[Supa] FW: [supa]review of draft-cheng-supa-applicability-01
"King, Daniel" <d.king@lancaster.ac.uk> Mon, 29 May 2017 13:22 UTC
Return-Path: <d.king@lancaster.ac.uk>
X-Original-To: supa@ietfa.amsl.com
Delivered-To: supa@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6896128854 for <supa@ietfa.amsl.com>; Mon, 29 May 2017 06:22:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.5
X-Spam-Level:
X-Spam-Status: No, score=-1.5 tagged_above=-999 required=5 tests=[BAYES_50=0.8, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ciWPiwvBzP5R for <supa@ietfa.amsl.com>; Mon, 29 May 2017 06:22:09 -0700 (PDT)
Received: from mh-1-0.lancs.ac.uk (mh-1-0.lancs.ac.uk [148.88.65.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5425129572 for <supa@ietf.org>; Mon, 29 May 2017 06:22:08 -0700 (PDT)
Received: from ex-1-ht0.lancs.ac.uk ([10.42.18.57] helo=EX-1-HT0.lancs.local) by mh-1-0.lancs.ac.uk with esmtps (TLSv1:ECDHE-RSA-AES256-SHA:256) (Exim 4.88) (envelope-from <d.king@lancaster.ac.uk>) id 1dFKcY-000241-9a; Mon, 29 May 2017 14:22:06 +0100
Received: from EX-0-MB2.lancs.local ([fe80::9d98:936b:54d1:c531]) by EX-1-HT0.lancs.local ([fe80::d9e8:ad10:d075:a6b6%12]) with mapi id 14.03.0319.002; Mon, 29 May 2017 14:22:06 +0100
From: "King, Daniel" <d.king@lancaster.ac.uk>
To: SUPA list <supa@ietf.org>
CC: "tianxu@chinamobile.com" <tianxu@chinamobile.com>
Thread-Topic: [supa]review of draft-cheng-supa-applicability-01
Thread-Index: AQHS1wGuvCeiKNb3u0WrviLJRYV/7qILTkyg
Date: Mon, 29 May 2017 13:22:06 +0000
Message-ID: <65174429B5AF4C45BD0798810EC48E0A942C0E3A@EX-0-MB2.lancs.local>
References: <201705272355366273963@chinamobile.com>
In-Reply-To: <201705272355366273963@chinamobile.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [109.156.71.217]
x-iss-local-domain: 1
Content-Type: multipart/alternative; boundary="_000_65174429B5AF4C45BD0798810EC48E0A942C0E3AEX0MB2lancsloca_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/supa/Usv6BgBA50_qhj5qpPZU1KBpMvc>
Subject: [Supa] FW: [supa]review of draft-cheng-supa-applicability-01
X-BeenThere: supa@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This list is to discuss SUPA \(Simplified Use of Policy Abstractions\) related issues." <supa.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/supa>, <mailto:supa-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/supa/>
List-Post: <mailto:supa@ietf.org>
List-Help: <mailto:supa-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/supa>, <mailto:supa-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 May 2017 13:22:16 -0000
Hi supa’s, Please find attached a review of draft-cheng-supa-applicability (version 01) from Tony - Thank you so much!). Alas, Tony’s initially email bounced hence my forwarding his review to the list. This is not the first time some supa participants have been unable to post to the list but we were unable to find anything wrong with the mailer previously. Either way, we will look again at the issue. Thanks, Dan. 发件人: tianxu@chinamobile.com<mailto:tianxu@chinamobile.com> 发送时间: 2017-05-27 17:28 收件人: supa@ietf.org<mailto:supa@ietf.org> 主题: [supa]review of draft-cheng-supa-applicability-01 Hi all, I was invited to review this draft. I think the authors have picked three most typical use cases which are meaningful for the people who would implement SUPA. Here are my comments: *Technical: 1. I wonder the meaning of section 3, the part copied from framework draft, may not be needed. 2. I suggest to replace the title of 4.2.2.and 4.2.3 with detailed information instead of writing just Example 1 / 2. 3. The writer wrote “We will define "edgeInterface" role and "EnterpriseDomain" later in this note” but I failed to find the explanation for these two term. *Editoral: 1. Page 5 a model of policy rules, derived from EPRIM, that consist of an event clause, c condition clause, and an action clause. change to: a model of policy rules derived from EPRIM. Each policy rule consists of an event clause, a condition clause and an action clause. 2. Page 5 which is out the scope of SUPA change to: which is out of the scope of SUPA 3. Page 5 SUPA also make use of information collected from network elements Change to SUPA also makes use of information collected from network elements 4. Page 6 Figure 2 SUPA Data Model A Change to SUPA Data Model 1 5. Page 6 The internal details of the network manager / controller may be out of the scope of SUPA, but explaining how it works may help people to understand and implement SUPA Change to The internal details of the networks manager / controller and how it works is presented to help people better understand and implement SUPA, though it may be out of the scope of SUPA. 6. Page 7 SUPA will reference it rather than trying to define it again. Change to SUPA will reference it rather than try to define it again. 