Re: [Int-area] Ben Campbell's No Objection on draft-ietf-intarea-probe-09: (with COMMENT)
Ron Bonica <rbonica@juniper.net> Fri, 15 December 2017 15:17 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BBFB6128B93; Fri, 15 Dec 2017 07:17:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NubeSCp7E85N; Fri, 15 Dec 2017 07:17:34 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE08D1201F2; Fri, 15 Dec 2017 07:17:33 -0800 (PST)
Received: from pps.filterd (m0108161.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.21/8.16.0.21) with SMTP id vBFFFLvA026668; Fri, 15 Dec 2017 07:17:30 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=AriXVJl/VU+wMwaAV2BI2Ugiz8tOnJ1h51AMTHHO/pM=; b=Y+eMfUUSYxGHx59gSVG6NErHL9ChYIUq1vj4ZFeCCitl0x3ZkrPfKV4hK+fmKg47EtVR n+4E51uQU2/oPht84fKEi9b9FKKPxC3efrdBCwu6ESerKsbBpV+ZZs8UEHhJN1TiAiqk 91Ke94ON4vyd2GiZL7ozY5IYBObdxYsNAQxu4Peqx2YSxk96pfhdpb9RQ+rdhlrcVkkZ mKMITHB9VGXoQMOfqLzWBIZ4sLw+pqp/vXZB3XaSxVrae6Hq7EtQaz9HdgfsFSETSvnF uuOU52X+SdFylnTyKBjE7YRO8ZY8+bSIMRwDlU0CxVBf8QuiFq8jd4dgR4Gek7jW+EGj WQ==
Received: from nam01-bn3-obe.outbound.protection.outlook.com (mail-bn3nam01lp0177.outbound.protection.outlook.com [216.32.180.177]) by mx0b-00273201.pphosted.com with ESMTP id 2evgbsg3ed-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Fri, 15 Dec 2017 07:17:30 -0800
Received: from BLUPR0501MB2051.namprd05.prod.outlook.com (10.164.23.21) by BLUPR0501MB2050.namprd05.prod.outlook.com (10.164.23.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.323.4; Fri, 15 Dec 2017 15:17:29 +0000
Received: from BLUPR0501MB2051.namprd05.prod.outlook.com ([10.164.23.21]) by BLUPR0501MB2051.namprd05.prod.outlook.com ([10.164.23.21]) with mapi id 15.20.0323.015; Fri, 15 Dec 2017 15:17:29 +0000
From: Ron Bonica <rbonica@juniper.net>
To: Ben Campbell <ben@nostrum.com>
CC: The IESG <iesg@ietf.org>, "ggx@gigix.net" <ggx@gigix.net>, "draft-ietf-intarea-probe@ietf.org" <draft-ietf-intarea-probe@ietf.org>, "int-area@ietf.org" <int-area@ietf.org>, "intarea-chairs@ietf.org" <intarea-chairs@ietf.org>
Thread-Topic: Ben Campbell's No Objection on draft-ietf-intarea-probe-09: (with COMMENT)
Thread-Index: AQHTdIk6qHHqeqa6VUCMqya37elQT6NDDTuAgABuxoCAAQpuEA==
Date: Fri, 15 Dec 2017 15:17:29 +0000
Message-ID: <BLUPR0501MB20512DC746094A3CCA08DE9DAE0B0@BLUPR0501MB2051.namprd05.prod.outlook.com>
References: <151322108093.6178.3442590912691561741.idtracker@ietfa.amsl.com> <BLUPR0501MB2051B013791B5F9EC3B67DA2AE0A0@BLUPR0501MB2051.namprd05.prod.outlook.com> <A21C6DCE-A1CA-4F53-A694-DFD385B1C6C9@nostrum.com>
In-Reply-To: <A21C6DCE-A1CA-4F53-A694-DFD385B1C6C9@nostrum.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [66.129.241.11]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BLUPR0501MB2050; 6:76ARHeAt3+1/IlXhAOUVeMgC8Ssc1OyCJ59xRJzZb6Uktf/8RdQB3VFTuHss+kJ1G+sKIs+fj640OgzoO1RqP7onwHWxZwWDBqD058spXHwt4YEmRDXk+peuGjbyhlVnaKdJ3ptKHtgR1EZ+1q7j8fUW1z4dLo+Z7FClQofWsWgt8EP0g3sgJ165CK5xFHr81xIrxvOghzzqwpZMU6riZr03ldxrZqyoSNisv4s60ahDYReb8TXqs3qonzGxpwChaIoowLczRn9Zw46zNsj7cMIHuiYcRM7oeJU9NsiDNedtMXjwWL6R9+I9hIYePHPSke8eLWtjIL0x9ktijzyHL0sDcMsfhDpiD57JsH4x/pg=; 5:l2aqdPEskx41oPm/LBLL2ms+pza0T1QlTl1I5BbnT008XO5zX48X/x6FiBBsqBuQq5zuaHeHAiDP9D+3BaoRM15HkDg2uTjIdlgjHNS5UEOHKfwi+h3u09BADoBLhCGmVQ78XunLIA7hmD80hy5MKGjkJjbBnPpK1VYABVvZvBU=; 24:xcyrW2Ysj4uiL6VEQPzWImIxbdVQqmCY6cnuT0BN4SoMm8sAOboAqCcOP2zFoYhHdjfXIE6bYJhwiLdnhuDscNRd9RWTHtVlaPRrox3oo9c=; 7:q6JduRbBVSLco/CITwPVOLqXo3IOxoDSD3FN3acf2X4gB2z3KBDaYxbrnDJuQi+MA3BVOc1qp8IOKW4nIjSTcgnuq3zelp8i16SNToxfxqRST4vnmqzLcIxVcMZT21zKLY1lwcbu4gplxOHh7NRtFhikNnFOwjQUXzVwUdCUS1nK5l6VakDKrXwISCf+maJER3ecT8YTT7I5M3iUNCStUXGS/aGThNKLFjBY+m8YYeR/LGRYGpuPHr+XwH1tYB9V
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 4d3d1efd-089a-4379-e0ee-08d543cef4c5
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(5600026)(4604075)(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(48565401081)(2017052603307); SRVR:BLUPR0501MB2050;
x-ms-traffictypediagnostic: BLUPR0501MB2050:
