Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i2nsf-capability-data-model-12: (with DISCUSS and COMMENT)
"Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com> Tue, 22 September 2020 04:42 UTC
Return-Path: <jaehoon.paul@gmail.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 884793A12F7; Mon, 21 Sep 2020 21:42:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.085
X-Spam-Level:
X-Spam-Status: No, score=-2.085 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_HK_NAME_FM_MR_MRS=0.01, URIBL_BLOCKED=0.001, URI_DOTEDU=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w6fItzi0ANu2; Mon, 21 Sep 2020 21:42:21 -0700 (PDT)
Received: from mail-lf1-x130.google.com (mail-lf1-x130.google.com [IPv6:2a00:1450:4864:20::130]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 53C3B3A12F6; Mon, 21 Sep 2020 21:42:21 -0700 (PDT)
Received: by mail-lf1-x130.google.com with SMTP id b12so16525372lfp.9; Mon, 21 Sep 2020 21:42:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=sy++UcGU9mC24r+mhJGEHDvG2R0APKJ4D5j6T9OVFeQ=; b=GTXbTMZNIln74cg+9Ed2LTeh81SroNEYn3M2/1a1ayvrVihG8zW0SXvpm1qik2LZLp R1Q+j+1ODYBbFKY4zIRg/e3Ik4Ce6exuRfr3MSi8AiL9B/tUG3pq7MoIvaWWtqi0GWJk 9hY/jkBifvNi+1Az4kI78bCzBTmELGQZZAkLb2ieZG5OZgYM9i6ut1hSh9UYMXVx/Ph8 3R7S6RSNtmXCdqbCF4H4sXy/dtCDcfjRZxfWUJw+QED/a2r0cKxgVUoQ2hRIUu9MpqHT 7nf4tvIa8IhZbisbFoppQd6h0aFA9gLMX57BiBrlQ0Mdtp84mZ9gODk3axffKJnFmhgs M5/Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=sy++UcGU9mC24r+mhJGEHDvG2R0APKJ4D5j6T9OVFeQ=; b=p8pdWO1JnQKT5zbeelfBZ5eLpf+ABYLjWX4xrds9srS2FFWGBEuT2IIJw3uYfXBVUz fyK0svXY6EvhtwjYZi+zm06E5372fxvfLINCoQCKilMTGRT13QRkOkQkxkwbU3xv1ccQ uik5IXETawXmpozH/ooyEDtdS9n6/Y1wFigzMMSEbUbHG58p3YV9ULeLZaNc2UcRE3vV g9dUYAliUdHfhLPp83XiH19PIKhQ2+4zdsufsDMqRnGH0NoEx0Barby/UgwkQFy/BLPO JJEyQVZYnig4CXvuSl783shnawOdbXTj2W1Mx2j/QqoleiZZFvxG7rFO2AiUxUhYw6oV BV1g==
X-Gm-Message-State: AOAM53117snXkaY2i+fksegkqkvk5/c0hwCvdavEFFFdCNDsj4xpVxxl piKIrS52UCPm/PCs02b8DDajfyevlSchjVL6ums=
X-Google-Smtp-Source: ABdhPJwapCYgbpNEo+Uy2BeKAWpNGL64mcUs1/5pR5FiTzGsO18m7sTO1TbmMBKGwyPouHIUl1YhCjAmkihHAyldq+U=
X-Received: by 2002:ac2:41d8:: with SMTP id d24mr953889lfi.458.1600749739424; Mon, 21 Sep 2020 21:42:19 -0700 (PDT)
MIME-Version: 1.0
References: <160067995004.16306.16002090566817704506@ietfa.amsl.com>
In-Reply-To: <160067995004.16306.16002090566817704506@ietfa.amsl.com>
From: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Date: Tue, 22 Sep 2020 13:41:44 +0900
Message-ID: <CAPK2DezA22-EkaM=1rBMNzLZObwEavKcwAVDJw7TWO2My2JDhQ@mail.gmail.com>
To: Éric Vyncke <evyncke@cisco.com>
Cc: The IESG <iesg@ietf.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, draft-ietf-i2nsf-capability-data-model@ietf.org, Linda Dunbar <dunbar.ll@gmail.com>, i2nsf-chairs@ietf.org, "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Content-Type: multipart/alternative; boundary="00000000000097c17405afdf9771"
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/dzFldPD-frLx5vRX2nBwercU050>
Subject: Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i2nsf-capability-data-model-12: (with DISCUSS and COMMENT)
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Sep 2020 04:42:24 -0000
