Re: [dhcwg] PKIX WG new I-D draft: DHCP section review
Ralph Droms <rdroms@cisco.com> Mon, 08 December 2008 18:29 UTC
Return-Path: <dhcwg-bounces@ietf.org>
X-Original-To: dhcwg-archive@megatron.ietf.org
Delivered-To: ietfarch-dhcwg-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4B41228C149; Mon, 8 Dec 2008 10:29:25 -0800 (PST)
X-Original-To: dhcwg@core3.amsl.com
Delivered-To: dhcwg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 84AC028C149 for <dhcwg@core3.amsl.com>; Mon, 8 Dec 2008 10:29:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.451
X-Spam-Level:
X-Spam-Status: No, score=-6.451 tagged_above=-999 required=5 tests=[AWL=0.148, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KwTFwXorz0an for <dhcwg@core3.amsl.com>; Mon, 8 Dec 2008 10:29:23 -0800 (PST)
Received: from rtp-iport-2.cisco.com (rtp-iport-2.cisco.com [64.102.122.149]) by core3.amsl.com (Postfix) with ESMTP id 6857428C13B for <dhcwg@ietf.org>; Mon, 8 Dec 2008 10:29:23 -0800 (PST)
X-IronPort-AV: E=Sophos;i="4.33,736,1220227200"; d="scan'208";a="30360093"
Received: from rtp-dkim-1.cisco.com ([64.102.121.158]) by rtp-iport-2.cisco.com with ESMTP; 08 Dec 2008 18:29:17 +0000
Received: from rtp-core-2.cisco.com (rtp-core-2.cisco.com [64.102.124.13]) by rtp-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id mB8ITHt0015485; Mon, 8 Dec 2008 13:29:17 -0500
Received: from xbh-rtp-211.amer.cisco.com (xbh-rtp-211.cisco.com [64.102.31.102]) by rtp-core-2.cisco.com (8.13.8/8.13.8) with ESMTP id mB8ITHtE000809; Mon, 8 Dec 2008 18:29:17 GMT
Received: from xfe-rtp-202.amer.cisco.com ([64.102.31.21]) by xbh-rtp-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 8 Dec 2008 13:29:17 -0500
Received: from [161.44.65.201] ([161.44.65.201]) by xfe-rtp-202.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 8 Dec 2008 13:29:17 -0500
Message-Id: <52028AF8-6F1E-430A-8A52-19ECEE1ADDD6@cisco.com>
From: Ralph Droms <rdroms@cisco.com>
To: Massimiliano Pala <Massimiliano.Pala@Dartmouth.edu>
In-Reply-To: <493D5B77.1050708@Dartmouth.edu>
Mime-Version: 1.0 (Apple Message framework v929.2)
Date: Mon, 08 Dec 2008 13:29:16 -0500
References: <4935915E.1060708@Dartmouth.edu> <F32C8732-944D-4DB4-9E39-FF4430973C1A@nominum.com> <A29FB4BE-EDEC-4BD8-B2A4-DE340BAB6A84@cisco.com> <493D5B77.1050708@Dartmouth.edu>
X-Mailer: Apple Mail (2.929.2)
X-OriginalArrivalTime: 08 Dec 2008 18:29:17.0064 (UTC) FILETIME=[E0D74080:01C95962]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=3167; t=1228760957; x=1229624957; c=relaxed/simple; s=rtpdkim1001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=rdroms@cisco.com; z=From:=20Ralph=20Droms=20<rdroms@cisco.com> |Subject:=20Re=3A=20[dhcwg]=20PKIX=20WG=20new=20I-D=20draft =3A=20DHCP=20section=20review |Sender:=20 |To:=20Massimiliano=20Pala=20<Massimiliano.Pala@Dartmouth.e du>; bh=5lcvwfnWrDtVy3JWmLzJhYQME2SvO+7IwA8+9Ch0waY=; b=Dwzm8yIeSOTsQjb6smzQacmW9CQHFbImSoIfiagkK1EjyQo0g7MFza5L+z gXhYT1g/9w2sFkHlhJQkPkz0ZVW6c3NbnAlZ/Q766gJAJZFhhj27OVhmSr9X 5JetHj2KGU;
Authentication-Results: rtp-dkim-1; header.From=rdroms@cisco.com; dkim=pass ( sig from cisco.com/rtpdkim1001 verified; );
Cc: DHC-WG <dhcwg@ietf.org>, Damien Neil <Damien.Neil@nominum.com>, Ralph Droms <rdroms@cisco.com>
Subject: Re: [dhcwg] PKIX WG new I-D draft: DHCP section review
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://www.ietf.org/mailman/private/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"; DelSp="yes"
Sender: dhcwg-bounces@ietf.org
Errors-To: dhcwg-bounces@ietf.org
