[tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48)
"Overcash, Michael (CCI-Atlanta)" <michael.overcash@cox.com> Tue, 23 July 2024 19:52 UTC
Return-Path: <michael.overcash@cox.com>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18458C1D8766 for <tsvwg@ietfa.amsl.com>; Tue, 23 Jul 2024 12:52:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cox.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tpSuI6D7pojX for <tsvwg@ietfa.amsl.com>; Tue, 23 Jul 2024 12:52:16 -0700 (PDT)
Received: from CY4PR05CU001.outbound.protection.outlook.com (mail-westcentralusazon11010036.outbound.protection.outlook.com [40.93.198.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9EC99C1D4CC7 for <tsvwg@ietf.org>; Tue, 23 Jul 2024 12:52:16 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=d6uYXYitXuBeYOy7JFGfV034wgEuuFTyZK5RZbVH6sLyv6F16surrHA2daA1Mc4ftBQENX3/c2q7Zxf+2DPBeMttzlcSpLd23+Ump5BebrgRBNYsQ4y6uBSxFgFk1CGF7ajSzo3tI1/FsIu37ioKnjsXYeDM3QPdyPlRVJhmdBU3UkpBNAfZi9WZYbKhdnSauktFLQBJ5HEEDJb+e2hzw6k5y2Nm6MRd7nmqcmD5fHmdOJS61RhCGBDrbGidt6zfLjwrs0iJSV3HW3uegFo7lxzKZaRWgOalnjEhR1jPmRQEixtOQyIgUkB/lG/UBJ2OIc3jJ0UhLO4kOylr2RNIcA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Lo0BrGy7fuYH2ajuTWAh1gPxPMSIphErz3EanmIpxCo=; b=GvM9kID43TWpuzjIc4aVHJuruJ8Wt3Bp5re4TYbkXq7Ksix1wuwcleLHl2Y6zcPy9U46rNMktFi0cVi2ig6DEV43g+dfZhDABTHjKZeYOprMrJT9hbYrwyZS9pVFj8StNrYEOvDuTgEIeuY+E6WkqMpB5iiirPu2Fjp0fwUUuYfHSgxrGb68vnW9NAos5dZ9pPs9erigx9zSBhMUYIdKHNDa24eE8dxsnJoACFykWRPastnlHCNwNUaArnOYmyBgZANUv/bbfha6Z4rHVW0IlRQXPVGcVqF9mVS0WRwiAX7c9xY5RUQtscqBwOMJYGyKlGZBH4fnnroOmPNY4oaBXw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cox.com; dmarc=pass action=none header.from=cox.com; dkim=pass header.d=cox.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cox.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Lo0BrGy7fuYH2ajuTWAh1gPxPMSIphErz3EanmIpxCo=; b=BTtXqyoUyEzUhq7brQirsLAVRo24jC08Kfq8flv7k4qaXCVXpx5c+wi7+8eAnlqJEJ5mjCUhG/Cl9OfW0UznAboL2vIvUCkA7U09r4LgZmr/MB2o08meOiEMJ/iC6c1rrxgRaJY8Lym8+bga0I27rzKIhCj+MiiKuaqICyxQfVk=
Received: from LV2PR01MB7622.prod.exchangelabs.com (2603:10b6:408:17a::5) by SJ0PR01MB7331.prod.exchangelabs.com (2603:10b6:a03:3f8::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7784.19; Tue, 23 Jul 2024 19:52:12 +0000
Received: from LV2PR01MB7622.prod.exchangelabs.com ([fe80::e322:240:7ebd:b162]) by LV2PR01MB7622.prod.exchangelabs.com ([fe80::e322:240:7ebd:b162%3]) with mapi id 15.20.7762.027; Tue, 23 Jul 2024 19:52:12 +0000
From: "Overcash, Michael (CCI-Atlanta)" <michael.overcash@cox.com>
To: "Black, David" <David.Black=40dell.com@dmarc.ietf.org>, gwhiteCL/NQBdraft <reply+AB2VULW2XRH6MPK23ABRZQOEVLRFREVBNHHI5USV5Y@reply.github.com>, gwhiteCL/NQBdraft <NQBdraft@noreply.github.com>
Thread-Topic: [EXTERNAL] [tsvwg] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48)
Thread-Index: AQHa3JwfOJAPnnLUJEmQXstKT2fKJLIEXDAwgABbGAA=
Date: Tue, 23 Jul 2024 19:52:11 +0000
Message-ID: <LV2PR01MB7622B7EA53C95951987C9B0B9FA92@LV2PR01MB7622.prod.exchangelabs.com>
References: <gwhiteCL/NQBdraft/issues/48@github.com> <gwhiteCL/NQBdraft/issues/48/2244060936@github.com> <MN2PR19MB404591B9BAA1AEED7BBB900983A92@MN2PR19MB4045.namprd19.prod.outlook.com>
In-Reply-To: <MN2PR19MB404591B9BAA1AEED7BBB900983A92@MN2PR19MB4045.namprd19.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_ActionId=4d2b8fb1-77d9-4d35-abd8-ebc447a25224; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_ContentBits=0; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_Enabled=true; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_Method=Standard; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_Name=No Visual Label; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_SetDate=2024-07-23T14:15:00Z; MSIP_Label_a7bd41d9-d1d6-4f41-bf46-97f0241fcca2_SiteId=945c199a-83a2-4e80-9f8c-5a91be5752dd;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cox.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: LV2PR01MB7622:EE_|SJ0PR01MB7331:EE_
x-ms-office365-filtering-correlation-id: 9e849c2f-f61a-4c67-594e-08dcab50f1ac
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|4022899009|7093399012|69100299015|1800799024|376014|366016|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:LV2PR01MB7622.prod.exchangelabs.com;PTR:;CAT:NONE;SFS:(13230040)(4022899009)(7093399012)(69100299015)(1800799024)(376014)(366016)(38070700018);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_LV2PR01MB7622B7EA53C95951987C9B0B9FA92LV2PR01MB7622prod_"
