Re: [Dots] prefix with namespace identifier in draft-ietf-dots-signal-filter-control
<mohamed.boucadair@orange.com> Wed, 26 February 2020 12:54 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC42D3A0852 for <dots@ietfa.amsl.com>; Wed, 26 Feb 2020 04:54:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dhLeWWj8Sl1T for <dots@ietfa.amsl.com>; Wed, 26 Feb 2020 04:54:21 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.66.39]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B92B63A084E for <dots@ietf.org>; Wed, 26 Feb 2020 04:54:20 -0800 (PST)
Received: from opfedar05.francetelecom.fr (unknown [xx.xx.xx.7]) by opfedar21.francetelecom.fr (ESMTP service) with ESMTP id 48SG2z3SVpz7v6Y; Wed, 26 Feb 2020 13:54:19 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1582721659; bh=0G8RiNmYiUsm/kyLhU2sqAiE1qyV7T1g5J2gE+z4Zto=; h=From:To:Subject:Date:Message-ID:Content-Type:MIME-Version; b=AKZB3hDXX6qlHK0H0SYdOBe4CI6PGQUodnatiw8gxMZXKgQyna9vzU6cJbXkcw/yJ m37IiprGA4gfpOR8lyEucTNbdA0yQkmCe41Wq35/8MhZTwigFA9xogTbexJOeu1Gtp e+GbuXM3q52ZSUOK30wrdpRzrv8UMtOQLp6/fPNQGqq4N9ngZ58VkaomDn835sV289 zBrlcqIcSHh9vso7RjRL8gyK1UCV1QSEFK3AhuKXA77Gk79MVCrKvn+W0H2qQvIN5l ML2A7nISodPU1o+DlJ6Z8wiI37KmPRSTis8KAx1R5wLGouWC8C+EKs5bsfXXFe+GO/ efbhxQYyTWKxw==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.82]) by opfedar05.francetelecom.fr (ESMTP service) with ESMTP id 48SG2z27GDz2xCn; Wed, 26 Feb 2020 13:54:19 +0100 (CET)
Received: from OPEXCAUBMA2.corporate.adroot.infra.ftgroup ([fe80::e878:bd0:c89e:5b42]) by OPEXCAUBM5E.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.03.0468.000; Wed, 26 Feb 2020 13:54:19 +0100
From: mohamed.boucadair@orange.com
To: Jon Shallow <supjps-ietf@jpshallow.com>, "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@mcafee.com>, kaname nishizuka <kaname@nttv6.jp>, "dots@ietf.org" <dots@ietf.org>
Thread-Topic: [Dots] prefix with namespace identifier in draft-ietf-dots-signal-filter-control
Thread-Index: AQKwyXYP4ly1xZD5xh2+JSnmkwkmIqZ3qYiAgAAJwnA=
Date: Wed, 26 Feb 2020 12:54:18 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B9330314400FA@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
References: <787AE7BB302AE849A7480A190F8B93303143E803@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <00ab01d5ec9f$372c6830$a5853890$@jpshallow.com>
In-Reply-To: <00ab01d5ec9f$372c6830$a5853890$@jpshallow.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.245]
Content-Type: multipart/alternative; boundary="_000_787AE7BB302AE849A7480A190F8B9330314400FAOPEXCAUBMA2corp_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/hFbLdImLU-wW4GjoWaXxtJW2QCQ>
Subject: Re: [Dots] prefix with namespace identifier in draft-ietf-dots-signal-filter-control
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Feb 2020 12:54:24 -0000
Hi Jon,
We can't do that because "mitigation-scope" is not defined in ietf-dots-signal-control. FWIW, draft-ietf-core-yang-cbor says the following (which consistent with 7951)
==
o namespace qualified - the identifier of the YANG item is prefixed
with the name of the module in which this item is defined,
separated by the colon character (":").
