IETF Logo Mail Archive

RE: [Apn] A new draft on APN for your review, thank you!

Linda Dunbar <linda.dunbar@futurewei.com> Fri, 22 January 2021 17:27 UTC

Return-Path: <linda.dunbar@futurewei.com>
X-Original-To: rtgwg@ietfa.amsl.com
Delivered-To: rtgwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 770DC3A1391; Fri, 22 Jan 2021 09:27:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.989
X-Spam-Level:
X-Spam-Status: No, score=-1.989 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TpgBoke94my8; Fri, 22 Jan 2021 09:27:38 -0800 (PST)
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11on2105.outbound.protection.outlook.com [40.107.223.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C7CAB3A1641; Fri, 22 Jan 2021 09:26:27 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XDghdD7vcTiL58m+Rs9xhKgCfyj+7FI18sVQrQTzChhhiiXGdz9K16lcknfulQpEEVbBrrKhIH6FYxwiUoSHhEFxXgo2+zXO3cYiMVQPe81toO0qy933ohPHuSG/2NHqyKIGyZKuFMraeAdfIQP2CPjNlCLuDcRewzKwAzC5F3k4OSahVT06qwHDRRObQqhVOBkdi20wT0CYoxav0k/aeOHxN5gteED9Upb6uK84NF3ZX8BJ2mSSMwC+oid6Rs5i4rAlz8iCLUMEYmNf5vcr1w1FPg8rtrTGzp6ARjEpktzS/p030M/OCBq6lMjwRDplX2mvWV1vwzHaHDhgnCK4Mw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yG5kMKpbL+G/v4N/yoRGHqlU/RjqvA8OCrQ7/zQXaw4=; b=DSFuX7P+g8vgszpQlA+K4q4AwemaukJuNBIH35DKVmfLntJsp2QYXl9SMbVMFrwaf7KNmj4ceXkTJzFsbQ6pscTwQTrKDUW4plzfJ2PmbbzwfFZKrqzKZ5FgY1wUEmYfDGYJTxnl1/QHVjBaAJSiZadcLnndyeHVJ1DDZ8cjxYjTp0PF2Msg5xCsfY61tqCoq9xtgJy9KmbqI0w5mOjMqGiQ6BSyxPHI3JiYeZ+P3V9Xbhz6b24iwawbl9VGKE0d7KyrSPHYmECoMVdfN9AvSVEqbVaBWvneEwhK60/fsAVJnd4Tc3VWGWTf6dmoLcJqdIz/Fkz/L72TQUzFEOC57w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yG5kMKpbL+G/v4N/yoRGHqlU/RjqvA8OCrQ7/zQXaw4=; b=hN6Q50A/mmA7N+Nsce7AouOTPbnC1RXP0/mCf4Gq4wm3XZdLifyDX1TWlwgfVR4Bcnhz8uEkYwrznBJ0ed/xlyCt7TKn1d5qJg9eyCXILQrqcEV3+4qGU5vfv8jJr9+NKyehsvl3hB0JJJGlVi+/he8T9ZRbf3U+O99aIvld9SE=
Received: from (2603:10b6:805:55::16) by SN6PR13MB4221.namprd13.prod.outlook.com (2603:10b6:805:a::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3805.5; Fri, 22 Jan 2021 17:26:25 +0000
Received: from SN6PR13MB2334.namprd13.prod.outlook.com ([fe80::c0e0:2f3f:efcb:e8c7]) by SN6PR13MB2334.namprd13.prod.outlook.com ([fe80::c0e0:2f3f:efcb:e8c7%7]) with mapi id 15.20.3805.006; Fri, 22 Jan 2021 17:26:25 +0000
From: Linda Dunbar <linda.dunbar@futurewei.com>
To: Feng Yang <yangfeng@chinamobile.com>, "'Pengshuping (Peng Shuping)'" <pengshuping@huawei.com>, "apn@ietf.org" <apn@ietf.org>, "rtgwg@ietf.org" <rtgwg@ietf.org>
Subject: RE: [Apn] A new draft on APN for your review, thank you!
Thread-Topic: [Apn] A new draft on APN for your review, thank you!
Thread-Index: AdbSj5OZJp0yHZz0SGiKnve9MVZvEAcTh4oQAGxAxeAAFK0zoA==
Date: Fri, 22 Jan 2021 17:26:25 +0000
Message-ID: <SN6PR13MB2334BEF2338ED51B4C65C9A585A09@SN6PR13MB2334.namprd13.prod.outlook.com>
References: <4278D47A901B3041A737953BAA078ADE197FAE1A@DGGEML532-MBX.china.huawei.com> <006f01d6f093$ad416090$07c421b0$@com>
In-Reply-To: <006f01d6f093$ad416090$07c421b0$@com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: chinamobile.com; dkim=none (message not signed) header.d=none;chinamobile.com; dmarc=none action=none header.from=futurewei.com;
x-originating-ip: [72.180.73.64]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a0f847f5-f99e-42a6-e350-08d8befad847
x-ms-traffictypediagnostic: SN6PR13MB4221:
x-microsoft-antispam-prvs: <SN6PR13MB422143654A389D299BA9F24D85A09@SN6PR13MB4221.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Z/kqQFCkgnEPaeWXuhhZBBonEWBGE9q78bU4MwQzTo5SiHez3RTbVzJSnS1oxftSIe7PaDs++4bVxyuD3QQKEJdQea7RLSuLXVAjXz3yN33KZtNDzfXfWtWUU9Qurp3OaXa/wq4dGBlvmZIej6HCQ+tOERkqrPk3BPaBSidKzQJlDLHYbZcu/bfLhYvOO8l45Q9cWEyicGp5p9jgKEs+WmHTygBFTGIt6EO4L1/cuQFO8De502v2AUk+pdvqAdQJrDLV/wcHXi0wx1BNTmnlmAK7r4QiFysRpIrYVidMlTWg1i2llxtqfXhVYKIMbTrwmiv4NitqxhsH9BIXIo7Nvg0kItu3wbV3NtsQBKgNriMCVvCXhV3YuGniPUYGICEbXEbh4Cl8BuCWm+7A30eUrwgBjr/bcNHjQwvDZjzYMHJ9Zd44cUXIOqUUL/lR5wB9hiXECI5cm8382SFsxtiBopKOZtiHIROoePgeGFD/XFhfnEgk4nuqgw4WDkHxSkd4RCjSTtDjCT7yj5m4l9T1Bg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN6PR13MB2334.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(366004)(39850400004)(376002)(396003)(346002)(478600001)(8676002)(316002)(33656002)(71200400001)(966005)(110136005)(83380400001)(7696005)(53546011)(6506007)(44832011)(166002)(26005)(4001150100001)(8936002)(66574015)(86362001)(5660300002)(66446008)(186003)(66556008)(9686003)(66476007)(2906002)(55016002)(64756008)(76116006)(52536014)(66946007)(15398625002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_SN6PR13MB2334BEF2338ED51B4C65C9A585A09SN6PR13MB2334namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN6PR13MB2334.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a0f847f5-f99e-42a6-e350-08d8befad847
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Jan 2021 17:26:25.1806 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: SERf+yxaaUWCwt8uW6gz3Q5orDFo6O6/NcaUJCkYJNMKTgoDUs9u7tTmVQhu4ykyWX6cr+zaIu5u79iDvyzb7Q==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR13MB4221
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtgwg/490cdga972fmA50Exfpn6ZOJWvY>
X-BeenThere: rtgwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Area Working Group <rtgwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtgwg/>
List-Post: <mailto:rtgwg@ietf.org>
List-Help: <mailto:rtgwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtgwg>, <mailto:rtgwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Jan 2021 17:27:41 -0000

