Re: [Idr] Roman Danyliw's No Objection on draft-ietf-idr-tunnel-encaps-20: (with COMMENT)

John Scudder <jgs@juniper.net> Wed, 02 December 2020 20:24 UTC

Return-Path: <jgs@juniper.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E2ABD3A148B; Wed, 2 Dec 2020 12:24:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.12
X-Spam-Level:
X-Spam-Status: No, score=-2.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=ALMLENhZ; dkim=pass (1024-bit key) header.d=juniper.net header.b=GfF2PURF
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0dWM9it5zgvJ; Wed, 2 Dec 2020 12:24:34 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 451063A1489; Wed, 2 Dec 2020 12:24:34 -0800 (PST)
Received: from pps.filterd (m0108158.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 0B2KJtML013218; Wed, 2 Dec 2020 12:24:30 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=eep/CTATPYyDMsQBKw7DX/z8jIvcAUgBf2DR7jMHkUw=; b=ALMLENhZ/dqqwXJwTHEseJCBpiQyMI+ymTVP5j4tPeu5B91+Qdz2iuJYRbw4kJQ3iPhH 0vAVMOc9EEsW7xiPbA0Jm4CP1FAXNrevTiPy8VWuzcr6Xm3LAaIDZlIiJybWF7iaVox8 Hcb3hFa1DdAK59wfsIp0hHiykUAjsaPgZecE4qB27wloNhjxJKXbe1AwqQ4xzLZv5YwC z5amMwovPtSKFipYno8EbfUoTdx/vq/tLQOS3XNJzrfEqc3fXO4QCTsTIkGCPmQvFjSv yWbAYt9Ulc0Y93/FpDoni+sQNPAt4UbsaJAtNi0pXhk0E3753ISqArSOLto+U+yC15zS Sg==
Received: from nam11-co1-obe.outbound.protection.outlook.com (mail-co1nam11lp2172.outbound.protection.outlook.com [104.47.56.172]) by mx0a-00273201.pphosted.com with ESMTP id 355vhra89n-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 02 Dec 2020 12:24:30 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BThJrZ8Su3TK1ov/feMzqzBrWeXRIjM473yomq0dqQSQ/uFOVNPFjmbp2Iyv3ny93qS3W0lr5/DBVckNAW7YTqz7EoYPyQ2Sx8aScR/wrsmLKOiUN37JI8WU/ordNLR8GU/9F/y2N37UcD67qDJLB+7EmZvbPtpEAKXExBFiCC+bvs2aXpk4t8Lp4JEjhUbxiCoHftnC0AYU3NVZli+PcXOXnr+XxFoupzXem13pdHyAxttQPU4oFO00X/2cVe5Ff9ne+VafIBjPNVIoel76L6eM3BGddunpEt99h255bP+Bbg+3edY6O41DtKRtYbKmffvjiIdkcesAzqGYsGvJWg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eep/CTATPYyDMsQBKw7DX/z8jIvcAUgBf2DR7jMHkUw=; b=dH1Bgz3Ac5yOCjEwUxDch8W1VWqINDxyzfKNySIfiSOHmns27OqviPyZ2QX5FwBPOGcbPZCoTgy+yiFt/mbJbdz3dSyJxPWsUR9HopghRxOi8QcKH7MXY8GW4h8/aI2imhF5QLNiwz3fzMJqqjWNHujW6EgVdu7gICM6JkT97HWen5dPumwvBnylJeeq8NNzMi1sjZK5YQ39leZLACe/My1KFEamss9PbniHi+s+tVmcwxXo5QLPT9ZSePIUj+GPa3OftkUchx0OqadFuE1CWnHzEW+5uzeeoZ+gLqrLDW+/WJ5LeydqZjYMw2/U+PVBX54jtd7Up4ApaLl+WA69/w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eep/CTATPYyDMsQBKw7DX/z8jIvcAUgBf2DR7jMHkUw=; b=GfF2PURFvx9GU23177vfL7oz9kh1OpQ/+1cxoKYOnwuJNEcluMl72zfU7Xty153MGmty4/hi4/bkNuCSdz4nw5Jwmrvk8a7FQETi40OVWQ8ABuVpISEGUxTTem2W7XaBKPKrCZruA1EGECl6XdVOLeWGSFvyWblFTpw3qhl8II0=
