comments and questions on the draft-fang-l3vpn-end-system-requirements-01.txt
Lucy yong <lucy.yong@huawei.com> Fri, 16 November 2012 00:23 UTC
Return-Path: <lucy.yong@huawei.com>
X-Original-To: l3vpn@ietfa.amsl.com
Delivered-To: l3vpn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B680E21E8040 for <l3vpn@ietfa.amsl.com>; Thu, 15 Nov 2012 16:23:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.369
X-Spam-Level:
X-Spam-Status: No, score=-6.369 tagged_above=-999 required=5 tests=[AWL=0.229, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KT+TIihp7c3C for <l3vpn@ietfa.amsl.com>; Thu, 15 Nov 2012 16:23:12 -0800 (PST)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) by ietfa.amsl.com (Postfix) with ESMTP id 3E3491F041A for <l3vpn@ietf.org>; Thu, 15 Nov 2012 16:23:11 -0800 (PST)
Received: from 172.18.7.190 (EHLO lhreml203-edg.china.huawei.com) ([172.18.7.190]) by lhrrg02-dlp.huawei.com (MOS 4.3.5-GA FastPath queued) with ESMTP id ALP56998; Fri, 16 Nov 2012 00:23:09 +0000 (GMT)
Received: from LHREML403-HUB.china.huawei.com (10.201.5.217) by lhreml203-edg.huawei.com (172.18.7.221) with Microsoft SMTP Server (TLS) id 14.1.323.3; Fri, 16 Nov 2012 00:22:50 +0000
Received: from DFWEML403-HUB.china.huawei.com (10.193.5.151) by lhreml403-hub.china.huawei.com (10.201.5.217) with Microsoft SMTP Server (TLS) id 14.1.323.3; Fri, 16 Nov 2012 00:23:06 +0000
Received: from DFWEML505-MBX.china.huawei.com ([10.124.31.100]) by dfweml403-hub.china.huawei.com ([10.193.5.151]) with mapi id 14.01.0323.003; Thu, 15 Nov 2012 16:23:03 -0800
From: Lucy yong <lucy.yong@huawei.com>
To: "mnapierala@att.com" <mnapierala@att.com>, "lufang@cisco.com" <lufang@cisco.com>
Subject: comments and questions on the draft-fang-l3vpn-end-system-requirements-01.txt
Thread-Topic: comments and questions on the draft-fang-l3vpn-end-system-requirements-01.txt
Thread-Index: Ac3DkIi/ZZU/UsO+R0ayKh/Oes7ApA==
Date: Fri, 16 Nov 2012 00:23:02 +0000
Message-ID: <2691CE0099834E4A9C5044EEC662BB9D44830EB3@dfweml505-mbx>
Accept-Language: en-US, zh-CN
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.47.89.223]
Content-Type: multipart/alternative; boundary="_000_2691CE0099834E4A9C5044EEC662BB9D44830EB3dfweml505mbx_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Cc: "l3vpn@ietf.org" <l3vpn@ietf.org>
X-BeenThere: l3vpn@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <l3vpn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/l3vpn>, <mailto:l3vpn-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/l3vpn>
List-Post: <mailto:l3vpn@ietf.org>
List-Help: <mailto:l3vpn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/l3vpn>, <mailto:l3vpn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Nov 2012 00:23:14 -0000
Hi Maria and Luyuan,
I read through this document. It is well written document. I have some comments and questions as follow.
* In section 2.2., it requires that in end-system environment, the PE forwarding function should decouple from PE control function (physically) but does not make any requirement on the interworking between two functions. Do you expect the proprietary implementation in this interworking is acceptable or have to be a standardized interworking solution? I suggest mentioning this decoupling also enables some "centralized/distributed" combined control plane solution, which may fit the DC environment better.
* Section 3.3 IP subnet support. Could you elaborate how you want to group virtual resources into IP subnets? Do you mean Sp may want the resources that run VoIP on one IP subnet and the resources that run video on another IP subnets regardless where the resources locate? What does "user defined IP subnet" mean? Please give an example.
* Text:
A collection of virtual resources might provide external or
internal services. Such collection may serve an external "customer"
or internal "tenant" to whom a Service Provider provides
service(s). In MPLS/BGP VPN terminology a collection of virtual
resources dedicated to a process or application corresponds to a
VPN.
-end. The first sentence means cloud service. The resources include compute, storage, network appliance, and networking. It is not clear to me what the second sentence mean?
* Text: -VM or application end-point should be able to directly access
multiple VPNs without a need to traverse a gateway. -end.
In this case, does it use the same IP address or different IP address when accessing different VPNs? Please clarify.
* In section 5, suggest to add one advantage, it makes IP mobility easier because the decoupling eliminates the physical network limitation in supporting the mobility
* Text: the virtual service itself must be delivered to an
end-system such that switching elements connecting the end-system
to the encap/decap device are not aware of the virtual topology.
-end. This is about local access between CE and PE, right? This is always the case. Do you expect the payload to be encapsulated in local access too? Why state it in this section?
* Regarding to section 7.1, Do you require that the end system to support LDP and RSVP-TE in order to support the end-system VPN?
* In Section 8, what is the midpoint router? The first hop router, or gateway router, or any LSR? Describe from one end-system to another end system do not make this clear because PE may be on the end-system or may not.
* In section 9, what does "abstracting the externally visible network address from ..." mean?
* In section 10, text:
The inter-connection of end-system VPNs with traditional VPNs
requires an integrated control plane and unified orchestration of
network and end-system resources. -end.
What does that mean? Do you want to say interworking between traditional control plane in WAN and orchestration system in DC?
* There is no any requirement on a gateway usage. Do you expect no gateway at all in end system VPN? Do we need NAT, firewall in end system VPN?
* The document does not use the requirement language to describe the requirement. "MUST", "SHOULD", etc.
Look forward to hearing from you on these.
Cheers,
Lucy