Re: [IPsec] Éric Vyncke's No Objection on draft-ietf-ipsecme-ipv6-ipv4-codes-05: (with COMMENT)
mohamed.boucadair@orange.com Mon, 14 December 2020 09:01 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC3003A0DCD; Mon, 14 Dec 2020 01:01:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.196
X-Spam-Level:
X-Spam-Status: No, score=-0.196 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9Nou9mvMIW0Q; Mon, 14 Dec 2020 01:01:29 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.34]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8AA3A3A08AB; Mon, 14 Dec 2020 01:01:29 -0800 (PST)
Received: from opfednr01.francetelecom.fr (unknown [xx.xx.xx.65]) by opfednr27.francetelecom.fr (ESMTP service) with ESMTP id 4Cvb3W55Cjz4wwH; Mon, 14 Dec 2020 10:01:27 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1607936487; bh=R9GF1cPAwSWvfPV4rzbkGCHqpT3Qsk0bK6AdLa+fmzs=; h=From:To:Subject:Date:Message-ID:Content-Type: Content-Transfer-Encoding:MIME-Version; b=CF2+a07AJ9sk/6/KN88INnD/xr5CG87BAiLhDoeCqlYdgrdDOX4+hqv2jMtwjB6QX wYNyDJdxm/ucQmz587xIonysQTPZtRi2I7vwMiunx+mD43E2EFPVfA9jl6wvdyBPQ0 ftG+/8/AFU/hFtNpnn5Xvmc3SFnhqZmFbThMx45avG5a/PpUy95oXYifRBjVP/KXbW tpNz4Oo3HFTFtqv0ZxIFGpJ0dZ8BmAxwJrc0j/lRrA8JzljIkvgkgXp3Rzl9CaGz3X Fuo6ECMLq3g0mR7ZDLa0v8gP+R+uIFaO/6ZVXL1kjuTM0z4CVl2WIiKfmiqs0WvoXU LjG48dpbBlCYA==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.57]) by opfednr01.francetelecom.fr (ESMTP service) with ESMTP id 4Cvb3W4767zDq82; Mon, 14 Dec 2020 10:01:27 +0100 (CET)
From: mohamed.boucadair@orange.com
To: Éric Vyncke <evyncke@cisco.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-ipsecme-ipv6-ipv4-codes@ietf.org" <draft-ietf-ipsecme-ipv6-ipv4-codes@ietf.org>, "ipsecme-chairs@ietf.org" <ipsecme-chairs@ietf.org>, "ipsec@ietf.org" <ipsec@ietf.org>, David Waltermire <david.waltermire@nist.gov>, Yoav Nir <ynir.ietf@gmail.com>
Thread-Topic: Éric Vyncke's No Objection on draft-ietf-ipsecme-ipv6-ipv4-codes-05: (with COMMENT)
Thread-Index: AQHW0fGRRnC9y6f7akesGSC2Etu1man2Rg7Q
Date: Mon, 14 Dec 2020 09:00:05 +0000
Message-ID: <5783_1607936487_5FD729E7_5783_96_26_787AE7BB302AE849A7480A190F8B93303159CC01@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
References: <160793384784.17963.2226708165812902988@ietfa.amsl.com>
In-Reply-To: <160793384784.17963.2226708165812902988@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.247]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/kAHon4aIiuIZgQMxku2oaM__8t8>
Subject: Re: [IPsec] Éric Vyncke's No Objection on draft-ietf-ipsecme-ipv6-ipv4-codes-05: (with COMMENT)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Dec 2020 09:01:32 -0000
Bonjour Eric, Thank you for the comments. Please see inline. Cheers, Med > -----Message d'origine----- > De : Éric Vyncke via Datatracker [mailto:noreply@ietf.org] > Envoyé : lundi 14 décembre 2020 09:17 > À : The IESG <iesg@ietf.org> > Cc : draft-ietf-ipsecme-ipv6-ipv4-codes@ietf.org; ipsecme- > chairs@ietf.org; ipsec@ietf.org; David Waltermire > <david.waltermire@nist.gov>; Yoav Nir <ynir.ietf@gmail.com>; > ynir.ietf@gmail.com > Objet : Éric Vyncke's No Objection on draft-ietf-ipsecme-ipv6-ipv4- > codes-05: (with COMMENT) > > Éric Vyncke has entered the following ballot position for > draft-ietf-ipsecme-ipv6-ipv4-codes-05: No Objection > > When responding, please keep the subject line intact and reply to > all email addresses included in the To and CC lines. (Feel free to > cut this introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss- > criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-ipsecme-ipv6-ipv4-codes/ > > > > -------------------------------------------------------------------- > -- > COMMENT: > -------------------------------------------------------------------- > -- > > Bonjour Med, > > Thank you for the work put into this document. The shepherd write-up > is really terse but reflects that it was a rough consensus. > > Please find below some non-blocking COMMENT points (but replies > would be appreciated), and some nits. > > I hope that this helps to improve the document, > > Regards, > > -éric > > == COMMENTS == > > -- Abstract -- > The one-line abstract does not really explain/summarize what this > document is about. E.g., nothing is mentioned about 3GPP origin. > Expanding the abstract with something like "by allowing the > responder to signal to the initiator which address families are > supported". [Med] Fixed with s/supported/allowed. Thanks. > > -- Section 1 -- > The sentence "When the UE attaches the network using a WLAN access > by means of > IKEv2 capabilities, there are no equivalent notification codes ..." > looks cryptic to me. What is the link with WLAN access and IKEv2 ? > [Med] WLAN is an example of what 3GPP calls "non-trusted access network". In such case, an IKEv2/IPsec is used to connect to the "3GPP network". We wanted to avoid overloading the text with 3GPP terms + avoid distracting the reader about trusted/non-trusted accesses. See the updated text at: https://tinyurl.com/ike-v4v6-codes. Better? > -- Section 5 -- > "If a dual-stack initiator requests only an IPv6 prefix (or an > IPv4 > address) but only receives IP4_ALLOWED (or IP6_ALLOWED) > notification > status type from the responder, the initiator MUST send a request > for > IPv4 address(es) (or IPv6 prefix(es))." > > Is it really a "MUST" and not a "SHOULD" or even "MAY" ? A > constrained UE may have IPv6-only applications and, even if OS is > dual-stack, not bothers to have a useless IPv4 address. > [Med] Such constrained UE should be tweaked to behave as an "IPv6-only initiator". That is local to the UE. > The paragraph after this one mimics the 3GPP PDP behavior, but, does > it make sense for IKEv2 ? [Med] We want to have a functional parity for an UE independently of the access it uses to graft to a 3GPP network. > > == NITS == > > In several places, the word "responder" is misspelled. [Med] Fixed the one reported by Murray. Will double check. > > In some places, a ':' is followed by a capitalized word which looks > weird to my French-reading eyes... [Med] That's OK for the RFC Editor. You may check https://tools.ietf.org/html/rfc8801 :-) _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [IPsec] Éric Vyncke's No Objection on draft-ietf-… Éric Vyncke via Datatracker
- Re: [IPsec] Éric Vyncke's No Objection on draft-i… mohamed.boucadair
- Re: [IPsec] Éric Vyncke's No Objection on draft-i… Eric Vyncke (evyncke)