[mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

James Guichard <james.n.guichard@futurewei.com> Thu, 12 September 2024 12:01 UTC

Return-Path: <james.n.guichard@futurewei.com>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5D5CC14F680; Thu, 12 Sep 2024 05:01:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.108
X-Spam-Level:
X-Spam-Status: No, score=-7.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PnSyW3slcbUu; Thu, 12 Sep 2024 05:01:20 -0700 (PDT)
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (mail-mw2nam12on2109.outbound.protection.outlook.com [40.107.244.109]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 62951C18DBBA; Thu, 12 Sep 2024 05:01:17 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=i9qfVz8QyjJShYKyRXYh+a7uWxJAlrR1yWOINA1EymUSkWbzbt+dSp7AAqDf+LOiZAqseEciYGPwSOlEZk2HXicOQxakmVHHz0dFAqa4vhrDCdpsE+D4NpT/341gCnqctrvMbnROVYyB2ZbTYzgXbjhsOXct7mkdtDupZxZPbeIKf9tyVIkCIPtc/5+PG01ZhhxXRzHwGkEiRfNASaAUAaClLJwZx2fVpWTBQ9JCHkEME+u4ZZqpxHmmZRVsMsLwG6hlJ4twGmO36CJ4moBdW6bX0kpXlWWYLZ981I5jOo+XH1/iG9IMR1dQ8d0zhZh1uWyAGtZahyxynkytIt8X8Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ePxDcHLk8w8CVAV6z8btDQS1gONBGnoJ1m67/bF6+Wg=; b=dW9qIe8N+D1XU0t57dNQgxryMB9tQd8U7v6CzX2ybI/lvEA5mz9Bbl9RsVMCml7p/WNl/97GG85lV4NSpZshnbgdw/sSOsBmzkW56GmTm1s615RYSNb4U6oVJaMupMOAEbylkqA+l+TP/BVmEGAcoR8rmghshheD932cdOXRk5xX40m7DJTUj13jJP4JNu/P8zrqLgObM7OxXPyS7isUzNmR3fQxi1hfslV4smnNrvlgWnt9Y8MkRYj5QH8wKXLqv6reieSl9bRDszy1UAeQuowHv5Koqs6NiaHla+TV6kCEKjDoc95T8m66IAfgH3gb4m+yucS1Q0ppL6az4tWtcw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ePxDcHLk8w8CVAV6z8btDQS1gONBGnoJ1m67/bF6+Wg=; b=Z7WlQNT3PnDS1ZedARh5n7u2+Fs8E2UuJGUOQ0TCEeg0pLx/QDQ9SutsrEF7WjdCCvYQApLMjMjWbG3FZRPplSYKcKK8zpilMONVSbRswycQx2jqcXw9cko/dc3b73ukj+8SdMXDRLTu0b3JerqmUK2J4PAFw0dxJBCzze6IMpw=
Received: from MW5PR13MB5485.namprd13.prod.outlook.com (2603:10b6:303:190::9) by SJ0PR13MB5966.namprd13.prod.outlook.com (2603:10b6:a03:43e::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7962.17; Thu, 12 Sep 2024 12:01:13 +0000
Received: from MW5PR13MB5485.namprd13.prod.outlook.com ([fe80::6f7a:21e9:60ce:8bb]) by MW5PR13MB5485.namprd13.prod.outlook.com ([fe80::6f7a:21e9:60ce:8bb%3]) with mapi id 15.20.7939.022; Thu, 12 Sep 2024 12:01:12 +0000
From: James Guichard <james.n.guichard@futurewei.com>
To: "xiao.min2@zte.com.cn" <xiao.min2@zte.com.cn>, "zahed.sarker.ietf@gmail.com" <zahed.sarker.ietf@gmail.com>
Thread-Topic: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
Thread-Index: AQHa/4ZLquQErlG9j0206TQIjg+orrJTaVUAgACmvpE=
Date: Thu, 12 Sep 2024 12:01:12 +0000
Message-ID: <SJ0PR13MB5474B8A3B2FB0304F6042EF2D2642@SJ0PR13MB5474.namprd13.prod.outlook.com>
References: 172543283680.1580666.3170986618289853050@dt-datatracker-68b7b78cf9-q8rsp,20240905153528384nAO1OTdDbV9fGLJkTIqkD@zte.com.cn,CAEh=tcc1yrBYVkM1oc3ws3y7O7_W4NEZ2-v+kbvLASOREDNsqQ@mail.gmail.com <20240912093630736metneDzsvPE22OSPn2orh@zte.com.cn>
In-Reply-To: <20240912093630736metneDzsvPE22OSPn2orh@zte.com.cn>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=futurewei.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MW5PR13MB5485:EE_|SJ0PR13MB5966:EE_
x-ms-office365-filtering-correlation-id: 45553f4d-3929-4d16-1bd3-08dcd32298a6
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|366016|376014|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MW5PR13MB5485.namprd13.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0PR13MB5474B8A3B2FB0304F6042EF2D2642SJ0PR13MB5474namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MW5PR13MB5485.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 45553f4d-3929-4d16-1bd3-08dcd32298a6
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Sep 2024 12:01:12.3063 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lG6Ss76NYADAGfEFBnpnkCTt4pWloj3a0/7gAww1HrZ3wFa03gZwLIvPJ+PbolNVfzhRU1cKqEPq4rIrX193aw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR13MB5966
Message-ID-Hash: FWKWTRXOXLQH22QBJ7UDHB4TYUYH73FN
X-Message-ID-Hash: FWKWTRXOXLQH22QBJ7UDHB4TYUYH73FN
X-MailFrom: james.n.guichard@futurewei.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-mpls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "iesg@ietf.org" <iesg@ietf.org>, "draft-ietf-mpls-inband-pm-encapsulation@ietf.org" <draft-ietf-mpls-inband-pm-encapsulation@ietf.org>, "mpls-chairs@ietf.org" <mpls-chairs@ietf.org>, "mpls@ietf.org" <mpls@ietf.org>, "tsaad@cisco.com" <tsaad@cisco.com>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/mpls/2rlwbdlRwZ_6-VavlVo3X1F-SLo>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Owner: <mailto:mpls-owner@ietf.org>
List-Post: <mailto:mpls@ietf.org>
List-Subscribe: <mailto:mpls-join@ietf.org>
List-Unsubscribe: <mailto:mpls-leave@ietf.org>

