[I2nsf] questions to draft-xia-i2nsf-security-policy-object-00
Linda Dunbar <linda.dunbar@huawei.com> Sat, 25 March 2017 21:46 UTC
Return-Path: <linda.dunbar@huawei.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 770B21286B2 for <i2nsf@ietfa.amsl.com>; Sat, 25 Mar 2017 14:46:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Level:
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JnsSG3oC5Rlk for <i2nsf@ietfa.amsl.com>; Sat, 25 Mar 2017 14:46:11 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3DF5126BF6 for <i2nsf@ietf.org>; Sat, 25 Mar 2017 14:46:10 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml704-cah.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id DJQ39731; Sat, 25 Mar 2017 21:46:08 +0000 (GMT)
Received: from SJCEML703-CHM.china.huawei.com (10.208.112.39) by lhreml704-cah.china.huawei.com (10.201.108.45) with Microsoft SMTP Server (TLS) id 14.3.301.0; Sat, 25 Mar 2017 21:46:07 +0000
Received: from SJCEML702-CHM.china.huawei.com ([169.254.4.233]) by SJCEML703-CHM.china.huawei.com ([169.254.5.195]) with mapi id 14.03.0235.001; Sat, 25 Mar 2017 14:45:53 -0700
From: Linda Dunbar <linda.dunbar@huawei.com>
To: "Xialiang (Frank)" <frank.xialiang@huawei.com>, "Linqiushi (Jessica, SCC)" <linqiushi@huawei.com>
CC: "i2nsf@ietf.org" <i2nsf@ietf.org>
Thread-Topic: questions to draft-xia-i2nsf-security-policy-object-00
Thread-Index: AdKlaJ9hf4u2CrcmQnaQ/qC+o795Xw==
Date: Sat, 25 Mar 2017 21:45:52 +0000
Message-ID: <4A95BA014132FF49AE685FAB4B9F17F659267EE1@SJCEML702-CHM.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.47.149.221]
Content-Type: multipart/alternative; boundary="_000_4A95BA014132FF49AE685FAB4B9F17F659267EE1SJCEML702CHMchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-Mirapoint-Virus-RAPID-Raw: score=unknown(0), refid=str=0001.0A090205.58D6E521.002E, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0, ip=169.254.4.233, so=2013-06-18 04:22:30, dmn=2013-03-21 17:37:32
X-Mirapoint-Loop-Id: 2644059edf09ff522a0ae417fc6da9c8
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/fQHbtvjwEoOvQOlgoai5vVl7AqI>
Subject: [I2nsf] questions to draft-xia-i2nsf-security-policy-object-00
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Mar 2017 21:46:13 -0000
Frank and QiuShi, Is it possible add some examples on using those objects in a policy? Showing how those objects make policy description easier? Use "Application Object" as an example, can you list some possible values for the "applicationCategory attribute"? and demonstrate how those values are used? Is it valuable to include a recommended policy profile when those applications are located in different places? e.g. when those applications are migrated to a 3rd party cloud dc, what are the recommended security policies to be applied to them? Thank you very much. Linda
- [I2nsf] questions to draft-xia-i2nsf-security-pol… Linda Dunbar
- Re: [I2nsf] questions to draft-xia-i2nsf-security… Xialiang (Frank)