IETF Logo Mail Archive

Re: [OPSAWG] A review of draft-ietf-opsawg-yang-vpn-service-pm-01

Greg Mirsky <gregimirsky@gmail.com> Sun, 16 January 2022 23:15 UTC

Return-Path: <gregimirsky@gmail.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90D803A15E6; Sun, 16 Jan 2022 15:15:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Sk81GSyAyhk3; Sun, 16 Jan 2022 15:15:27 -0800 (PST)
Received: from mail-ed1-x52d.google.com (mail-ed1-x52d.google.com [IPv6:2a00:1450:4864:20::52d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2975A3A15E5; Sun, 16 Jan 2022 15:15:27 -0800 (PST)
Received: by mail-ed1-x52d.google.com with SMTP id m4so57997584edb.10; Sun, 16 Jan 2022 15:15:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=CdASCptek7Pt2e0j2mWI7KjmNTbSklNbEE55ePXnh4s=; b=enJWrB/fsZsfC96z3TTa/rtg51ZkIdQAPrlyPiqSDVdwBM7ZVqTZrj53svbumhu55t DrYDqNpHsqVE2i0MnUYaiu9CgeETzNab9u4d9/n494tG4EuZ3VWHNR4V1+GC2ikC5a5a e9dIEqts1p1tROjCMGRkIsc0px4ymkvnMC3DTsiBUtp5LzhB9W8/sSPaVqKwB7c9R/96 TRFe+vtU4CFDgH5/1C9ILNkF527KeNIkjZ0RFGMhe60AOkVvV79klQQzjhkwJ5uX756O xNPNjX2bHZvwn/n9VM24NTD6COmKfB6jro7Xo/VBkjBIOHLdjq+AukY7GAPxkj9r31IL Ga2Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=CdASCptek7Pt2e0j2mWI7KjmNTbSklNbEE55ePXnh4s=; b=aCC7S37F3GoExpJEU6eVKewV1S24gqrwXuNjrrNovuGWB2/ZvFAsI11n0MlzDXKWKd Qu89cIdhizVBgxo/Z9ndFZ+8AlF9QESi/Nmjob+cjTe6LdbOJFLHEwBW8dQ43k+aJSa3 qOvqVzJbjjyy3XwBEfZdWOcfO/oQdIe4cxBDpT0XxacaZjGytvPL8m85OC+F+CaNGlcZ Yg18AMN5CqR/lme7Y+N1/1ZAZXA4EWl/uEDfvai3intw3+E1BGwz0Yp/FmcgvX8hpyV7 N3Aa5tuscFtCdZeUNjhd0/wNy43x8lHSY0vGRuS2WOhJu6ZovZlppPla1PvlIpMDjVpj KjpQ==
X-Gm-Message-State: AOAM531CV3ZvYlGWAtkTjoVkzz/euaxIdaPc08nG9RDr1VSk/v9Q+0A6 EGBjz3NIRfl+fE2xsOWwClR3tul8EVLBpuuXO4f/kqh9FUQ=
X-Google-Smtp-Source: ABdhPJypTwYEzWwWSHlxS0MT5qfl1pny1EizXZoFbv60J2pRa/JxaQ7DcCrX9U35YNZqegbv3cnBfgC/xsYZz/+gKXY=
X-Received: by 2002:aa7:cac7:: with SMTP id l7mr18654835edt.302.1642374924039; Sun, 16 Jan 2022 15:15:24 -0800 (PST)
MIME-Version: 1.0
References: <06c601d80af4$50751ce0$f15f56a0$@olddog.co.uk>
In-Reply-To: <06c601d80af4$50751ce0$f15f56a0$@olddog.co.uk>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Sun, 16 Jan 2022 15:15:12 -0800
Message-ID: <CA+RyBmWgmC_eeXtzUqgxWZ=NkU3g5abADK_5pECkWdzMNZdAxA@mail.gmail.com>
To: adrian@olddog.co.uk
Cc: draft-ietf-opsawg-yang-vpn-service-pm@ietf.org, opsawg@ietf.org, ippm@ietf.org, ippm-chairs@ietf.org
Content-Type: multipart/alternative; boundary="000000000000ef780105d5bb3544"
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/qAHe-7niFKdDq7LN7AhwaiH5UU0>
Subject: Re: [OPSAWG] A review of draft-ietf-opsawg-yang-vpn-service-pm-01
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 16 Jan 2022 23:15:32 -0000

Hi Adrian, the Authors, and All,
thank you Adrian for reviewing the draft and inviting further discussion.
I've commented on this work earlier suggesting considering the performance
metrics listed in the STAMP YANG data model. I appreciate that the Authors
have found them helpful and included them in this model. But I still wonder
what, if anything, is special for a VPN service from a performance
metrics perspective compared to, for example, an underlay? Would it be
possible and simpler to have a single PM data model applicable to any
underlay or overlay network?