Feng,

MEF88 (Application Security for SD-WAN services) states that if subscribers need the Security services by the SDWAN services provided by the Service Providers, the subscribers need to provide the security key (such as TLS1.2 keys) to the Providers. https://wiki.mef.net/display/DSC/SD-WAN+Application+Security+Project+Contributions

I am curious from China Mobile perspective, is it a feasible for China Mobile subscribers to provide their TLS1.2 key to you?

Thanks, Linda Dunbar


From: rtgwg <rtgwg-bounces@ietf.org> On Behalf Of Feng Yang
Sent: Friday, January 22, 2021 1:54 AM
To: 'Pengshuping (Peng Shuping)' <pengshuping@huawei.com>; apn@ietf.org; rtgwg@ietf.org
Subject: 答复: [Apn] A new draft on APN for your review, thank you!

Hi Shuping,

SD-WAN is expected to carry quite some applications over hybrid links, such as internet, mpls, etc. Only with the application information, , it is possible for SD-WAN CPE to direct the traffic over different paths according to the application requirement.
For the application information, quite some ways work properly if the traffic is not encrypted. So the problem here is how to get the application information from the encrypted packets.

Application information is the base that we can provide a lot of services. We expect to combine this with SRv6  in order to provide a new competitive SD-WAN service which can put SLA service、cloud based VAS(Value Added Service) together in a flexible way.