x-microsoft-antispam-prvs: <BLUPR0501MB20501184A669553411D411EEAE0B0@BLUPR0501MB2050.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(192374486261705)(138986009662008);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040450)(2401047)(8121501046)(5005006)(3002001)(93006095)(93001095)(3231023)(10201501046)(6055026)(6041248)(20161123562025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123558100)(20161123564025)(20161123560025)(20161123555025)(6072148)(201708071742011); SRVR:BLUPR0501MB2050; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:BLUPR0501MB2050;
x-forefront-prvs: 05220145DE
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(346002)(366004)(396003)(376002)(39860400002)(51914003)(13464003)(189003)(24454002)(199004)(25786009)(7696005)(6246003)(76176011)(53936002)(4326008)(54906003)(316002)(478600001)(9686003)(6436002)(55016002)(6506007)(33656002)(230783001)(99286004)(59450400001)(77096006)(53546011)(229853002)(105586002)(106356001)(305945005)(8676002)(81156014)(6916009)(74316002)(66066001)(7736002)(81166006)(2900100001)(3280700002)(102836003)(6116002)(68736007)(3846002)(2906002)(5660300001)(86362001)(97736004)(8936002)(3660700001)(14454004)(2950100002); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR0501MB2050; H:BLUPR0501MB2051.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 4d3d1efd-089a-4379-e0ee-08d543cef4c5
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Dec 2017 15:17:29.0632 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR0501MB2050
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2017-12-15_06:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1712150214
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/YcWKnVn14YvU2wmWum6wIK5_mCU>
Subject: Re: [Int-area] Ben Campbell's No Objection on draft-ietf-intarea-probe-09: (with COMMENT)
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Dec 2017 15:17:36 -0000
Ben,
I am convinced. I will change the first MUST NOT to lower case in version 10.
Ron
> -----Original Message-----
> From: Ben Campbell [mailto:ben@nostrum.com]
> Sent: Thursday, December 14, 2017 6:23 PM
> To: Ron Bonica <rbonica@juniper.net>
> Cc: The IESG <iesg@ietf.org>; ggx@gigix.net; draft-ietf-intarea-
> probe@ietf.org; int-area@ietf.org; intarea-chairs@ietf.org
> Subject: Re: Ben Campbell's No Objection on draft-ietf-intarea-probe-09:
> (with COMMENT)
>
>
>
> > On Dec 14, 2017, at 11:03 AM, Ron Bonica <rbonica@juniper.net> wrote:
> >
> > Hi Ben,
> >
> > Thanks for the review. Comments inline.....
> >
> > Ron
> >
> >> -----Original Message-----
> >> From: Ben Campbell [mailto:ben@nostrum.com]
> >> Sent: Wednesday, December 13, 2017 10:11 PM
> >> To: The IESG <iesg@ietf.org>
> >> Cc: draft-ietf-intarea-probe@ietf.org; Luigi Iannone <ggx@gigix.net>;
> >> intarea-chairs@ietf.org; ggx@gigix.net; int-area@ietf.org
> >> Subject: Ben Campbell's No Objection on draft-ietf-intarea-probe-09:
> >> (with
> >> COMMENT)
>
> […]
>
> > [RB ]
> > I respectfully disagree. If PROBE leaks information between routing
> instances, we will have created a rather serious security vulnerability. So, this
> is a standing-on-our-heads-serious requirement.
>
> I agree it’s really important, but it’s still a statement of fact. It’s not normative
> in the sense that it doesn’t offer instruction to implementers so much as it
> offers a reason for the _next_ requirement:
>
> "Therefore, when a node receives an ICMP Extended Echo Request and the
> proxy interface is in a different VPN than the probed interface, the node
> MUST return an ICMP Extended Echo Reply with error code equal to (2) No
> Such Interface. “
>
> Isn’t _that_ the real normative requirement?
>
> In any case, this is not a blocking comment, so feel free to ignore it :-)
>
> Thanks!
>
> Ben.
>
>
>
>
>
> >
> >
> > Ron
> >
> >
- [Int-area] Ben Campbell's No Objection on draft-i… Ben Campbell
- Re: [Int-area] Ben Campbell's No Objection on dra… Ron Bonica
- Re: [Int-area] Ben Campbell's No Objection on dra… Ben Campbell
- Re: [Int-area] Ben Campbell's No Objection on dra… Ron Bonica