[Teas-ns-dt] Network Slicing and Enhanced VPN Drafts
John E Drake <jdrake@juniper.net> Thu, 09 January 2020 19:52 UTC
Return-Path: <jdrake@juniper.net>
X-Original-To: teas-ns-dt@ietfa.amsl.com
Delivered-To: teas-ns-dt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id C57BE120800
for <teas-ns-dt@ietfa.amsl.com>; Thu, 9 Jan 2020 11:52:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1,
DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7,
SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=juniper.net header.b=jXxi1foH;
dkim=pass (1024-bit key)
header.d=juniper.net header.b=dyfp1z5Z
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id wB7lK9yZdft2 for <teas-ns-dt@ietfa.amsl.com>;
Thu, 9 Jan 2020 11:52:00 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com
[208.84.65.16])
(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 5C937120047
for <teas-ns-dt@ietf.org>; Thu, 9 Jan 2020 11:52:00 -0800 (PST)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1])
by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id
009JkLKs012090; Thu, 9 Jan 2020 11:51:59 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net;
h=from : to : cc :
subject : date : message-id : content-type : content-transfer-encoding :
mime-version; s=PPS1017; bh=/g+wFhHDYSq7xlbPK3zxDhj5exb3qxyO6zA8A7GNs5I=;
b=jXxi1foHWSmEbYRXozSZGH3+8sJBm4TQoi3PgFIPM8MhXF6ewuTzoW/iCPKQunBhTD0O
tw6IgjZ0X+O1JSjiEosyi1OHTBYU4cJy6mzRCBVOoxeB0fFayuFBDZ/FEP+0w9ec8Yl5
wm/xQms1qfcIkMS0IXc+5PwRUML1k4qvQDRumYF3obDzonm9tqxJXfh1OsHkRdzF/7g2
DfA0Q8mlNCmsrKvPW8IghWBhKiCUPFpxHW4/1XbWXV797f0pKtWZbjInUegL6+hASkIs
iLW34EYsvn0d02atVFgn8aJhxs1h/cRSqTVeAzP45/MISlbM8/sXol7eA6ngKzfm52Ls qA==
Received: from nam12-dm6-obe.outbound.protection.outlook.com
(mail-dm6nam12lp2171.outbound.protection.outlook.com [104.47.59.171])
by mx0a-00273201.pphosted.com with ESMTP id 2xe0vh127b-1
(version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
Thu, 09 Jan 2020 11:51:59 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=C2WJB0//o6PjgB+BRtnNVeExmcvVPAIyeG/t92bInrBJkvEu9wkXvLDgsI37muXHefq3R7CYWqMqChsS05o0apUEgZHCnPka3kSy8hoCqpLKL1dozbgHxIjNpn8wdD/NXr7//+6BWtza6ySPgECKh7NrkSurEYOuI+Crv887WfV/sI/Be8GLQxuC+oOW6Aos4+ggXoqpGKe2P4OTYskR+hFZ4YfhqUuQwWYkc5YHOjBeZk90feFDaGe2Dav+Bb+BfokhUV+ShcJ7OTSMghfsdei/DpO25S1UKXUpDfgVdqIVGyA7TWgJh/U7fZrYp3JjlyjmEVZPN9wUN+Ro0RqmGA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=/g+wFhHDYSq7xlbPK3zxDhj5exb3qxyO6zA8A7GNs5I=;
b=e8CfXcoMKL/s7YKY3h6+65WTW5X7MRz+52Th7dxPS99snNnmESvI5Nnw9ycnncpbvEb0gmMQfNsWdDZjlw7HtHfvJ5b0wjK+JW6RlE6yIDIT6uqdahsgku9h4s+BFEpfIQOlVXRWjmL9sCjfpdTEEQHGRPUg9VHv6XZTS5uzf5B/SEccjPe/vZfjO2LG0NYhjY6e417KY8QLTL2HjIcHR0hVWx4ROAad938T4QZLhdUy/zAZCLjU8sUvQFi0z02GATQ3qz8rawkFBrnoczmOQ20SzPBQ2N87LUoh+hjzA02WHUnfzyzJy8BbnASc+4hTdqJ4Y4sDPwEytquJenfxiw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net;
dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net;
s=selector1;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=/g+wFhHDYSq7xlbPK3zxDhj5exb3qxyO6zA8A7GNs5I=;
b=dyfp1z5ZBXkLUcr1dwjr7jx/6wekhL32lDrtt+fNtgevdYgTjn/V+6Mhd0251y41E1z6U+i9qvaES8UFiCS5eLqJciQFJ4QT06z85FXgy0iqRSV2DCC83HsDZf/jr6hJ3sR6AQB2JVsjL4jE8FYNtAUFwqdHEKAKOR4nwiOtVEg=
Received: from DM6PR05MB6426.namprd05.prod.outlook.com (20.178.225.83) by
DM6PR05MB3980.namprd05.prod.outlook.com (20.176.65.158) with Microsoft SMTP
Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
15.20.2623.5; Thu, 9 Jan 2020 19:51:55 +0000
Received: from DM6PR05MB6426.namprd05.prod.outlook.com
([fe80::b145:421e:fb07:2d00]) by DM6PR05MB6426.namprd05.prod.outlook.com
([fe80::b145:421e:fb07:2d00%3]) with mapi id 15.20.2623.011; Thu, 9 Jan 2020
19:51:55 +0000
From: John E Drake <jdrake@juniper.net>
To: "teas-ns-dt@ietf.org" <teas-ns-dt@ietf.org>
CC: Stewart Bryant <stewart.bryant@gmail.com>, "adrian@olddog.co.uk"
<adrian@olddog.co.uk>
Thread-Topic: Network Slicing and Enhanced VPN Drafts
Thread-Index: AdXHIW50PRXKxkE2Qoaf9aQSm62uPQ==
Content-Class:
Date: Thu, 9 Jan 2020 19:51:55 +0000
Message-ID: <DM6PR05MB6426EA8E0057C889E8CC9A8CC7390@DM6PR05MB6426.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=jdrake@juniper.net;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-01-09T19:51:52.6885350Z;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use
Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft
Azure Information Protection;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=2723d4b7-f124-4e13-94c1-1012e35955b6;
MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.3.2.8
dlp-reaction: no-action
x-originating-ip: [66.129.241.13]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 6a058046-b062-4201-96db-08d7953d615d
x-ms-traffictypediagnostic: DM6PR05MB3980:
x-microsoft-antispam-prvs: <DM6PR05MB398087527EB678443AD93EC1C7390@DM6PR05MB3980.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 02778BF158
x-forefront-antispam-report: SFV:NSPM;