Hi Xiao,

As the responsible AD for this document let me chime in here. I believe that Zahed’s DISCUSS is focused on the following text:

As specified in Section 7.1 of RFC9341, for security reasons, the Alternate-Marking Method MUST only be applied to controlled domains. That requirement applies when the MPLS performance measurement with the Alternate-Marking Method is taken into account, which means the MPLS encapsulation and related procedures defined in this document MUST only be applied to controlled domains, otherwise the potential attacks discussed in Section 10 of RFC9341 may be applied to the deployed MPLS networks.

The above text says ‘MUST only be applied to controlled domains’ and Zahed is trying to clarify that the MUST can be honored. I believe that the answer to this is yes as MPLS by design is a ‘fail closed’ protocol and therefore the method described in this document is contained within the boundaries of the network where MPLS is enabled.  I am not sure if any further text is necessary, but I will let Zahed confirm.

Thanks!

Jim


From: xiao.min2@zte.com.cn <xiao.min2@zte.com.cn>
Date: Wednesday, September 11, 2024 at 9:38 PM
To: zahed.sarker.ietf@gmail.com <zahed.sarker.ietf@gmail.com>
Cc: iesg@ietf.org <iesg@ietf.org>, draft-ietf-mpls-inband-pm-encapsulation@ietf.org <draft-ietf-mpls-inband-pm-encapsulation@ietf.org>, mpls-chairs@ietf.org <mpls-chairs@ietf.org>, mpls@ietf.org <mpls@ietf.org>, tsaad@cisco.com <tsaad@cisco.com>
Subject: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

Hi Zahed,



Thank you for the prompt reply.

