Re: [Tsv-art] Tsvart early review of draft-ietf-nvo3-geneve-08
"Ganga, Ilango S" <ilango.s.ganga@intel.com> Sat, 23 February 2019 00:13 UTC
Return-Path: <ilango.s.ganga@intel.com>
X-Original-To: tsv-art@ietfa.amsl.com
Delivered-To: tsv-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 96E4D1200D8; Fri, 22 Feb 2019 16:13:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vhDsxpCjhnj3; Fri, 22 Feb 2019 16:13:30 -0800 (PST)
Received: from mga07.intel.com (mga07.intel.com [134.134.136.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D6FFE126C7E; Fri, 22 Feb 2019 16:13:29 -0800 (PST)
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from orsmga005.jf.intel.com ([10.7.209.41]) by orsmga105.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 22 Feb 2019 16:13:28 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.58,401,1544515200"; d="scan'208";a="301881830"
Received: from orsmsx108.amr.corp.intel.com ([10.22.240.6]) by orsmga005.jf.intel.com with ESMTP; 22 Feb 2019 16:13:28 -0800
Received: from orsmsx121.amr.corp.intel.com (10.22.225.226) by ORSMSX108.amr.corp.intel.com (10.22.240.6) with Microsoft SMTP Server (TLS) id 14.3.408.0; Fri, 22 Feb 2019 16:13:28 -0800
Received: from orsmsx116.amr.corp.intel.com ([169.254.7.135]) by ORSMSX121.amr.corp.intel.com ([169.254.10.201]) with mapi id 14.03.0415.000; Fri, 22 Feb 2019 16:13:28 -0800
From: "Ganga, Ilango S" <ilango.s.ganga@intel.com>
To: David Black <david.black@dell.com>, "tsv-art@ietf.org" <tsv-art@ietf.org>
CC: "nvo3@ietf.org" <nvo3@ietf.org>, "draft-ietf-nvo3-geneve.all@ietf.org" <draft-ietf-nvo3-geneve.all@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>
Thread-Topic: Tsvart early review of draft-ietf-nvo3-geneve-08
Thread-Index: AQHUeLWTDnfLnTJpAUKNCflqdi68faVMetgwgKCqywA=
Date: Sat, 23 Feb 2019 00:13:27 +0000
Message-ID: <C5A274B25007804B800CB5B289727E3583D6B5BE@ORSMSX116.amr.corp.intel.com>
References: <154182743095.439.1694477940218072827@ietfa.amsl.com> <C5A274B25007804B800CB5B289727E3583D147F2@ORSMSX116.amr.corp.intel.com>
In-Reply-To: <C5A274B25007804B800CB5B289727E3583D147F2@ORSMSX116.amr.corp.intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvd3d3LnRpdHVzLmNvbVwvbnNcL0ludGVsMyIsImlkIjoiODNiMmQ2NjQtZGViNy00NTBlLTgyMTItODI3MGJjZTRhZTExIiwicHJvcHMiOlt7Im4iOiJDVFBDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiQ1RQX05UIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE3LjEwLjE4MDQuNDkiLCJUcnVzdGVkTGFiZWxIYXNoIjoielNkbGRZVFhTOGNHMHpyV3laTm50bDRjbzZWZGQzTW1ua3lMSmNiU2dEcmoybXZvZDJiVGxXYmtZR1RLWVNCaiJ9
x-ctpclassification: CTP_NT
x-originating-ip: [10.22.254.138]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsv-art/p16aoc0mN7W-inyUDqm6y-19-fg>
Subject: Re: [Tsv-art] Tsvart early review of draft-ietf-nvo3-geneve-08
X-BeenThere: tsv-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Review Team <tsv-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsv-art/>
List-Post: <mailto:tsv-art@ietf.org>
List-Help: <mailto:tsv-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Feb 2019 00:13:34 -0000
Hello David, Thank you so much for your detailed review of the document and helpful feedback. We have posted the new version of draft-ietf-nvo3-geneve-09 that addresses all your comments from TSVART early review. This version includes all the WG Last Call comments including TSVART and SECDIR early reviews. https://mailarchive.ietf.org/arch/msg/nvo3/oTY8e6XTRP67Mso7-dKopWNqo4Y Thanks, Ilango Ganga, Editor, Geneve -----Original Message----- From: Ganga, Ilango S [mailto:ilango.s.ganga@intel.com] Sent: Monday, November 12, 2018 10:37 AM To: David Black <david.black@dell.com>; tsv-art@ietf.org Cc: nvo3@ietf.org; draft-ietf-nvo3-geneve.all@ietf.org; ietf@ietf.org Subject: RE: Tsvart early review of draft-ietf-nvo3-geneve-08 Hello David, Thanks for your review of draft-ietf--nvo3-geneve-08. We will work with you to address the comments. We will get back with responses later this week. Regards, Ilango -----Original Message----- From: David Black [mailto:david.black@dell.com] Sent: Friday, November 9, 2018 9:24 PM To: tsv-art@ietf.org Cc: nvo3@ietf.org; draft-ietf-nvo3-geneve.all@ietf.org; ietf@ietf.org Subject: Tsvart early review of