Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-network-identifier
"Sri Gundavelli (sgundave)" <sgundave@cisco.com> Tue, 12 May 2015 21:21 UTC
Return-Path: <sgundave@cisco.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69A5C1AD160 for <dhcwg@ietfa.amsl.com>; Tue, 12 May 2015 14:21:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.51
X-Spam-Level:
X-Spam-Status: No, score=-14.51 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mRq95ihsrS7k for <dhcwg@ietfa.amsl.com>; Tue, 12 May 2015 14:21:54 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CECF41ACE98 for <dhcwg@ietf.org>; Tue, 12 May 2015 14:21:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=31642; q=dns/txt; s=iport; t=1431465714; x=1432675314; h=from:to:cc:subject:date:message-id:in-reply-to: mime-version; bh=peP1Y+h18TxFByUvQBdreP7sKzFNfwsYyXXTvC3d6ow=; b=lxsQcKEMRKq7WD8+wJF3hwOtZ7mXEcAruQY4k7qyYw0ah3hhgc8POv9N b6F0ZlH4fdsm4a+lMcfOCsOwE4OgN8rH8YBqQviGJNMDuaUJb39x6x8aG R9+efLR2opBxwjX7CEafvMVJi2xkQLo1hPa+ZAIDyeoagzlEh2/j4i1nq A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CjBQBWblJV/4QNJK1SCoJFSlReBsQ+gkmGAwKBQEwBAQEBAQGBC4QgAQIEeRIBCBEDAQIhAQYoERQJCAIEAQ0FCYgOAxINxScNhHwBAQEBAQEBAQEBAQEBAQEBAQEBAQEXizmCTYFbOxERBgEGhCcFhxqEHoRigjSGbIIqgVWBJINhinSGdCOCCRyBUm8BgUSBAQEBAQ
X-IronPort-AV: E=Sophos;i="5.13,417,1427760000"; d="scan'208,217";a="419131523"
Received: from alln-core-10.cisco.com ([173.36.13.132]) by rcdn-iport-7.cisco.com with ESMTP; 12 May 2015 21:21:53 +0000
Received: from xhc-aln-x15.cisco.com (xhc-aln-x15.cisco.com [173.36.12.89]) by alln-core-10.cisco.com (8.14.5/8.14.5) with ESMTP id t4CLLqZO005547 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 12 May 2015 21:21:52 GMT
Received: from xmb-aln-x03.cisco.com ([169.254.6.197]) by xhc-aln-x15.cisco.com ([173.36.12.89]) with mapi id 14.03.0195.001; Tue, 12 May 2015 16:21:52 -0500
From: "Sri Gundavelli (sgundave)" <sgundave@cisco.com>
To: Brian Haberman <brian@innovationslab.net>, "dhcwg@ietf.org" <dhcwg@ietf.org>
Thread-Topic: [dhcwg] AD Evaluation: draft-ietf-dhc-access-network-identifier
Thread-Index: AQHQihZL57usP4TJQE+/1RsvRhfDzZ14vZ0A
Date: Tue, 12 May 2015 21:21:52 +0000
Message-ID: <D177B5EB.1BC1C5%sgundave@cisco.com>
In-Reply-To: <D1739450.2400C7%shwethab@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.2.3.120616
x-originating-ip: [10.24.232.30]
Content-Type: multipart/alternative; boundary="_000_D177B5EB1BC1C5sgundaveciscocom_"
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/dhcwg/s8N85nPzFiWwgsh8zy0mQag3hKw>
Subject: Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-network-identifier
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 May 2015 21:21:59 -0000
Hi Brian, Thanks for the review. Please see inline. From: "Shwetha Bhandari (shwethab)" <shwethab@cisco.com<mailto:shwethab@cisco.com>> Date: Friday, May 8, 2015 at 10:09 PM To: Sri Gundavelli <sgundave@cisco.com<mailto:sgundave@cisco.com>>, Jouni Korhonen <jouni.nospam@gmail.com<mailto:jouni.nospam@gmail.com>>, "Bernie Volz (volz)" <volz@cisco.com<mailto:volz@cisco.com>>, "Mark Grayson (mgrayson)" <mgrayson@cisco.com<mailto:mgrayson@cisco.com>> Subject: Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-network-identifier Hi All, To address Brian's comments as part of AD eval, please find my comments inline, and suggest how we should move forward: * This document references RFC 6021, but 6021 has been obsoleted by 6991. [Done] [Authors] OK * Section 4.3.1 says that the SSID MUST be provided if the access technology is 802.11. However, it is not as strict when the access technology is 3GPP or 3GPP2. Should those access technologies also use MUST-level requirements on the value? Would it be useful to identify the acceptable values in this option for all access technologies listed here? http://www.iana.org/assignments/mobility-parameters/mobility-parameters.xhtml#mobility-parameters-10 [Authors] The below text should include all the dominant access technology types. 