IETF Logo Mail Archive

Re: [Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15

"Dongjie (Jimmy)" <jie.dong@huawei.com> Thu, 09 November 2023 11:44 UTC

Return-Path: <jie.dong@huawei.com>
X-Original-To: teas@ietfa.amsl.com
Delivered-To: teas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B480C14CE4B; Thu, 9 Nov 2023 03:44:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.905
X-Spam-Level:
X-Spam-Status: No, score=-6.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hjM9Iu8j_NIP; Thu, 9 Nov 2023 03:44:53 -0800 (PST)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1FC72C14CE5D; Thu, 9 Nov 2023 03:44:53 -0800 (PST)
Received: from lhrpeml500006.china.huawei.com (unknown [172.18.147.200]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4SR0Qk3nHXz6H6mt; Thu, 9 Nov 2023 19:41:18 +0800 (CST)
Received: from kwepemd100006.china.huawei.com (7.221.188.47) by lhrpeml500006.china.huawei.com (7.191.161.198) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.31; Thu, 9 Nov 2023 11:44:49 +0000
Received: from kwepemd100004.china.huawei.com (7.221.188.31) by kwepemd100006.china.huawei.com (7.221.188.47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1258.23; Thu, 9 Nov 2023 19:44:47 +0800
Received: from kwepemd100004.china.huawei.com ([7.221.188.31]) by kwepemd100004.china.huawei.com ([7.221.188.31]) with mapi id 15.02.1258.023; Thu, 9 Nov 2023 19:44:47 +0800
From: "Dongjie (Jimmy)" <jie.dong@huawei.com>
To: Ketan Talaulikar <ketant.ietf@gmail.com>, "draft-ietf-teas-enhanced-vpn.all@ietf.org" <draft-ietf-teas-enhanced-vpn.all@ietf.org>, "teas@ietf.org" <teas@ietf.org>
CC: "rtg-dir@ietf.org" <rtg-dir@ietf.org>
Thread-Topic: [Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15
Thread-Index: AQHaElMCIcV05yumWUOAFLIyN6Xo17BxwM/g
Date: Thu, 09 Nov 2023 11:44:47 +0000
Message-ID: <fc12dd0c4cba476a82ef394628e70c5d@huawei.com>
References: <169477437897.20609.13766236160564136155@ietfa.amsl.com> <CAH6gdPwNOi=W3=_+7XoonjAdD8G_82=dvv-VevstiJrgz-TuxA@mail.gmail.com>
In-Reply-To: <CAH6gdPwNOi=W3=_+7XoonjAdD8G_82=dvv-VevstiJrgz-TuxA@mail.gmail.com>
Accept-Language: en-US, zh-CN
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.126.168.197]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/teas/EqTMCzmpGTHiPsGOvQdsz6-O4zQ>
Subject: Re: [Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15
X-BeenThere: teas@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Traffic Engineering Architecture and Signaling working group discussion list <teas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teas>, <mailto:teas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teas/>
List-Post: <mailto:teas@ietf.org>
List-Help: <mailto:teas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teas>, <mailto:teas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Nov 2023 11:44:57 -0000

Hi Ketan, 

Thanks for the updated RTG-DIR review comments. 

Please see some replies inline:


> -----Original Message-----
> From: Ketan Talaulikar <ketant.ietf@gmail.com>
> Sent: Wednesday, November 8, 2023 3:51 PM
> To: Ketan Talaulikar <ketant.ietf@gmail.com>;
> draft-ietf-teas-enhanced-vpn.all@ietf.org; teas@ietf.org
> Cc: rtg-dir@ietf.org
> Subject: [Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15
> 
> For some reason, the tool hasn't pushed out my review of v15
> 
> It is available here:
> https://datatracker.ietf.org/doc/review-ietf-teas-enhanced-vpn-14-rtgdir-early-t
> alaulikar-2023-09-15/
> 
> Also reproducing below:
> 
> 
> This document is almost ready, but has some issues that need discussion
> within the WG.
> 
> 
> Summary of the document:
> 
> a) Introduces a framework for "enhanced" VPN services that provide certain
> characteristics (also described in the document) beyond "conventional" VPN
> services.
> 
> b) The main goal of this framework is for service providers that are not
> deploying network slicing but want to provide these "enhanced" VPN services
> to their customers. This framework may also be used to realize a network slice
> as described in the IETF Network Slicing Framework
> (draft-ietf-teas-ietf-network-slices).
> 
> 
> Major Issues:
> 
> - VTN and NRP seem to be functionally equivalent. That NRP is used in the
> context of Network Slicing and VTN in Enhanced VPN is not a good enough
> reason to coin two terminologies. IMO the WG needs to try and converge on a
> single term if possible because there are several drafts across RTG and INT area
> that  are introducing this concept into protocol encoding and technology
> architectures. To me, NRP seems a better and more technical term and there is
> the draft-ietf-teas-nrp-scalability WG document for NRP scalability with
> common authors with this document.

This was discussed at the time when the term NRP is introduced, though I don't remember the WG has reached any consensus on this. 

My personal opinion is VTN would be more generic to cover both network resources and other functionalities which could be introduced to a virtual underlay network later. 

That said, the authors are open to any decision made by the WG on this, and can update the document accordingly.