MIME-Version: 1.0
X-OriginatorOrg: cox.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LV2PR01MB7622.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9e849c2f-f61a-4c67-594e-08dcab50f1ac
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Jul 2024 19:52:11.9908 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9feebc97-ff04-42c9-a152-767073872118
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: gqAAJXdxIGItttZUwKqfeBFcb90QbcyJee74eudbXibRm93LZj2MR0AOaYDlWZ+eS/dmjhkAO386ZWygxnrqetAv7L9HlAeQnTIQu+sfdYU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR01MB7331
Message-ID-Hash: NUB4VXIN4AVD2P5SE4GXNALQYHRAR7NG
X-Message-ID-Hash: NUB4VXIN4AVD2P5SE4GXNALQYHRAR7NG
X-MailFrom: michael.overcash@cox.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tsvwg.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Black, David" <David.Black@dell.com>, tsvwg IETF list <tsvwg@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48)
List-Id: Transport Area Working Group <tsvwg.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/O1eQO0TXdFraqadQHwPB9MZrpJg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Owner: <mailto:tsvwg-owner@ietf.org>
List-Post: <mailto:tsvwg@ietf.org>
List-Subscribe: <mailto:tsvwg-join@ietf.org>
List-Unsubscribe: <mailto:tsvwg-leave@ietf.org>
I don't think you've really fully addressed Greg's main point here. "if the NQB queue is configured as specified (i.e. with a shallow buffer), there is a disincentive for QB applications to mis-mark their traffic because they will see excessive packet drops." Traditional QoS/Priority approaches created an incentive to cheat by creating a "fast lane" for latency sensitive services. This is emphatically not how L4S and other similar AQM based methods work. The shallow-buffer queue is not a fast lane and will only improve latency performance for endpoints that implement the appropriate algorithms. An endpoint that tries to "cheat" will just end up policed and will experience worse performance. Why would anyone go out of their way to use the shallow-buffer queue to get worse performance? I don't think it is productive to rigorously define "shallow buffered" here. The exact buffer depth is a function of the algorithm and vendor implementation. I also don't think it is necessary or helpful to try to solve for malicious actors here. Any malicious actor can fill up queues and crowd out other traffic simply by sending high rate UDP. Shallow buffers are not uniquely vulnerable here. On the contrary, there is no buffer so large that a malicious actor cannot easily fill it. Just my two cents... Michael Overcash Principal Architect, Cox Communications michael.overcash@cox.com From: Black, David <David.Black=40dell.com@dmarc.ietf.org> Sent: Tuesday, July 23, 2024 11:12 AM To: gwhiteCL/NQBdraft <reply+AB2VULW2XRH6MPK23ABRZQOEVLRFREVBNHHI5USV5Y@reply.github.com>; gwhiteCL/NQBdraft <NQBdraft@noreply.github.com> Cc: Black, David <David.Black@dell.com>; tsvwg IETF list <tsvwg@ietf.org> Subject: [EXTERNAL] [tsvwg] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48) [+tsvwg list] > I continue to disagree that traffic protection needs to be made mandatory to implement, and I have some suggestions on a way forward that provides a compromise. This overall direction looks promising, but the suggested compromise is not (yet) good enough. Significant work on the draft will be needed, specifically on items 1 and 4: > 1. Necessity: NQB is a shallow-buffered best-effort service. It is understood that performance is not guaranteed for any best-effort service. I understand the overall intent, and I'm fine with that as a high-level goal/direction. The problem is that in the -24 version of the draft, "shallow-buffered" is an all-but-undefined term. To do better, the draft needs to provide a concrete specification of "shallow-buffered" and require that NQB implementations use shallow buffers. If this specification of "shallow-buffered" requirements is done well, it should lead to corresponding (hopefully minor) revisions of the incentives framework discussion that result in an acceptable resolution to points 2 and 3 on Incentives. OTOH, the comment that "performance is not