Hi Eric, I will try to reflect your comments about IPv6 capabilities in DISCUSS and other capabilities in COMMENT on the revision as an editor of this draft. Thanks. Best Regards, Paul On Mon, Sep 21, 2020 at 6:19 PM Éric Vyncke via Datatracker < noreply@ietf.org> wrote: > Éric Vyncke has entered the following ballot position for > draft-ietf-i2nsf-capability-data-model-12: Discuss > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-i2nsf-capability-data-model/ > > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > Thank you for the work put into this document. > > While I do appreciate that a data model (this document) is derived from an > information model, I am concerned that the information model is an expired > draft whereas I would expect the information model being published first. > Else, > what is the use of the information model ? What was the WG reasoning behind > 'putting the cart before the horses' ? My concern is that by publishing the > YANG model, there is nearly no way to change the information model anymore. > > Please find below a couple of non-blocking COMMENT points but also a > couple of > blocking DISCUSS points around IPv6. They should be easy to resolve. I > would > hate to have NSF having basic IPv6 capabilities that cannot be configured > by > using the YANG model of this document. > > I hope that this helps to improve the document, > > Regards, > > -éric > > == DISCUSS == > > -- Section 4.1 -- > > It is quite common to apply conditions based on the whole IPv6 extension > header > chain (i.e., presence of destination option header or wrong order of the > extension headers). Why is there no such capabilities in this YANG module > ? The > only one is 'identity ipv6-next-header' that applies only to the first > extension header. > > What is the difference between 'identity ipv6-protocol' and 'identity > ipv6-next-header' ? There is no 'protocol' field in the IPv6 header. > > While fragmented IPv4 packets are part of the conditions ('identity > ipv4-fragment-flags'), there is no equivalent in IPv6. > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > -- Section 4.1 -- > May be am I misreading the YANG tree, but, I see no 'sctp-capability' in > the > set of 'condition-capabilities' (even is SCTP is not heavily used). > > Is there a real reason to have two related containers ? > generic-nsf-capabilities and advanced-nsf-capabilities. Why not a single > one ? > > Unsure what is meant by 'range' in 'identity range-ipv*-address'. Usually, > addresses are filtered/matched by using a prefix length and not a range > (that > is difficult to implement in hardware). > > Is there a reason why ICMP(v6) codes are not part of the conditions ? > > > > _______________________________________________ > I2nsf mailing list > I2nsf@ietf.org > https://www.ietf.org/mailman/listinfo/i2nsf > -- =========================== Mr. Jaehoon (Paul) Jeong, Ph.D. Associate Professor Department of Computer Science and Engineering Sungkyunkwan University Office: +82-31-299-4957 Email: jaehoon.paul@gmail.com, pauljeong@skku.edu Personal Homepage: http://iotlab.skku.edu/people-jaehoon-jeong.php <http://cpslab.skku.edu/people-jaehoon-jeong.php>
- [I2nsf] Éric Vyncke's Discuss on draft-ietf-i2nsf… Éric Vyncke via Datatracker
- Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i… Susan Hares
- Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i… Diego R. Lopez
- Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i… Mr. Jaehoon Paul Jeong
- Re: [I2nsf] Éric Vyncke's Discuss on draft-ietf-i… Eric Vyncke (evyncke)