Re: ForCES Framework submission for AD Review
Alex Zinin <zinin@psg.com> Wed, 12 March 2003 01:57 UTC
Received: from www1.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA22797 for <rtg-dir-archive@ietf.org>; Tue, 11 Mar 2003 20:57:48 -0500 (EST)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2C2C1O22527; Tue, 11 Mar 2003 21:12:01 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h2C2BEO22471 for <rtg-dir@optimus.ietf.org>; Tue, 11 Mar 2003 21:11:14 -0500
Received: from psg.com (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA22777 for <rtg-dir@ietf.org>; Tue, 11 Mar 2003 20:56:58 -0500 (EST)
Received: from psg.com ([147.28.0.62] helo=127.0.0.1) by psg.com with esmtp (Exim 3.36 #1) id 18svWJ-000JQ4-00; Tue, 11 Mar 2003 17:59:03 -0800
Date: Tue, 11 Mar 2003 17:44:30 -0800
From: Alex Zinin <zinin@psg.com>
X-Mailer: The Bat! (v1.62i) Personal
Reply-To: Alex Zinin <zinin@psg.com>
X-Priority: 3 (Normal)
Message-ID: <5434613892.20030311174430@psg.com>
To: "Putzolu, David" <david.putzolu@intel.com>
CC: "Patrick Droz (dro@zurich.ibm.com)" <dro@zurich.ibm.com>, Bill Fenner <fenner@research.att.com>, rtg-dir@ietf.org
Subject: Re: ForCES Framework submission for AD Review
In-Reply-To: <FD2423AA68A7D511A5A20002A50729E1064BF95F@orsmsx115.jf.intel.com>
References: <FD2423AA68A7D511A5A20002A50729E1064BF95F@orsmsx115.jf.intel.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
Sender: rtg-dir-admin@ietf.org
Errors-To: rtg-dir-admin@ietf.org
X-BeenThere: rtg-dir@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=unsubscribe>
List-Id: Routing Area Directorate <rtg-dir.ietf.org>
List-Post: <mailto:rtg-dir@ietf.org>
List-Help: <mailto:rtg-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
David, I'm taking this thread to the rtg-dir list so I don't function as a relay. I'll be sending my comments in a separate e-mail. Regards. -- Alex Wednesday, March 5, 2003, 4:48:15 PM, Putzolu, David wrote: > Hi Alex. > My compliments to Chris Hopps - it is clear that he > really did a thorough job reading this stuff and grasped > the essentials quite well. > My responses inline. >> > - NIT: 8-bit set characters in draft. >> > >> > - How does the architecture deal with multiple distinct CEs sharing >> > a single FE. The framework mentions multiple CEs with an Fr link >> > but these CEs actually implement a single logical CE. Does this >> > mean that the physical FE must present multiple virtual FEs if it >> > is to be shared amongst multiple real CEs? Perhaps this restriction >> > should be pointed out. > My understanding of having multiple CEs sharing > a single FE is that it falls into two cases: > * Either the FE is a physical FE that is logically > partitioned into multiple virtual FEs (GSMP wg has > a draft that does this). If this is the case, each > virtual FE only sees a single CE, so the issue becomes > one of defining a robust virtualization (not something > we are trying to do). I remember discussions about this > in the WG, but can't find anything in the framework, so > this may be a missing item. > * The other case is that the FE actually does have > multiple CEs controlling it. In this case the approach > I understand they have taken is that they require that > the CEs must cooperate (via the Fr reference point) to > ensure that the FE receives consistent information via > ForCES. This becomes in effect a multi-master control > problem, which is too difficult for FEs to be asked to > solve (as it would involve some sort of capabilities > or role-based scheme or other similar complexity). See > the 3rd paragraph of section 3.1. >> > - The architecture does not (currently) define Fi >> (forwarding interface >> > between FEs); however, if the goal is promote interchangeability, >> > is this not critical to standardize at some level? > Yes. Fi (and several of the other reference points defined > by the framework) all are necessary to achieve complete > plug and play. ForCES is solving one part of the puzzle. > When ForCES was chartered there was an awareness of these > other problems but it was felt that a single WG was not > the right place to address them all. > Some of the necessary technologies are already happening > in other places. PCIsig is defining hardware and interconnect > standards that can be used to interoperably put blades > together. NPF is defining a way to enable state sharing > between blades of per-packet information. > I