Re: [IPsec] Éric Vyncke's Discuss on draft-ietf-ipsecme-mib-iptfs-06: (with DISCUSS and COMMENT)
Don Fedyk <dfedyk@labn.net> Mon, 17 October 2022 17:27 UTC
Return-Path: <dfedyk@labn.net>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D7ECC1524DF; Mon, 17 Oct 2022 10:27:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=labn.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iJORaJSVhokC; Mon, 17 Oct 2022 10:27:08 -0700 (PDT)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2097.outbound.protection.outlook.com [40.107.94.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5D1FC14CF0B; Mon, 17 Oct 2022 10:27:01 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fqtmOS3rEG6qZMXIwGHif39VKEhzUiB46JjccnM4FA1wbIzfJLguVYQS/xFc94iIowQagauYm01A6hmh+jsUiVIL7h8c2cEnuJJfc35k5BX8lb0w0ggEjSg4TWdLE0p1BVATG/eRDQ1gUFQqzUKZiIZkgrLEwSoFHMJAJk9u/s20sJ3FdtQWwQWqy71NN/W1sR9+tmCzseynqS6dtTsG+Wdy+01SN24HPgeeFAn/VG5TsGGqFJ/tclvz6gGKWTP6sbyRkRmtaj00BVN2N2SRyTddFpBYKspB+s+pGouOXr/zSYwUROYtOGu1SlLv7g0SfyZ1UKjHCvqQKvJzCHkb3Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ox5MO9je16eCUigGTZGhfyDhayIS1Ex40foYazLJNLE=; b=L+Vc++/B6Y9fiWrra9l0oZ23YSr9+WdJ4jNUq+UK518F0NNMXAazZuEG2aIZXJQUxnRrObMtjzcd7DK4DR4DNuljun+kU/GYIkFz9G0CW9DKKFDFrt6S3siTM0WqFgv1sWU30QNjn3AphxM2oXNco7payVBhgoRIUl6nxZjh5qT94l62BFtrJ1sJQ6GULXSv6ubR+M1BRp6aqU4PnHoSVJ44DsU2R+U0Fm/h7+2AfU64U7ch0cHagk1TVIwSSCEDFTnh11qEV3cA/VZzc6GGXfikHeObVSY76ggdNCnQXUJwrbGx0rmYCHF2IbJrLoWpob+A2UT/uGTPGhw8s2NPjw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=labn.net; dmarc=pass action=none header.from=labn.net; dkim=pass header.d=labn.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=labn.onmicrosoft.com; s=selector2-labn-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ox5MO9je16eCUigGTZGhfyDhayIS1Ex40foYazLJNLE=; b=jtN4bAYhonF6uJr555aF0w8RUy5z+DABsMy0euIA5MlxF0JwgNoNLtpIFTuirSzaLq3mN7MoJjyHSWiOpj9NN1J08Esflf9l3FquG3mlYNBJvI7JIJYSPSD9ElxGD9vXd64dm+HnSIIQo9mlEVwa4HLU2sSURVH0pWWUAzJrvOg=
Received: from PH7PR14MB5368.namprd14.prod.outlook.com (2603:10b6:510:133::11) by CH2PR14MB3925.namprd14.prod.outlook.com (2603:10b6:610:79::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5723.30; Mon, 17 Oct 2022 17:26:57 +0000
Received: from PH7PR14MB5368.namprd14.prod.outlook.com ([fe80::f88f:64fb:fe5d:8ff4]) by PH7PR14MB5368.namprd14.prod.outlook.com ([fe80::f88f:64fb:fe5d:8ff4%3]) with mapi id 15.20.5723.032; Mon, 17 Oct 2022 17:26:57 +0000
From: Don Fedyk <dfedyk@labn.net>
To: Éric Vyncke <evyncke@cisco.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-ipsecme-mib-iptfs@ietf.org" <draft-ietf-ipsecme-mib-iptfs@ietf.org>, "ipsecme-chairs@ietf.org" <ipsecme-chairs@ietf.org>, "ipsec@ietf.org" <ipsec@ietf.org>, "kivinen@iki.fi" <kivinen@iki.fi>
Thread-Topic: Éric Vyncke's Discuss on draft-ietf-ipsecme-mib-iptfs-06: (with DISCUSS and COMMENT)
Thread-Index: AQHY4fJML0CZm9lpf0CQlsbVtnSDgq4Sz3kQ
Date: Mon, 17 Oct 2022 17:26:57 +0000
Message-ID: <PH7PR14MB5368FFA7B6EBC6B4298C8980BB299@PH7PR14MB5368.namprd14.prod.outlook.com>
References: <166598837312.23178.2044698513950992725@ietfa.amsl.com>
In-Reply-To: <166598837312.23178.2044698513950992725@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=labn.net;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR14MB5368:EE_|CH2PR14MB3925:EE_
x-ms-office365-filtering-correlation-id: 91b5d696-e0a0-4eb3-6973-08dab064cac3
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR14MB5368.namprd14.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(346002)(366004)(136003)(396003)(39830400003)(376002)(451199015)(38100700002)(224303003)(33656002)(122000001)(86362001)(66574015)(186003)(38070700005)(83380400001)(9686003)(7696005)(54906003)(966005)(19627235002)(316002)(110136005)(41300700001)(478600001)(71200400001)(66446008)(4326008)(64756008)(76116006)(8936002)(66556008)(66476007)(66946007)(26005)(52536014)(5660300002)(450100002)(2906002)(55016003)(6506007)(66899015); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: labn.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR14MB5368.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 91b5d696-e0a0-4eb3-6973-08dab064cac3
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Oct 2022 17:26:57.1056 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: eb60ac54-2184-4344-9b60-40c8b2b72561
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: d/j9NfEKJip5Tln1Uzbo9acwak9ZpF/3KDsZFcUEOF1yNVPTVflrVFxVHRvkmywCE/HF0XRIaQRHaMSRtLBTEw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR14MB3925
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/QK88PmeHNAz87092r5MyYOV3N0s>
Subject: Re: [IPsec] Éric Vyncke's Discuss on draft-ietf-ipsecme-mib-iptfs-06: (with DISCUSS and COMMENT)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Oct 2022 17:27:12 -0000
Hi Eric Thanks for you Review. We have posted an updated draft 07 to address your comments. Note I Revalidated the MIB with the changes, but I realized I didn’t update the tree in the draft. So, I have one pending change, but I will wait and see if we satisfied your points. See [Don] Below. Thanks Don -----Original Message----- From: Éric Vyncke via Datatracker <noreply@ietf.org> Éric Vyncke has entered the following ballot position for draft-ietf-ipsecme-mib-iptfs-06: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-ipsecme-mib-iptfs/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- # Éric Vyncke, INT AD, comments for draft-ietf-ipsecme-mib-iptfs-06 CC @evyncke Thank you for the work put into this document (even if I am balloting a DISCUSS); Please find below one blocking DISCUSS points (easy to address), some non-blocking COMMENT points (but replies would be appreciated even if only for my own education). Special thanks to Tero Kivinen for the shepherd's detailed write-up including the WG consensus *but* it lacks the justification of the intended status. I hope that this review helps to improve the document, Regards, -éric ## DISCUSS As noted in https://www.ietf.org/blog/handling-iesg-ballot-positions/, a DISCUSS ballot is a request to have a discussion on the following topics: ### Inconsistent intended status & use of experimental code point This document is standard track, but the OID used in section 4.1 is 'experimental' and in section 4.2 `experimental 500` per https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml. Please request IANA to assign an OID from the 1.3.6.1.2.1 tree. [Don] This was a holdover from the initial draft. We have updated to be consistent with the IANA requests and your comment. BTW Thank you for helping us clarify where this should be placed. ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- ## COMMENTS ### Section 1 ``` Note an IETF MIB model for IPsec was never standardized however the structures here could be adapted to existing MIB implementations. ``` [Don] we updated to: adapted to existing proprietary MIB implementations where SNMP is used to manage networks. Perhaps clarify "existing MIB implementations" ? I guess this is about proprietary IPsec MIBs, but clarification will be welcome. ### Section 4.2 Should the construct with `<CODE BEGINS>` be used to allow for easy file extraction ? [Don] OK Roman had requested this comment and I looked for MIB examples and found none. But as I updated the YANG, I found the sourcecode tag and used that for a mib and nothing seem to complain. We may be the only MIB that ever used this though. `mailto:ekinzie.labn.net` is probably wrong ;-) [Don] Fixed. `l2FixedRate`and `l3FixedRate` have 'counter64' type, RFC 2578 section 7.1.10 defines this type as monotically increasing. I understand that there are no interger64 in RFC 2578 but why not using a different unit than 'bps' for those two items ? [Don] We updated this CounterBasedGauge64 - Does this satisfy your point? SNMP has a richer set of types. ### Section 5 The IANA section should probably follow more closely RFC 8126, notably specifying the right registry (e.g., "SMI Network Management MGMT Codes Internet-standard MIB") [Don] Thanks we updated this an noted. ### Section 8.1 Unsure whether I-D.ietf-ipsecme-yang-iptfs (and perhaps I-D.ietf-ipsecme-iptfs) is a normative reference (i.e., I can implement this I-D MIB without accessing the YANG module). [Don] We moved the YANG to informative. We left the IP-TFS core draft as normative since it is the source for the attributes. ## NITS ## Notes This review is in the ["IETF Comments" Markdown format][ICMF], You can use the [`ietf-comments` tool][ICT] to automatically convert this review into individual GitHub issues. [ICMF]: https://github.com/mnot/ietf-comments/blob/main/format.md [ICT]: https://github.com/mnot/ietf-comments
- [IPsec] Éric Vyncke's Discuss on draft-ietf-ipsec… Éric Vyncke via Datatracker
- Re: [IPsec] Éric Vyncke's Discuss on draft-ietf-i… Don Fedyk
- Re: [IPsec] Éric Vyncke's Discuss on draft-ietf-i… Eric Vyncke (evyncke)