Re: [Teas] consideration of 1 VPN to N VNs mapping

Young Lee <younglee.tx@gmail.com> Wed, 05 August 2020 10:05 UTC

Return-Path: <younglee.tx@gmail.com>
X-Original-To: teas@ietfa.amsl.com
Delivered-To: teas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 073EE3A104A; Wed, 5 Aug 2020 03:05:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.854
X-Spam-Level:
X-Spam-Status: No, score=-0.854 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, NORMAL_HTTP_TO_IP=0.001, NUMERIC_HTTP_ADDR=1.242, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OFM8VZtZMcZw; Wed, 5 Aug 2020 03:05:47 -0700 (PDT)
Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 38E0C3A1046; Wed, 5 Aug 2020 03:05:47 -0700 (PDT)
Received: by mail-io1-xd2b.google.com with SMTP id u126so8005293iod.12; Wed, 05 Aug 2020 03:05:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=SDsXWFGC9M6N8mgCoqG6y/x9KulSppw6kx50DLQI6gk=; b=qw/1wceSK+hlMo0+eJO0sxm2Ccdt9+Ensgn62uhZ8qsm6lPhNzQ/uCCmrnMY/I7ALE 6n9gEUNY+lE67Ju7ficuKuSTiA+dZPUjh0Zr1f1Qq7zKUj0P3UtmGCl4Is/DLCoUE09l MC6f4mg4fLArGabluAy3xDXtn2OwRVdFK6Vtl5RhuOxjAjCv/GPHLilssF+pnCNRevl3 RWHtVbZrpw7YuqJRiGksTpaaBjaLklTyRoBGwQVPGxXUhFEz/NBe4KVuUptF1DYe4Hqc 9vPmzsAtjesLAGPNLBYE7rSY1mIVAzTt94Ree9tnLOZs4G6XdUiKFr7mejTVwyQeegs+ v3YQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=SDsXWFGC9M6N8mgCoqG6y/x9KulSppw6kx50DLQI6gk=; b=tqxfV+YLR8Gx6cwWUvejyBCGHPGHgGgMjTUWMNbm2yQcb5jKC9RqAo6/QHjJf+O+eN BrKACZ0Mij2RabrqY9Bgw2hkEkXgx/NQpoTbDRV1LWM3IRMleKBqKO7ZmfVwLz1CofN1 mjnA6wqr9km/67yj7HA95Bqk6HNk+E0uix50/8JBNHwEcRpWEsqDx4hbTyHvyV9NUXdI GFB8Wga/lBQhLc6uy/1h51qkpGHw3p+xKV9Dx28vTJjD7uRnXfRMGDOxEqlDaUxhqTNJ r+lZT+AFhwxikuJvkLeiJWuBe5mZxvNJ83eZLs/5Qcg7QL+MXP4zGBGKAFTaUAjbabTL bbjg==
X-Gm-Message-State: AOAM530VFJnUtCfw3hGL9GYerh8q2owIz69SGYY6tQgmt22SB++chh7A Wf9GNeSEuyxO51swdALLngs28DGjOJf/Rjpbnls=
X-Google-Smtp-Source: ABdhPJzjxEzlK8bntceyZtR8tR9swo1TF8jZAx/k40sex7z6/W/RXili0iPU2hHnfSTp2GtpKuBKsXdJV7ppkZmS4bc=
X-Received: by 2002:a02:c9d5:: with SMTP id c21mr3173412jap.72.1596621946225; Wed, 05 Aug 2020 03:05:46 -0700 (PDT)
MIME-Version: 1.0
References: <003601d66a44$944a3560$bcdea020$@kddi.com> <CAB75xn5u4s8oypHH0px_JVhu4HeYCos5YdUS9eQ750cg4aYdYQ@mail.gmail.com> <000401d66ac3$90263b80$b072b280$@kddi.com>
In-Reply-To: <000401d66ac3$90263b80$b072b280$@kddi.com>
From: Young Lee <younglee.tx@gmail.com>
Date: Wed, 5 Aug 2020 19:05:34 +0900
Message-ID: <CAGHSPWOZQzFAWO0BJy5C4ZLRKzYviGR8uNkcpQBQVM_HPzhc+A@mail.gmail.com>
To: "Ogaki, Kenichi" <ke-oogaki@kddi.com>
Cc: Dhruv Dhody <dhruv.ietf@gmail.com>, =?UTF-8?B?5a6u5Z2CIOaLk+S5nw==?= <ta-miyasaka@kddi.com>, =?UTF-8?B?5Li55769IOacneS/oQ==?= <to-niwa@kddi.com>, draft-ietf-teas-te-service-mapping-yang@ietf.org, TEAS WG <teas@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f208e505ac1e8357"
Archived-At: <https://mailarchive.ietf.org/arch/msg/teas/fI2e6gtqvBpmFNstdMk1jsqG56s>
Subject: Re: [Teas] consideration of 1 VPN to N VNs mapping
X-BeenThere: teas@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Traffic Engineering Architecture and Signaling working group discussion list <teas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teas>, <mailto:teas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teas/>
List-Post: <mailto:teas@ietf.org>
List-Help: <mailto:teas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teas>, <mailto:teas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Aug 2020 10:05:50 -0000

