Re: [dispatch] FW: New Version Notification for draft-kinamdar-dispatch-sip-auto-peer-00.txt
Richard Barnes <rlb@ipv.sx> Tue, 17 September 2019 15:37 UTC
Return-Path: <rlb@ipv.sx>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 42D1E1200D8 for <dispatch@ietfa.amsl.com>; Tue, 17 Sep 2019 08:37:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ipv-sx.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t9ODJalksLvc for <dispatch@ietfa.amsl.com>; Tue, 17 Sep 2019 08:37:51 -0700 (PDT)
Received: from mail-oi1-x244.google.com (mail-oi1-x244.google.com [IPv6:2607:f8b0:4864:20::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40D47120045 for <dispatch@ietf.org>; Tue, 17 Sep 2019 08:37:51 -0700 (PDT)
Received: by mail-oi1-x244.google.com with SMTP id e18so3283660oii.0 for <dispatch@ietf.org>; Tue, 17 Sep 2019 08:37:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipv-sx.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=FAFLL46StcGdXQw6YVXpj6WUeEQz+wO6iph053jmPUE=; b=iDBgoIbAxgrVealhITC5huHcI49cqkDvm+HCTFY/Ce/DP0AZ9zkYv2NbHpl8EuaiH4 6h2+KiUKAWMkuWp+t36x1LDOJWgkClk/NUJsC/R5ISclG8+mhuJ9+UlagF5EbF/ML5k1 sQsT5sd/5Hwc0fuZxBrvOh+XB7RMXw48XoeMER+zChBZ80XSoA/Z1v42ksAoVF8B/HBA KFj9ylTMuUsM9r+YXDEJwBiCwtOGIRhRcD9hJ7fY9e/ung6E9KoViSjMdJkp3DliWjNY E0Dq0OHtggSPFJH/jf2TOxjARnZhDYSrM2zlWE2KS7rGGzj0IRNe589lCYM4NbEu78jX DaMg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FAFLL46StcGdXQw6YVXpj6WUeEQz+wO6iph053jmPUE=; b=JZMECg+sm0zj/1qA5pzcm7JitzF5M2oRpvyEVV0wP+yc9QLAbcWv99r4vd4j1+2lfw D6lJx8mRy8bkLMc2i3IGd7kvS+lcy4dx3u/rJzxN0eN32V/Un8ng3BQjpltTz8lfKdgS p5HfhYcoyk1FN16NSJrBZtaMRuoYqV0dck3NKxHcLj4DtE5n77JItR1mxBqeork4WXTG jR/4OAvBiMyDU9iQKSjAxgLbkD0BmrM8MMv6W3Hc2mc9qhHze/SLsMZ7e19zRr/hSGxN RJ6v3ZU4bzsr7EwRTtvirja1bQrsEhyqtP3uhrGQwgJFASSFgLNUxIm+gIbxRr8aZB2w nzqg==
X-Gm-Message-State: APjAAAXpfPPqGsGfKpSTbvmfpvvXS/m0cnH4EFoOM0RRLWQSOwTmXVCC EKo9z2B9g1+W4ZQ1oBYxUZKh3ksYdqHn8IIWZwzANw==
X-Google-Smtp-Source: APXvYqzA05SC427In1zVBMQgpJd2KQCNTst9lhFS46ZgWij6oCzU345DQiW/ACwPFh1WCASy93Tv7sARZZkPUDi4C48=
X-Received: by 2002:aca:cc0b:: with SMTP id c11mr4088350oig.169.1568734670357; Tue, 17 Sep 2019 08:37:50 -0700 (PDT)
MIME-Version: 1.0
References: <156825995534.13361.10232150689686123584.idtracker@ietfa.amsl.com> <DB05AE1C-7CD4-4BC6-BABB-2E8070CA29FB@cisco.com>
In-Reply-To: <DB05AE1C-7CD4-4BC6-BABB-2E8070CA29FB@cisco.com>
From: Richard Barnes <rlb@ipv.sx>
Date: Tue, 17 Sep 2019 11:37:39 -0400
Message-ID: <CAL02cgR94hQOD-iiAdHe+Xr9+LZWcTDJv7RoxsjmNDZnwgbO-w@mail.gmail.com>
To: "Kaustubh Inamdar (kinamdar)" <kinamdar@cisco.com>
Cc: "dispatch@ietf.org" <dispatch@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c625110592c1802e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dispatch/QgsXYmmwmyYVdhGhaX8J7vgOomg>
Subject: Re: [dispatch] FW: New Version Notification for draft-kinamdar-dispatch-sip-auto-peer-00.txt
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Sep 2019 15:37:54 -0000
I gave this draft a quick skim, and it seems sensible. I'm not an expert in the configuration / setup of SIP trunks, but I do love automating manual processes (cf. ACME), and this draft seems like a plausible approach to automating things about SIP trunk configuration that are currently manual. Couple of things that jumped out to me on a quick skim, in no particular order: 1. It would be good to have a tighter requirement for HTTPS in here. For example, on the one hand, you have "it is required to secure HTTP using Transport Layer Security", but on the other hand, "MUST support the use of the https uri scheme" (not MUST use). There is no reason to support unencrypted HTTP. You can probably borrow some language from RFC 8555 https://tools.ietf.org/html/rfc8555#section-6 2. "Capability set documents MUST be formatted in XML or JSON" -- Why do you need both? 3. OAuth2 seems like overkill for this application. OAuth2 is designed for a 3-party flow where authorization is being delegated; there are only two entities here. It would be much simpler to just use some point-to-point authentication technique, such as TLS client certificates or even HTTP/SIP Digest authentication. 