Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt

To: Ralph Droms <rdroms at cisco.com>
Subject: Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
From: Eliot Lear <lear at cisco.com>
Date: Tue, 22 Sep 2009 16:41:52 +0200
Authentication-results: ams-dkim-2; header.From=lear at cisco.com; dkim=pass ( sig from cisco.com/amsdkim2001 verified; );
Cc: int-area at ietf.org
Delivered-to: int-area at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; l=2196; t=1253630512; x=1254494512; c=relaxed/simple; s=amsdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=lear at cisco.com; z=From:=20Eliot=20Lear=20<lear at cisco.com> |Subject:=20Re=3A=20[Int-area]=20SEAL=20-=20draft-templin-i ntearea-seal-05.txt |Sender:=20; bh=/ORzl5hUyPLkVpbBfXlLpYmCf6qQnM/STDOXxUdLAD8=; b=r9TGFxHi9fIzoXcM8rDyiKwZIidJ/s2OsF4LLGLKedVNfVkCOkg60c2zqa jvoMKg0tHMo4YDFht/cxADNF83+uoyd6uERdAF8tDQuAqAiWx8vH0O4qfCgy NoLwSDUPDs;
In-reply-to: <7EF7BC42-7AAA-457F-BDDB-2EBADDEA7671 at cisco.com>
List-archive: <http://www.ietf.org/mail-archive/web/int-area>
List-help: <mailto:int-area-request@ietf.org?subject=help>
List-id: IETF Internet Area Mailing List <int-area.ietf.org>
List-post: <mailto:int-area@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
References: <7EF7BC42-7AAA-457F-BDDB-2EBADDEA7671 at cisco.com>
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1.1) Gecko/20090715 Thunderbird/3.0b3

Ralph,

Here are a few comments.  This document deserves more time than I've
given it.

Summary

This protocol specification provides a new and different tunneling
mechanism (actually, really two - one over UDP and one within in a new
protocol).  It provides back-signaling in an attempt to cause tunnel
ingresses to reduce their MTU.

Comments

To start with, this document could do with a heavy dose of editing for
brevity and clarity.  Substantial time is spent on the case for SEAL.  I
think we can all accept that there are MTU problems on the network.  We
needn't revisit each and every one of them.  Or if we must, let's do so
in a different document.  So for starters, start the doc at §1.2.

Second, while I realize that some might have grown attached to the name,
and that this is picky, the term "subnetwork" is so overloaded that it
is confusing to the casual reader such as myself.

There are a number of imprecise terms, such as "reasonable reliability"
that should be better qualified.  There are also some sentences that
just don't make sense.  For instance:

   While it is well known that the addressing
   properties of IPv4 are limited (hence the larger address space
   provided by IPv6), there is a lesser-known but growing consensus that
   other limitations may be unable to sustain continued growth.

???

This document normatively makes references to several other drafts,
including [draft-templin-intarea-vet], [draft-templin-ranger] and
[draft-russert-rangers] for a singular notion of the "enterprise
abstraction".  From a matter of readibility, and general approach to
standards, for a single definition can we reference a single document?

Section 4.3.6 dicusses the need for per-ETE state.  Security
Considerations do not adequately address mitigating attacks based on,
say, large pings or some other approach that can force a large packet to
return.

In addition, any mechanism where we would expect wide deployment
probably deserves substantial review.  Experimental in this case would
seem to me to be more appropriate than Proposed Standard.

Again, I wish I had more time for more detailed review.

Eliot

Follow-Ups:
- Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
  - From: Templin, Fred L
- Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
  - From: Templin, Fred L

References:
- [Int-area] SEAL - draft-templin-intearea-seal-05.txt
  - From: Ralph Droms

Prev by Date: [Int-area] [intarea] Call for presentations and participation: CHINA MOBILE WORKSHOP ON IPV6 DEPLOYMENT IN CELLULAR NETWORKS
Next by Date: Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
Previous by thread: Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
Next by thread: Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt
Index(es):
- Date
- Thread

Re: [Int-area] SEAL - draft-templin-intearea-seal-05.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.