Re: [Anima-bootstrap] Can the proxy add information during bootstrap?
Toerless Eckert <eckert@cisco.com> Wed, 13 April 2016 00:50 UTC
Return-Path: <eckert@cisco.com>
X-Original-To: anima-bootstrap@ietfa.amsl.com
Delivered-To: anima-bootstrap@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 810DC12D858 for <anima-bootstrap@ietfa.amsl.com>; Tue, 12 Apr 2016 17:50:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.517
X-Spam-Level:
X-Spam-Status: No, score=-15.517 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.996, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M3dFRcG9ieu2 for <anima-bootstrap@ietfa.amsl.com>; Tue, 12 Apr 2016 17:49:59 -0700 (PDT)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3655A12D76B for <anima-bootstrap@ietf.org>; Tue, 12 Apr 2016 17:49:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=742; q=dns/txt; s=iport; t=1460508599; x=1461718199; h=date:from:to:cc:subject:message-id:references: mime-version:in-reply-to; bh=Hl1cKaDITA9Rw5Mxeo7p/1CiAPYq631OBY1X38KbBrE=; b=D3meSvzv5kq0AFadI7lMuA92TstzAU9JMdmsqh0mzzNL5pkekivhSZJw NHyGVsHWX45CB82qb0NlKhRSimHHdjnI9xv+iKViSqr+ZRKJBgkUYbJKj 6/YTqPc49kZWIcc2mAkLHwJMKuN57s12NVK4bGiwf2r7QANrX0vhJ8ivv g=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D1AQDXlg1X/4kNJK1egzdTfbppAQ2BdhcLhWwCgUE4FAEBAQEBAQFlJ4RCAQEEAQEBNzQLEAsYCSUPBRM2E4goDsIsAQEBAQEBAQEBAQEBAQEBAQEBAQEBEQSKbIoVBY5EiUSOAwqPEI8nHgEBQoQHHDCKBQEBAQ
X-IronPort-AV: E=Sophos;i="5.24,477,1454976000"; d="scan'208";a="260556351"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 13 Apr 2016 00:49:58 +0000
Received: from mcast-linux1.cisco.com (mcast-linux1.cisco.com [172.27.244.121]) by alln-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id u3D0nw4b007373 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 13 Apr 2016 00:49:58 GMT
Received: from mcast-linux1.cisco.com (localhost.cisco.com [127.0.0.1]) by mcast-linux1.cisco.com (8.13.8/8.13.8) with ESMTP id u3D0nvv5025780; Tue, 12 Apr 2016 17:49:57 -0700
Received: (from eckert@localhost) by mcast-linux1.cisco.com (8.13.8/8.13.8/Submit) id u3D0nvNV025779; Tue, 12 Apr 2016 17:49:57 -0700
Date: Tue, 12 Apr 2016 17:49:57 -0700
From: Toerless Eckert <eckert@cisco.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Message-ID: <20160413004957.GH21173@cisco.com>
References: <5c12b5d6940d4970bd3c0ad4c94b4696@XCH-RCD-006.cisco.com> <14252.1460506458@obiwan.sandelman.ca> <570D96FE.1000105@gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <570D96FE.1000105@gmail.com>
User-Agent: Mutt/1.4.2.2i
Archived-At: <http://mailarchive.ietf.org/arch/msg/anima-bootstrap/bx-SyOf3biQC-OmR1pA54uwO9U0>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, "anima-bootstrap@ietf.org" <anima-bootstrap@ietf.org>
Subject: Re: [Anima-bootstrap] Can the proxy add information during bootstrap?
X-BeenThere: anima-bootstrap@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Mailing list for the bootstrap design team of the ANIMA WG <anima-bootstrap.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima-bootstrap>, <mailto:anima-bootstrap-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima-bootstrap/>
List-Post: <mailto:anima-bootstrap@ietf.org>
List-Help: <mailto:anima-bootstrap-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima-bootstrap>, <mailto:anima-bootstrap-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Apr 2016 00:50:00 -0000
On Wed, Apr 13, 2016 at 12:46:54PM +1200, Brian E Carpenter wrote:
> If there's a need to discover topology, which I understood
> Michael B was after, couldn't that be done after enrolment, with
> no security risk?
I am sure operators would love to have the option to reject enrollment
if the device is in a wrong location.
And yes, topology discovery for the ACP overall is one of those ASA
functions i'd love us to get to, but it wouldn't solve by itself this
issue.
Cheers
Toerless
>
> Brian
>
> _______________________________________________
> Anima-bootstrap mailing list
> Anima-bootstrap@ietf.org
> https://www.ietf.org/mailman/listinfo/anima-bootstrap
--
---
Toerless Eckert, eckert@cisco.com
- [Anima-bootstrap] Can the proxy add information d… Michael Behringer (mbehring)
- Re: [Anima-bootstrap] Can the proxy add informati… Toerless Eckert (eckert)
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Richardson
- Re: [Anima-bootstrap] Can the proxy add informati… Brian E Carpenter
- Re: [Anima-bootstrap] Can the proxy add informati… Toerless Eckert
- Re: [Anima-bootstrap] Can the proxy add informati… Toerless Eckert
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Richardson
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Richardson
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Richardson
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Behringer (mbehring)
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Richardson
- Re: [Anima-bootstrap] Can the proxy add informati… Michael Behringer (mbehring)
- Re: [Anima-bootstrap] Can the proxy add informati… Toerless Eckert
- Re: [Anima-bootstrap] Can the proxy add informati… peter van der Stok