4. The WebFinger utilization here also seems like overkill. Once you take out the OAuth2, you're just discovering a single URL -- at which point you might as well configure that directly! In general, this document needs to specify (1) what configuration the client is presumed to start out with, and (2) how that information is used to auto-configure the trunk. Cf. in ACME, "Each function is listed in a directory along with its corresponding URL, so clients only need to be configured with the directory URL." It seems like all you really need here is a capability server URL and a certificate / password. 5. The relation types defined using "https://sipserviceprovider/" need to be changed to something else. While that's syntactically a URL, it isn't actually. If you need a URI that isn't dereferenceable, please provide some URNs here. --RLB On Mon, Sep 16, 2019 at 9:31 PM Kaustubh Inamdar (kinamdar) < kinamdar@cisco.com> wrote: > Hi All, > The following draft has been posted to dispatch. The draft aims to > simplify peering between enterprise and service provider SIP networks. > Discussions/comments are welcome. > > -Kaustubh > > > > > > > A new version of I-D, draft-kinamdar-dispatch-sip-auto-peer-00.txt > has been successfully submitted by Cullen Jennings and posted to the > IETF repository. > > Name: draft-kinamdar-dispatch-sip-auto-peer > Revision: 00 > Title: Automatic Peering for SIP Trunks > Document date: 2019-09-10 > Group: Individual Submission > Pages: 35 > URL: > https://www.ietf.org/internet-drafts/draft-kinamdar-dispatch-sip-auto-peer-00.txt > Status: > https://datatracker.ietf.org/doc/draft-kinamdar-dispatch-sip-auto-peer/ > Htmlized: > https://tools.ietf.org/html/draft-kinamdar-dispatch-sip-auto-peer-00 > Htmlized: > https://datatracker.ietf.org/doc/html/draft-kinamdar-dispatch-sip-auto-peer > > > > Abstract: > This draft specifies a configuration workflow to enable enterprise > Session Initiation Protocol (SIP) networks to solicit the capability > set of a SIP service provider network. The capability set can > subsequently be used to configure features and services on the > enterprise edge element, such as a Session Border Controller (SBC), > to ensure smooth peering between enterprise and service provider > networks. > > > > > Please note that it may take a couple of minutes from the time of > submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > > _______________________________________________ > dispatch mailing list > dispatch@ietf.org > https://www.ietf.org/mailman/listinfo/dispatch >
- [dispatch] FW: New Version Notification for draft… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] FW: New Version Notification for d… Richard Barnes
- Re: [dispatch] New Version Notification for draft… Christer Holmberg
- Re: [dispatch] FW: New Version Notification for d… DOLLY, MARTIN C
- Re: [dispatch] New Version Notification for draft… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] FW: New Version Notification for d… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] FW: New Version Notification for d… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] New Version Notification for draft… Christer Holmberg
- Re: [dispatch] FW: New Version Notification for d… DOLLY, MARTIN C
- Re: [dispatch] New Version Notification for draft… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] FW: New Version Notification for d… Kaustubh Inamdar (kinamdar)
- Re: [dispatch] New Version Notification for draft… Cullen Jennings
- Re: [dispatch] New Version Notification for draft… Cullen Jennings
- Re: [dispatch] FW: New Version Notification for d… Christer Holmberg