Re: [Idr] AD Review of draft-ietf-idr-bgp-flowspec-oid-12

"Juan Alcaide (jalcaide)" <jalcaide@cisco.com> Wed, 10 March 2021 17:04 UTC

Return-Path: <jalcaide@cisco.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 050643A13B2; Wed, 10 Mar 2021 09:04:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.601
X-Spam-Level:
X-Spam-Status: No, score=-9.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=OY3jAryB; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=dp60YKMY
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E1nQYhcb1lOg; Wed, 10 Mar 2021 09:04:07 -0800 (PST)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 682273A13B1; Wed, 10 Mar 2021 09:04:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8236; q=dns/txt; s=iport; t=1615395846; x=1616605446; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=ezNTj5w5vzDtOXLGwcZ2oF1LXHslmtfnKXDibAc8r0s=; b=OY3jAryBslwG01DNtYN5KdnJ5twYJeHkb72oQCaGhNCWUULKvPoVKmJ8 ybb4g74WoxisPBqvnMJnI6WDz4p8ilazePw89z1B8yaca43E1qdQq590l Swf8vSgdS3v5S/Js7dnnfYKK7vo6x6L12S8/HnfRuAU3dFKUMe2I5/zbI 8=;
X-IPAS-Result: =?us-ascii?q?A0DYAgBS+0hgkIsNJK1aHAEBAQEBAQcBARIBAQQEAQFAg?= =?us-ascii?q?U+BU1GBVzYxCoQ3g0gDhTmIWgOBBokXjn6BQoERA1QLAQEBDQEBMgIEAQGET?= =?us-ascii?q?QIXgVsCJTgTAgMBAQEDAgMBAQEBBQEBAQIBBgQUAQEBAQEBhjgNhkQBAQEEI?= =?us-ascii?q?xEMAQE3AQsEAgEGAg4DBAEBAwImAgICHxEVCAgCBAENBQiCaIJWAy8BA5Fgk?= =?us-ascii?q?GoCih52gTKDBAEBBoUYDQuCEwmBDyqCdoQJhkQmHIFJQoERQ4IjNT6CGoFpI?= =?us-ascii?q?QEaFYJ/NIIrgksWTQRLgQ0TLAYeAhkBDh8LOJARE4NBlC+QdFsKgwCXAIVPg?= =?us-ascii?q?zyKWJVslGuCDYxJk24CBAIEBQIOAQEGgWshgVlwFTuCaVAXAg2OHwwNCYNNi?= =?us-ascii?q?llzOAIGAQkBAQMJfIlBLYEGAYEOAQE?=
IronPort-PHdr: A9a23:8gWQmxDQzzTXYhOJ9p9gUyQVnBdPi93PFgcI9poqja5Pea2//pPke VbS/uhpkEShdYre4vNAzeHRtvOoVW8B5MOHt3YPONxJWgQegMob1wonHIaeCEL9IfKrCk5yH MlLWFJ/uX3uN09TFZXxYlTTpju56jtBUhn6PBB+c+LyHIOahs+r1ue0rpvUZQgAhDe0bb5oa husqgCEvcgNiowkIaE0mXP0