Received: from MN2PR05MB6109.namprd05.prod.outlook.com (2603:10b6:208:c4::20) by MN2PR05MB6255.namprd05.prod.outlook.com (2603:10b6:208:cd::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.5; Wed, 2 Dec 2020 20:24:25 +0000
Received: from MN2PR05MB6109.namprd05.prod.outlook.com ([fe80::f91f:55f3:3130:d318]) by MN2PR05MB6109.namprd05.prod.outlook.com ([fe80::f91f:55f3:3130:d318%5]) with mapi id 15.20.3632.016; Wed, 2 Dec 2020 20:24:25 +0000
From: John Scudder <jgs@juniper.net>
To: Roman Danyliw <rdd@cert.org>
CC: The IESG <iesg@ietf.org>, "draft-ietf-idr-tunnel-encaps@ietf.org" <draft-ietf-idr-tunnel-encaps@ietf.org>, "idr-chairs@ietf.org" <idr-chairs@ietf.org>, "idr@ietf. org" <idr@ietf.org>, Alvaro Retana <aretana.ietf@gmail.com>, Hares Susan <shares@ndzh.com>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-idr-tunnel-encaps-20: (with COMMENT)
Thread-Index: AQHWx1svfK1XiiMj+kq77RXcLtF1NKnkQ4kA
Date: Wed, 2 Dec 2020 20:24:25 +0000
Message-ID: <847123B1-67D3-41FF-A156-A6A25F66186B@juniper.net>
References: <160676974641.7444.11457973014978444006@ietfa.amsl.com>
In-Reply-To: <160676974641.7444.11457973014978444006@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.120.23.2.4)
authentication-results: cert.org; dkim=none (message not signed) header.d=none;cert.org; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [162.225.191.192]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: d52c7f01-046d-4379-55d2-08d897004313
x-ms-traffictypediagnostic: MN2PR05MB6255:
x-microsoft-antispam-prvs: <MN2PR05MB62559C3F6FCCB966BA7E0E7DAAF30@MN2PR05MB6255.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: QUD8eDnMYSLbWbFKNBB2SWlwVoiSe0SHgakMgxJxrhVfeSjerKu2e+eJmjL9cG3SkLEqqnAcZKaUsBVdbmPjbszZuxsSGIJWzHR1m3FCeASwRpTfL1z7Z3sZhMDNzbDRkDFWVS2MXXCya6Ze5chUQAdFQBha07NG+ns7xOfKNwK5C8ukOls7EkVy+OF4dj0cF+w/k+E4ibuVlSIN+93Sf55fh4LjGQqYB9rVbCeK00MFwct2ls0kqsmsykFXl3QOWW1Pu8uZwo6NwKM9ptF4RLsbiEy0IosBEvNdhN6y+cmN7x+aHQ2k3b15aNifMxWe4RZ4Rj74xL4hB+F79E+Hru4rGok/5V1pBBfOfO1foOUOmFU1x5RpXvfvsYWD+gmiU5kLuTLZpwtWcuOjFhVf2sZWO3tehzXsseq1PwFZkRkj5QaPELnnS0CeDm8zyJBm8nQ8EEEfTIfnnlpJICIQMw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR05MB6109.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(346002)(39860400002)(376002)(396003)(136003)(66946007)(316002)(66476007)(6506007)(2906002)(8936002)(66446008)(66556008)(6916009)(5660300002)(54906003)(33656002)(64756008)(71200400001)(26005)(36756003)(6512007)(86362001)(478600001)(186003)(8676002)(4326008)(83380400001)(2616005)(66574015)(53546011)(966005)(76116006)(91956017)(6486002)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: =?utf-8?B?TnNnWXFhZmwrRGJoODR3Z3NYbHNyNEJ1WXpreFc4Wjg1NTlpMUtLcHA4aXVm?= =?utf-8?B?ZkdYSFVWbmcyRDhpY2J4R1dOUThBdktsNXl3cWF4TS9sSytNZDY1RWNFTSto?