SFS:(10019020)(39860400002)(136003)(396003)(346002)(376002)(366004)(199004)(189003)(81156014)(71200400001)(64756008)(7696005)(8676002)(6506007)(186003)(26005)(66476007)(86362001)(2906002)(76116006)(4326008)(52536014)(55016002)(966005)(5660300002)(66446008)(6916009)(316002)(81166006)(8936002)(33656002)(66946007)(54906003)(66556008)(9686003)(478600001);
DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB3980;
H:DM6PR05MB6426.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en;
PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate
permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 6a058046-b062-4201-96db-08d7953d615d
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Jan 2020 19:51:55.4252 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: xe63aKT+UBZb/nw7z463QPIDpQ4AhoTZloQsEp7CDFTfFoSbSAwTRM1G1Q4oC3X4drDDrvfGpD5+hgtmTfD1Mg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB3980
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572
definitions=2020-01-09_04:2020-01-09,
2020-01-09 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam
score=0 adultscore=0
bulkscore=0 clxscore=1011 mlxscore=0 priorityscore=1501 spamscore=0
impostorscore=0 mlxlogscore=999 phishscore=0 malwarescore=0 suspectscore=0
lowpriorityscore=0 classifier=spam adjust=0 reason=mlx scancount=1
engine=8.12.0-1910280000 definitions=main-2001090162
Archived-At: <https://mailarchive.ietf.org/arch/msg/teas-ns-dt/clJdx9baiE9_-APDloDByOZ2qEw>
Subject: [Teas-ns-dt] Network Slicing and Enhanced VPN Drafts
X-BeenThere: teas-ns-dt@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TEAS Network Slicing Design Team <teas-ns-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teas-ns-dt>,
<mailto:teas-ns-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teas-ns-dt/>
List-Post: <mailto:teas-ns-dt@ietf.org>
List-Help: <mailto:teas-ns-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teas-ns-dt>,
<mailto:teas-ns-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Jan 2020 19:52:03 -0000
Dear Network Slicing Design Team, Stewart, and Adrian, The current definition of a network slice is, I think, an underlay network MP2MP connection between a set of endpoints with an SLO which is met between any pair of endpoints. What I think we can then say is that a variety of services are provided to those endpoints. I.e., a network slice is strictly an underlay network construct over which a variety of overlay network services are offered to individual tenants. Currently, the IETF defines overlay network services such as EVPN, L3VPN, and SFC (either separately or in combination), but this underlay/overlay separation would allow us to easily incorporate other services including those that are 5G specific. So, what we might want to consider is moving the material which is underlay network specific from the VPN+ draft to the network slicing framework draft and recasting the VPN+ draft as defining how VPN overlay services use network slices. Annotations are preceded w/ .....JD Introduction .. Refer to [definitions] ... ... Relation to existing IETF technologies ... .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-1 Requirements ... ... clarify scoping is only networking ... ... add some discussion of scalability ... .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-2, https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-5 Framework .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-3 ... diagram ... Applications ... the transport slice system is used by an application. in most likely, that application is just another level slice orchestrator, e.g., the end-to-end slice orchestrator. but in theory it could also be an actual application that wants to manage some specific connectivity through the transport slice system. ... Expressing connectivity intents .....JD I would replace the term 'applications' w/ 'overlay services' ... northbound interface ... ... data models ... ... SLOs as intents ... ... (most of this comes from the definitions draft) ... Mapping ... the requirements get mapped by a piece of software, the controller, to concrete technologies and the connectivity is set up ... Controller ... Underlying technology ... such as MPLS or VPNs or even physical cables ... .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-4 Considerations Monitoring ... we need to instrument the slice realisation to know how it is doing + update the slice as situation changes + dynamic reconfig... How to deal with hierarchy .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-6, https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-7, https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-8 ... Security model ... accidental or malicous interaction between slices raises new security concerns ... .....JD https://tools.ietf.org/html/draft-ietf-teas-enhanced-vpn-03#section-10 Yours Irrespectively, John Juniper Business Use Only
- [Teas-ns-dt] Network Slicing and Enhanced VPN Dra… John E Drake
- Re: [Teas-ns-dt] Network Slicing and Enhanced VPN… Xufeng Liu
- Re: [Teas-ns-dt] Network Slicing and Enhanced VPN… Rokui, Reza (Nokia - CA/Ottawa)