IronPort-HdrOrdr: A9a23:H+WsfqFbHqfc46erpLqFmZXXdLJzesId70hD6mlYcjYQWtCEls yogfQQ3QL1jjFUY307hdWcIsC7IE/03aVepa0cJ62rUgWjgmunK4l+8ZDvqgePJwTXzcQY76 tpdsFFZ+HYJVJxgd/mpCyxFNg9yNeKmZrY+tv25V0Fd3AMV4hL6QBlBgGHVmh/QwdbDZQ0fa DsmPZvjTymZHgRc4CHHXEDRefOvJnmk5jhbB4ACXccmUizpBmv76P3FAXd4wcGX1p0sPkf2E Xmsyi83KWstPmn1gTRvlWy0716kMbso+Ezf/CkpdMSLlzX+2OVTaRnH4aPpTUk5NyogWxa7O XkhzcFE4BN52jKfmezyCGdmzXI9Do18XftxRu5rBLY0LbEbQk3AcZAmo5VGyGxgyFL0b0Ms9 Mo40uju5VaFh/GlijmjuK4Ki1CrFa+onYpjIco/hpieLYec7NYoMg++05YAf47bVrHwb0nC+ VnAYXg4u9XezqhHgnkl1RoqebcOkgbL1OjeAwvq8aV2z9ZkDRS1E0D3vESmX8G6dYUV4REz/ 6sCNUqqJh+CustKY5tDuYIRsW6TkbXRwjXDW6UKVP7UIkaJnP2rYLt6rld3pDpRLU4iL8J3L jRWlJRsmA/P2j0D9eV4ZFN+hfRBEKwQCrq0cMbw5RioLXzSP7KPES4ORUTuvrlh89aLtzQWv 61Np4TKeTkN3HSFYFA2BC7VIJVLXUYTc0Jqtc2U1+DuavwW8rXn92eVMyWCKvmED4iVG+6KG AERiLPKMJJ6V3uWnKQummWZ1rdPmjEub5gGqnT+OYejKIXMJdXjwQTgVOlosWCKThItL0qbF JzSYmXy5+TlC2TxyLl/m9pMh1SAgJ++7P7SU5HogcMLgfzarYMu9KWfGhIx3uZLhpjT8fbeT Qv42hfyOaSFdi91CoiA9WoPiaxlH0Ivk+HSJ8ah+me/8v/Y4g5CZwnQaR1Eg3OG3VO6F5XgV YGTDVBal7UFzvoh6ngsYcdA/vHccJgxC2xJ9RPlH7ZvUKAhM0mS3cBRQSyWcqPjQtGfUsOun RBt4skxJuJg3KGNHY2iuVQCiw8VE2nRJZ9SDmjSKoRsLbxYw10RXqNnlWh+mEOU1uv0V4TiG znJTCTYtfRDDNmyypl+5ev1k9ofWOAeE81TXZ2veRGZDj7k0c29/OXbayu1GbUUH8++6U2NT HIZiZ6GHIy+/m+yAOVlDGeFX8v25UpOajHAK4+dqzIs0ndW7GghOUIGeRZ841iM82ruugXUf iHcwvQNz/gDfg1sjbl60oNKW1xqHM+l+nv1wCg5G+k3GQnCf66GiUse5gLZ9Wd5XPjXfCGzd Fwis80p/K5NiH0ZsSdwa/aKz5FJRW7mx/9c8g47ZRVt7k1rr19At3SVibJzmhO2FEmN9jv/X luNphT8fTEIMtibsYScyVW8h4gk8mONlIitkjzDvUldV8ggnfHN7qykvb1gKtqBlfEqBr7OF GZ/SEY5fvDUieZ3bMRCq47Iw1tGQABwWUn+PnHe5zbCQ2see0G4UGzNWWldqRBDKeCArcdo3 9Bkp61tv7SczC93g/evTF2eP0Tt2mmRN6/GwKKF6pD9cegNVGFn6ut54qygV7MOE+GQlVdgZ cAc0oaKtlHgH0lioY81yCpUKz5ok4/iTJlkHhav0+o3pLj+XvRGEFNLBbQjZpXVyRCK3Tgt7 WxzcGIkHDmpCVf0ZbNFE1MbshDFtgZQI/wNTpvI6ErzcmV1rtqhD9CbhcoB3M9jz643/oO58 bK5Mnv
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.81,237,1610409600"; d="scan'208";a="658927570"
Received: from alln-core-6.cisco.com ([173.36.13.139]) by alln-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 10 Mar 2021 17:03:58 +0000
Received: from mail.cisco.com (xbe-rcd-005.cisco.com [173.37.102.20]) by alln-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id 12AH3wUN003405 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Wed, 10 Mar 2021 17:03:58 GMT
