IETF Logo Mail Archive

Re: ISMS working group and charter problems

Eliot Lear <lear@cisco.com> Wed, 07 September 2005 05:53 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1ECssL-0006Qk-Rc; Wed, 07 Sep 2005 01:53:37 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1ECssH-0006Op-W4; Wed, 07 Sep 2005 01:53:35 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA00746; Wed, 7 Sep 2005 01:53:33 -0400 (EDT)
Received: from sj-iport-3-in.cisco.com ([171.71.176.72] helo=sj-iport-3.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1ECsvO-0001ea-5c; Wed, 07 Sep 2005 01:56:47 -0400
Received: from sj-core-1.cisco.com ([171.71.177.237]) by sj-iport-3.cisco.com with ESMTP; 06 Sep 2005 22:53:23 -0700
X-IronPort-AV: i="3.96,173,1122879600"; d="scan'208"; a="339378513:sNHT1375179736"
Received: from imail.cisco.com (imail.cisco.com [128.107.200.91]) by sj-core-1.cisco.com (8.12.10/8.12.6) with ESMTP id j875rH4u017782; Tue, 6 Sep 2005 22:53:18 -0700 (PDT)
Received: from [212.254.247.6] (ams-clip-vpn-dhcp148.cisco.com [10.61.64.148]) by imail.cisco.com (8.12.11/8.12.10) with ESMTP id j875mW2a003985; Tue, 6 Sep 2005 22:48:33 -0700
Message-ID: <431E804C.8080001@cisco.com>
Date: Wed, 07 Sep 2005 07:53:16 +0200
From: Eliot Lear <lear@cisco.com>
User-Agent: Mozilla Thunderbird 1.0.6 (Macintosh/20050716)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Randy Presuhn <randy_presuhn@mindspring.com>
References: <431DD3BD.9090108@cisco.com> <005701c5b359$f1e1de60$7f1afea9@oemcomputer>
In-Reply-To: <005701c5b359$f1e1de60$7f1afea9@oemcomputer>
X-Enigmail-Version: 0.92.0.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
DKIM-Signature: a=rsa-sha1; q=dns; l=1223; t=1126072114; x=1126504314; c=nowsp; s=nebraska; h=Subject:From:Date:Content-Type:Content-Transfer-Encoding; d=cisco.com; i=lear@cisco.com; z=Subject:Re=3A=20ISMS=20working=20group=20and=20charter=20problems| From:Eliot=20Lear=20<lear@cisco.com>| Date:Wed,=2007=20Sep=202005=2007=3A53=3A16=20+0200| Content-Type:text/plain=3B=20charset=3DISO-8859-1| Content-Transfer-Encoding:7bit; b=MWB7FXFsEBiS4Cs7fGef7OyTgRzf1kW+lA74gFB0xQ2RASsE4yyR++6ynEuGWHT42dPr7FQj BN589AwXRQnzBPlCJCkoTbs3/8uPOh/jY5jpgXekAh7879Eve5ugTzOmykZPa6ZGCIOhW+Wv+gX 8nyXN0BHkQND7Q11GeYx8GtA=
Authentication-Results: imail.cisco.com; header.From=lear@cisco.com; dkim=pass ( message from cisco.com verified; );
X-Spam-Score: 0.0 (/)
X-Scan-Signature: b19722fc8d3865b147c75ae2495625f2
Content-Transfer-Encoding: 7bit
Cc: nanog@merit.edu, IETF Discussion <ietf@ietf.org>, iesg@ietf.org
Subject: Re: ISMS working group and charter problems
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org

Randy,


> Regardless of whether "call home functionality" as you defined it is
> desirable, I disagree with the claim that it wouldn't represent a
> major architectural change to SNMP.  For notification originators, it
> is a quite natural extension, and I have no problem with it.  For command
> responders, I think this would be a fairly significant addition to the architecture.
> I'm neutral on the question of whether it is needed, and perhaps we only
> differ in what we perceive as "major", but I think we need to be clear that
> it would indeed require changing the SNMP architecture.

There is a difference between a connection and a request.  Reversing the
transport connection direction doesn't say that we reverse request
directions or notification directions.  Quite the contrary.  They stay
the same.  To me that means no substantial change over what is already
proposed.

Indeed the currently envisioned approach guarantees that either
notifications or requests will be broken because one connection will
initiate in one direction and another will initiate in the reverse.  FTP
all over again, as I said.

> 
> I also disagree that it is the use of SSH or TCP that results in the architectural
> changes.  TCP use without "call home" (as in RFC 3430) requires no
> architectural changes.

Clearly since SSH is now carrying authentication information there is a
substantial change, where SNMP inherits bonafides from the process
below.  That is not the case in 3430.

Eliot

_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

v2.23.0 | Report a Bug | By Email