You could choose either IP addresses or FQDNs for the option payload. But, you'll still have to define both DHCPv4 and DHCPv6 versions of the option. You might want to look at http://www.ietf.org/internet-drafts/draft-ietf-dhc-option-guidelines-03.txt - Ralph On Dec 8, 2008, at Dec 8, 2008,12:37 PM, Massimiliano Pala wrote: > Hi Ralph and Damien, > > thanks for the input, it is very useful. I was trying to take a look > at how to define the options for the example, I picked the ip-address > as, from the man page, you can specify a list of ip-address but it > does not say IPv4 only (although there is an ipv6-address...). > > Shall I use the domain-list data type as specified in RFC 3361 section > 3.1 instead ? Would this be a better encoding ? My idea is to use an > already-existing data-type so it would be easier for PRQP adopters. > > Cheers, > Max > > > Ralph Droms wrote: >> I agree with Damien's review. Take a look at RFC 4280 for an >> example of how to write parallel definitions for an option in >> DHCPv4 and DHCPv6. >> - Ralph >> On Dec 2, 2008, at Dec 2, 2008,3:11 PM, Damien Neil wrote: >>> On Dec 2, 2008, at 11:49 AM, Massimiliano Pala wrote: >>>> http://www.ietf.org/internet-drafts/draft-ietf-pkix-prqp-01.txt >>>> >>>> I would need the expertise from your WG to validate the DHCP part >>>> of the I-D. >>> >>> At first glance, two issues jump out at me: >>> >>> Section B.1.1 does not indicate whether the option is for DHCPv4 >>> or DHCPv6. The option code and length fields are 16 bits wide, >>> which implies DHCPv6, but the examples in subsequent sections >>> imply DHCPv4. DHCPv4 options encode the option code and length as >>> a single octet each. (Section B.1.1 also references RFC 3315, >>> implying DHCPv6.) >>> >>> Section B.1.1 specifies that the option contains a list of DNS >>> names, but the ISC DHCP examples in section B.1.2 are for an >>> option containing a list of IPv4 addresses. >>> >>> - Damien >>> _______________________________________________ >>> dhcwg mailing list >>> dhcwg@ietf.org >>> https://www.ietf.org/mailman/listinfo/dhcwg >> _______________________________________________ >> dhcwg mailing list >> dhcwg@ietf.org >> https://www.ietf.org/mailman/listinfo/dhcwg > > > -- > > Best Regards, > > Massimiliano Pala > > -- > o > ------------------------------------------------------------------------ > Massimiliano Pala [OpenCA Project Manager] Massimiliano.Pala@dartmouth.edu > project.manager@openca.org > > Dartmouth Computer Science Dept Home Phone: +1 (603) > 369-9332 > PKI/Trust Laboratory Work Phone: +1 (603) > 646-9179 > -- > o > ------------------------------------------------------------------------ > > People who think they know everything are a great annoyance to those > of us > who do. > -- Isaac Asimov > _______________________________________________ > dhcwg mailing list > dhcwg@ietf.org > https://www.ietf.org/mailman/listinfo/dhcwg _______________________________________________ dhcwg mailing list dhcwg@ietf.org https://www.ietf.org/mailman/listinfo/dhcwg
- [dhcwg] PKIX WG new I-D draft: DHCP section review Massimiliano Pala
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Damien Neil
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Ralph Droms
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Massimiliano Pala
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Ralph Droms
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Massimiliano Pala
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Bernie Volz (volz)
- Re: [dhcwg] PKIX WG new I-D draft: DHCP section r… Ralph Droms