The name of a module determines the namespace of all YANG items
defined in that module. If an item is defined in a submodule, then
the namespace qualified name uses the name of the main module to
which the submodule belongs.
==
Cheers,
Med
De : Jon Shallow [mailto:supjps-ietf@jpshallow.com]
Envoyé : mercredi 26 février 2020 13:21
À : BOUCADAIR Mohamed TGI/OLN; Konda, Tirumaleswar Reddy; kaname nishizuka; dots@ietf.org
Objet : RE: [Dots] prefix with namespace identifier in draft-ietf-dots-signal-filter-control
Hi all,
Thinking out of the box, for Figure 8 we have
"ietf-dots-signal-channel:mitigation-scope": {
"scope": [
{
"target-prefix": [
"2001:db8:6401::2/127"
],
"target-protocol": [
17
],
"ietf-dots-signal-control:acl-list": [
{
"ietf-dots-signal-control:acl-name": "my-accept-list",
"ietf-dots-signal-control:activation-type": "immediate"
}
"lifetime": 3600
}
]
}
}
If this was to be replaced with
"ietf-dots-signal-control:mitigation-scope": {
"scope": [
{
"target-prefix": [
"2001:db8:6401::2/127"
],
"target-protocol": [
17
],
" acl-list": [
{
" acl-name": "my-accept-list",
" activation-type": "immediate"
}
"lifetime": 3600
}
]
}
}
As the module is ietf-dots-signal-control: which includes the augments - Would that not be valid (and a lot simpler)?
So we only need a CBOR definition for ietf-dots-signal-channel:mitigation-scope and separately for ietf-dots-signal-control:mitigation-scope as well as the augmented new entries.
Regards
Jon
From: Dots [mailto: dots-bounces@ietf.org] On Behalf Of mohamed.boucadair@orange.com
Sent: 24 February 2020 08:17
To: Jon Shallow; Konda, Tirumaleswar Reddy; kaname nishizuka; dots@ietf.org
Subject: [Dots] prefix with namespace identifier in draft-ietf-dots-signal-filter-control
Re-,
The prefix use in draft-ietf-dots-signal-filter-control-02#section-5.1 is correct given that acl-* attributes are not defined in the base YANG module as being part of a mitigation request.
We assumed that the same key value is used for both (e.g., acl-name and ietf-dots-signal-control:acl-name). Given that we revisited that design in the telemetry I-D, I'm afraid that we will need to assign key values for ietf-dots-signal-control:acl-list and ietf-dots-signal-control:acl-name.
Cheers,
Med
De : Jon Shallow [mailto:supjps-ietf@jpshallow.com]
Envoyé : vendredi 21 février 2020 16:46
À : BOUCADAIR Mohamed TGI/OLN; Konda, Tirumaleswar Reddy; kaname nishizuka; dots@ietf.org
Objet : RE: [Dots] DOTS telemetry questions
Hi,
See inline Jon1>
Regards
Jon
Jon> We have the same naming issues in draft-ietf-dots-signal-filter-control-00 where we do not have the ietf-dots-signal-control: prefix in the JSON examples (Fig 10)
[Med] Fig 10 is a "normal" mitigation request. Why should it need to include "ietf-dots-signal-control:" prefix?
Jon1> My bad - I was looking at draft-ietf-dots-signal-filter-control-00, not draft-ietf-dots-signal-filter-control-02. However, https://tools.ietf.org/html/draft-ietf-dots-signal-filter-control-02#section-5.1 only defines "activation-type" without the prefix, and acl-list and acl-name have the incorrect prefix: added to, for example, Figure 1.
- [Dots] prefix with namespace identifier in draft-… mohamed.boucadair
- Re: [Dots] prefix with namespace identifier in dr… Jon Shallow
- Re: [Dots] prefix with namespace identifier in dr… mohamed.boucadair
- Re: [Dots] prefix with namespace identifier in dr… Konda, Tirumaleswar Reddy