Received: from xfe-rcd-003.cisco.com (173.37.227.251) by xbe-rcd-005.cisco.com (173.37.102.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3; Wed, 10 Mar 2021 11:03:58 -0600
Received: from xfe-aln-005.cisco.com (173.37.135.125) by xfe-rcd-003.cisco.com (173.37.227.251) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3; Wed, 10 Mar 2021 11:03:52 -0600
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-005.cisco.com (173.37.135.125) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.3 via Frontend Transport; Wed, 10 Mar 2021 11:03:52 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hNcdJ5Em3E0CmtIiszMnfjpK/NrcKomJZRdAMB2UsYDbl7RXsfmVNeDu8Hnb0wfKX5xi3rnxx86jjDI6MDdzha6yl5YBKS5TvATbQyn9EzPNfNsbdxNUjUvXTz47QI6FJpkLeUjrCxax095mwOvXrWj8QD6d5bPbnAfmBgy4NV42UOAryc6gysWJrb5MARAO89HjRJ5Y1eXwX2nr8k0Khkcz6A8UjLFF30NY1LUmrk6A43pblpIV9GZ6lZNysmII41IDibkPBpidVVLCz/J/LLN0uJy0NKXDKOIzn5ZHB2Re1shI1xb7pS1E3/xcVOjFB2uPp6E6AsSQCXyEZEau2Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ezNTj5w5vzDtOXLGwcZ2oF1LXHslmtfnKXDibAc8r0s=; b=OygAXaw+RToFj5g4dg/Xdlx+h44qBz5j/oFwKhWwWbkQMdLespirrcILgUlcIhg2RyRRpYr56xFwyj+1v8tdUjo5u6c5AFmJsRYJa0Kc9tK3wumhc9Q79VaQgin428KgURv2kt5ayzRuubY5XBIWG4DZPXH2yleJDiA+FE2/25emK9DN9r6StZkclGFfba8JXuPdc5dag8sxfqLSXAP1x5fKl7MPnTe4r89e3cOP2YnxZ9xq80IPkOoJyrP6Bfzc+WbhQoAvd+C2F4CxbvKBXGCqQ2sxBj6NShgdgwna5ArrLecLTHHBNoUqk+D8nOuHHkN9p5L4D74rU5my6coyxQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ezNTj5w5vzDtOXLGwcZ2oF1LXHslmtfnKXDibAc8r0s=; b=dp60YKMYUgXvdqpJp77blv8m+JLvM2aJ60HQy8L7p5Am+V+X0sE6vqwNAi8i303/Fr24BGgDsAQLv647lqlQTmcRemyFhGFh3dOvbCe4/DkzgS6MsOxMk7tR3Wa6QNLZOUtmA2COvYYfNUbtkZW3yEVQnbMYEPzvhQQLePmZNqA=
Received: from DM6PR11MB3194.namprd11.prod.outlook.com (2603:10b6:5:5c::25) by DM6PR11MB3580.namprd11.prod.outlook.com (2603:10b6:5:138::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3912.19; Wed, 10 Mar 2021 17:03:49 +0000
Received: from DM6PR11MB3194.namprd11.prod.outlook.com ([fe80::749f:f98b:7d54:c223]) by DM6PR11MB3194.namprd11.prod.outlook.com ([fe80::749f:f98b:7d54:c223%3]) with mapi id 15.20.3912.030; Wed, 10 Mar 2021 17:03:49 +0000
From: "Juan Alcaide (jalcaide)" <jalcaide@cisco.com>
