Re: [Teas] Intdir early review of draft-ietf-teas-5g-ns-ip-mpls-02
Timothy Winters <tim@qacafe.com> Mon, 26 February 2024 13:04 UTC
Return-Path: <tim@qacafe.com>
X-Original-To: teas@ietfa.amsl.com
Delivered-To: teas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2C676C15155C for <teas@ietfa.amsl.com>; Mon, 26 Feb 2024 05:04:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=qacafe.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cAB4g5sb1fk4 for <teas@ietfa.amsl.com>; Mon, 26 Feb 2024 05:04:01 -0800 (PST)
Received: from mail-pg1-x52d.google.com (mail-pg1-x52d.google.com [IPv6:2607:f8b0:4864:20::52d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 593B6C15155F for <teas@ietf.org>; Mon, 26 Feb 2024 05:04:01 -0800 (PST)
Received: by mail-pg1-x52d.google.com with SMTP id 41be03b00d2f7-5dc20645871so1844542a12.1 for <teas@ietf.org>; Mon, 26 Feb 2024 05:04:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qacafe.com; s=google; t=1708952640; x=1709557440; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Jwih32KaU0rf1o70S1XCADuA317DWh51uNF0mpff4EA=; b=rnh7rX17A2vYQtEMDzQ3ARK/8xcaE19NsDQIQ2LRIsT1ZHHatpacu22GIhjNaK1KGI dOGUWcmSUgB+/hELDjWy9O2l3UCGVnlbFjtMcqvISN9vWDOeOVRG0wdkCO/LRCKWKY3q WFwtav/ACogC/4Ms/GG+FuwjbBPViAi2SArSw=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1708952640; x=1709557440; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Jwih32KaU0rf1o70S1XCADuA317DWh51uNF0mpff4EA=; b=wtYPnHCY92+maBeBLeuiiz/vAvNiWek7sXmGt0b1LT7Dz0CefmTVb0Vo7BEWNc8S1N vAgKsyO/yh6n6tSKiCMyXC2yEgMIsOI7/i+4XPAwFp2o4xk2aOZ8OKBn3yjE21iK062h uMPZN/aY/MLcdEIL280Vd+8gxVhQVv9bDxVdz15RpBR4kxmohw2Q6vS0g0oLOJLhcxi9 MYlnLo7dySiCttPMmpgiggq283TIioPme0UfeMjg+tjNH5/wwBjpoXbBh9jtNwFKVUat /1vDaXnwXyxXHFmjyTLIPcIuUR9tFdzABKrKGulWC5f3dyB0w9zARh2fGircAscXG6/F W9qA==
X-Forwarded-Encrypted: i=1; AJvYcCXSczs07TewXREVcWeyi5uvigORdDwJRC9jNm42DZ/6rm3Wv78lc3b8u81J8y3alHFVGu4Z660AkFPxXwn9
X-Gm-Message-State: AOJu0YxeNGNHAQHUHe8MOcqzK4SmM+c/1v0r2lUpyW3zmdavdDmMMWwG kLT+F/sbDtOZL0SJjIvqKEoR/0dCsqRTukv+Jippj4/5aAjJQYRjilVtGwzrwa/dDdlxzFxQpqd 2l+myfnCcmkEobeb9z8Z79q/x3FL4MoL6Gmzvkg==
X-Google-Smtp-Source: AGHT+IEr+pUvUY0lttj/vKjY4nG1DonK/UGH5fSIi60MwDH+ybCkVtg2kGF0h1EYnxJm++FouadaxSb2riZXDwImf4w=
X-Received: by 2002:a17:90a:6448:b0:29a:72b:df85 with SMTP id y8-20020a17090a644800b0029a072bdf85mr9223292pjm.7.1708952640445; Mon, 26 Feb 2024 05:04:00 -0800 (PST)
MIME-Version: 1.0
References: <170871628514.41558.1168523619192787599@ietfa.amsl.com> <DU2PR02MB1016006E2BA04CF8E31E541CE885A2@DU2PR02MB10160.eurprd02.prod.outlook.com>
In-Reply-To: <DU2PR02MB1016006E2BA04CF8E31E541CE885A2@DU2PR02MB10160.eurprd02.prod.outlook.com>
From: Timothy Winters <tim@qacafe.com>
Date: Mon, 26 Feb 2024 08:03:48 -0500
Message-ID: <CAJgLMKs7CUrjcBzBFvjcTAja4PeXh5a30szoh1VDq1gLNO4UiA@mail.gmail.com>
To: mohamed.boucadair@orange.com
Cc: "int-dir@ietf.org" <int-dir@ietf.org>, "draft-ietf-teas-5g-ns-ip-mpls.all@ietf.org" <draft-ietf-teas-5g-ns-ip-mpls.all@ietf.org>, "teas@ietf.org" <teas@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000127c700612488bd2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/teas/DjZHaCg2QLNYg9jYN4ESz-xGed4>
Subject: Re: [Teas] Intdir early review of draft-ietf-teas-5g-ns-ip-mpls-02
X-BeenThere: teas@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Traffic Engineering Architecture and Signaling working group discussion list <teas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teas>, <mailto:teas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teas/>
List-Post: <mailto:teas@ietf.org>
List-Help: <mailto:teas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teas>, <mailto:teas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Feb 2024 13:04:05 -0000