Regards,
Greg

On Sun, Jan 16, 2022 at 8:16 AM Adrian Farrel <adrian@olddog.co.uk> wrote:

> Hi authors,
>
> This draft has been safely inside the OPSAWG for a while, so I though
> it was probably due a review.
>
> "The usual" two top-level issues:
>
> - The draft expired earlier this month, so you need at a least a
>   keep-alive version.
>
> - The draft has more than five front-page authors so the AD or RFC
>   Editor will object. It is probably best for you to resolve this issue
>   sooner rather than later.
>
> Otherwise, my comments are a collection of small nits and nothing
> alarming.  Thanks for your work on this document.
>
> Best,
> Adrian
>
> == Questions ==
>
> Looking at Figure 1, an obvious question is why this model doesn't
> augment the L2/L3NM or the common VPN model. It is OK (for me) that you
> have chosen to augment the network topology model, but it is not clear
> to the reader why you have done this.
>
> ---
>
> I wonder whether the work in this document would benefit from using
> data tags (draft-ietf-netmod-node-tags). I might be wrong, but it seems
> particularly related and useful.
>
> ---
>
> If, in Figure 3, VPN1 is configured as hub and spoke with S1A as the
> hub, why is there a link in the virtual network between VN2 and VN3?
>
> ---
>
> 5.
>
> General question about counters based on my memory of how we did MIBs
> (So I am old! Quite possible that YANG does this differently.) Don't
> you need something to handle resets? That is, to distinguish between
> wrapping and resetting, we used to include a timestamp for when the
> counters were last reset. Sometimes this was a timestamp per counter,
> but usually enough for one timestamp across all counters.
>
> (This probably makes a difference to the gauges and percentiles, too.)
>
> Re-reading, it is possible that this is covered by 'reference-time' and
> 'measurement-interval'.  If so, this could be a lot clearer in 4.4.
>
> ---
>
> 5.
>
>       leaf pm-source {
>         type string;
>         config false;
>         description
>           "The OAM tool used to collect the PM data.";
>       }
>
> I'm not convinced that using a string here is helpful. How does the
> device know what string to use to convey meaning to the application?
>
> Or is the point that this is just printable information for display and
> human consumption? If so, perhaps a note to this effect in Section 4.4.
>
> == Nits ===
>
> Abstract
>
> It would be nice to say what the model in 8345 is. So...
>
>    The data model for network topologies defined in RFC 8345 introduces
>    vertical layering relationships between networks that can be
>    augmented to cover network and service topologies.
>
> ---
>
> Abstract
>
> I think PM stands for 'performance monitoring' not 'network performance
> monitoring', so for the avoidance of doubt...
>
>    This document defines a YANG module for
>    performance monitoring (PM) of both networks and VPN services that
>    can be used to monitor and manage network performance on the topology
>    at higher layer or the service topology between VPN sites.
>
> ---
>
> 2.
>
> You have the BCP 14 boilerplate, but the uses of "should" and "must" in
> the document are in lower case. There is one use of upper case "MAY" in
> the Security Considerations which should be, I think, lower case since
> it is a statement of fact not guidance to an implementer of this spec.
>
> ---
>
> 3.
>
> s/Such an information/Such information/
> s/should be setup/should be set up/
> s/using network performance/using a network performance/
> s/information from Traffic/information from the Traffic/
>
> ---
>
> The Legend for Figure 3 could usefully add
>    S:Site
>
> It might also help to indicate the difference between links that are
> shown as | and mappings that are shown as :
>
> ---
>
> 4.2
>
> s/do not need to be extended./does not need to be extended./
>
> ---
>
> 4.2, 4.3
>
> Figures 4 and 5 should be referred to from the text.
>
> ---
>
> 4.4
>
> OLD
>       Setting a percentile into
>       0.00 indicates the client is not interested in receiving
>       particular percentile.
> NEW
>       Setting a percentile to
>       0.00 indicates the client is not interested in receiving
>       that particular percentile.
> END
>
> s/metric (e.g./metric (e.g.,/
>
> OLD
>    "reference-time" "measurement-interval"
> NEW
>    "reference-time" and "measurement-interval"
> END
>
> ---
>
> 5.
>
>    The "ietf-network-vpn-pm" module uses types defined in [RFC8345],
>    [RFC6991], and [RFC8532].
>
> You probably need to add [I-D.ietf-opsawg-vpn-common].
>
>       "RFC CCCC: A Layer 2/3 VPN Common YANG Model";
>
> I think you need a note to the RFC Editor to change that (although it
> is likely that the RFC will come out relatively soon and you may get to
> fix it up yourself).
>
> Similarly...
>
>      This version of this YANG module is part of RFC XXXX; see
>      the RFC itself for full legal notices.";
>
>   revision 2021-07-06 {
>     description
>       "Initial revision.";
>     reference
>       "RFC XXXX: A YANG Model for Network and VPN Service Performance
>                  Monitoring";
>
> You need a note to the RFC Editor to fix this up.
>
> ---
>
> 5.
>
> Shouldn't 'percentile' also have a range?
>
> ---
>
> 6.
>
>    There are a number of data nodes defined in this YANG module that are
>    writable/creatable/deletable (i.e., config true, which is the
>    default).  These data nodes may be considered sensitive or vulnerable
>    in some network environments.  Write operations (e.g., edit-config)
>    to these data nodes without proper protection can have a negative
>    effect on network operations.  These are the subtrees and data nodes
>    and their sensitivity/vulnerability:
>
>    o  /nw:networks/nw:network/svc-topo:svc-telemetry-attributes
>
>    o  /nw:networks/nw:network/nw:node/svc-topo:node-attributes
>
> This feels like it may have been block copied from another document. I
> think it needs updating for the specific writeable objects in this
> module and the negative effects (which are surely not very great) of
> them being unprotected.
>
> _______________________________________________
> OPSAWG mailing list
> OPSAWG@ietf.org
> https://www.ietf.org/mailman/listinfo/opsawg
>

v2.23.0 | Report a Bug | By Email