Please see inline.
Original
From: ZaheduzzamanSarker <zahed.sarker.ietf@gmail.com>
To: 肖敏10093570;
Cc: iesg@ietf.org <iesg@ietf.org>;draft-ietf-mpls-inband-pm-encapsulation@ietf.org <draft-ietf-mpls-inband-pm-encapsulation@ietf.org>;mpls-chairs@ietf.org <mpls-chairs@ietf.org>;mpls@ietf.org <mpls@ietf.org>;tsaad@cisco.com <tsaad@cisco.com>;tony.li@tony.li <tony.li@tony.li>;
Date: 2024年09月05日 19:25
Subject: Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

On Thu, Sep 5, 2024 at 10:35 AM <xiao.min2@zte.com.cn<mailto:xiao.min2@zte.com.cn>> wrote:

Hi Zaheduzzaman,

Thanks for your review and comments.

Please see inline.
Original
From: ZaheduzzamanSarkerviaDatatracker <noreply@ietf.org<mailto:noreply@ietf.org>>
To: The IESG <iesg@ietf.org<mailto:iesg@ietf.org>>;
Cc: draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org> <draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org>>;mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org> <mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org>>;mpls@ietf.org<mailto:mpls@ietf.org> <mpls@ietf.org<mailto:mpls@ietf.org>>;tsaad@cisco.com<mailto:tsaad@cisco.com> <tsaad@cisco.com<mailto:tsaad@cisco.com>>;tony.li@tony.li<mailto:tony.li@tony.li> <tony.li@tony.li<mailto:tony.li@tony.li>>;tony.li@tony.li<mailto:tony.li@tony.li> <tony.li@tony.li<mailto:tony.li@tony.li>>;
Date: 2024年09月04日 14:54
Subject: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
Zaheduzzaman Sarker has entered the following ballot position for
draft-ietf-mpls-inband-pm-encapsulation-15: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-mpls-inband-pm-encapsulation/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

Thanks for working on this specification.

I have noted this specificaiton uses RFC 9341 performance measurement methods.
RFC 9341 says -

   "the Alternate-Marking Method MUST only be applied to controlled domains."

Hence, I would like to discuss

  - if MPLS performance measurement will be done in "controlled domains" or
  not. If yes, should this specification not discuss and state about
  measurement done in "controlled domains"?
[XM]>>> Yes, on this point the MPLS performance measurement follows what RFC 9341 says. To make this explicit, I propose to add a new paragraph to the beginning of the Security section.

NEW

As specified in Section 7.1 of RFC9341, for security reasons, the Alternate-Marking Method MUST only be applied to controlled domains. That requirement applies when the MPLS performance measurement with the Alternate-Marking Method is taken into account, which means the MPLS encapsulation and related procedures defined in this document MUST only be applied to controlled domains, otherwise the potential attacks discussed in Section 10 of RFC9341 may be applied to the deployed MPLS networks.
Thanks the text looks good, however, I am not sure if MPLS perfomance can be done in controlled domains or not i.e. what is the controlled domain mean here in this context. I will left that to MPLS expert to comment on.

[XM-2]>>> I don't see any comments from MPLS expert, so pardon me to chime in. Section 7.1 of RFC9341 provides an explanation on what a controlled domain means, it says "A controlled domain can correspond to a single administrative domain or multiple administrative domains under a defined network management". Considering in Section 8 of this document it says "The method for achieving multi-domain performance measurement with the same Flow-ID label is outside the scope of this document", I think in the context of this document a controlled domain corresponds to a single administrative domain.



Cheers,

Xiao Min


//Zahed








  - current security consideration does not describe the implications if the
  measurement is not done in the controlled domains, should this specification
  not describe those?
[XM]>>> Please see above. Is the text of the proposed new paragraph applicable?

----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

I have not marked any other transport protocol related issues.

Best Regards,

Xiao Min