Hi Kenichi and Dhruv,

I think we can relax the mapping between VPN: VN to 1:N as Kenichi was
asking this question. I carefully read RFC 8299 and captured the following:
in section 6.12.3.2 where QoS profile is defined:

  o  latency: used to define the latency constraint of the class.  The
      latency constraint can be expressed as the lowest possible latency
      or a latency boundary expressed in milliseconds.  How this latency
      constraint will be fulfilled is up to the SP's implementation of
      the service: a strict priority queuing may be used on the access
      and in the core network, and/or a low-latency routing
      configuration may be created for this traffic class.

   o  jitter: used to define the jitter constraint of the class.  The
      jitter constraint can be expressed as the lowest possible jitter
      or a jitter boundary expressed in microseconds.  How this jitter
      constraint will be fulfilled is up to the SP's implementation of
      the service: a strict priority queuing may be used on the access
      and in the core network, and/or a jitter-aware routing
      configuration may be created for this traffic class.
   o  bandwidth: used to define a guaranteed amount of bandwidth for the
      class of service.  It is expressed as a percentage.  The
      "guaranteed-bw-percent" parameter uses available bandwidth as a
      reference.  When the qos-profile container is implemented on the
      CE side, svc-output-bandwidth is taken into account as a
      reference.  When it is implemented on the PE side, svc-input-
      bandwidth is used.  By default, the bandwidth reservation is only
      guaranteed at the access level.  The user can use the "end-to-end"
      leaf to request an end-to-end bandwidth reservation, including
      across the MPLS transport network.  (In other words, the SP will
      activate something in the MPLS core to ensure that the bandwidth
      request from the customer will be fulfilled by the MPLS core as
      well.)  How this is done (e.g., RSVP reservation, controller

      reservation) is out of scope for this document.


>From the highighted text, VPN may have different QoS profile within VPN

identifier. Although it is primarily meant for CE-PE level commitment,

depending on the operator's need, it can be extended site to site (source to

destination) per the colored text. This implies a set of different
TE-tunnels that

meet the corresponding QoS profile can be supported. In that sense, I think

1:N mapping between a VPN instance to a VN instance is possible.


Kenichi, is that what you are trying to say? Please correct me if my
understaning

is incorrect.


Thanks.

Young




2020년 8월 5일 (수) 오전 10:08, Ogaki, Kenichi <ke-oogaki@kddi.com>님이 작성:

> Hi Dhruv,
>
> Thanks for the prompt reply.
>
> >There is an 'end-to-end leaf' that says bandwidth reservation needs to be
> done in MPLS network but I did not interpret that it requires maintaining a
> separate VN, the consolidated requirements from all classes can be mapped
> to a single VN and the QoS is applied at the edges as per the L3SM YANG.
>
> As you saw in section 6.12.3.2, the properties of custom qos-profile
> include latency, and we honestly want the per-flow, classification rule,
> based VN mapping mechanism.
>
> >Anyways, let me get this verified from L3SM experts and come back to you.
>
> Your colleague and one of co-editors of both te-service-mapping and
> RFC8299, Qin Wu, is familiar with this discussion like this:
> https://mailarchive.ietf.org/arch/msg/l3sm/i5srx8YpD9296bu3VuIkHgAEi3g/
> Q.12 from David Ball
>
> Thanks,
> Kenichi
>
> -----Original Message-----
> From: Teas <teas-bounces@ietf.org> On Behalf Of Dhruv Dhody
> Sent: Tuesday, August 4, 2020 7:54 PM
> To: Ogaki, Kenichi <ke-oogaki@kddi.com>
> Cc: 宮坂 拓也 <ta-miyasaka@kddi.com>om>; 丹羽 朝信 <to-niwa@kddi.com>om>;
> draft-ietf-teas-te-service-mapping-yang@ietf.org; TEAS WG (teas@ietf.org)
> <teas@ietf.org>
> Subject: Re: [Teas] consideration of 1 VPN to N VNs mapping
>
> Hi Kenichi,
>
> I have not looked into it in detail but my understanding of the classes in
> the custom qos-profile is that they are about the access CE-PE link and
> thus would not lead to the creation of a separate VN per class.
>
> Even in the example
> https://tools.ietf.org/html/rfc8299#section-6.12.3.2 it says how the
> 100 Mbps on the access link is shared between the 3 classes.
>
> There is an 'end-to-end leaf' that says bandwidth reservation needs to be
> done in MPLS network but I did not interpret that it requires maintaining a
> separate VN, the consolidated requirements from all classes can be mapped
> to a single VN and the QoS is applied at the edges as per the L3SM YANG.
>
> Anyways, let me get this verified from L3SM experts and come back to you.
>
> Thanks!
> Dhruv
>
> On Tue, Aug 4, 2020 at 3:29 PM Ogaki, Kenichi <ke-oogaki@kddi.com> wrote:
> >
> > Hi draft-ietf-teas-te-service-mapping-yang authors,
> >
> > Could you consider 1 to N mapping for the L3VPN to VN mapping?
> >
> > As we required some changes to actn-vn-yang before/during 108th meeting,
> we would like to also discuss an additional requirement to
> te-service-mapping-yang. Sorry, late for 108th meeting.
> >
> > If we correctly understand the current definition, only one VN is
> allowed to be mapped to a VPN as described in section 4.1 and the model in
> section 6.1.1.
> > However, L3SM expects to differentiate traffic handling per qos-profile
> which corresponds to key network performance constraints including
> bandwidth and latency, etc. as described in section 6.12.3.2 of RFC8299.
> > As an operator, we believe this means that a qos-profile should be
> mapped to a VN like this:
> >
> >    module: ietf-l3sm-te-service-mapping
> >      augment /l3vpn-svc:l3vpn-svc/l3vpn-svc:vpn-services
> >                /l3vpn-svc:vpn-service:
> >        +--rw te-service-mapping!
> >           +--rw te-mapping
> >              +--rw mapping* [mapping-id]
> >                 +--rw mapping-id
> >                 +--rw target-class-id?        ->
> /l3vpn-svc:l3vpn-svc/vpn-profiles
> >                 |
> /valid-provider-identifiers/qos-profile-identifier
> >                 |                                  /id
> >                 +--rw map-type?               identityref
> >                 +--rw availability-type?      identityref
> >                 +--rw (te)?
> >                    +--:(vn)
> >                    |  +--rw vn-ref?           -> /vn:vn/vn-list/vn-id
> >                    +--:(te-topo)
> >                    |  +--rw vn-topology-id?   te-types:te-topology-id
> >                    |  +--rw abstract-node?
> >                    |          -> /nw:networks/network/node/node-id
> >                    +--:(te-tunnel)
> >                       +--rw te-tunnel-list*   te:tunnel-ref
> >
> >
> > Also, in L3SM, qos-profile can be locally defined under
> site-network-access and also mapped to classification rules defined there
> as described in 6.12.3.2/6.12.3.1. Then, te-service-mapping-yang should
> also map a VNAP to the local qos-profile even without vpn-service level
> mapping like this:
> >
> >      augment /l3vpn-svc:l3vpn-svc/l3vpn-svc:sites/l3vpn-svc:site
> >
> /l3vpn-svc:site-network-accesses/l3vpn-svc:site-network-access
> >                /l3vpn-svc:service/l3vpn-svc:qos/l3vpn-svc:qos-profile
> >                /l3vpn-svc:profile:
> >        +--rw (te)?
> >           +--:(vn)
> >              +--rw vn-ap-ref?
> >                      -> /vn:ap/access-point-list/vn-ap/vn-ap-id
> >
> >      augment /l3vpn-svc:l3vpn-svc/l3vpn-svc:sites/l3vpn-svc:site
> >
> /l3vpn-svc:site-network-accesses/l3vpn-svc:site-network-access
> >
> /l3vpn-svc:service/l3vpn-svc:qos/l3vpn-svc:qos-profile/l3vpn-svc:classes
> >                /l3vpn-svc:class:
> >        +--rw (te)?
> >           +--:(vn)
> >              +--rw vn-ap-ref?
> >                      -> /vn:ap/access-point-list/vn-ap/vn-ap-id
> >
> > Although we may consider the same requirement to L2SM mapping, from our
> service objectives, the current definition is enough for now.
> >
> > How do you think?
> >
> > Thanks in advance,
> > Kenichi
> >
> > --
> > Kenichi Ogaki
> > KDDI Corp. | Operation Automation Promotion Dept.
> > +81-(0)80-5945-9138 | www.kddi.com
> >
> >
> >
>
> _______________________________________________
> Teas mailing list
> Teas@ietf.org
> https://www.ietf.org/mailman/listinfo/teas
>
>