IETF Logo Mail Archive

Re: [OPSAWG] AD review of draft-ietf-opsawg-sap-09

"Rob Wilton (rwilton)" <rwilton@cisco.com> Sun, 06 November 2022 16:50 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3EDD1C14F732; Sun, 6 Nov 2022 08:50:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.606
X-Spam-Level:
X-Spam-Status: No, score=-14.606 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=YmD01eYV; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=Vx4tv2C6
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qBrCn15jWm6r; Sun, 6 Nov 2022 08:50:25 -0800 (PST)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7F063C14F728; Sun, 6 Nov 2022 08:50:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=13947; q=dns/txt; s=iport; t=1667753425; x=1668963025; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=7TsaSJkvg80J+D62++zUOQkxOq31McCij++DXxk2Cek=; b=YmD01eYVIpd9ommCk33odZJyJDTAsl3t2EQ6HG816L9E96DKKbLzllVj 3vlC3P8lzBos71w3uum2Oks/7vvJgNn2qSmkkgTSPKMFduuIx8MWgme2d lx70jXXam+TApY7trrnc9uGQbgUXc8BgOXCFX34dExP1jn4Q5Uxl2QmVF E=;
IronPort-PHdr: A9a23:7Ng40RwJX3ZLiunXCzPZngc9DxPP8534PQ8Qv5wgjb8GMqGu5I/rM0GX4/JxxETIUoPW57Mh6aLWvqnsVHZG7cOHt3YPI5BJXgUO3MMRmQFoCcWZCEr9efjtaSFyHMlLWFJ/uX+hNk0AE8flbFqUqXq3vlYv
IronPort-Data: A9a23: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
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: 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
X-IronPort-AV: E=Sophos;i="5.91,230,1647302400"; d="scan'208";a="1098212413"
Received: from alln-core-5.cisco.com ([173.36.13.138]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 06 Nov 2022 16:50:10 +0000
Received: from mail.cisco.com (xfe-rtp-005.cisco.com [64.101.210.235]) by alln-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 2A6GoACJ012184 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Sun, 6 Nov 2022 16:50:10 GMT
Received: from xfe-rtp-002.cisco.com (64.101.210.232) by xfe-rtp-005.cisco.com (64.101.210.235) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.9; Sun, 6 Nov 2022 11:50:09 -0500
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-002.cisco.com (64.101.210.232) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.9 via Frontend Transport; Sun, 6 Nov 2022 11:50:09 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MU4XWJGdy5PKaGPG/8DoBrjBX1OGWu+8GegFWP3VoIaul6TWViwCFJ2KHz5/MnWUsIleJ78K0oySdLZXbYIogIA3ljhcAFeydxDOupTUffQFR6wH1nX8EVVtPPnF74nGkWPNVXrdyCkFYIr2YpVvZIL3Vx/dcZwzUeVdGs90QfMwvMSj9USUx4i3Aq/IOmzAAo6P2UNvHxtuuyJUW+QmNCbOdm2XJoXQo/n524Im3REH/bGmUOVVgkV2RwxQKNm3pZtivmEUOHNQ4QGLfB3xUf85jCdJhHQTbLmrGRDxdAE9eqiwp8rsCA8hvPXfyk4wyQS62Hw0X+U6KR23Pzw8tg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=2V2i079rEHgWU67jPZeNBRMOv6ULubRxX/XYQZbdJ/0=; b=A21LnKhMPLD6p87GxceBoibb5YLsiBhJhxAPPcQzmWTZifk4NEUawPGTBsbC/M4VvNq3okQlrei4tVzmYBRPfGadPuk/FbRfz45dToc9IjXwoNubUvGZsvtoaqL0qlQgYc4+FRhDKhYOcQRZtYpg5RlaNbLeoIRzw3M71CwtB/RTeYwp+SjZWrXl/s9SShWp/vV6nBVK/vrlgcXmmOUsD02cwKtYHrNY5VfJohYK2XsNO9whXwrqyr331mLRRDH0Vj1Q4A51nMb0u/E8GSE6dOO75YrPfaE6YWeqRhIUcQEUnYqVwufj8BiBV9itoXCgB42bbi+yaAwyjVJULB1TBQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2V2i079rEHgWU67jPZeNBRMOv6ULubRxX/XYQZbdJ/0=; b=Vx4tv2C6B7eLQGePKOLoBsZRncYL3jGgboMbUGotSEQA1NAQ7ZdpI4nMt1VGX5FihtK95ZCEPyYABp2hc0npCB4FiSD2X7Wweae15xXMfvqZtJ/pOZrme0AjZsRPXWN4D07xgfEs5H99iaeS++hpn8tY8Q8Y9CBJ4W0KxuEqJts=
Received: from BY5PR11MB4196.namprd11.prod.outlook.com (2603:10b6:a03:1ce::13) by CY8PR11MB7196.namprd11.prod.outlook.com (2603:10b6:930:94::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5791.22; Sun, 6 Nov 2022 16:50:08 +0000
Received: from BY5PR11MB4196.namprd11.prod.outlook.com ([fe80::8620:4242:1857:487f]) by BY5PR11MB4196.namprd11.prod.outlook.com ([fe80::8620:4242:1857:487f%7]) with mapi id 15.20.5791.025; Sun, 6 Nov 2022 16:50:08 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>, "draft-ietf-opsawg-sap.all@ietf.org" <draft-ietf-opsawg-sap.all@ietf.org>, "opsawg@ietf.org" <opsawg@ietf.org>
Thread-Topic: AD review of draft-ietf-opsawg-sap-09
Thread-Index: AdjPQx6o5IkGa/MiRbSgFOql4kxVLAAATHXwAS1rwBAABRW0gAAFIiHw
Date: Sun, 06 Nov 2022 16:50:08 +0000
Message-ID: <BY5PR11MB4196A321341B8076C67590BEB53D9@BY5PR11MB4196.namprd11.prod.outlook.com>
References: <BY5PR11MB41965219142B5D7477437604B5519@BY5PR11MB4196.namprd11.prod.outlook.com> <10618_1663938212_632DAEA4_10618_131_22_be9e97dad413420db9ac52ea0c8b38f0@orange.com> <BY5PR11MB4196EE66FFC3E63DE28AABA7B5579@BY5PR11MB4196.namprd11.prod.outlook.com> <11971_1664461105_6335A931_11971_276_1_ff1bd715600144a4831e519922785bbe@orange.com>
In-Reply-To: <11971_1664461105_6335A931_11971_276_1_ff1bd715600144a4831e519922785bbe@orange.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Enabled=true; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SetDate=2022-09-29T13:38:10Z; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Method=Privileged; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_Name=unrestricted_parent.2; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_SiteId=90c7a20a-f34b-40bf-bc48-b9253b6f5d20; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ActionId=f1e740a6-21b3-41ea-9b7e-df1940bc4cd4; MSIP_Label_07222825-62ea-40f3-96b5-5375c07996e2_ContentBits=0
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BY5PR11MB4196:EE_|CY8PR11MB7196:EE_
x-ms-office365-filtering-correlation-id: c0b6113d-df38-4de7-92db-08dac016f656