guaranteed for any best-effort service" appears to have missed the point. I definitely agree that the draft is not guaranteeing any performance for NQB traffic, but this line of reasoning is claiming to guarantee non-performance(!) for QB traffic that uses (abuses) the NQB service. Specifically, the claim is being made that a shallow-buffered NQB service provides a sufficient non-performance guarantee to ensure that QB traffic has nothing to gain (and quite a bit to lose) by using (abusing) the shallow-buffered NQB service. The detailed requirements for sufficiently shallow buffers that realize that non-performance guarantee need to be specified and mandated, e.g., in Section 5.1 of the draft. > 4. Security: The incentives above don't address malicious sources. While traffic protection is the remedy for this, some network environments have other ways to address malicious sources > (e.g. only approved applications are deployed in the network, or traffic conditioning is performed at the network edge). Proceeding in this direction ... if traffic protection is not mandatory to implement, then the draft will need to restrict NQB implementation and usage (using "MUST" and "MUST NOT" or equivalent RFC 2119 keywords) to network environments that have "other ways to address malicious sources." The nature and/or results of those "other ways" will need to be specified in a sufficiently concrete fashion that a network operator can readily determine whether or not her network has sufficient "other ways to address malicious sources." Turning to the suggested compromise: > Specifically, the suggestion is that we address your concern about abuse of the code point by adding a mandatory requirement > that NQB PHB implementations provide statistics that can be used by the network operator to detect whether abuse is occurring. > These statistics could be as simple as packet and drop counters. That could work in combination with a solution to the "4. Security" problem suggested above. By themselves, requiring collection/provision of statistics is not sufficient to resolve the security problem. > Regarding the paragraph in 5.2 discussing situations where traffic protection is potentially not needed, we could rework the paragraph ... That would help ... after the security problem (4) is resolved (see above).. The bottom line is that items 1 (e.g., What is the concrete specification of "shallow-buffered" ?) and 4 (e.g., What are other ways that are sufficient to address malicious sources?) need to be addressed. Thanks, --David From: gwhiteCL <notifications@github.com<mailto:notifications@github.com>> Sent: Monday, July 22, 2024 9:03 PM To: gwhiteCL/NQBdraft <NQBdraft@noreply.github.com<mailto:NQBdraft@noreply.github.com>> Cc: Black, David <David.Black@dell.com<mailto:David.Black@dell.com>>; Mention <mention@noreply.github.com<mailto:mention@noreply.github.com>> Subject: Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48) [EXTERNAL EMAIL] @dlb237 [github.com]<https://urldefense.com/v3/__https:/github.com/dlb237__;!!LpKI!jyiVIyRb0wHGFj6E5pa6Rm73RYDbMxjO3w3_EPIu0Igv6c7N8-NWOQisrmDR8o9RxjsUqJKazSDQ4_HKgrTj_EGiYA$> I continue to disagree that traffic protection needs to be made mandatory to implement, and I have some suggestions on a way forward that provides a compromise. Here are some of the reasons why I disagree: 1. Necessity: NQB is a shallow-buffered best-effort service. It is understood that performance is not guaranteed for any best-effort service. For example, the IETF doesn't mandate that implementations of the Default PHB provide mechanisms to police/prevent applications from inducing delay and/or loss. 2. Incentives: As I wrote in #47 (comment) [github.com]<https://urldefense.com/v3/__https:/github.com/gwhiteCL/NQBdraft/issues/47*issuecomment-2215318283__;Iw!!LpKI!jyiVIyRb0wHGFj6E5pa6Rm73RYDbMxjO3w3_EPIu0Igv6c7N8-NWOQisrmDR8o9RxjsUqJKazSDQ4_HKgrT6fDk_CQ$>, even without traffic protection, if the NQB queue is configured as specified (i.e. with a shallow buffer), there is a disincentive for QB applications to mis-mark their traffic because they will see excessive packet drops. So, I disagree with your assertion that the incentives framework fundamentally depends on the presence of traffic protection. Traffic protection as defined in DOCSIS Queue Protection [ietf.org]<https://urldefense.com/v3/__https:/www.ietf.org/archive/id/draft-briscoe-docsis-q-protection-07.html__;!!LpKI!jyiVIyRb0wHGFj6E5pa6Rm73RYDbMxjO3w3_EPIu0Igv6c7N8-NWOQisrmDR8o9RxjsUqJKazSDQ4_HKgrSwpL2vsw$> arguably provides less of a disincentive for inappropriate marking than would be the case in the absence of QP, because it results in significantly less packet loss for the offending application. 