with the following: To achieve CE High Availability (HA), FEs and CEs MUST inter-operate per [RFC5810]. The normative description of cold standby for CE HA is provided in [RFC5810]. This section provides a more wordy description of the procedures and is purely informational. In the event of any discrepancies between this text and that in RFC 5810, the text in RFC 5810 takes precedence. --- Figure 2 Will it be obvious to the reader of this document what is meant by "Asso Estb,Caps exchg" --- Section 3.1.1 "CEID" is used without expansion. Although sometimes I find "CE ID" for example in 3.1.2. --- Section 3.1.1 has The FE connects to the CE specified on FEPO CEID component. If it fails to connect to the defined CE, it moves it to the bottom of table BackupCEs and sets its CEID component to be the first CE retrieved from table BackupCEs. This is not a problem, but is unusual. In many redundancy cases, the primary object remains the favorite even when it has failed so that when there is a restoration opportunity (such as a failure of the new primary) it will resume its position as primary. The question here is perhaps whether there is any distinction between CEs except their role as primary or backup. --- Figure 3 has "CEFTI" without explanation. --- Section 3.1.1 has If the FE's FEPO CE Failover Policy is configured to mode 1, it indicates that the FE will run in HA restart recovery. In such a case, the FE transitions to the Not Associated state and the CEFTI timer [RFC5810] is started. The FE MAY continue to forward packets during this state. This use of "MAY" implies to me that it is at least as common that the FE does not forward packets in this state. Is that the intention? --- Section 3.1.1 "HB" is used without expansion. --- Section 4.2 "CEHB" and "FEHB" are used without expansion --- Need to fix the line-length problems in Figure 4 --- Figure 5 implies that the association with the primary CE is the first association formed. Is this a requirement? --- Section 5 needs to give clear and unambiguous instructions to the IANA. It seems that the text in Section 5 is currently a placeholder for the correct text. The shepherd write-up notes the need for this section to be reviewed by "ForCES IANA experts". If these people are not to be found in the ForCES working group, then they exist nowhere. So the WG needs to look at this section and work out what it should really say. --- Section 6 is too sparse. The Security Section in RFC 5810 is sound, so that is not the issue. However, in considering HA you are considering a more complex scenario where each CE must have its communications secured with the FE, and each CE must be authenticated to the FE. That needs discussion. Additionally, can the system be disrupted by simulating CE failure or by disrupting CE-FE communications? --- Section 7.2 I think 5812 is used in a normative way.
- [forces] AD Review of draft-ietf-forces-ceha Adrian Farrel
- Re: [forces] AD Review of draft-ietf-forces-ceha Jamal Hadi Salim
- Re: [forces] AD Review of draft-ietf-forces-ceha Adrian Farrel
- Re: [forces] AD Review of draft-ietf-forces-ceha Jamal Hadi Salim
- Re: [forces] AD Review of draft-ietf-forces-ceha Haleplidis Evangelos
- Re: [forces] AD Review of draft-ietf-forces-ceha Adrian Farrel
- Re: [forces] AD Review of draft-ietf-forces-ceha Jamal Hadi Salim
- Re: [forces] AD Review of draft-ietf-forces-ceha Adrian Farrel