[OPSAWG] Comments on Service Assurance for Intent-Based Networking Architecture (e.g. draft-claise-opsawg-service-assurance-architecture)
Alexander Clemm <alex@futurewei.com> Thu, 30 July 2020 00:01 UTC
Return-Path: <alex@futurewei.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 782403A0A36; Wed, 29 Jul 2020 17:01:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.089
X-Spam-Level:
X-Spam-Status: No, score=-2.089 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BKPuSPqvbRcO; Wed, 29 Jul 2020 17:01:17 -0700 (PDT)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2125.outbound.protection.outlook.com [40.107.94.125]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C00BE3A0945; Wed, 29 Jul 2020 17:01:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JgrXQJQFzNC2lWvkITy7x7jtRCsk1FX0ElsozoZeiM1p2c0BPh4ev7Y8CogVdcwFt2G71PmtsHYCLKZ5KVAauX5oiqagtu4YHq/BTylTIf4ihvl0sm/a6uNKlfCIp+kD9W/T2BenGV9wjhqkZikQwKpSqqMDqDo6IFLTfkCh3VSUsKe2QdHWj6tSwPhHNxobscoeyg5lq+YPRZ5Qq5yGMVbdY9MA9dpGh1Tzb7AEZ7TZMQkUtHafMwzdI4FBSzB1j+UtDIj3Z+mbBlsM+9giLEluheu+1LIYdzAl+4cUb4rJlNLBE85/vDr3rqAK8qtPSsgKHsVdiK8aKNgXkmm5Tw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6bzL+YcTpKbmlhXoK0Z21Zo9CR980FAY0DxcsJk/FTk=; b=kXBL1gJ6ECMSxeffqxwLtomHDvn5fSLfPbHuv68GzOMeXwLKmw1adgibMJRa4qtPAo9V+Ry5+/xIEOOVXkzHCG5qOS7WUzDfUvi90cVRC+CaZR8C+e/43t/Tjp4Tnpy+K21wpVXmmwB4I/FnGlcxJEmVRMctwKrx50yo8cPmlOF7KdrzXgXZ6IcXwqfeSB6qB4AhsuGduPWpA7VvMdNy5v/KOtMVdsMowwLe5W9ZFiADYyOJNR1kpqpQBFIX0wWmVkMvHwNBNZ2j077S6nMRvW6qor0PyYelJJHMOIR1R0jO6RVxq/19kwJrqWZshFmGhLmg0TtULDZP3GHtJYACuQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6bzL+YcTpKbmlhXoK0Z21Zo9CR980FAY0DxcsJk/FTk=; b=KdTiggml/z0fcZ7e9yP79fdGakzT/aqo6XF6DgQw0HV/MoFzhoUqWWXLdZSaUcv4OxFM8NFPXh6d6niiJVh7FmZQ48jNgh7CWdQEHX4PREY8zF/66x52ikL8y5Kw4BnWyBO+0oYaDniUZPEBFxM+d8elGZCIINt5lasTMoRPCp4=
Received: from BY5PR13MB3793.namprd13.prod.outlook.com (2603:10b6:a03:226::15) by BY5PR13MB3256.namprd13.prod.outlook.com (2603:10b6:a03:18b::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.9; Thu, 30 Jul 2020 00:01:12 +0000
Received: from BY5PR13MB3793.namprd13.prod.outlook.com ([fe80::2447:df10:38ac:b1d7]) by BY5PR13MB3793.namprd13.prod.outlook.com ([fe80::2447:df10:38ac:b1d7%9]) with mapi id 15.20.3239.016; Thu, 30 Jul 2020 00:01:11 +0000
From: Alexander Clemm <alex@futurewei.com>
To: Benoit Claise <bclaise@cisco.com>, "draft-claise-opsawg-service-assurance-architecture@ietf.org" <draft-claise-opsawg-service-assurance-architecture@ietf.org>
CC: "opsawg@ietf.org" <opsawg@ietf.org>, "nmrg@irtf.org" <nmrg@irtf.org>
Thread-Topic: Comments on Service Assurance for Intent-Based Networking Architecture (e.g. draft-claise-opsawg-service-assurance-architecture)
Thread-Index: AdZmBIPWWAffwVU5TheftvKj5qQCxA==
Date: Thu, 30 Jul 2020 00:01:11 +0000
Message-ID: <BY5PR13MB37936AF1D0EEAA2C9C7749FEDB710@BY5PR13MB3793.namprd13.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=futurewei.com;
x-originating-ip: [73.189.160.186]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 87db8197-d92f-4c0f-4d76-08d8341bab83
x-ms-traffictypediagnostic: BY5PR13MB3256:
x-microsoft-antispam-prvs: <BY5PR13MB3256C43FC2259C7A2354D965DB710@BY5PR13MB3256.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: crAp88b7EXCGrgLRhzOppXsiiIiqXB+3gkmsNDFIB+85iY8Vmph+FFq5NYJcT7sgvHZ69I6UJ4Vwlz7TaIWs14uyYxxSK0XzrbYHBwF1gqC71Zy+opMYpQ0ZtbvxkLOB1Jmt7+M9Ez5vgJTPaR1zZRCfMVP5I5oTslZNaBdm4l0DVcXCTewIV9zuxY9bLUAKWGSzTyCklvBGsozEiMJNhFg+DWOWojPQxShtb8y8AfUK+hpdSAdvdTQCWrp0oqQVQtWjsMMBZCDrJ6ammEGEnXkBLKj859Eh4wdCOjbutam5zmkuepITO5BpoZD3g7/1hwtiijGN6137HdOJMUdJ1A==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR13MB3793.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(366004)(136003)(346002)(39840400004)(376002)(396003)(83380400001)(8936002)(9686003)(2906002)(4326008)(55016002)(7696005)(86362001)(110136005)(54906003)(9326002)(316002)(8676002)(5660300002)(26005)(66446008)(66556008)(66476007)(66946007)(52536014)(6506007)(64756008)(71200400001)(33656002)(508600001)(186003)(76116006); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BY5PR13MB37936AF1D0EEAA2C9C7749FEDB710BY5PR13MB3793namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR13MB3793.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 87db8197-d92f-4c0f-4d76-08d8341bab83
