IETF Logo Mail Archive

Re: [IPsec] FW: New Version Notification for draft-tran-ipsecme-ikev2-yang-00.txt

Paul Wouters <paul@nohats.ca> Mon, 28 March 2016 22:06 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53EAA12D4FD for <ipsec@ietfa.amsl.com>; Mon, 28 Mar 2016 15:06:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.108
X-Spam-Level:
X-Spam-Status: No, score=-1.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_ALL=0.8, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NqXZ2JZGIDtS for <ipsec@ietfa.amsl.com>; Mon, 28 Mar 2016 15:06:01 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7205512D13F for <ipsec@ietf.org>; Mon, 28 Mar 2016 15:06:01 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 3qYnzW4br7z3C5; Tue, 29 Mar 2016 00:05:59 +0200 (CEST)
X-OPENPGPKEY: Message passed unmodified
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id fUQ17qpPirsK; Tue, 29 Mar 2016 00:05:58 +0200 (CEST)
Received: from bofh.nohats.ca (206-248-139-105.dsl.teksavvy.com [206.248.139.105]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Tue, 29 Mar 2016 00:05:57 +0200 (CEST)
Received: from [193.111.228.86] (unknown [193.111.228.86]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by bofh.nohats.ca (Postfix) with ESMTPSA id 3840A600B97E; Mon, 28 Mar 2016 18:05:57 -0400 (EDT)
DKIM-Filter: OpenDKIM Filter v2.10.3 bofh.nohats.ca 3840A600B97E
References: <20160318180059.2743.10884.idtracker@ietfa.amsl.com> <2D1BA3CFD799FD44A1F3650A84C4000F1231AFBC@eusaamb107.ericsson.se> <2DD56D786E600F45AC6BDE7DA4E8A8C11222B1D5@eusaamb108.ericsson.se> <alpine.LFD.2.20.1603271819220.22991@bofh.nohats.ca> <CADZyTknEeWdwE17=PJXs4Z4ae29FQB74psKbxrX82rzNi4Ndpw@mail.gmail.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <CADZyTknEeWdwE17=PJXs4Z4ae29FQB74psKbxrX82rzNi4Ndpw@mail.gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail-19BB6E14-C1C7-46A2-8ACA-BC073ABE19F5"
Content-Transfer-Encoding: 7bit
Message-Id: <8205E6F5-3B3F-4DF9-BA3A-AE5C5DF6F1A4@nohats.ca>
X-Mailer: iPhone Mail (13D15)
From: Paul Wouters <paul@nohats.ca>
Date: Mon, 28 Mar 2016 18:05:45 -0400
To: Daniel Migault <daniel.migault@ericsson.com>
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipsec/pODBUaiiLfwrdwr8v1H4pY4vA7c>
Cc: "ipsec@ietf.org WG" <ipsec@ietf.org>
Subject: Re: [IPsec] FW: New Version Notification for draft-tran-ipsecme-ikev2-yang-00.txt
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Mar 2016 22:06:03 -0000


Sent from my iPhone

> On Mar 28, 2016, at 16:43, Daniel Migault <daniel.migault@ericsson.com> wrote:
> 
> Hi Paul, 
> 
> I leave my co-authors to respond on the YANG aspects. 
> 
> Regarding the initial-retransmission-timeout I think we meant a time in second. Do you think we need more options?

Libreswan retransmits at 0.5 second and the doubling the interval up to 30 seconds. So 0.5, 1, 2, 4, 8, 16.

I don't think that you can put that in?

Note I didn't read all the options, there might be others too. I think to be sure, you need to look at various implementations and see if it can work.

Paul

> BR, 
> Daniel
> 
>> On Mon, Mar 28, 2016 at 11:29 AM, Paul Wouters <paul@nohats.ca> wrote:
>> On Sun, 27 Mar 2016, Daniel Migault wrote:
>> 
>>> Subject: [IPsec] FW: New Version Notification for
>>>     draft-tran-ipsecme-ikev2-yang-00.txt
>> 
>>> Please find our first version for the YANG model for IKEv2. Feel free
>>> to post comments. I would be also happy to have face-to-face
>>> discussions on the draft - especially from IKEv2 implementers.
>> 
>> Might be good for me to have a talk about it, especially because I'm
>> not a yang person. . I'm still a bit confused about the syntax. There is
>> code in the document that looks like "ready to use" but also looks like
>> "example to use". like:
>> 
>>   description
>>        "This YANG module defines the configuration and operational
>>         state data for Internet Key Exchange version 2 (IKEv2) on
>>         IETF draft.
>>         Copyright (c) 2016 Ericsson AB.
>>         All rights reserved.";
>> 
>> All rights reserved? huh? Is that an example? or is this an error?
>> 
>> I'm confused about units too, like:
>> 
>>   leaf initial-retransmission-timeout {
>>            type uint32;
>>            description
>>              "initial retransmission timeout value";
>>          }
>> 
>> look weird to me. What's the unit here? uint32 is not a unit, it is
>> a number Is this seconds? miliseconds? seconds since 1970? Since 1772?
>> 
>> Some of it looks like just copying IANA registries? So that would be
>> outdated quickly. How would that get updated? Should we really put
>> chunks of code in RFCs like that?
>> 
>> Paul
>> 
>> 
>> _______________________________________________
>> IPsec mailing list
>> IPsec@ietf.org
>> https://www.ietf.org/mailman/listinfo/ipsec
> 
> _______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email