= =?utf-8?B?ZHdCMlpZeUR3UFFqcmZVS2xsNHNSK1pKVFFNWncrTTJtYUt0TkZxcEY0NWJT?= =?utf-8?B?WlJhbVA3eC8xRVg5WnVaL09JcDVzU1RvamFTQ1cwTExwRDViano3WG1NVVov?= =?utf-8?B?RkxSNXFmYW50cnJoUTJ3MHZ6VGI1dUdSUllycVA0YmJ6L01PZ05ud3VIZGsy?= =?utf-8?B?b3B2YkVQQTl4ZWxoWEE4QkpGb0V6b00reHg2aVZWQ1NMTnlUeENHNTBEZVJT?= =?utf-8?B?OEZaVU9rYXFCcUw1S0VHWk1TQ1U2Y2NQZnpXNEN1V0FxL2ZjZWJTUFhDY3gz?= =?utf-8?B?SlFTS0FiSkQ5YSs5SDhIdkMvbmV3OTRaWmJ1NGhIeFU1OHlGTkFuYXRQZnFk?= =?utf-8?B?YVprQnhsU3V5VlViUmp2a0xIbkIwWitmeCtiOVcraDNsV0hhQmM4K0ZXUVll?= =?utf-8?B?MHJMK0NsSWRKVXZVTE50b3pwRityZmwvWlk0dUxaZjM2MHFDYk9OS2FnNXdH?= =?utf-8?B?MXo4VkU4L0d2SnRyUEpSTTlYWUtjSWZ6Tm9QQmp4L0xtQjBHYlhIZTMrT0xG?= =?utf-8?B?eDZ6SWRMZEtVYzlBMk1odWRzN01ZV0JlaE1lZktzYmFxZTN5bVdSYUcrYzdz?= =?utf-8?B?c2JibG8wbks5U3c1T3d3ajk1VENhMGwyTDJWU1Q2bEdqVGFEZ0wzWU5Uakpt?= =?utf-8?B?YWJKSjlpdjUvTFJhdFd1MGNCZ1BOVFJUWnl5UDErVnExQUo0RlZIOVdEemVx?= =?utf-8?B?eHRPN0FPRk5RZ2M4YTBybXFib242WS9yZHBYZVVCOHg2VmppMWpua0RTYW5C?= =?utf-8?B?K2pBTUJDOG5KMnR1ZGs3ZG9aaXhGZGdjblNKSk1aSG5wTFFLb0txUXlkeEVr?= =?utf-8?B?K3diZ2FWVVowUVk2c25zQ1lqUTRnZkJnc0xkZG1uNmo4YjlwZ09kUm1mWlkz?= =?utf-8?B?aWoycFlHdmQyYkpEWjFydm5LN1BoVGh5R21PQlBpN3FuemsrcEJoWWxLbFFK?= =?utf-8?B?U2tDL2d6M2RmNzEzcWE4ZXIwQkdjOUM4R0NVZjllbE1uaVptOXphYVdFMTBE?= =?utf-8?B?V2xtVmMxYzUxVXBHVzRraUV3Y3k1Z1p1cGNMWXpzQjZpSWg0dUw3OFo5Nisv?= =?utf-8?B?elFuRXA5c2h0YnpKSmJrQUxEcm03ZVNEL2gxOExvaU8ySGpwMyswYnZrakJ4?= =?utf-8?B?THpIenBWR2NoSlRYcHZIejJ1ZmkxOU1yZ2pTTUxjVCtTVm5uZjlMVGQ1OENV?= =?utf-8?Q?LJAX3bHbNp6MoayScwT9EAJcKaE31oGQJ2?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <FE839574C77BB246BF80C6AC1C44E1D2@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR05MB6109.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d52c7f01-046d-4379-55d2-08d897004313
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Dec 2020 20:24:25.3050 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: bZWybpX0UoQAOIFtoNj9m8sVY5snm9GCjpvhvjssCqGGObh596tI/TgxopgiAf7z
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR05MB6255
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.312, 18.0.737 definitions=2020-12-02_12:2020-11-30, 2020-12-02 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 mlxscore=0 adultscore=0 phishscore=0 malwarescore=0 priorityscore=1501 impostorscore=0 lowpriorityscore=0 bulkscore=0 spamscore=0 mlxlogscore=999 clxscore=1015 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2012020121
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/5yP1uldwkI5m1W6KKsppCcgsT7w>
Subject: Re: [Idr] Roman Danyliw's No Objection on draft-ietf-idr-tunnel-encaps-20: (with COMMENT)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Dec 2020 20:24:36 -0000

