Re: [L3sm] New Version Notification for draft-wu-l3sm-rfc8049bis-02.txt
Qin Wu <bill.wu@huawei.com> Thu, 24 August 2017 00:50 UTC
Return-Path: <bill.wu@huawei.com>
X-Original-To: l3sm@ietfa.amsl.com
Delivered-To: l3sm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6C471320BB for <l3sm@ietfa.amsl.com>; Wed, 23 Aug 2017 17:50:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5-I59YiV8AIZ for <l3sm@ietfa.amsl.com>; Wed, 23 Aug 2017 17:50:48 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 95A9C132197 for <l3sm@ietf.org>; Wed, 23 Aug 2017 17:50:46 -0700 (PDT)
Received: from 172.18.7.190 (EHLO LHREML714-CAH.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id DUA68067; Thu, 24 Aug 2017 00:50:44 +0000 (GMT)
Received: from NKGEML413-HUB.china.huawei.com (10.98.56.74) by LHREML714-CAH.china.huawei.com (10.201.108.37) with Microsoft SMTP Server (TLS) id 14.3.301.0; Thu, 24 Aug 2017 01:50:42 +0100
Received: from NKGEML513-MBX.china.huawei.com ([169.254.1.219]) by NKGEML413-HUB.china.huawei.com ([10.98.56.74]) with mapi id 14.03.0235.001; Thu, 24 Aug 2017 08:50:39 +0800
From: Qin Wu <bill.wu@huawei.com>
To: David Ball <daviball@cisco.com>, "l3sm@ietf.org" <l3sm@ietf.org>
CC: Stephane Litkowski <stephane.litkowski@orange.com>, Kenichi Ogaki <ke-oogaki@kddi.com>, "adrian@olddog.co.uk" <adrian@olddog.co.uk>
Thread-Topic: [L3sm] New Version Notification for draft-wu-l3sm-rfc8049bis-02.txt
Thread-Index: AQHTEPkPvtKnYeVf5kqBvex8Emv4lqJ70DmggAkEwYCACZi1sIAAIaGQgALTHQCAAWC5gA==
Date: Thu, 24 Aug 2017 00:50:38 +0000
Message-ID: <B8F9A780D330094D99AF023C5877DABA9AACC2FE@nkgeml513-mbx.china.huawei.com>
References: <B8F9A780D330094D99AF023C5877DABA9AA5D7A2@nkgeml513-mbx.china.huawei.com> <c76328ad-b71e-b2a3-92a4-b02beac2be7d@cisco.com> <B8F9A780D330094D99AF023C5877DABA9AABA8A4@nkgeml513-mbx.china.huawei.com> <1823e4d3-c6ff-f3ca-d140-74fc5edba188@cisco.com>
In-Reply-To: <1823e4d3-c6ff-f3ca-d140-74fc5edba188@cisco.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.136.79.163]
Content-Type: multipart/alternative; boundary="_000_B8F9A780D330094D99AF023C5877DABA9AACC2FEnkgeml513mbxchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-Mirapoint-Virus-RAPID-Raw: score=unknown(0), refid=str=0001.0A090206.599E22E5.0011, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0, ip=169.254.1.219, so=2013-06-18 04:22:30, dmn=2013-03-21 17:37:32
X-Mirapoint-Loop-Id: d1f91806db59184c9d27871b742d3605
Archived-At: <https://mailarchive.ietf.org/arch/msg/l3sm/fAIzff-QxrNs9qmG9t1WG8YrLvY>
Subject: Re: [L3sm] New Version Notification for draft-wu-l3sm-rfc8049bis-02.txt
X-BeenThere: l3sm@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: L3VPN Service YANG Model discussion group <l3sm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/l3sm>, <mailto:l3sm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/l3sm/>
List-Post: <mailto:l3sm@ietf.org>
List-Help: <mailto:l3sm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/l3sm>, <mailto:l3sm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Aug 2017 00:50:51 -0000
发件人: David Ball [mailto:daviball@cisco.com] 发送时间: 2017年8月23日 19:45 收件人: Qin Wu; l3sm@ietf.org 抄送: Stephane Litkowski; Kenichi Ogaki; adrian@olddog.co.uk 主题: Re: [L3sm] New Version Notification for draft-wu-l3sm-rfc8049bis-02.txt On 21/08/2017 09:39, Qin Wu wrote: > 11. In accordance with the clarified scope, parts of the model that correspond > with information provided by the SP need to be marked with "config false". > I've identified the following, but there might be more. > 1. The list of profiles of various types (i.e. l3vpn-service/vpn-profiles) > 2. For the connection addresses, the provider's IP address/mask: > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/provider-dhcp/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/provider-dhcp/mask > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/dhcp-relay/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/dhcp-relay/mask > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/addresses/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv4/addresses/mask > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/provider-dhcp/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/provider-dhcp/mask > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/dhcp-relay/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/dhcp-relay/mask > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/addresses/provider-address > • l3vpn-service/sites/site/site-network-accesses/site-network-access/ip-connection/ipv6/addresses/mask That sounds reasonable. [Qin]: One more comment, we can not put ‘config false’ for l3vpn-service/vpn-profiles, since Config true leafrefs MUST NOT refer to config false data This issue was discussed before, see discussion available at: https://www.ietf.org/mail-archive/web/l3sm/current/msg00683.html Ah yes, I had forgotten that. Yang doesn't really handle this case - the semantics we want are that only the SP (i.e., the server) can modify these values, but they still have to respect the constraint embodied in the leafref i.e. that the values are not deleted if they are in use. I don't think NACM quite does it, because that is about access control for clients, but here it is the server that can change the values. Having said that, adding "nacm:default-deny-write" to l3vpn-service/vpn-profiles and everything under it would be a strong hint as to the intended behaviour. David [Qin]: Okay, the propose change will look like this: “ import ietf-netconf-acm { prefix nacm; } …… grouping vpn-profile-cfg { container valid-provider-identifiers { list cloud-identifier { if-feature cloud-access; key id; leaf id { type string; description "Identification of cloud service. Local administration meaning."; } nacm:default-deny-write; description "List for Cloud Identifiers."; } list encryption-profile-identifier { key id; leaf id { type string; description "Identification of the SP encryption profile to be used. Local administration meaning."; } nacm:default-deny-write; description "List for encryption profile identifiers."; } list qos-profile-identifier { key id; leaf id { type string; description "Identification of the QoS Profile to be used. Local administration meaning."; } nacm:default-deny-write; description "List for QoS Profile Identifiers."; } list bfd-profile-identifier { key id; leaf id { type string; description "Identification of the SP BFD Profile to be used. Local administration meaning."; } nacm:default-deny-write; description "List for BFD profile Identifiers."; } description "Container for Valid Provider Identifies."; } description "Grouping for VPN Profile configuration."; } ” This will get in line with Jan’s proposal as well. -- David Ball <daviball@cisco.com><mailto:daviball@cisco.com>
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… Ogaki, Kenichi
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- [L3sm] 答复: New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… Jan Lindblad (jlindbla)
- Re: [L3sm] New Version Notification for draft-wu-… ke-oogaki@kddi.com
- Re: [L3sm] New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- Re: [L3sm] New Version Notification for draft-wu-… David Ball
- [L3sm] 答复: New Version Notification for draft-wu-… Qin Wu
- Re: [L3sm] 答复: New Version Notification for draft… David Ball
- [L3sm] 答复: 答复: New Version Notification for draft… Qin Wu
- Re: [L3sm] 答复: 答复: New Version Notification for d… David Ball
- [L3sm] R: RE: RE: New Version Notification for dr… Qin Wu