3GPP —> GERAN, UTRAN, E-UTRAN, 3GPP2 —> 1xRTT, HRPD, eHRPD Wi-Fi —> 802.11a/b/g/n OLD: The type of the Network Name is dependent on the access technology to which the mobile node is attached. If it is 802.11 access, the Network Name MUST be the SSID of the network. If the access network is 3GPP access, the Network Name is the PLMN Identifier of the network. If the access network is 3GPP2 access, the Network Name is the Access Network Identifier [ANI]. NEW: The type of the Network Name is dependent on the access technology to which the mobile node is attached. For IEEE 802.11 based networks, the network name will be the SSID of the network. For 3GPP access based it is the PLMN Identifier of the access network and for 3GPP2 access, the Network Name is the Access Network Identifier [ANI]. * Section 4.4.1 (and 5.3.1) provide an option for conveying the Operator's Vendor ID. Where does this Vendor ID come from? Is there a stable reference for Vendor IDs in this context? [Authors] We can add the following reference to PEN. [SMI] IANA, "PRIVATE ENTERPRISE NUMBERS", SMI Network Management Private Enterprise Codes, <http://www.iana.org/assignments/enterprise-numbers>. We can borrow some text from the PMIP ANI RFC, RFC 6757. Also, we need to keep this format consistent with RFC6757 OLD: Length 4. Operator Enterprise ID (4-Octets) The operator's Vendor ID. NEW: Length Variable Operator-Identifier as a variable-length Private Enterprise Number (PEN) [SMI] encoded in a network-byte order. The maximum PEN value depends on the ANI Length and is calculated using the formula: maximum PEN = 2^((ANI_length-1)*8)-1. For example, the ANI Length of 4 allows for encoding PENs from 0 to 2^24-1, i.e., from 0 to 16777215, and uses 3 octets of Operator-Identifier space. * Section 4.4.2 (and 5.3.2) provide the Realm, but there is no discussion of what Realm means. Adding some context would be useful. [Authors] Its just a domain name. We can provide an example OLD: Operator Realm Realm of the operator. Realm names are required to be unique, and are piggybacked on the administration of the DNS namespace. Realms are encoded using a domain name encoding defined in [RFC1035]. NEW Operator Realm Realm of the operator (Ex: @EXAMPLE.COM). Realm names are required to be unique, and are piggybacked on the administration of the DNS namespace. Realms are encoded using a domain name encoding defined in [RFC1035]. * Given the Motivation and Security Considerations sections, is there really a deployment model where these options should be inserted by the DHCP client? It seems to me that the client really isn't in a position to know if/when this option should be included in its DHCP message. [Authors] It is true, its mostly the network provided information. There was working group discussion on this and there was suggestion to allow the client report these options, however with the ability for the network to override it. On 4/13/15, 8:07 AM, "Brian Haberman" <brian@innovationslab.net<mailto:brian@innovationslab.net>> wrote: All, I have completed my AD Evaluation of draft-ietf-dhc-access-network-identifier as a part of the publication process. This is a well-written document and I only have a few comments/questions on it. Once these are resolved, the document can continue through the publication process... * This document references RFC 6021, but 6021 has been obsoleted by 6991. * Section 4.3.1 says that the SSID MUST be provided if the access technology is 802.11. However, it is not as strict when the access technology is 3GPP or 3GPP2. Should those access technologies also use MUST-level requirements on the value? Would it be useful to identify the acceptable values in this option for all access technologies listed here? http://www.iana.org/assignments/mobility-parameters/mobility-parameters.xhtml#mobility-parameters-10 * Section 4.4.1 (and 5.3.1) provide an option for conveying the Operator's Vendor ID. Where does this Vendor ID come from? Is there a stable reference for Vendor IDs in this context? * Section 4.4.2 (and 5.3.2) provide the Realm, but there is no discussion of what Realm means. Adding some context would be useful. * Given the Motivation and Security Considerations sections, is there really a deployment model where these options should be inserted by the DHCP client? It seems to me that the client really isn't in a position to know if/when this option should be included in its DHCP message. Regards, Brian
- [dhcwg] AD Evaluation: draft-ietf-dhc-access-netw… Brian Haberman
- Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-… Bernie Volz (volz)
- Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-… Brian Haberman
- Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-… Sri Gundavelli (sgundave)
- Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-… Brian Haberman
- Re: [dhcwg] AD Evaluation: draft-ietf-dhc-access-… Sri Gundavelli (sgundave)