IETF Logo Mail Archive

Re: [Gen-art] [OPSAWG] Genart early review of draft-ietf-opsawg-mud-08

"M. Ranganathan" <mranga@gmail.com> Wed, 30 August 2017 22:03 UTC

Return-Path: <mranga@gmail.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C3F4132C03; Wed, 30 Aug 2017 15:03:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VliVya8fEbci; Wed, 30 Aug 2017 15:03:17 -0700 (PDT)
Received: from mail-wm0-x22d.google.com (mail-wm0-x22d.google.com [IPv6:2a00:1450:400c:c09::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A400132C2E; Wed, 30 Aug 2017 15:03:17 -0700 (PDT)
Received: by mail-wm0-x22d.google.com with SMTP id u126so17766500wmg.1; Wed, 30 Aug 2017 15:03:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=l4wZRgVgf6jFPP6U4X4XY1JwLFh4/f0KwaTD+3j5Otk=; b=T32ruub2ear01seLjzvRC8XgGPu0keeDZE1cykiV4fUf5IlYVOAqs94KO9mXCsU2Wt +0X0OGhZAoUr/zhiw247J7fDCWXlVENsJko4UJxC8IWCS5R+gVlc7xP7evXd6R/QJrg/ YasUIXTcGGQTcxRSvY+DMHCnWBo4d3QCFRQJYv/AzPt20xkVIcqZm3ITn03M5wyhu8ko BrSNxPellV6m9BJwe//+3qssptTUg00BL+a17IhquDsjivecZY3nEXNP0DipNL5jMkCp jI8tfBhNLHnMzn8Acs6BkLeLgxXhCSboymjnkS6dp4dxWT6Lrq9GH9Aon6Q/Sb6Qf0SK 9URA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=l4wZRgVgf6jFPP6U4X4XY1JwLFh4/f0KwaTD+3j5Otk=; b=uSv1Tjga50B9PhtRzkUUftyYSlGNGrqD3s/zKnyIonZnEo2hvZ41+aZ32EzSGYo02z 4hpcdcygNkv+50ZihyLD22VbvVwQaSIbKgp2kj4Im1+wabgilA2eVH1HXl/+1rWLZNVW SqE+0yzAMfzomZMLS3sy4fyIa3AIH+im7OMxh74TIFMQnVJA1OB1Zvxpp/l9lZSGJ3t/ lxXBVczUBeKGAv8zgYF6QZNkhE/7D0FLQXHjQSTyjx6ZHu5/JIBH1eW8AAQPbq5ue2BF +kkQbW92FcnfIrhycVK+fyQ2/o3Y3UDlXYuoJ/mE1OZbGhnyK1bNc5AXJnje8oS6woz7 xlAg==
X-Gm-Message-State: AHYfb5g5xdq2ufaWbY8sibS02wqYEfvt+0rm+wi6aQbeMvbxByjF3cqM V4dZwFv+ufB8QeiU8wHkzXn/KKUpBA==
X-Received: by 10.28.167.131 with SMTP id q125mr2470643wme.11.1504130595678; Wed, 30 Aug 2017 15:03:15 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.184.71 with HTTP; Wed, 30 Aug 2017 15:02:35 -0700 (PDT)
In-Reply-To: <CAHiu4JMCtxFY9qu6q4h30Y=GExx69yLg7xRbSirgURy=7+4_Lw@mail.gmail.com>
References: <150411366399.21627.17047458871931107094@ietfa.amsl.com> <CAHiu4JMCtxFY9qu6q4h30Y=GExx69yLg7xRbSirgURy=7+4_Lw@mail.gmail.com>
From: "M. Ranganathan" <mranga@gmail.com>
Date: Wed, 30 Aug 2017 18:02:35 -0400
Message-ID: <CAHiu4JMcEkiZVZEax2uzk6H2Nz9Ka=p9T60LW2khzcQVDu0j9g@mail.gmail.com>
To: Robert Sparks <rjsparks@nostrum.com>
Cc: gen-art@ietf.org, draft-ietf-opsawg-mud.all@ietf.org, opsawg@ietf.org, ietf@ietf.org
Content-Type: multipart/alternative; boundary="001a114b9bdcd9ecf20557ffb18c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/NGdJzjthiA4j6yeUVVfr69rWzmI>
Subject: Re: [Gen-art] [OPSAWG] Genart early review of draft-ietf-opsawg-mud-08
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Aug 2017 22:03:20 -0000

On Wed, Aug 30, 2017 at 6:00 PM, M. Ranganathan <mranga@gmail.com> wrote:

>
>
> On Wed, Aug 30, 2017 at 1:21 PM, Robert Sparks <rjsparks@nostrum.com>
> wrote:
>
>>
>>
>> Right now, you leave the DHCP server (when it's used) responsible for
>> clearing state in the MUD controller. Please discuss what happens when
>> those are distinct elements (as you have in the end of section 9.2) and
>> the DHCP server reboots. Perhaps it would make sense for the DHCP server
>> to hand the length of the lease it has granted to the MUD controller and
>> let the MUD controller clean up on its own?
>>
>
> I would like to add a few words to the comprehensive review presented by
> Robert Sparks (I hope it is proper etiquette on this list to do so).
>
> With respect to the observation above:
>
> There is also a cache timeout in the MUD profile. Does it make sense  that
> the MUD controller should take the minimum of the DHCP lease time and the
> cache timeout and use that to time out the installed ACLs (?) The DHCP
> server should also  pass to the MUD controller, some way of identifying the
> device to which the lease has been granted (for example the MAC address of
> the device).
>
> The draft also not specify how the DHCP server will communicate with the
> MUD controller (presumably via a simple REST interface but what is the URL
> to be used and how are the parameters passed?). I think this should be
> specified for interoperability between DHCP clients and MUD servers. Maybe
> words describing this interaction can be added here.
>

Sorry: I meant interoperability between DHCP servers and MUD controllers
above.


>
> Thanks,
>
> Ranga.
>
>
>
>>
>> _______________________________________________
>> OPSAWG mailing list
>> OPSAWG@ietf.org
>> https://www.ietf.org/mailman/listinfo/opsawg
>>
>
>
> --
> M. Ranganathan
>



-- 
M. Ranganathan

v2.23.0 | Report a Bug | By Email