would actually like your opinion and advice on this topic. > In particular, I believe it would be valuable for a real > standards body like IETF (as opposed to a forum/sig) to > define the entire standard. At the same time, while some > of the reference points (e.g. Fp, Fc, Ff) are likely to be > run across networks, some others (Fi) will probably remain > "within" boxen for a long time, due to bandwidth/performance > requirements (imho). Are purely within-boxen technologies > the right thing to do @ IETF? >> > - The arch. seems to require single managers (CE and FE). Is there a >> > need for an arbitration mechanism? I'm imagining multiple >> blades (FEs) >> > each with a "bus master" capability. I.e., N of M blades in an NE >> > might be capable of being the FE manager. > The FE and CE managers are logical entities, and their > function is one of initial configuration of FEs and CEs > to be able to find each other (section 1, bottom of p3). > So I'm not really sure I understand the bus master analogy. > If there is a need for multiple managers they > would probably need to arbitrate among themselves to decide > who gets to give the FE or CE its initial config info. >> > - in 5.4 there appears to be no mechanism mentioned to >> allow for the CE >> > to block delivery of exceptional packets from the FE. Is >> this therefore >> > susceptible to DoS attack? > A DoS attack is a real possibility and the filtering > mentioned in para 2 and 3 of 5.4 would be used to drop > such packets when an attack is detected. In addition > to this, the requirements say that a priority mechanism > is necessary - this is needed to deal with a DoS attack > when it first happens (before filters are installed) > to allow prioritization of delivery of the packets > that install the filter on the FE over delivery of > the packets being "aimed at" the CE. See section 7 requirement > 5 in the requirements. > I was unable to find any mention of this in the framework, > but the framework is more about identifying architectural > entities and functions than protocol details. Should this > be included in the framework as well as the > requirements/protocol proposals? >> > - allowing ospf hello and other portions of CE functionality to be >> > implemented by FEs appears to open the architecture so wide it would >> > be impossible to actually achieve the goal of interchangeable operation. > I think a generic framework for offloading anything > would indeed be too open ended (and would seem to me > to be akin to defining some sort of virtual machine > on the FE). My belief is that it would be necessary > to tackle such things on a case-by-case basis, i.e. > define a standard way to do OSPF hello offload for > instance. If the problem is broken into manageable > pieces then I think it is not too wide open. >> > - does the architecture allow for non-stop forwarding? Perhaps this >> > should be directly addressed somewhere. > Good catch. Requirements doc section 5 (arch requirements) item 7 > mentions this. Framework probably should as well. >> > More general: >> > >> > - The document mentions in a few places that ForCES will >> focus on the >> > ForCES protocol only (the CE/FE communication channel). It >> does point out >> > the other communication channels (and therefore possibly protocols) >> > may exist or be required. >> > >> > If the goal of ForCES is to allow for interchangeable >> operation of CEs >> > and FEs (if it isn't why standardize it?), how can we not >> also plan on >> > standardizing the other required protocols (at minimum the >> CE Mgr - FE Mgr, >> > CE Mgr - CE, FE Mgr - FE, and FE - FE). > Are these two questions the same as the Fi one up above? > If so see my response above. If not I'm having trouble > understanding and could use some elaboration :) > Note: I have responded to all of the above based on my > personal understanding in an effort to get a prompt answer > out. Is it ok for me to share the feedback directly with > the authors and/or WG (and if so, should it be anonymized?) > I don't really know what IETF procedure is on this. > Thanks, > David
- Re: ForCES Framework submission for AD Review Alex Zinin
- Re: ForCES Framework submission for AD Review Alex Zinin
- RE: ForCES Framework submission for AD Review Putzolu, David
- Re: ForCES Framework submission for AD Review Alex Zinin
- RE: ForCES Framework submission for AD Review Putzolu, David