IETF Logo Mail Archive

Re: [I2nsf] [Last-Call] New Version Notification for draft-ietf-i2nsf-sdn-ipsec-flow-protection-11.txt

tom petch <daedulus@btconnect.com> Wed, 04 November 2020 10:42 UTC

Return-Path: <daedulus@btconnect.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FE853A0EE6; Wed, 4 Nov 2020 02:42:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.148
X-Spam-Level:
X-Spam-Status: No, score=-2.148 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, NICE_REPLY_A=-0.247, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FBvvb-SkqI-O; Wed, 4 Nov 2020 02:42:15 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2094.outbound.protection.outlook.com [40.107.20.94]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C67953A0EE3; Wed, 4 Nov 2020 02:42:14 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Z+fLy35idUYJrXl0mPPTeVGKETrU4to63KpcduoXjQBM6hpNLOF3C10XBobexL+33jACjn/VhLRsd7YTlA5PclD/ibwB3eAt27F1oD0rKkX21UJCFrxsaFdlaFLrYuwGd4ixdZGZlM9zvMFwAINTra5iSpClPJR+6mE2n80DzY23tKa+HHezToGQScjoy2ObSUA2wBbUMwxn4t1f7mkdenNajDQXvUL2CXdL5UgUCWPvqq+SbdP0TSFcdywHLh8BUh4vezWFyeJSahtVPruH1nNaExOwoynyhPqKaFyfYFAo99wxp69/d6TE22GzO1xZetB5Xt3urvrR5tpmG+X46Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bX1Zhakq3V/hPxBCHrIlssj4BSAM53csmAyQulXeIlM=; b=bvZGwEG7FMOTjHbqEFn92YIjHZMWIMj2c5IRmWrcUVpNvkIReYqZwnLPCkg50IscRRLTELRvYjGGzNBG21cFXztT+sFynf83H8v2/KBxLvV4bUZfPdng7qcasU0WCyM1v3CMPOZ4kVeNJI8QOiJp8WiFtXysoVPYiN9ZUavc0VOVOMPfGOv0cYNRhWCBeUWkcd0bdNwq5NuiwlgdgaZZ1s1FP87N24Yhq3T2mYaEBGuAjJMROX6OTgYeh8nJ7h3nKnYTJB3PaU5MVoGpvrJ31leSuF2v+jDGJvNk5wiQE+M3HfTf4LyR3hui6YQhWZwcOdAAijAeHVFw8yeLeX5cKw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=bX1Zhakq3V/hPxBCHrIlssj4BSAM53csmAyQulXeIlM=; b=NaQoCnFdZwHt4+QTY3LiwV1peC3tHTTDb6nKWtrTA1wH3siyVDVIIQaqn48U5WM0dJJkBiXk9f0esiduv0XlnpRsrAMOg3aS1Zvu9H1jTnAgFVZZ+j/gFpSO8zZGV2AgY3+/o5Rft+UlPyFO4clg+tc/m+we/cUNZD1R+OR1ChY=
Authentication-Results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=btconnect.com;
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8) by VI1PR07MB3373.eurprd07.prod.outlook.com (2603:10a6:802:22::26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3541.11; Wed, 4 Nov 2020 10:42:11 +0000
Received: from VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6407:6ea2:f517:eeae]) by VI1PR07MB6704.eurprd07.prod.outlook.com ([fe80::6407:6ea2:f517:eeae%7]) with mapi id 15.20.3541.015; Wed, 4 Nov 2020 10:42:11 +0000
To: Rafa Marin-Lopez <rafa@um.es>
References: <160337357077.29083.9236626834026808055@ietfa.amsl.com> <EE5AB669-73BB-4517-A6F4-23B7807FB36E@um.es> <5F9815D1.9010303@btconnect.com> <DDE550B1-9A9E-4954-B6F9-C0A33ECE1275@um.es>
Cc: i2nsf@ietf.org, Gabriel Lopez <gabilm@um.es>, Fernando Pereniguez-Garcia <fernando.pereniguez@cud.upct.es>, last-call@ietf.org
From: tom petch <daedulus@btconnect.com>
Message-ID: <5FA2857F.2000506@btconnect.com>
Date: Wed, 04 Nov 2020 10:42:07 +0000
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:38.0) Gecko/20100101 Thunderbird/38.5.0
In-Reply-To: <DDE550B1-9A9E-4954-B6F9-C0A33ECE1275@um.es>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [86.146.121.140]
X-ClientProxiedBy: LO2P265CA0174.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:a::18) To VI1PR07MB6704.eurprd07.prod.outlook.com (2603:10a6:800:18b::8)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [192.168.1.65] (86.146.121.140) by LO2P265CA0174.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:a::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.20.3499.18 via Frontend Transport; Wed, 4 Nov 2020 10:42:10 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: ddda1ba1-69ec-4cb5-e080-08d880ae4911
