Early Review of draft-ietf-rtgwg-net2cloud-problem-statement-22
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. Document: draft-ietf-rtgwg-net2cloud-problem-statement-22 Reviewer: Deb Cooley Review Date: 2023-04-06 (early review) Please note that I know almost nothing about BGP, MPLS or routing. The summary of the review is 'not ready'. Section 3: perhaps move this whole section to Section 7? Sections 4, 5, and 6 seem like they should come before Section 3 anyway? Section 3.1, para 1, sentence 2: Grammar: 'with more variety of parties' could be 'with a larger variety of parties.' Section 3.1, para 2, sentence 2: 'IP tunnels', does this imply IPSec? Or something else? Section 3.1, para 3: By setting up default eBGP routes, these don't count as routes from an external entity? The rest of the paragraph addresses the handling of exceeding the maximum route threshold? But there appears to be an option to keep the BGP session? This paragraph is confusing. Section 3.2, paragraph 2: IGP? AS? I can't tell what this is trying to say. Section 3.2, paragraph 3: If there is a site failure, how is the Cloud GW 'running fine'? Is this GW using a different site? BFD expands to what? Section 3.2: Para 1 states why a site might go down. Para 2-6 outline the routing (?) issues that occur when a site goes down. I think these could be better organized. Only the last para suggests mitigations. Section 3.3 I'm not an expert, but isn't this an issue to any routing scenario? Can this be combined with Section 3.6? Section 3.4, para 3, item 1: Is this a problem? Or a feature? If it is a problem, can you say why? Section 3.6, last paragraph: A globally unique name won't 'resolve the same way from every perspective'? Other than being restricted (previous paragraph), what does this mean? If this is covered in the previous para, I would recommend deleting the phrase. Section 4, sentence 1: Grammar - 'will be mixed of different' should be 'will be a mix of different'. Section 4.2, para 2: Use of a shared key in IPSec implies that IKE isn't used (shared key was only possible with IKEv1 I believe, which is deprecated). I would remove the phrase 'using a shared key'.