IETF Logo Mail Archive

[Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15

Ketan Talaulikar <ketant.ietf@gmail.com> Wed, 08 November 2023 14:50 UTC

Return-Path: <ketant.ietf@gmail.com>
X-Original-To: teas@ietfa.amsl.com
Delivered-To: teas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E8478C1705FF; Wed, 8 Nov 2023 06:50:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QkuT4HGt_iMC; Wed, 8 Nov 2023 06:50:52 -0800 (PST)
Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9D59C1705E2; Wed, 8 Nov 2023 06:50:52 -0800 (PST)
Received: by mail-ej1-x62f.google.com with SMTP id a640c23a62f3a-99bdeae1d0aso1100103666b.1; Wed, 08 Nov 2023 06:50:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699455051; x=1700059851; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=SbOzsHezkNwfftuOgR0T8kHo+z+1lkVMNn3cx0fn7nU=; b=MhkzsEn/ubCB6FKqKdNpubAthvIiPq8zOviT/GNYy5Yc+z/QjwWltGth4GphKxIgOR ccrYt9ShvWKxcwtftgRh53jfr3CiUH2Q39bNVIOd0wknDPUt94NPSOuj+wZtOpgYH6cW 2AtXkJFXqOW5xU2tyxJ5FtY1GMX0hji5WoNLuOEpnLhxab8CEW32Sw1Mld9H+wWgTFRz 3i1Z6GwzIMywTpx01PeAIaK6Nr3oSLR7o5VrrR+UzkNm5kwmjkdxfDzft99TIFnQf0pP y51ZqX2VamPGwYBIvjhWOlh/2ieJtRNWy5h/CHUjbK28gIm13WzOfsPE8uA2EHGtPx2N gC0A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699455051; x=1700059851; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=SbOzsHezkNwfftuOgR0T8kHo+z+1lkVMNn3cx0fn7nU=; b=MfkfnpahbRRhdfs7Ncrfp+f8tBqKMyato5CxxGm/hO4tvtS9MWe9WzXMKi4rJTBoJ3 ESw7Hiazh2QOCiiLaodsYnOou1QqPD4cvkluuXIo8zrzO1oLF37h388OFFpBCa6mNWXJ WXcVndsItLIONUPL60/22jd7CINrsiWdzbwgGUQovDbheczFVIlvyfbF4xUC61Fvi4Zm srH0ROU2dHWQ24tsZz8OgrSRuX6vZxMQwB1LJ0u1i9MI9ZyqAz9gN5yZaRM8H9Lr0MQG w/axIvjC5F3XZ5ZatR2451RPmcun6UNe2e0Jehf3AWMm4GX0ZWnVTbYgkVTy7Ezk/ss6 laXw==
X-Gm-Message-State: AOJu0YwW3xiCpHGhaAIGhMVQ/KITMFnDPBrYTkENSjgGdzPgRWvQqXBk ZK6CI51xRUjCL8atMX4Ayy+uW8JK1zY5daHxE/9rGk4GcjwlWgiG
X-Google-Smtp-Source: AGHT+IGEwlD4EyUW2qySnejaOMD1XMyvEkOGoJNh066Y7C9GWNtemzrZ7ZqjzEYg6MfN4x7oKXCuHqZryn5B6MgOykY=
X-Received: by 2002:a17:907:7f25:b0:9a9:e4ba:2da7 with SMTP id qf37-20020a1709077f2500b009a9e4ba2da7mr2011068ejc.49.1699455050975; Wed, 08 Nov 2023 06:50:50 -0800 (PST)
MIME-Version: 1.0
References: <169477437897.20609.13766236160564136155@ietfa.amsl.com>
In-Reply-To: <169477437897.20609.13766236160564136155@ietfa.amsl.com>
From: Ketan Talaulikar <ketant.ietf@gmail.com>
Date: Wed, 08 Nov 2023 15:50:39 +0100
Message-ID: <CAH6gdPwNOi=W3=_+7XoonjAdD8G_82=dvv-VevstiJrgz-TuxA@mail.gmail.com>
To: Ketan Talaulikar <ketant.ietf@gmail.com>, draft-ietf-teas-enhanced-vpn.all@ietf.org, teas@ietf.org
Cc: rtg-dir@ietf.org
Content-Type: multipart/alternative; boundary="000000000000a00eca0609a53614"
Archived-At: <https://mailarchive.ietf.org/arch/msg/teas/u_jJlfCVvBlEn6T9ooWqFtQdaHk>
Subject: [Teas] Rtgdir early review of draft-ietf-teas-enhanced-vpn-15
X-BeenThere: teas@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Traffic Engineering Architecture and Signaling working group discussion list <teas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teas>, <mailto:teas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teas/>
List-Post: <mailto:teas@ietf.org>
List-Help: <mailto:teas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teas>, <mailto:teas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Nov 2023 14:50:54 -0000

For some reason, the tool hasn't pushed out my review of v15

It is available here:
https://datatracker.ietf.org/doc/review-ietf-teas-enhanced-vpn-14-rtgdir-early-talaulikar-2023-09-15/

Also reproducing below:


This document is almost ready, but has some issues that need discussion
within the
WG.


Summary of the document:

a) Introduces a framework for "enhanced" VPN services that provide
certain characteristics (also described in the document) beyond
"conventional" VPN
services.

b) The main goal of this framework is for service providers that are
not deploying network slicing but want to provide these "enhanced" VPN
services to
their customers. This framework may also be used to realize a network slice
as described in the IETF Network Slicing Framework
(draft-ietf-teas-ietf-network-slices).