To: Alvaro Retana <aretana.ietf@gmail.com>, "draft-ietf-idr-bgp-flowspec-oid@ietf.org" <draft-ietf-idr-bgp-flowspec-oid@ietf.org>
CC: Susan Hares <shares@ndzh.com>, "idr-chairs@ietf.org" <idr-chairs@ietf.org>, IDR List <idr@ietf.org>
Thread-Topic: AD Review of draft-ietf-idr-bgp-flowspec-oid-12
Thread-Index: AQHW9QDI2xQHpdk2Z0uhqDf2mVgKOap9sTZA
Date: Wed, 10 Mar 2021 17:03:49 +0000
Message-ID: <DM6PR11MB3194B28B0BD8A3AF913ECB0ECD919@DM6PR11MB3194.namprd11.prod.outlook.com>
References: <CAMMESsxqRWK2vDPyj-0_ruYoW7pkautFc09MoFBUTKxG23=tyA@mail.gmail.com>
In-Reply-To: <CAMMESsxqRWK2vDPyj-0_ruYoW7pkautFc09MoFBUTKxG23=tyA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [83.58.38.13]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 9372f234-bb1c-408e-7242-08d8e3e679c2
x-ms-traffictypediagnostic: DM6PR11MB3580:
x-microsoft-antispam-prvs: <DM6PR11MB35805FCB9407CB3AB5121F3BCD919@DM6PR11MB3580.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR11MB3194.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(39860400002)(346002)(376002)(366004)(396003)(136003)(316002)(33656002)(86362001)(478600001)(52536014)(186003)(5660300002)(26005)(110136005)(66946007)(2906002)(54906003)(76116006)(8936002)(9686003)(64756008)(7696005)(66446008)(66556008)(6506007)(83380400001)(55016002)(53546011)(71200400001)(4326008)(8676002)(66476007); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?S3F6cHVIQ1ZySVAwSkZ6N2ZlcVNYOWpNK2xZWVI5YmhDNlRXeTlxU2x2U1VY?= =?utf-8?B?ZktKN3lRZlQyYmpNNlhuRmNNWDh4WmZnQlgvSVpvYkxjLy8rU0h3R25YdVJm?= =?utf-8?B?TDVzRlA1VWVETDFVbXk2N1pUN2NUS0QweExYU3BlNUxleGpxc1dLa2RWZFBE?= =?utf-8?B?QURlWDhxYTd0QmlKK3lnMkJaVDg3bEJQVUpkbHFKajFQb1R4QWYvNGdHeHIz?= =?utf-8?B?TjNqZmRVZ2ZTYVU2TVZZSDRaanB5Z0hKMzZJakIxUjZkcXJub1NtZFRNSCs4?= =?utf-8?B?VmNqN0wzVDVrdFFIZS82c0lkand0Z25XelFXQUJEYWY3eFl1KzJMK3ZjSFNP?= =?utf-8?B?bG02eFhkWmZRMHViQ3QwQXZLbkZDVEJTVTlXcktuYlhPZW13WlB5ZDRsZm93?= =?utf-8?B?MnNNckxhSVBoOTloU3M2ZEU0RGxRbEo5ZnhPQk5UY2JHSGhHUnB1M0RPQk1G?= =?utf-8?B?V1E0SDhvRHNkUkF4cFF3dEdqZi9BVFF3WUcwMkkwOEt1MVF0N21kTUMwVVcz?= =?utf-8?B?MUNLRVMycHFqTHk1Y2UyQk1ydXgrN0p3YWtvWm1DdGt0N2FCS292bXpOYlpJ?= =?utf-8?B?MVNhTGdvb0xOU2JCRDdxQ0pMYU5nRXFxcy91c3IwRUt3SWh1TGVDUWxxbURi?