3. Incentives: Incentives apply more broadly than on a hop-by-hop basis, and also generally apply more broadly than on a path-by-path basis. In other words, a QB application developer would (generally) need to make a decision as to whether to mark their packets as NQB without specific knowledge whether the traffic would be subjected to traffic protection or not. So, again, I disagree with the assertion that the incentives framework fundamentally depends on the presence of traffic protection. 4. Security: The incentives above don't address malicious sources. While traffic protection is the remedy for this, some network environments have other ways to address malicious sources (e.g. only approved applications are deployed in the network, or traffic conditioning is performed at the network edge). I definitely agree that traffic protection is the preferred implementation, but I disagree that it needs to be made mandatory to implement. As a compromise, I'd like to suggest that we strengthen the recommendation around the implementation of traffic protection, and eliminate some of the language that seems of offer rationales to ignore that recommendation, futher I'd like to suggest that we mandate some mechanism that a network operator can use to detect and avoid abuse. Specifically, the suggestion is that we address your concern about abuse of the code point by adding a mandatory requirement that NQB PHB implementations provide statistics that can be used by the network operator to detect whether abuse is occurring. These statistics could be as simple as packet and drop counters. This requirement would ensure that operators who configure the NQB PHB have the ability to track the amount of packet drop that is occurring due to traffic overrunning the shallow buffer, and then take action if they feel as though the PHB is causing more issues than it is solving in their environment. Those actions could include disabling the PHB, identifying and dealing with the sources of malicious traffic directly, or pursuing a feature request with the equipment manufacturer to add a traffic protection function. In addition, I think we can delete the words in section 10: "but recognizes that other options might be more desirable in certain situations." so that the recommendation to implement traffic protection isn't watered down. Regarding the paragraph in 5.2 discussing situations where traffic protection is potentially not needed, we could rework the paragraph to emphasize that the decision by an implementer to not implement traffic protection might limit the deployment/usage of their NQB PHB implementation to a small subset of potential sitations, and it would put the onus on the operator to monitor usage and take remediations manually rather than automatically dealing with misbehaving traffic. We can also add text to more fully specify the implications of ignoring the recommendation. That, I think, would strengthen the SHOULD as opposed to offering rationales for ignoring it. - Reply to this email directly, view it on GitHub [github.com]<https://urldefense.com/v3/__https:/github.com/gwhiteCL/NQBdraft/issues/48*issuecomment-2244060936__;Iw!!LpKI!jyiVIyRb0wHGFj6E5pa6Rm73RYDbMxjO3w3_EPIu0Igv6c7N8-NWOQisrmDR8o9RxjsUqJKazSDQ4_HKgrRJn3skGw$>, or unsubscribe [github.com]<https://urldefense.com/v3/__https:/github.com/notifications/unsubscribe-auth/AB2VULQNPSLLSSFSGIZRZP3ZNWTVRAVCNFSM6AAAAABKRH2VICVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDENBUGA3DAOJTGY__;!!LpKI!jyiVIyRb0wHGFj6E5pa6Rm73RYDbMxjO3w3_EPIu0Igv6c7N8-NWOQisrmDR8o9RxjsUqJKazSDQ4_HKgrRNUJ0Ebg$>. You are receiving this because you were mentioned.Message ID: <gwhiteCL/NQBdraft/issues/48/2244060936@github.com<mailto:gwhiteCL/NQBdraft/issues/48/2244060936@github.com>>
- [tsvwg] Re: [gwhiteCL/NQBdraft] Should traffic pr… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Jonathan Morton
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller