Re: [IPsec] John Scudder's No Objection on draft-ietf-ipsecme-mib-iptfs-08: (with COMMENT)
Don Fedyk <dfedyk@labn.net> Mon, 17 October 2022 20:44 UTC
Return-Path: <dfedyk@labn.net>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 93FBBC1522BA; Mon, 17 Oct 2022 13:44:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=labn.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OjbcXbTgfSSi; Mon, 17 Oct 2022 13:44:15 -0700 (PDT)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2122.outbound.protection.outlook.com [40.107.93.122]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A86B3C14CE27; Mon, 17 Oct 2022 13:44:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BzGZ6G02dF0nzhuFYeKlJuihA98YNZNJ5b86OgjRHqo8YnAjDo6k2Uy2RGe7R4GYZ+H3zgE0L+Bh7VOLsPBWo6FPMsStSX2YJ0sPhuNb3TfDsBNdXmXPaoKbgGI+1vb1mz/wCbsY0sessc9oZNuAh2JHM+oaGJUsbmjaQuTKGOKO/ExQJhpngYoDIaar2a8VK0352yE1AawRkiEIe5kyYYd6tho+7nRofZXhJCCRTtFMe35xkW96G9e2bOdeXAXFkmtU9ib6rkjmVNNKbIWy+F+qsISGx8OoXVcoUM7rz1wflez+sIIoGufJwz3olJMzMo++EUNYTsA6eleAnHWN2Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=42EgdFbAwN8PD8LbL2WIQu8qbFQ3WYC+alqev5ZvZxs=; b=K+1DLGoYr6ci4gq4hBe3WzuqcogF7E6wKlp0PAchDiGwlPliyE7/dzvkuTz354xY8a6zPl+EmBoWS1hUYHPY52SpPzP+eWyEhkV3SLSmw6386OnTt+F71geEDRIfNEuSexxr6xXzA4pPC8SfQWJwz5Sa62hrQQG3SZglKoGYPeOz7tAYNb9vlxarDqgLshzggnH+rmSGQEedjE5mLO6VzOs+xp6LPVsqxp9P0I6JbPpfgi01xv2ozS5hHieL9gJTtH1M/ZTun1Jqdrf0VgJ93IdktpbaJSOvvgHvKJN2vIDh8/wIq1RXtAiKuJ4eCTQgLJUXqGr9RLjgott7M6Hiww==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=labn.net; dmarc=pass action=none header.from=labn.net; dkim=pass header.d=labn.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=labn.onmicrosoft.com; s=selector2-labn-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=42EgdFbAwN8PD8LbL2WIQu8qbFQ3WYC+alqev5ZvZxs=; b=gCTpdNkTgKb5R6rMg+8+RMIY+V4/+1V6nAcM/n9cVp9mHOzHss6HnJ0anx+h+HFRq1Sf/HfM2keellR30JA5uUiDviYLhJr7w++y/5OC1DryGMapPWLXPabNI+4fpfRExT61fhPIA03KplS3d0aQ6quvcuImC0SYn0n02R54IcI=
Received: from PH7PR14MB5368.namprd14.prod.outlook.com (2603:10b6:510:133::11) by SA1PR14MB5329.namprd14.prod.outlook.com (2603:10b6:806:234::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5723.29; Mon, 17 Oct 2022 20:44:12 +0000
Received: from PH7PR14MB5368.namprd14.prod.outlook.com ([fe80::f88f:64fb:fe5d:8ff4]) by PH7PR14MB5368.namprd14.prod.outlook.com ([fe80::f88f:64fb:fe5d:8ff4%3]) with mapi id 15.20.5723.032; Mon, 17 Oct 2022 20:44:11 +0000
From: Don Fedyk <dfedyk@labn.net>
To: John Scudder <jgs@juniper.net>, The IESG <iesg@ietf.org>
CC: "draft-ietf-ipsecme-mib-iptfs@ietf.org" <draft-ietf-ipsecme-mib-iptfs@ietf.org>, "ipsecme-chairs@ietf.org" <ipsecme-chairs@ietf.org>, "ipsec@ietf.org" <ipsec@ietf.org>, "kivinen@iki.fi" <kivinen@iki.fi>
Thread-Topic: John Scudder's No Objection on draft-ietf-ipsecme-mib-iptfs-08: (with COMMENT)
Thread-Index: AQHY4mUcGYCo7QOKFEedZn2++BY0wa4TB1IA
Date: Mon, 17 Oct 2022 20:44:11 +0000
Message-ID: <PH7PR14MB5368CF730C72E7227686ADA2BB299@PH7PR14MB5368.namprd14.prod.outlook.com>
References: <166603768760.24237.2356807788720394352@ietfa.amsl.com>
In-Reply-To: <166603768760.24237.2356807788720394352@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=labn.net;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR14MB5368:EE_|SA1PR14MB5329:EE_