= =?utf-8?B?dFNCelgrdkZBSVRER0ZyaS9tYmFIb1IrYWg5ZGtDZHZUcS9hMFVISm1Fcm1E?= =?utf-8?B?NUV0WXpSWlV1Q1VQSlZqc3k4UVhFa0lBYXhVdjdRMUtLRUZRNVljc0FIVFZD?= =?utf-8?B?MVdrakc2cTM5Y2ZNTWRGdEFnQ1dHdkdtb1BEK0w5bnZLRk9ZWmZlSkRvWHVY?= =?utf-8?B?OVlqZ3RUQTFEbUZYeURGTjFWUjJWYkxlNEd3YWovWFR1UmZSUlV5K2FveFBF?= =?utf-8?B?NXFBbG5oTTlkWkNseW9CWGFPMy9lRm5VU1BTWGgvRmIyOEFuVG1PWFdDQjNq?= =?utf-8?B?MzQ4a0pyMER3Q0VaQ1ltZTZXWHpadXNPRStXRjJxZE1XWHVxTWtVU2VuenNE?= =?utf-8?B?bmx0eGZuOE42K1R2VEZKOUpGNjdlZEYvMFovc2dEWS8rNDZXUHhZMXlYR0FF?= =?utf-8?B?eTNocE5vams4UG0zNFdJVlN5WTJ3MnJFdnZ0RXBpUC9rWXZabnR4N0JYZHRt?= =?utf-8?B?UTlrSGpoNThDZ2FteW9vd3pwajBzOVhDRzR4V3Q4SFZyMDZqdVNKSDZpWDZh?= =?utf-8?B?S2pxMWlabStydXMyamlZV2pwKy9WV3l1eldsQ0dpSWVZakw4SGwrZ2dJQkZn?= =?utf-8?B?TERNUzVHU3JNYnUwUEJKUmhDY2J5MGJVbWpqc3gzd1F1TFkzN3NjanVHckhK?= =?utf-8?B?czdnd2RzNm5YZHpqSW9KRHBDc0RjcEsrQUNLaExHTEtTWVZndFoxdkdDTXlL?= =?utf-8?B?dWZBVG5pcWxYazc3Z1ZiTHBKRkppQXhKTnpsQzVLb3V3bTdhRjhva1FLMkZm?= =?utf-8?B?aXVNMXFLY0xFZEpjc3VHZTM4R2g5d0FWa0JXVVRZTkFUckhYMGt2eGd6Tllv?= =?utf-8?B?dURwQVhIWld1N1JnZzZEc3RNMHBJUkxSejVUb3BrYThsQVpiczA3eWhST1Q2?= =?utf-8?B?TTdZN0dMaUkzLzh6dWgwR2lLWGJHWldCMWpIMmI2QjJ3dmd3dWl1SnNMT2Rh?= =?utf-8?B?RzBDcG9xUDB5TURieVFmcCszNDlQbnp2Ry9GVTBDcGUvekJQb25FalEzMTBr?= =?utf-8?B?bjNwSFh4bkJJSWxvRk83c25udVprVGxRMXpTTHpiekVmWnNlS1owRmpmWUV3?= =?utf-8?Q?SWQjlK11KGoQ3yHKuE=3D?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR11MB3194.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9372f234-bb1c-408e-7242-08d8e3e679c2
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Mar 2021 17:03:49.6966 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lcTrPEixWkUTAYJG4JrkCPWdX+V/V0eZh4xHP+NEoP6bE7en/NAQvVrXTND26dG6T3XwZ8W8o8rTeSaty6jp3w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB3580
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.20, xbe-rcd-005.cisco.com
X-Outbound-Node: alln-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/MJoGrP8ZryV_BuS7El9fYOG9-bQ>
Subject: Re: [Idr] AD Review of draft-ietf-idr-bgp-flowspec-oid-12
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Mar 2021 17:04:09 -0000