7. Page 7 or the controller may use more complicated algorithms to find out if a router is an edge route, which is implementation specific. Change to or the controller may use more complicated algorithms to find out if a router is an edge router, which is implementation specific. 8. Page 7 such as protocol specific information, traffic with TCP destination port 22 is SNMP traffic Change to a. such as protocol specific information, traffic with TCP destination port 22 being SNMP traffic. b. such as protocol specific information that traffic with TCP destination port 22 is SNMP traffic. 9. Page 7 The network manager / controller also collect information from the network device Change to The network manager / controller also collects information from the network device 10. Page 8 the network manager / controller should converted this action into configuration “disable traffic on TCP port 22” in the IP stack Change to the network manager / controller should convert this action into configuration “disable traffic on TCP port 22” in the IP stack 11. Page 8 which make it possible to support devices from different vendors Change to: which makes it possible to support devices from different vendors 12. Page 8 ensures that SNMP is blocked on ports at the edge Change to: ensure that SNMP is blocked on ports at the edge 13. Page 10 The first case is the simplest, and likely what most people thought. Conceptually, it could look as follows Change to: The first case is the simplest, and like what most people thought. Conceptually, it could be viewed as follows 14. Page 10 meaning that the Policy Engine will be doing a lot of work when most of the time, no policy action is needed. Change to: Meaning that the Policy Engine will keep doing a lot of work when most of the time, no policy action is needed. 15. Page 11 The last paragraph and the third paragraph (starting with “In addition…” ) Change to Delete one (exactly same) 16. Page 11 The manipulation of the virtualized VPC network may also affect the configuration of physical network. Change to: The manipulation of the virtual VPC network may also affect the configuration of physical network. 17. Page 11 The second paragraph (starting with “The manipulation …”) and the fourth paragraph (starting with “In many cases”) Change to: The fourth paragraph might be part of the second paragraph. The fourth paragraph seems like the part after “The manipulation … physical network”. Delete the fourth paragraph. 18. Page 11 newly deploys two VMS in the VPC which are located in different DCs Change to To deploy two new VMS in the VPC which are located in different DCs 19. Page 11 a tenant wants to deploy multiple VPNs to connect the VPC with its private cloud networks and specify the policies to steer the traffics through different VPNs in different conditions Change to a tenant has to specify the policies to steer the traffics through different VPNs in different conditions, if the tenant wants to deploy multiple VPNs to connect the VPCs with its private cloud networks 20. Page 11 Note that the VPCs that the tenant may be located in different geographic regions and the VPNs to those VPCs may need to …. Change to: Note that the tenant may be located in different geographic regions and …. 21. Page 12 There could be quite a number of tunnels, and the tunnel are dynamic, either for the reason of load balancing purpose or VM migration, or other reasons. Change to: There could be quite a number of dynamic tunnels, caused by the purpose of load balancing, VM migration or other reasons. 22. Page 12 service automation is very necessary Change to: and thus, service automation is very necessary 23. Page 13 When a VPC tenant move from one location to another Change to: When a VPC tenant moves from one location to another 24. Page 14 Perform VM migration when user location changed and the network load between the DCs is low Change to: Perform VM migration when user’s location changes and the network load between the DCs is low 25. Page 14 the network manager / controller will check the user’s IP address against an IP address database Change to: the network manager / controller will check the user’s IP address according to an IP address database 26. Page 14 The network manager / controller also maintain a mapping of DCs and IP address segments Change to The network manager / controller also maintains a mapping of DCs and IP address segments 27. Page 14 a DC should serve users in a near location Change to: a DCs should serve users in a nearby location 28. Page 15 minimize the operation procedures Change to: to minimize the operation procedures 29. Page 16 Event: service management system receive a CE requests for VPN creation (forwarded by PE) Change to Event: service management system receives a CE requests for VPN creation (forwarded by PE) Thanks a lot! Best wishes Tony Tian China Mobile ________________________________ tianxu@chinamobile.com<mailto:tianxu@chinamobile.com>
- [Supa] FW: [supa]review of draft-cheng-supa-appli… King, Daniel