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jul 2020 00:01:11.7851 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: s4DCKqoyONzFMIz8nGGi/rYMFQsD9WwCyYvyElF1ni7T2mf2YJMiRGYlMFUxNxyL6qI+2RMLTtdsCGE+knS9AQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR13MB3256
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/uk6AsYtO3oSlP2jkw_QPFtZ3AoY>
Subject: [OPSAWG] Comments on Service Assurance for Intent-Based Networking Architecture (e.g. draft-claise-opsawg-service-assurance-architecture)
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jul 2020 00:01:20 -0000
Hi Benoit, I have seen your presentations on Service Assurance for Intent-Based Networking Architecture and read your drafts with interest (draft-claise-opsawg-service-assurance-yang-05 and draft-claise-opsawg-service-assurance-architecture-03). Interesting stuff on which I do have a couple of comments. The basis for the drafts is in essence a proposal for Model-Based Reasoning, in which you capture dependencies between objects and make inferences by traversing the corresponding graph. MBR based on dependency graphs allows to reason about the impact and propagation of the status or health of one object on the status or health of dependent objects "downstream" from it. Likewise, traversing the same graph in the opposite direction (from the "downstream" or dependent objects) allows to identify potential root causes for symptoms observed by those objects, although this seems to be not so much your focus. While MBR as a concept makes sense and has a long tradition in network management, there are also a number of considerable issues with it, and I was wondering about your perspective and mitigation strategies for these. For one, their effectiveness depends on the model being "complete". In most cases, there are myriads of interdependencies which are difficult to capture comprehensively. The model is still useful for many applications as a starting point, but rarely captures the full reality. As long as users are clear about that, this is not an issue. However, the one thing where I have a bit of concern in your model is that you use it to draw conclusions about the health of the dependent objects (for example, your end-to-end service). It seems that a derived health score will be no substitute for monitoring the actual health, and should not lull users into a false sense of security that as long as they monitor components of a system or service, that they don't need to be concerned with monitoring the system or service as a whole. In reality I believe the value (although there still is a value) is more limited than that. I believe that this should be clearly acknowledged and discussed in the drafts. A second set of issues concerns the intensity of maintaining the graph and of continuously updating the dependencies. In a realistic system you will have many objects with even more interdependencies. Maintaining derived health state can become computationally very expensive, which suggests a number of mitigation strategies: for one, don't continuously maintain this but compute this only "on demand". Second, perhaps don't maintain this on the server at all, at least to the extent that you expect the server to be a networking device. It seems much more feasible to perform these type of Model-Based Reasoning computations in an Operations Support System or application outside the network, not within the network. However, it is not clear that YANG models and Netconf/Restconf would be applied there. It seems to me the drafts should add clarification on where those models would be expected to be deployed and how/would keep them updated. As an OSS tool, your proposal makes sense, but trying to process this on networking devices strikes me as very heavy, in particular given the limitations as per the earlier point. So, IMHO I think you may want to consider adding an according section that discusses these aspects in the draft, specifically the architecture draft. Cheers --- Alex
- [OPSAWG] Comments on Service Assurance for Intent… Alexander Clemm
- Re: [OPSAWG] Comments on Service Assurance for In… Benoit Claise
- Re: [OPSAWG] Comments on Service Assurance for In… Alexander Clemm
- Re: [OPSAWG] Comments on Service Assurance for In… Benoit Claise