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4196.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(39860400002)(376002)(136003)(346002)(366004)(396003)(451199015)(55016003)(478600001)(71200400001)(30864003)(52536014)(53546011)(5660300002)(2906002)(316002)(110136005)(8936002)(41300700001)(64756008)(66556008)(66476007)(66946007)(76116006)(38070700005)(122000001)(66446008)(7696005)(966005)(86362001)(83380400001)(186003)(6506007)(9686003)(38100700002)(8676002)(33656002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: iORD2rYP/gaSeuZ1elyJnUYg/afNvQzCHaj7qa44aVqQXjg238hDddd9H8gKe+MgrXoX7PLjTpqvIYQefjbOdeo0viQ+aE8KBvPs7g8WBtitG/renTOO9mwGiWCJUfDfQIiNxRT9dOyH+mgN5CXKI0kt+RS/SDqWyMDdoeVyoa7+Lb92jkjFPexuQOW45By6lpTk5Wulbp9YRYFWnf8b+V2Qc8KjXKN34JFA5svw5VIJpuMO/7C3NCutUH7ZaR0IMnl9yaUpOMP9Fcgu3A2oa72L3zJZV9P/1sBnP4HvrjxCt7+OVrg2UZ27j0MIcGkpMGKUcn4sKfEHgkVC7oHhH2aHXQR4HG3u/pYCAZ5B7fWJWeQ5sTVl4g+KtLDQki4du2LJSQrF4T8bdGiap2AD8b7JWY/MKy2IaSLTmIaqb9gtyOhjmjo4RPw5U4fkwt5NHeHBzR6Aw6o/MRbFCFSB4AHL1nNFkSV2ZH9rIZjJKZfKxjp6VCOBZnj7nN1TG8dEFLV6jqm0NqTiUG1uPdNx5EP7jY1SUzQC0M4WDcX9LDfw6j6hmisPJvcBPAYXY7LsDPcsmWfwjOkuTY4cB1dLhCC6J7NlRC8Q5WtBOyxPfg+Lgz8ystJwaOv6E5VqOFEt+W2wW3X/GOwmi/qYBDM0xamdVEzL/v0vbQflYoCxEvgxsTcRMXHZfP6+pvxlnzZW3bfwxw8ePKbVGMz8k2SmY0rt5RBFIt0BLAVqz6QcSXDcgFgTK2qYt75MxiXuIF4WKGK0ae4I3MQXcoWr2o4eAYgbU2I8PBabWwQgZmLeGw24HYXW7Pa7GNP3XArT07fakzplxw4Pu94cUWBtK6knfkNCbLIGAovNfejSshrVnN/pJ6Ygag3NjIESEno2OO+zpWEm/RM8gkDwab6FZbKK5nT88Y2oukginZvTQSUmM1Ibq5nr20FG11nC2CZkk3R0oXoJg4n0aMTFEwgAih+Nvohw+dKWJMTualcgSeZwsh5TQCbRV+LGIzIgGY7uDaenaJG4UcUDaPQigbQZGIAZ6McKRjl6AtrS/CqmpQYV6/TCcFOyfzTafgzl6IkEAfQC7/dqFw/UtAGa+pHwI8zSDO5uSMeuVrvG+kiXf7UWpmpBm81j6or1Zk6V+QYD1vXj8GaDlzkjQAvBREtsncqYmCYDpxLX4+LzVYm1cG3a89CWDq0WUFPDLcz7oHUkpinZHDwVxY1eIRd/WTY/8nymB26dk5kUq1lm7mNyiI9SUDeaC4ZqWeuWOqqqtTAeupxm3Kez1a03hwe6OP3RHEHK2Ln01JCtz+2FKL+9c51rLqrMsxafP4T0bBpS/60DlALjEH6S09946mfmwJiIOJBtTRBJqljUWVEF9X7R+qm1WWdSQjrb3SLmkmIUNh+KPYvK86SNVtQEJnVMVJk8aGxHBc2t46cCMZleOR17zDV4uG/L57e6GXLo/SVEh5bTkipDT/7IyavYbSt3buS+PkUOGuYSoyCuI9m7lNxqll4TmIGKYgozP6TnLj+8Rn7W/hXHKj4JoavKtQXmYGQcCENy25VJ2EeUcgXZkUcFK2EEwd61Gd661nlXc5iS2Py92S8hxqQwiORG07fUcvjaH4jY5xCj2OQ7kDyYTXQGXY2OfIw=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4196.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c0b6113d-df38-4de7-92db-08dac016f656
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Nov 2022 16:50:08.0872 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bvKmsQlmJlevsB53d2kzGBVieFmt8awHrhMWRFWs+cBiGe/jEyzdtYWFekUWXla9Dy34gjNale6xpbR/ZC0XFA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY8PR11MB7196
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 64.101.210.235, xfe-rtp-005.cisco.com
X-Outbound-Node: alln-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/mqldwW0CjUUKlYGrqku3_HDZ_R4>
Subject: Re: [OPSAWG] AD review of draft-ietf-opsawg-sap-09
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Nov 2022 16:50:30 -0000