> - The document is not clear whether the VTN/NRP construct is needed to be
> introduced in routing protocols (e.g., to identify sub-set of topologies) and if so,
> the reasons for it. Or is it simply more of a forwarding plane construct (e.g., to
> mark packet for a specific VTN/NRP)? Some clear text would help.

Actually this depends on the target network scenarios, the required scale and the specific solutions used for realizing VTNs/NRPs. We can add some brief text about this, and leave the details to the solution documents. 


> - In my previous review, I've highlighted that the term "Enhanced VPN"
> is misleading, but I am not able to come up with a better terminology - so be
> it.
> However, at least the authors can avoid the use of "VPN+" and instead use the
> expanded form or perhaps "enh-VPN"?

It is OK to replace "VPN+" with "enhanced VPN" in the document, just the sentences would become a little bit longer. 


> Minor Issues & Nits:
> 
> - IDnits points to unused references.
> 
> - A run by a spelling and grammar check tool will help the authors find and fix
> issues.

We will do the nits, spelling & grammar check again to -15 version of the document. 


> - There are few references to "network slice" in the document apart from Sec 6.
> Suggest to move them all into Sec 6 and perhaps move Sec 6 at the end of this
> document so the focus of this document becomes the "enhanced VPN"
> framework and use for non-network slice use cases.

As described in the introduction, the framework of enhanced VPN can be applied to both network slice and non-network slice use cases. 

While I understand your point of not emphasizing the network slice use cases. We will go through the draft and keep network slice mentioned only in the introduction (section 1) and the applicability section (section 6). 

Best regards,
Jie

> 
> Thanks,
> Ketan
> 
> 
> On Fri, Sep 15, 2023 at 12:39 PM Ketan Talaulikar via Datatracker <
> noreply@ietf.org> wrote:
> 
> > Reviewer: Ketan Talaulikar
> > Review result: Not Ready
> >
> > I believe that the document is not ready and needs further work. I
> > have some major concerns that I am sharing below that I would like to
> > bring to the attention of the authors and the WG.
> >
> > Summary of the document (please correct my understanding):
> >
> > a) Introduces a notion of VPN+ that seems to describe some (so-called)
> > enhancements over (so-called) "conventional" VPN services. It goes on
> > to describe why these VPN+ services are special and different and what
> > they could provide and how they are provisioned/managed that are
> > different from what already exists.
> >
> > b) Introduces a VTN construct for identifying (?) a subset of the
> > underlay network topology with some awareness of resources associated
> > with it that are derived from the underlying physical network. A VPN+
> > service is built on top of this VTN construct.
> >
> > c) Discusses the realization of the VTN constructs using existing
> > technologies and how it can be managed and operated. Also, how it can
> > deliver as an NRP solution in the IETF Network Slicing framework.
> >
> > Major Issues:
> >
> > 1) Use of “VPN+” & “Enhanced VPN” terminologies
> >
> > When the document creates this notion of VPN+, it is implying that
> > this is something new and something that can be realized using what is
> > in the document.
> > That is at best misleading.
> >
> > A service provider called X could have provided a P2P PW L2VPN service
> > some 10+ years ago over an RSVP-TE tunnel that provides guaranteed
> > bandwidth, protection, avoidance, some level of isolation and works
> > around network failures. Would that be considered as a VPN+ service?
> >
> > My point is that the VPN+ (and enhanced VPN) sound more like marketing
> > terms to me and do not reflect how operators have deployed and are
> > deploying "enhanced"
> > VPNs for their customers. It seems futile and misleading for the IETF
> > to try to define what is "enhanced" and what is "conventional" VPN
> > services.
> >
> > I believe the document should focus on VTN (which to me seems like a
> > TE
> > construct?) and how *any* VPN service can be delivered on top of it to
> > provide the benefits that VTN has to offer.
> >
> > If the authors believe they have advice to offer to operators on the
> > provisioning and management of VPN services, perhaps it should be a
> > separate draft in the OPS area?
> >
> > 2) Relation to IETF Network Slices document
> >
> > The draft-ietf-teas-ietf-network-slices (now with the IESG) that the
> > WG has sent for publication has a lot of content that is repeated in
> > sometimes different words and phrases in this document. The authors
> > should consider citing the relevant sections of that document instead
> > of repeating. I understand that this might have happened over the
> > course of time and the IETF network slicing document does acknowledge
> > text drawn from this document.
> >
> > The document says that VTN is one way to deliver NRP. If so, VTN would
> > fit with the IETF Network Slicing framework and the content in Section
> > 6 should be then using the terminologies of that document.
> >
> > But then the document says that VTN can be also used outside the
> > context of IETF Network Slicing.
> >
> > Suggestion: Focus on the description of the VTN construct by itself
> > independently. Then cover its applicability in the IETF Network
> > Slicing framework in one section and the applicability independently
> > (as an underlay for any VPN service) in another section.
> >
> > 3) Identification of VTN
> >
> > There are multiple documents out in other routing WGs (some adopted,
> > some
> > individual) and in 6man WG that talk about a VTN-ID. This document
> > which is used as the reference for VTN in all those places is
> > conspicuously silent on the aspect of an VTN-ID - i.e., Do we need a
> > new ID or can we use existing identifiers based on the underlying
> > transport/underlay technologies used?
> >
> > I am sharing these uber-level comments first so we can have a
> > discussion and converge. The detailed review will follow once were are
> > past these issues

v2.23.0 | Report a Bug | By Email