Hi Med, Thanks for the speedy response, it resolved all my questions. ~Tim On Mon, Feb 26, 2024 at 3:28 AM <mohamed.boucadair@orange.com> wrote: > Hi Timothy, > > Thank you for the review. > > Please see inline. > > Cheers, > Med > > > -----Message d'origine----- > > De : Timothy Winters via Datatracker <noreply@ietf.org> > > Envoyé : vendredi 23 février 2024 20:25 > > À : int-dir@ietf.org > > Cc : draft-ietf-teas-5g-ns-ip-mpls.all@ietf.org; teas@ietf.org > > Objet : Intdir early review of draft-ietf-teas-5g-ns-ip-mpls-02 > > > > Reviewer: Timothy Winters > > Review result: Almost Ready > > > > I am an assigned INT directorate reviewer for draft-ietf-teas-5g-ns- > > ip-mpls. > > These comments were written primarily for the benefit of the Internet > > Area Directors. Document editors and shepherd(s) should treat these > > comments just like they would treat comments from any other IETF > > contributors and resolve them along with any other Last Call comments > > that have been received. For more details on the INT Directorate,.. > > > > Summary: I don't think there are any Internet issues in this document. > > I think it's in good shape for publishing as Informational document. I > > found the Appendix C was helpful, as I'm not an expert in 5G > > deployments. > > > > This document recommends encoding of the IP addressing in section 4.2 > > using most significant 96-bits to simplify mapping tables. > > [Med] Please note that the document does not recommend it per se. It is > provided as an example to simplify the mapping table: > > The mapping table can be simplified if, for example, IPv6 addressing is > used to > address NFs. > > There is > > nothing wrong with this, but it should be noted for privacy and other > > considerations if/when deploying over the public internet space. > > [Med] Thanks. Tried to generalize the concern by adding this new text: > > NEW: > In order to avoid the need for a mapping table to associate source/ > destination IP addresses and slices' specific S-NSSAIs, Section 4.2 > describes an approach where some or all S-NSSAI bits are embedded in > an IPv6 address using an algorithm approach. An attacker from within > the transport network who has access to the mapping configuration may > infer the slices to which belong a packet. It may also alter these > bits which may lead to steering the packet via a distinct network > slice, and thus lead to service disruption. Note that such an on- > path attacker may make more damage (e.g., randomly drop packets). > > > Section 5.2.1 allows for IPv6 encapsulation using SR6, so there is no > > issue with MTU that any encapsulation technique would encounter. It > > uses DSCP for QoS, so there no use of flow labels or additional > > headers. > > > > Nits: > > Figure 32 table has some formatting errors. > > > > [Med] Thanks for reporting this. Will check how to fix it as the issue > seems to be only for html while the txt version is OK. > > > > ____________________________________________________________________________________________________________ > Ce message et ses pieces jointes peuvent contenir des informations > confidentielles ou privilegiees et ne doivent donc > pas etre diffuses, exploites ou copies sans autorisation. Si vous avez > recu ce message par erreur, veuillez le signaler > a l'expediteur et le detruire ainsi que les pieces jointes. Les messages > electroniques etant susceptibles d'alteration, > Orange decline toute responsabilite si ce message a ete altere, deforme ou > falsifie. Merci. > > This message and its attachments may contain confidential or privileged > information that may be protected by law; > they should not be distributed, used or copied without authorisation. > If you have received this email in error, please notify the sender and > delete this message and its attachments. > As emails may be altered, Orange is not liable for messages that have been > modified, changed or falsified. > Thank you. > >
- [Teas] Intdir early review of draft-ietf-teas-5g-… Timothy Winters via Datatracker
- Re: [Teas] Intdir early review of draft-ietf-teas… mohamed.boucadair
- Re: [Teas] Intdir early review of draft-ietf-teas… Timothy Winters