x-ms-office365-filtering-correlation-id: 6545c43a-725d-44e1-60a7-08dab08058b1
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR14MB5368.namprd14.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(39830400003)(346002)(366004)(376002)(136003)(396003)(451199015)(71200400001)(186003)(86362001)(83380400001)(38070700005)(38100700002)(122000001)(52536014)(5660300002)(41300700001)(55016003)(8936002)(478600001)(26005)(966005)(9686003)(7696005)(450100002)(6506007)(4326008)(8676002)(76116006)(66556008)(66476007)(66446008)(64756008)(66946007)(2906002)(54906003)(316002)(110136005)(33656002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: labn.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR14MB5368.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6545c43a-725d-44e1-60a7-08dab08058b1
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Oct 2022 20:44:11.6043 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: eb60ac54-2184-4344-9b60-40c8b2b72561
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ceJMpEGXJbQaoAbFoRBzssV+UqmmudWOw9q/yqzPNJN3y1bgIxnu4GaQ96WYtIoABzuSp1grrdW4vacdd649+A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR14MB5329
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/AQz5H5pHZZEh1XhuXSy4-vQmnPg>
Subject: Re: [IPsec] John Scudder's No Objection on draft-ietf-ipsecme-mib-iptfs-08: (with COMMENT)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Oct 2022 20:44:19 -0000
Hi John Please see [Don] inline: Thanks Don -----Original Message----- From: John Scudder via Datatracker <noreply@ietf.org> John Scudder has entered the following ballot position for draft-ietf-ipsecme-mib-iptfs-08: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-mib-iptfs/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- # Routing AD comments for draft-ietf-ipsecme-mib-iptfs-08 ## COMMENTS ### Section 4.2 You have "TFS bit rate may be specified at layer 2 wire rate" and "TFS bit rate may be specified at layer 3 packet rate". Shouldn't that be "as", not "at"? I did go looking for insight in ipsecme-yang but it just made me think that document has the same (looks to me like a) bug. [Don] Yes "as" is better. I will make a note for both docs. ### Section 6 I'm a little mystified why "For the implications regarding write configuration" considering this is a read-only MIB? (Which the very next paragraph goes on to say.) The same applies a few paragraphs down where you talk about "who on the secure network is allowed to access and GET/SET (read/change/create/delete) the objects in this MIB module" -- isn't it really just who can GET (read) the objects? And the same for the "Further" bullet point. [Don] We have specified YANG for full control write and read and SNMP MIB in this document for read only viewing of the MIB for backwards compatibility. The SNMP versions paragraph is a warning about using SNMP version that are vulnerable. The text was added as an overall security recommendation, and we did not scope that to read only for this MIB because is a general SNMP security comment. Is that explanation OK or would you like to see a change? ## NITS - s/paccket/packet/
- [IPsec] John Scudder's No Objection on draft-ietf… John Scudder via Datatracker
- Re: [IPsec] John Scudder's No Objection on draft-… Don Fedyk
- Re: [IPsec] John Scudder's No Objection on draft-… John Scudder