Hi Med,

Apologies for the delay.  The behaviour is still not entirely clear to me.  Please see inline ...

> -----Original Message-----
> From: mohamed.boucadair@orange.com
> <mohamed.boucadair@orange.com>
> Sent: 29 September 2022 15:18
> To: Rob Wilton (rwilton) <rwilton@cisco.com>; draft-ietf-opsawg-
> sap.all@ietf.org; opsawg@ietf.org
> Subject: RE: AD review of draft-ietf-opsawg-sap-09
> 
> Hi Rob,
> 
> Thanks for the follow-up.
> 
> Please see inline.
> 
> Cheers,
> Med
> 
> > -----Message d'origine-----
> > De : Rob Wilton (rwilton) <rwilton@cisco.com>
> > Envoyé : jeudi 29 septembre 2022 15:24
> > À : BOUCADAIR Mohamed INNOV/NET
> <mohamed.boucadair@orange.com>;
> > draft-ietf-opsawg-sap.all@ietf.org; opsawg@ietf.org
> > Objet : RE: AD review of draft-ietf-opsawg-sap-09
> >
> > Hi Med,
> >
> > Comments inline below ...
> >
> > I've snipped out anything that we have already reached agreement
> > on.
> >
> >
> > > -----Original Message-----
> > > From: mohamed.boucadair@orange.com
> > > <mohamed.boucadair@orange.com>
> > > Sent: 23 September 2022 14:04
> > > To: Rob Wilton (rwilton) <rwilton@cisco.com>; draft-ietf-opsawg-
> > > sap.all@ietf.org; opsawg@ietf.org
> > > Subject: RE: AD review of draft-ietf-opsawg-sap-09
> > >
> > > Hi Rob,
> > >
> > > Thank you for the review. The changes can be tracked at:
> > > https://tinyurl.com/sap-latest
> > >
> > > Please note that I made a change to better allow for reuse of
> > the SAP
> > > information in other modules (this can be tracked here:
> > > https://github.com/IETF-OPSAWG-
> > > WG/lxnm/commit/e8b406d7fad5225dd84ad7ff03f6da446eae6736).
> >
> > Okay.
> >
> >
> > >
> > > Please see inline for more context.
> > >
> > > Cheers,
> > > Med
> > >
> > > > -----Message d'origine-----
> > > > De : Rob Wilton (rwilton) <rwilton@cisco.com> Envoyé :
> > vendredi 23
> > > > septembre 2022 14:01 À : draft-ietf-opsawg-sap.all@ietf.org;
> > > > opsawg@ietf.org Objet : AD review of draft-ietf-opsawg-sap-09
> > > >
> > > > Hi authors, WG,
> > > >
> > > > Thank you for this document.  I also think that this document
> > is
> > > > well written and in good shape, and I mostly found the
> > explanations
> > > > and examples clear.  There were two specific points that I
> > found
> > > > slightly confusing related to differentiating between SAPs in
> > use,
> > > > and those that are not, and also parent interfaces also be
> > listed as
> > > > SAPs, details below.
> > >
> > > [Med] Thanks
> > >
> > > >
> > > > Moderate level comments:
> > > >
> > > > (1) p 10, sec 5.  SAP Module Tree Structure
> > > >
> > > >       SAPs that are associated with the interfaces that are
> > directly
> > > >       hosting services, interfaces that are ready to host per-
> > > > service
> > > >       sub-interfaces (but not yet activated), or service that
> > are
> > > >       already instantiated on sub-interfaces are listed as
> > SAPs.
> > > >
> > > > >From the model, is isn't clear to me how different
> > differentiates
> > > > between a SAP that has been pre-provisioned to potentially be
> > used
> > > > for a service in future, v.s., one is that is actively
> > provisioned.
> > >
> > > [Med] This is inferred from the service-status=down for these
> > SAPs.
> >
> > So, thinking of this at device level configuration there is
> > effectively 3 levels of configuration/activation (at least for
> > L2VPNs):
> >
> > (1) A sub-interface is configured, but without any IP address or
> > VRF (for L3VPN), or without being attached to an L2VPN or Bridge
> > Domain (for L2VPNs).  I.e., the sub-interface isn't connected
> > anyway.
> > (2) The sub-interface is configured and connected into a bridge
> > domain or P2P L2VPN but that service is down (e.g., perhaps
> > because the AC at the remote end of the L2VPN is physically down).
> > (3) The sub-interface is configured and connected into a bridge
> > domain or P2P L2VPN and that service is up.
> >
> > I think that you are saying that you regard that both (1) and (2)
> > would be indicated by service-status=down?  Would it be worth
> > expanding the description at all to make this more explicit?
> 
> [Med] The implicit model has some limitations, indeed. Glad to see that we
> reached the same conclusion. Please see this note I sent early this week:
> https://mailarchive.ietf.org/arch/msg/opsawg/C_aI8qsGbdUif9Ems8bN0s3E
> kj4/
> 
> 
>  But
> > I'm still not convinced this will be sufficient (e.g., see my
> > following response below related to the example for selecting a
> > service).
> >
> > >
> > >
> > >   I think that it would be helpful if these two cases
> > > > can be clearly distinguished.  Note, I have made a similar
> > comment
> > > > related to appendix D about identifying a "free" SAP.
> > >
> > > [Med] Added this NEW to the appendix:
> > >
> > > "SAPs that are ready to host per-service (but not yet activated)
> > are
> > > identified by the "service-status" set to "ietf-vpn-common:op-
> > down"."
> >
> > But how do you distinguish between a SAP that hasn't been
> > provisioned yet to a service vs a SAP that has been provisioned
> > but the service is down?  E.g., trying to find a free SAP just by
> > looking for a SAP with a service-status of op-down doesn't appear
> > to be sufficient on its own.
> 
> [Med] A SAP that is not provisioned yet will have a sap-status=down, while
> the one that is provision but the service is not activated will have sap-
> status=up and service-status=down. Isn't that sufficient?

