Re: [Gen-art] Gen-ART Last Call review of draft-ietf-l3sm-l3vpn-service-model-16
Qin Wu <bill.wu@huawei.com> Tue, 11 October 2016 00:41 UTC
Return-Path: <bill.wu@huawei.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3075C1297B5; Mon, 10 Oct 2016 17:41:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.217
X-Spam-Level:
X-Spam-Status: No, score=-7.217 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-2.996, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e6W7DdEvOeFS; Mon, 10 Oct 2016 17:41:34 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 35854124281; Mon, 10 Oct 2016 17:41:33 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml703-cah.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id CXT04419; Tue, 11 Oct 2016 00:41:30 +0000 (GMT)
Received: from NKGEML411-HUB.china.huawei.com (10.98.56.70) by lhreml703-cah.china.huawei.com (10.201.5.104) with Microsoft SMTP Server (TLS) id 14.3.235.1; Tue, 11 Oct 2016 01:41:28 +0100
Received: from NKGEML513-MBX.china.huawei.com ([169.254.1.199]) by nkgeml411-hub.china.huawei.com ([10.98.56.70]) with mapi id 14.03.0235.001; Tue, 11 Oct 2016 08:41:25 +0800
From: Qin Wu <bill.wu@huawei.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, "stephane.litkowski@orange.com" <stephane.litkowski@orange.com>, "draft-ietf-l3sm-l3vpn-service-model.all@ietf.org" <draft-ietf-l3sm-l3vpn-service-model.all@ietf.org>, General Area Review Team <gen-art@ietf.org>, "l3sm@ietf.org" <l3sm@ietf.org>
Thread-Topic: Gen-ART Last Call review of draft-ietf-l3sm-l3vpn-service-model-16
Thread-Index: AQHSHeqWhkYTMtMpRUqCAkZUBYP1FqCammUAgAC7moCAAMYDAIABEhqAgAOwsoCAAI0ZkIAAc+0AgACUM+A=
Date: Tue, 11 Oct 2016 00:41:24 +0000
Message-ID: <B8F9A780D330094D99AF023C5877DABA85408378@nkgeml513-mbx.china.huawei.com>
References: <434b44e6-7168-81ce-beed-cc435d56e516@gmail.com> <29695_1475743607_57F60F77_29695_1285_2_9E32478DFA9976438E7A22F69B08FF921BDB44F5@OPEXCLILMA4.corporate.adroot.infra.ftgroup> <370b441b-6584-e4e3-837d-7c61cccdb4a3@gmail.com> <11008_1475826418_57F752F2_11008_4_1_9E32478DFA9976438E7A22F69B08FF921BDBB5F3@OPEXCLILMA4.corporate.adroot.infra.ftgroup> <c0329b98-fc0a-3891-d56c-40816cde3539@gmail.com> <22947_1476088151_57FB5157_22947_1045_1_9E32478DFA9976438E7A22F69B08FF921DAEC9D2@OPEXCLILMA4.corporate.adroot.infra.ftgroup> <B8F9A780D330094D99AF023C5877DABA854056EE@nkgeml513-mbx.china.huawei.com> <bb9f4edf-a10e-100a-2758-832ea9460e43@gmail.com>
In-Reply-To: <bb9f4edf-a10e-100a-2758-832ea9460e43@gmail.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.136.78.112]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-Mirapoint-Virus-RAPID-Raw: score=unknown(0), refid=str=0001.0A0B0207.57FC353A.006F, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0, ip=169.254.1.199, so=2013-06-18 04:22:30, dmn=2013-03-21 17:37:32
X-Mirapoint-Loop-Id: bc1c0d164f6a4c64dd2ce73a32aa8cde
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/K9RVfpQCXgGjJTF9uRmzaEDtEDE>
Subject: Re: [Gen-art] Gen-ART Last Call review of draft-ietf-l3sm-l3vpn-service-model-16
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Oct 2016 00:41:36 -0000
Fair enough. I think the author has implemented this in v(-017). -Qin -----邮件原件----- 发件人: Brian E Carpenter [mailto:brian.e.carpenter@gmail.com] 发送时间: 2016年10月11日 7:49 收件人: Qin Wu; stephane.litkowski@orange.com; draft-ietf-l3sm-l3vpn-service-model.all@ietf.org; General Area Review Team; l3sm@ietf.org 主题: Re: Gen-ART Last Call review of draft-ietf-l3sm-l3vpn-service-model-16 That's certainly a valid option, but if you limit it to NAT44 I strongly suggest *calling* it NAT44, not plain NAT. Regards Brian Carpenter On 10/10/2016 21:55, Qin Wu wrote: > Not sure we should enumerate all the options in the base model, so your solution makes sense to me. > > -Qin > -----邮件原件----- > 发件人: stephane.litkowski@orange.com > [mailto:stephane.litkowski@orange.com] > 发送时间: 2016年10月10日 16:29 > 收件人: Brian E Carpenter; > draft-ietf-l3sm-l3vpn-service-model.all@ietf.org; General Area Review > Team; l3sm@ietf.org > 主题: RE: Gen-ART Last Call review of > draft-ietf-l3sm-l3vpn-service-model-16 > > For NAT, I would like to hear opinion for other people before doing the change. > And additional options can be added through augmentation. One solution is to limit to IPv4 case which is really usual today. > > > -----Original Message----- > From: Brian E Carpenter [mailto:brian.e.carpenter@gmail.com] > Sent: Saturday, October 08, 2016 02:08 > To: LITKOWSKI Stephane OBS/OINIS; > draft-ietf-l3sm-l3vpn-service-model.all@ietf.org; General Area Review > Team; l3sm@ietf.org > Subject: Re: Gen-ART Last Call review of > draft-ietf-l3sm-l3vpn-service-model-16 > > [N.B. I have added the l3sm list but I am not subscribed] > > On 07/10/2016 20:46, stephane.litkowski@orange.com wrote: > ... > >>>> 5.12.2.2. QoS profile > ... >> [SLI2] The current model supports classification based on generic DSCP values. Isn't it enough ? > > Yes, I missed that. I agree, that seems the right level for this model. However, this raises one detail. The model says: > > | | | | | +--rw match-flow > | | | | | +--rw dscp? uint8 > | | | | | +--rw tos? uint8 > > but tos was obsoleted when dscp was defined by RFC 2474. I don't think you should include tos. You don't mention ECN, which are the two bits from tos that are not included in dscp. Those bits are no good for flow matching because they are variable. If an operator tries to use the 8 TOS bits for flow matching but a user supports ECN, the matching will not work consistently. > > ... >>> Also, I don't understand how you can separate this issue from Section 5.13.2. Transport constraints, where you do discuss parameters relevant to diffserv. The whole point about diffserv-intercon is to quantify and standardise the constraints at interconnections. >>> [SLI] We discussed this point when we designed the model, and it was simpler to express the transport constraint at vpn level than trying to implement them per site. That's why it was decoupled. >> >> OK, but you still need a rich set of QoS parameters at that level, and shouldn't it be the same set? >> >> [SLI2] Some of them are equivalent for example low latency/jitter, some are different as for diversity. >> I understand your comment, but I think we need a larger discussion on this topic and this may imply a full remodeling of this part. Let me post a thread on L3SM list. > > OK. > > ... >>>> 5.2.2. Cloud access >>> ... >>>> If NAT is required to access to the cloud, the nat-enabled leaf MUST >>>> be set to true. >>> ... >>> Although NAT is mentioned, I saw no support for NPTv6 (RFC6296). I also saw no mention of private or shared address space (RFC1918, RFC4193 or RFC6598). >>> >>> [SLI] NAT is a generic term, it only mentions that address translation is needed but does not tell what technology will be used. Nothing prevents SP to implement NPTv6. >> >> No, but the IETF strongly recommends against NAT66, while having specs for NAT44, NAT64 and NPTv6. >> Hiding these distinctions under the buzzword "NAT" is misleading. >> >> [SLI2] That was done for simplification purpose, could you list the different options that you would like to see in this model ? To be honest, I'm not fully aware of all the necessary combinations, so help would be required. > > I think the three cases I mentioned are sufficient for a start, but > (getting back to Benoit's point) we could quickly get into > configuration detail. So we have > > NAT44 - which requires an outside ipv4-address. > > NAT64 (for an IPv6-only network requiring IPv4 access) - which requires an outside ipv4-address and an inside WKP (well-known ipv6-prefix). > (NAT64 implies DNS64, but I don't think that is needed in the model.) > > NPTv6 - which requires an outside ipv6-prefix. > > (There are also possible NAT444 and XLAT464 cases with added > complexity, but let's leave them for now.) > > So the three cases are different. I think you would need something > like > > | | +--rw nat44-enabled? boolean > | | +--rw customer-nat44-address? inet:ipv4-address > | | +--rw nat64-enabled? boolean > | | +--rw customer-nat64-address? inet:ipv4-address > | | +--rw customer-nat64-wkp? inet:ipv6-prefix > | | +--rw nptv6-enabled? boolean > | | +--rw customer-nptv6-prefix? inet:ipv6-prefix > > If you go that way it needs a quick check on the BEHAVE list, where NAT expertise exists. > > Regards > Brian > > ______________________________________________________________________ > ___________________________________________________ > > Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. > > This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. > If you have received this email in error, please notify the sender and delete this message and its attachments. > As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. > Thank you. >
- [Gen-art] Gen-ART Last Call review of draft-ietf-… Brian E Carpenter
- Re: [Gen-art] Gen-ART Last Call review of draft-i… stephane.litkowski
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Brian E Carpenter
- Re: [Gen-art] Gen-ART Last Call review of draft-i… stephane.litkowski
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Benoit Claise
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Brian E Carpenter
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Brian E Carpenter
- Re: [Gen-art] Gen-ART Last Call review of draft-i… stephane.litkowski
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Qin Wu
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Brian E Carpenter
- Re: [Gen-art] Gen-ART Last Call review of draft-i… Qin Wu