Major Issues:

- VTN and NRP seem to be functionally equivalent. That NRP is used in
the context of Network Slicing and VTN in Enhanced VPN is not a good enough
reason
to coin two terminologies. IMO the WG needs to try and converge on a
single term if possible because there are several drafts across RTG and INT
area that
 are introducing this concept into protocol encoding and
technology architectures. To me, NRP seems a better and more technical term
and there is
the draft-ietf-teas-nrp-scalability WG document for NRP scalability
with common authors with this document.

- The document is not clear whether the VTN/NRP construct is needed to
be introduced in routing protocols (e.g., to identify sub-set of topologies)
and if so, the reasons for it. Or is it simply more of a forwarding
plane construct (e.g., to mark packet for a specific VTN/NRP)? Some clear
text
would help.

- In my previous review, I've highlighted that the term "Enhanced VPN"
is misleading, but I am not able to come up with a better terminology - so
be it.
However, at least the authors can avoid the use of "VPN+" and instead use
the expanded form or perhaps "enh-VPN"?


Minor Issues & Nits:

- IDnits points to unused references.

- A run by a spelling and grammar check tool will help the authors find
and fix issues.

- There are few references to "network slice" in the document apart from
Sec 6. Suggest to move them all into Sec 6 and perhaps move Sec 6 at the
end of
this document so the focus of this document becomes the "enhanced
VPN" framework and use for non-network slice use cases.


Thanks,
Ketan


On Fri, Sep 15, 2023 at 12:39 PM Ketan Talaulikar via Datatracker <
noreply@ietf.org> wrote:

> Reviewer: Ketan Talaulikar
> Review result: Not Ready
>
> I believe that the document is not ready and needs further work. I have
> some
> major concerns that I am sharing below that I would like to bring to the
> attention of the authors and the WG.
>
> Summary of the document (please correct my understanding):
>
> a) Introduces a notion of VPN+ that seems to describe some (so-called)
> enhancements over (so-called) "conventional" VPN services. It goes on to
> describe why these VPN+ services are special and different and what they
> could
> provide and how they are provisioned/managed that are different from what
> already exists.
>
> b) Introduces a VTN construct for identifying (?) a subset of the underlay
> network topology with some awareness of resources associated with it that
> are
> derived from the underlying physical network. A VPN+ service is built on
> top of
> this VTN construct.
>
> c) Discusses the realization of the VTN constructs using existing
> technologies
> and how it can be managed and operated. Also, how it can deliver as an NRP
> solution in the IETF Network Slicing framework.
>
> Major Issues:
>
> 1) Use of “VPN+” & “Enhanced VPN” terminologies
>
> When the document creates this notion of VPN+, it is implying that this is
> something new and something that can be realized using what is in the
> document.
> That is at best misleading.
>
> A service provider called X could have provided a P2P PW L2VPN service
> some 10+
> years ago over an RSVP-TE tunnel that provides guaranteed bandwidth,
> protection, avoidance, some level of isolation and works around network
> failures. Would that be considered as a VPN+ service?
>
> My point is that the VPN+ (and enhanced VPN) sound more like marketing
> terms to
> me and do not reflect how operators have deployed and are deploying
> "enhanced"
> VPNs for their customers. It seems futile and misleading for the IETF to
> try to
> define what is "enhanced" and what is "conventional" VPN services.
>
> I believe the document should focus on VTN (which to me seems like a TE
> construct?) and how *any* VPN service can be delivered on top of it to
> provide
> the benefits that VTN has to offer.
>
> If the authors believe they have advice to offer to operators on the
> provisioning and management of VPN services, perhaps it should be a
> separate
> draft in the OPS area?
>
> 2) Relation to IETF Network Slices document
>
> The draft-ietf-teas-ietf-network-slices (now with the IESG) that the WG has
> sent for publication has a lot of content that is repeated in sometimes
> different words and phrases in this document. The authors should consider
> citing the relevant sections of that document instead of repeating. I
> understand that this might have happened over the course of time and the
> IETF
> network slicing document does acknowledge text drawn from this document.
>
> The document says that VTN is one way to deliver NRP. If so, VTN would fit
> with
> the IETF Network Slicing framework and the content in Section 6 should be
> then
> using the terminologies of that document.
>
> But then the document says that VTN can be also used outside the context of
> IETF Network Slicing.
>
> Suggestion: Focus on the description of the VTN construct by itself
> independently. Then cover its applicability in the IETF Network Slicing
> framework in one section and the applicability independently (as an
> underlay
> for any VPN service) in another section.
>
> 3) Identification of VTN
>
> There are multiple documents out in other routing WGs (some adopted, some
> individual) and in 6man WG that talk about a VTN-ID. This document which is
> used as the reference for VTN in all those places is conspicuously silent
> on
> the aspect of an VTN-ID - i.e., Do we need a new ID or can we use existing
> identifiers based on the underlying transport/underlay technologies used?
>
> I am sharing these uber-level comments first so we can have a discussion
> and
> converge. The detailed review will follow once were are past these issues.
>
> Thanks,
> Ketan
>
>
>
> _______________________________________________
> Teas mailing list
> Teas@ietf.org
> https://www.ietf.org/mailman/listinfo/teas
>

v2.23.0 | Report a Bug | By Email