Hi Roman,

Thanks to you and Scott for the review. My comments in line below.

> On Nov 30, 2020, at 3:55 PM, Roman Danyliw via Datatracker <noreply@ietf.org> wrote:
> 
> [External Email. Be cautious of content]
> 
> 
> Roman Danyliw has entered the following ballot position for
> draft-ietf-idr-tunnel-encaps-20: No Objection
> 
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
> 
> 
> Please refer to https://urldefense.com/v3/__https://www.ietf.org/iesg/statement/discuss-criteria.html__;!!NEt6yMaO-gk!SDO6amF-195w2tACTwBncPxZpEwE3lYKshrE25ln2IlWuMo7eyz3ZCHi-_XmfQ$
> for more information about IESG DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-idr-tunnel-encaps/__;!!NEt6yMaO-gk!SDO6amF-195w2tACTwBncPxZpEwE3lYKshrE25ln2IlWuMo7eyz3ZCGbyG-DkQ$
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> Thank you to Scott Kelly for performing the SECDIR review.
> 
> ** Section 1.5.  Per “Because RFC 8365 depends on RFC 5640, it is similarly
> obsoleted.”, this seems inconsistent with the meta-data header in the document
> (as RFC8365 isn’t obsoleted).

Right, see my reply to Martin — this was an error, fixed in the forthcoming version 21.

> ** Section 11.  Please use normative language on the applicability text
> restricting use to a single administrative domain.
> 
> OLD
> However, it is intended that the Tunnel Encapsulation
>   attribute be used only within a well-defined scope, e.g., within a
>   set of Autonomous Systems that belong to a single administrative
>   entity.
> 
> NEW (or something like this)
> 
> However, the Tunnel Encapsulation attribute MUST only be used within a
> well-defined scope such as a set of Autonomous Systems that belong to a single
> administrative entity.

Adopted, but as a SHOULD instead of a MUST — I don’t think we want to absolutely preclude people experimenting with promiscuous Internet-wide tunneling if they really want to. 

> ** Section 12.  Typo. s/tunnelling/tunneling/

British vs. American spellings, my nemesis. Fixed.

> ** Section 14.2.  Per “Specifically, the following code points should be marked
> as deprecated”, how does one mark code points as deprecated in the “BGP Tunnel
> Encapsulation Attribute Tunnel Types” registry
> (https://urldefense.com/v3/__https://www.iana.org/assignments/bgp-parameters/bgp-parameters.xhtml*tunnel-types__;Iw!!NEt6yMaO-gk!SDO6amF-195w2tACTwBncPxZpEwE3lYKshrE25ln2IlWuMo7eyz3ZCGd89XW4g$ ).
> I don’t see such a column, or is the intend simply to update the Reference
> column to this document?

(Already addressed.)

> ** Section 15.  Clarifying text
> OLD
> "hijacking" of traffic (insertion of
>   an undesired node in the path)
> 
> NEW
> "hijacking" of traffic (insertion of an undesired node in the path allowing for
> inspection or modification of traffic, or avoidance of security controls)

Thanks, done.

—John