BR,

杨锋
Feng Yang

发件人: Apn [mailto:apn-bounces@ietf.org] 代表 Pengshuping (Peng Shuping)
发送时间: 2021年1月20日 14:18
收件人: apn@ietf.org<mailto:apn@ietf.org>; rtgwg@ietf.org<mailto:rtgwg@ietf.org>
主题: Re: [Apn] A new draft on APN for your review, thank you!

Dear all,

In the MEF 70 “SD-WAN Service Attribute and Services”, Table 4 on Page 36 has defined the fields (from layer 2 through layer 4) which are expected to be able to match against ingress IP Packets. APPID is explicitly listed as a criterion.

“The APPID Policy Criterion provides the ability for the Service Provider to define and name both simple and complex matches. These can include standard matches available to all of the Service Provider’s Subscribers from a catalog and/or custom matches developed by the Service Provider by agreement with a particular Subscriber.”

https://www.mef.net/wp-content/uploads/2019/07/MEF-70.pdf<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.mef.net%2Fwp-content%2Fuploads%2F2019%2F07%2FMEF-70.pdf&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437111085%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=N0zZ3aZ%2F88oYs3GG4FJbj3eUbXQz%2B1xZKZ5HX8KW99Y%3D&reserved=0>

Is there anybody who knows more about the details about this criterion and its implementations of the catalog and the interactions? How does the standard match and the custom match work in the real system? What are the key elements in the system? How do they interact?

Many thanks!

Best regards,
Shuping


From: Pengshuping (Peng Shuping)
Sent: Tuesday, December 15, 2020 11:12 AM
To: apn@ietf.org<mailto:apn@ietf.org>; rtgwg@ietf.org<mailto:rtgwg@ietf.org>
Subject: A new draft on APN for your review, thank you!


Dear all,



A new draft on APN has been posted, https://datatracker.ietf.org/doc/html/draft-peng-apn-scope-gap-analysis<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-peng-apn-scope-gap-analysis&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437121080%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=2zHps5x%2BPAngdBs2OmoWDoZVfcuJR00vulMhdP8Q%2B%2FA%3D&reserved=0>.



In this draft, we clarified the scope of the APN work in IETF, introduced an example use case and the basic solution. Moreover, we compared with the existing “similar” work/solutions and did corresponding gap analysis.



Your review and comments are very much appreciated. Thank you!



Best regards,

Shuping





A new version of I-D, draft-peng-apn-scope-gap-analysis-00.txt

has been successfully submitted by Shuping Peng and posted to the IETF repository.



Name:              draft-peng-apn-scope-gap-analysis

Revision: 00

Title:                 APN Scope and Gap Analysis

Document date:      2020-12-16

Group:              Individual Submission

Pages:              11

URL:            https://www.ietf.org/archive/id/draft-peng-apn-scope-gap-analysis-00.txt<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-peng-apn-scope-gap-analysis-00.txt&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437121080%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=xM21DHtsz2HcEqAWrNzsSvcTxTKtXCaGHat2kx4Dn0c%3D&reserved=0>

Status:         https://datatracker.ietf.org/doc/draft-peng-apn-scope-gap-analysis/<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-peng-apn-scope-gap-analysis%2F&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437131063%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=gqxkPULsqdZjCJ7xw3qTabkdm96wv%2BSnYpNBEQ0VjA0%3D&reserved=0>

Htmlized:       https://datatracker.ietf.org/doc/html/draft-peng-apn-scope-gap-analysis<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-peng-apn-scope-gap-analysis&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437131063%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=%2FqDARDM4UG0Drbr%2F5U4nx3HF5E1fG%2Fv2dbX3rGB5Mo0%3D&reserved=0>

Htmlized:       https://tools.ietf.org/html/draft-peng-apn-scope-gap-analysis-00<https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-peng-apn-scope-gap-analysis-00&data=04%7C01%7Clinda.dunbar%40futurewei.com%7C4c092e96fa604c5f89eb08d8beaae006%7C0fee8ff2a3b240189c753a1d5591fedc%7C1%7C0%7C637468988437141061%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000&sdata=A2v6Dqx61FmMXdHf8K2guAmQEutAz55CBye7iFscNNo%3D&reserved=0>





Abstract:

   The APN work in IETF is focused on developing a framework and set of

   mechanisms to derive, convey and use an identifier to allow for

   implementing fine-grain user-, application-, and service-level

   requirements at the network layer.  This document describes the scope

   of the APN work and the solution gap analysis.

v2.23.0 | Report a Bug | By Email