draft-ietf-nvo3-geneve-08 Reviewer: David Black Review result: On the Right Track This document has been reviewed as part of the transport area review team's ongoing effort to review key IETF documents. These comments were written primarily for the transport area directors, but are copied to the document's authors and WG to allow them to address any issues raised and also to the IETF discussion list for information. When done at the time of IETF Last Call, the authors should consider this review as part of the last-call comments they receive. Please always CC tsv-art@ietf.org if you reply to or forward this review. I need to start by disclosing a potential conflict of interest - my employer (Dell EMC) and VMware are both part of Dell Technologies and my job responsibilities include working with VMware. I don't believe that this situation affects the content of this review. On its own, the Geneve encapsulation protocol design looks reasonably good and solid. The draft is well-written and provides significant useful design rationale to explain the Geneve design in addition to its specification of Geneve. This review focuses on concerns that arise in interactions with IP networks. As this is an early review, it mostly points out areas where additional work is needed without providing all the details of what should be done. I'm willing to work with the draft authors and the nvo3 WG to address these concerns, and regret that other demands on my time prevented completion of this review before the Bangkok IETF meeting week. [1] UDP Requirements. Geneve uses UDP, but this draft does not reference RFC 8085 on UDP Requirements. That RFC needs to be referenced, and its implications for the Geneve design worked through. Section 3.6 of RFC 8085 is of particular importance, as I expect that many uses of Geneve will be in Controlled Environments (a concept defined in Section 3.6 of RFC 8085), which in turn enables some requirement relaxation, as described in RFC 8085. [2] UDP Zero Checksum. The draft's text in Section 3.3 on use of a zero UDP checksum is probably ok for IPv4, but it is definitely inadequate for IPv6. RFC 6936 is not currently referenced by this draft - that RFC needs to be a normative reference, and the draft needs to discuss how Geneve meets the requirements in Sections 4 and 5 of RFC 6936 (see Section 5 of RFC 6935 to understand why this is necessary). Please note that a simple sentence that requires implementations to meet these RFC 6936 requirements is insufficient, as some of the requirements are design requirements. A specific example is that Geneve does not provide its own integrity check, as RECOMMENDED by item 2 in Section 5 of RFC 6936, and hence the draft needs to explain why. It may help to look at the examples of working through these RFC 6936 requirements for other encapsulations in RFC 7510 (MPLS/UDP) and for the TMCE applicability scenario in RFC 8086 (GRE/UDP). [3] The recommendation for Path MTU Discovery in Section 4.1.1 is a good start, but needs to be extended and strengthened. In particular, it should be a Geneve design goal that if an end-system sends a non-fragmentable packet whose size exceeds the MTU of the overlay network provided by Geneve, then the ICMP PTB message back to the end system is originated by the encapsulating (first) NVE. This avoids loss of ICMP payload information caused by nesting of tunnels. For more discussion, see draft-ietf-intarea-tunnels and draft-ietf-intarea-frag-fragile, at least the first of which should be added as a reference, probably informative. As noted previously, I'm willing to work with the draft authors and the nvo3 WG to address these concerns, and regret that other demands on my time prevented completion of this review before the Bangkok IETF meeting week.
- [Tsv-art] Tsvart early review of draft-ietf-nvo3-… David Black
- Re: [Tsv-art] Tsvart early review of draft-ietf-n… Ganga, Ilango S
- Re: [Tsv-art] Tsvart early review of draft-ietf-n… Mirja Kuehlewind (IETF)
- Re: [Tsv-art] Tsvart early review of draft-ietf-n… Black, David
- Re: [Tsv-art] Tsvart early review of draft-ietf-n… Mirja Kuehlewind (IETF)
- Re: [Tsv-art] Tsvart early review of draft-ietf-n… Ganga, Ilango S