I would have assumed:
 - If sap-status is down then the service-status must also be down, right?
 - if the sap is a sub-interface and the parent interface is down, then the sap-status would also be down?

Hence, I would have thought that you cannot distinguish between it not being provisioned and it is provisioned but the SAP is down either due to the parent, or perhaps the sub-interface has explicitly been forced down for some reason (perhaps due to config, or other reasons).

Perhaps you are saying that this isn't a problem in practice?


> 
> >
> >
> >
> > >
> > > >
> > > >
> > > > (2) p 28, sec Appendix B.  A Simple Example of SAP Network
> > Model:
> > > > Node Filter
> > > >
> > >
> > > [Med] Please note "Simple" in the title :-)
> >
> > OK, noted. ;-)
> >
> >
> > >
> > > >    A service orchestrator can query what services are provided
> > on
> > > > which
> > > >    SAPs of PE1 from the network controller by sending, e.g., a
> > GET
> > > >    RESTCONF request.  Figure 9 shows the body of the RESTCONF
> > > > response
> > > >    that is received from the network controller.
> > > >
> > > > In this example, you have GE0/6/4 as being ready to host SAPs,
> > but I
> > > > could equally imagine that given GE0/6/4 is just a UNI, then
> > you may
> > > > not want the parent interface to be available to host SAPs
> > directly
> > > > at all.  I.e., it may always the case that sub-interfaces are
> > used
> > > > as SAPs.  Hence, did you consider whether it makes sense for
> > there
> > > > to be a different category of SAP service-types for UNI's and
> > NNI's
> > > > that don't host services directly on the interface, but always
> > on
> > > > sub-interfaces?
> > >
> > > [Med] Yes, we do need this for the LxVPN case.
> >
> > It's still not clear to me.  E.g., in the example, GE0/6/4 is
> > listed as an VPLS SAP and as an L3VPN SAP,
> 
> [Med] I see. That SAP is a special one as it tags an interface that is ready to
> host per-service sub-interfaces. This is now clearly indicated by the new leaf
> "ready-child-sap". This is some kind of root or parent SAP.

Okay.

So, does "ready-child-sap" mean that the interface itself cannot be directly bound to a service, and only the child SAPs can be?  Or does it mean that a service could be bound both to the sap itself, and also as child SAPs?  Either way, I think that it would be helpful for that to be documented/clarified.

I still not a big fan of the name "ready-child-sap", because it seems to describe a point of time rather that what it is.  Would something like "allows-child-saps" or "child-sap-capable" be clearer?

> 
>  and it isn't obvious
> > that it is actually either of those.  I.e., really it is just a
> > parent to sub-interfaces that represent the VPLS and L3VPN SAPs.
> 
> [Med] These SAPs fall under:
> 
>       SAPs that are associated with the interfaces that are directly
>       hosting services, interfaces that are ready to host per-service
>                         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>       sub-interfaces (but not yet activated), or service that are^
>       ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>       already instantiated on sub-interfaces are listed as SAPs.
> 
> >
> > Hence, I was asking whether you considered putting GE0/6/1 into a
> > different service/sap list (e.g., of service-type "sap-parent"),
> > or similar.  This would mean that the interface would be listed
> > only once rather than under both VPLS and L3VPN.
> 
> [Med] We are listing them per service because some interfaces may be
> restricted to specific services. In the example, it happen that this interface is
> ready to hots both VPLS/L3VPN, but there might be cases where a "parent"
> SAP will listed only for a single service.