Alvaro,

Apologies. I sent out doc with changes but I forgot a few ones. I commented in the original review you sent (look at [JUAN] after your comment).
Let me know if it's clear and enough.

I can send you proposed complete document with extra changes if it helps.

-J

-----Original Message-----
From: Alvaro Retana <aretana.ietf@gmail.com> 
Sent: Thursday, January 28, 2021 12:04 AM
To: draft-ietf-idr-bgp-flowspec-oid@ietf.org
Cc: Susan Hares <shares@ndzh.com>om>; idr-chairs@ietf.org; IDR List <idr@ietf.org>
Subject: AD Review of draft-ietf-idr-bgp-flowspec-oid-12

Dear authors:

Thank you for your work on this document.

In general, I think that this document is simple and straight forward.
However, I have some major concerns (see details inline) that should be cleared up before proceeding.

Thanks!

Alvaro.



[Lines from idnits.]

...
4	Updates: 5575bis (if approved)                                J. Alcaide

[major] s/5575bis/rfc8955/g


...
15     Abstract

17	   This document describes a modification to the validation procedure
18	   defined for the dissemination of BGP Flow Specifications.  The
19	   dissemination of BGP Flow Specifications requires that the originator
20	   of the Flow Specification matches the originator of the best-match
21	   unicast route for the destination prefix embedded in the Flow
22	   Specification.  This allows only BGP speakers within the data
23	   forwarding path (such as autonomous system border routers) to
24	   originate BGP Flow Specifications.  Though it is possible to
25	   disseminate such Flow Specifications directly from border routers, it
26	   may be operationally cumbersome in an autonomous system with a large
27	   number of border routers having complex BGP policies.  The
28	   modification proposed herein enables Flow Specifications to be
29	   originated from a centralized BGP route controller.

[] rfc8955 and origination from ASBRs

Specifically on that point, the "originator" as defined in rfc8955 is "reset" at the AS boundary.  Regardless of whether the Flow Specification was originally generated at the ASBR or a centralized route controller, the receiving eBGP speaker will consider its eBGP peer to be the originator.

You would see the problem internal to the originating AS, unless the controller also originates the routes internally.

The motivation as laid out in the Abstract is making assumptiona that are not explained, resulting in lack of accuracy.  Please reword.
Note that many times "less is more" -- perhaps focus the Abstract on what the draft is proposing: updating the validation rules for iBGP and route server scenarios.

[JUAN]: Already shown in doc changes. New abstract + added introduction section

31	   This document updates RFC5575bis.

[major] s/This document updates RFC5575bis./This document updates the validation procedure in rfc8955.

[JUAN]: Will update


...
81	1.  Requirements Language

83	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
84	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
85	   document are to be interpreted as described in RFC 2119 [RFC2119].

[major] Use the rfc8174 template!


[JUAN]: Already shown in doc changes

87	2.  Introduction

89	   [I-D.ietf-idr-rfc5575bis] defined a new BGP [RFC4271] capability that
90	   can be used to distribute traffic Flow Specifications amongst BGP
91	   speakers in support of traffic filtering.  The primary intention of
92	   [I-D.ietf-idr-rfc5575bis] is to enable downstream autonomous systems
93	   to signal traffic filtering policies to upstream autonomous systems.
94	   In this way, traffic is filtered closer to the source and the
95	   upstream autonomous system(s) avoid carrying the traffic to the
96	   downstream autonomous system only to be discarded.  [I-D.ietf-idr-
97	   rfc5575bis] also enables more granular traffic filtering based upon
98	   upper layer protocol information (e.g., protocol port numbers) as
99	   opposed to coarse IP destination prefix-based filtering.  Flow
100	   specification NLRIs received from a BGP peer are subject to validity
101	   checks before being considered feasible and subsequently installed
102	   within the respective Adj-RIB-In.

[]
OLD>
   [I-D.ietf-idr-rfc5575bis] defined a new BGP [RFC4271] capability that
   can be used to distribute traffic Flow Specifications amongst BGP
   speakers in support of traffic filtering.

NEW>
   [RFC8955] defines a BGP NLRI [RFC4271] that can be used to distribute
   traffic Flow Specifications amongst BGP speakers in support of traffic
   filtering.

[JUAN]: Will update

104	   The validation procedure defined within [I-D.ietf-idr-rfc5575bis]
105	   requires that the originator of the Flow Specification NLRI matches
106	   the originator of the best-match unicast route for the destination
107	   prefix embedded in the Flow Specification.  This allows only BGP
108	   speakers within the data forwarding path (such as autonomous system
109	   border routers) to originate BGP Flow Specification NLRIs.  Though it
110	   is possible to disseminate such Flow Specification NLRIs directly
111	   from border routers, it may be operationally cumbersome in an
112	   autonomous system with a large number of border routers having
113	   complex BGP policies.

[] See the related comment in the Abstract.

[JUAN]: I added an extra section in the introduction at this point. Is that enough, or is there something in the paragraph above that you would like to see changed?

115	   This document describes a modification to the [I-D.ietf-idr-
116	   rfc5575bis] validation procedure allowing Flow Specification NLRIs to
117	   be originated from a centralized BGP route controller within the
118	   local autonomous system that is not in the data forwarding path