X-MS-TrafficTypeDiagnostic: VI1PR07MB3373:
X-Microsoft-Antispam-PRVS: <VI1PR07MB337328DF680BE46BC11FF3CFC6EF0@VI1PR07MB3373.eurprd07.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:8273;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: QJCKEwBs2YFJ8LdC3SFMTC5kPT9qNqsvH1MuuZZ1Pk5yNW7vIhrxqVXSdcYSu8sm4JlKZzCHw7z8TIAG25BxKLstztMQzD82E+wcjAkduHNrdNevHj2GwDClG2bQqGHUCSxhOMM453c0fi5Soci2h21ZVscKDanOydbk/Wbe917fHLaShlte5j6NJlvcurXqqxWMGlOnFstJNmZwbhOGJT+IfAWejlTHf5lLFnZ5S2SvqxpH5wIvW7v0tkE6yE/BVh0H4crbDTcFsFANhHZ2KN0Jvl3ahCiEBcnQLNKWa//syh4TCN+lXrRZRk2UuDzqXCXrQQR0Ik8LOD8unDS8Kg==
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR07MB6704.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(396003)(366004)(136003)(346002)(376002)(39860400002)(2616005)(956004)(26005)(4326008)(36756003)(6666004)(8936002)(8676002)(86362001)(53546011)(5660300002)(478600001)(33656002)(54906003)(52116002)(6916009)(66946007)(6486002)(83380400001)(66556008)(16526019)(186003)(2906002)(66476007)(316002)(16576012)(15650500001)(87266011); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData: 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
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ddda1ba1-69ec-4cb5-e080-08d880ae4911
X-MS-Exchange-CrossTenant-AuthSource: VI1PR07MB6704.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Nov 2020 10:42:11.3917 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: hEqDW2JoTlxOIygJBJhfiKPqpUykI3efEoPGQWVqLzIpt9pcBwO1CaBoa0XdZmxUFM/aHUO7T0h4V2qPdcvyHg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB3373
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/RZrnpGNRLksG4fZOy6otOAuCthM>
Subject: Re: [I2nsf] [Last-Call] New Version Notification for draft-ietf-i2nsf-sdn-ipsec-flow-protection-11.txt
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Nov 2020 10:42:17 -0000

Rafa

Another separate thought.  The references you have for algorithms are to 
both IANA and RFC.  It seems to me that the IANA pages will be more 
up-to-date and can be updated by Expert Review which may take place 
before there is an RFC available while the RFC provide more detail that 
a user might want.  I am uncertain which is best so I raised this on the 
ipsecme WG list, which is responsible for IKEv2 maintenance, and I got 
the following.  The question is mine, the response from Tero Kivinen.

============================================================

 > So, question.  What references should draft i2nsf-sdn point readers to
 > for up-to-date information on algorithms (assuming that they do not
 > track the IETF WG that updates information on IKEv2 ie like me)?

It should use IANA registry for the mapping between numbers,
algorithms and references; and then for algoritm implementation
requirements and usage guidance it should point to RFC8247 for IKEv2,
and to RFC8221 for ESP.

 > Currently that is both a reference to the IANA registry and to an RFC;
 > is that your best advice?

Yes.
=============================================================

So do as you are currently doing and I shall stop thinking about it.

Tom Petch


On 28/10/2020 10:42, Rafa Marin-Lopez wrote:
> Hi Tom:


<snip>

v2.23.0 | Report a Bug | By Email