Okay.


> 
> >
> >
> > >
> > >   Related to this, it
> > > > feels slightly strange to me to have GE0/6/4 listed under both
> > l3vpn
> > > > and vpls SAP lists.
> > >
> > > [Med] Actually there are attached to distinct sub-interfaces:
> >
> > So, my question is really whether, in this case, GE0/6/4 is
> > actually a SAP at all, or whether really it is only the child sub-
> > interfaces of GE0/6/4 that are actually SAPs?
> 
> [Med] It is a special SAP. We need to have it listed as such because otherwise
> we can't display where a service can be delivered unless a child SAP is
> explicitly instantiated.
> 
> >
> > Possibly adding the "ready-child-sap" resolves this ambiguity.
> 
> [Med] Agree.
> 
> > Possibly, I would have a chosen a different name and description
> > for this leaf (e.g., "sap-parent") that indicates that this node
> > can act as a parent to other SAPs.
> >
> >
> > >
> > >    Also, let us assume that, for
> > >    the SAPs that are associated with the physical interface
> > "GE0/6/4",
> > >    VPLS and L3VPN services are activated on the two sub-
> > interfaces
> > >    "GE0/6/4.1" and "GE0/6/4.2", respectively.
> > >
> > > Updated the example to align with this text.
> > >
> > >   Having the same information twice in
> > > > the data model introduces the risk that a device could export
> > > > inconsistent information and hence it hard for the customer to
> > know
> > > > which data is accurate.  I can understand why having it twice
> > might
> > > > be convenient, but having an indication that it is actually
> > just a
> > > > container node for SAPs rather than a SAP itself might be
> > better.
> > > >
> > > >
> > > >
> > > > Minor level comments:
> > > >
> > >
> > > >
> > > > (5) p 10, sec 5.  SAP Module Tree Structure
> > > >
> > > >    These service types build on the types that are already
> > defined
> > > > in
> > > >    [RFC9181] and additional types that are defined in this
> > document.
> > > >    Other service types can be defined in future YANG modules,
> > if
> > > > needed.
> > > >
> > > > In future YANG modules, or perhaps also future versions of the
> > YANG
> > > > model defined in this document?
> > > >
> > >
> > > [Med] Changed to "future YANG modules (including future
> > revisions of
> > > the YANG model defined in this document)"
> >
> > Okay.
> >
> > >
> > > >
> 
> >
> > >
> > >
> > > > (9) p 17, sec 6.  SAP YANG Module
> > > >
> > > >          leaf peer-sap-id {
> > > >            type string;
> > > >            description
> > > >              "Indicates an identifier of the peer's
> > termination
> > > >               identifier (e.g., Customer Edge (CE)). This
> > > >               information can be used for correlation
> > purposes,
> > > >               such as identifying the SAP that is attached to
> > > >               an endpoint that is provided in a service
> > request.";
> > > >          }
> > > >
> > > > Would it be helpful to indicate that the "peer-sap-id" is not
> > > > necessarily the same as the peer's sap_id for that same
> > attachment
> > > > circuit endpoint?  E.g., it appears to differ in your example
> > in
> > > > Appendix C.
> > > >
> > >
> > > [Med] Given that this is used for correlation purposes, the
> > value
> > > enclosed in peer-sap-id is useful when it is known to the peer.
> > > Typically, that value will be indicated as the service delivery
> > point. I tend to leave the description as it is.
> >
> > Okay, the reason that I queried this was that in your appendix C,
> > you don't appear to follow this.  E.g., the peer_sap_id for
> > "sap#12" is given as "asbr-b1", but that is probably not what the
> > peer sap id would actually be (or otherwise all the "peer_sap_id"
> > names would collide).  Perhaps this example is an exception to the
> > rule, but then that would be worth highlighting in the text that
> > describes the example.
> >
> >
> 
> [Med] Fair. I added the following:
> 
> " This identifier may or may not be the same as the SAP identifier used in the
> peer's configuration. Note that the use of identical identifiers eases
> correlation between a peer's service request with a local SAP. "

Looks good.  Thanks.

Regards,
Rob

v2.23.0 | Report a Bug | By Email