Re: [mif] questions on draft-ietf-mif-api-extension
<pierrick.seite@orange.com> Wed, 26 September 2012 08:27 UTC
Return-Path: <pierrick.seite@orange.com>
X-Original-To: mif@ietfa.amsl.com
Delivered-To: mif@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68B9C21F87BC for <mif@ietfa.amsl.com>; Wed, 26 Sep 2012 01:27:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.315
X-Spam-Level:
X-Spam-Status: No, score=-2.315 tagged_above=-999 required=5 tests=[AWL=0.283, BAYES_00=-2.599, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v0ABUIFhxHzR for <mif@ietfa.amsl.com>; Wed, 26 Sep 2012 01:27:24 -0700 (PDT)
Received: from relais-inet.francetelecom.com (relais-ias91.francetelecom.com [193.251.215.91]) by ietfa.amsl.com (Postfix) with ESMTP id 4BF0321F87B5 for <mif@ietf.org>; Wed, 26 Sep 2012 01:27:24 -0700 (PDT)
Received: from omfedm07.si.francetelecom.fr (unknown [xx.xx.xx.3]) by omfedm09.si.francetelecom.fr (ESMTP service) with ESMTP id BF3422DC3D6; Wed, 26 Sep 2012 10:27:22 +0200 (CEST)
Received: from Exchangemail-eme1.itn.ftgroup (unknown [10.114.1.183]) by omfedm07.si.francetelecom.fr (ESMTP service) with ESMTP id 993714C0CD; Wed, 26 Sep 2012 10:27:22 +0200 (CEST)
Received: from PEXCVZYM12.corporate.adroot.infra.ftgroup ([fe80::81f:1640:4749:5d13]) by PEXCVZYH02.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.02.0298.004; Wed, 26 Sep 2012 10:27:22 +0200
From: pierrick.seite@orange.com
To: 'Ted Lemon' <Ted.Lemon@nominum.com>
Thread-Topic: questions on draft-ietf-mif-api-extension
Thread-Index: Ac2bM5TwhUnJUqgWSJuSLlTzTedzbwAPRX+AABF870A=
Date: Wed, 26 Sep 2012 08:27:22 +0000
Message-ID: <23309_1348648042_5062BC6A_23309_4116_9_81C77F07008CA24F9783A98CFD706F71039F8F@PEXCVZYM12.corporate.adroot.infra.ftgroup>
References: <13124_1348587411_5061CF93_13124_3978_1_81C77F07008CA24F9783A98CFD706F71039CD9@PEXCVZYM12.corporate.adroot.infra.ftgroup> <DEA4C791-C731-4912-B268-EDEC65A0ADBC@nominum.com>
In-Reply-To: <DEA4C791-C731-4912-B268-EDEC65A0ADBC@nominum.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.197.38.6]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-PMX-Version: 5.6.1.2065439, Antispam-Engine: 2.7.2.376379, Antispam-Data: 2012.9.26.55415
Cc: "'mif@ietf.org'" <mif@ietf.org>
Subject: Re: [mif] questions on draft-ietf-mif-api-extension
X-BeenThere: mif@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multiple Interface Discussion List <mif.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mif>, <mailto:mif-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mif>
List-Post: <mailto:mif@ietf.org>
List-Help: <mailto:mif-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mif>, <mailto:mif-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Sep 2012 08:27:25 -0000
Hi Ted, Thanks for super fast answer :-) please see inline for comments. Pierrick > -----Message d'origine----- > De : Ted Lemon [mailto:Ted.Lemon@nominum.com] > Envoyé : mardi 25 septembre 2012 17:54 > À : SEITE Pierrick RD-RESA > Cc : Dapeng Liu; mif@ietf.org > Objet : Re: questions on draft-ietf-mif-api-extension > > On Sep 25, 2012, at 11:36 AM, <pierrick.seite@orange.com> > wrote: > > A subscriber can subscribe to configuration element and address > announcements (respectively sections 3.5.9 and 3.5.13); however a > subscriber cannot unsubscribe, i.e. neither "Stop announcing > configuration element" nor "Stop announcing address" are specified in > the I-D. Is there a reason to this? > > No, I think it's an oversight. > > > In sections 3.5.23.4 and 3.5.23.5: messages are "interface is going > away" and "interface is going up". However, according to examples given > (interfaces switched on/off) these notification messages are sent when > the interface is already down or up. So, I think "is going" is > confusing here, maybe these messages should be "interface down" and > "interface up", right? > > This section needs work. There actually should be a notification that > the interface is still up but that the system intends to take it down; > there should be another when it is in fact down. > Ok, I see. I agree, we need Interface_going_down and Interface_going_up to "prepare" the application for a future change of the interface status. We also need for reactive notifications Interface_down (the interface went down suddenly, e.g loss of wi-fi coverage, user switched off the interface) and Interface_up. Here, I guess it can be done with "Interface announcement" and "no Interface announcement", right? > > What is the difference between notifications "interface is going > down/up" (sections 3.5.23.4 and 3.5.23.5) and interface announcement/no > interface announcement in section 3.5.3 and 3.5.4? IMHO, the > application subscribes to interface announcement and resulting > announcements are the same as "interface is going down/up", so I think > there no need for specific messages 3.5.23.4 and 3.5.23.5. > > Interface announce just announces the presence of an interface that may > have identity associations. Typically when an application starts, > there will already be a set of interfaces; as soon as the application > subscribes to the interface announcement message, it will get an > announcement for each such interface. > Ok, understood. > > We have a "get configuration data", shouldn't we have a "set > configuration data" as well? > > No, I don't think so. Configuration data comes from either on-host, > static configuration, or from dynamic protocols like RA and DHCP. > What would be the context for an application pushing configuration > information up? I'm thinking about the case where the application is a connection manager. After making a decision, e.g. regarding the mapping of a flow to a given interface, the connection manager needs to associate a routing table to the flow, configure NAT, modify firewall rules and policy table for source address selection,... This just sounds like an attack vector to me-a > malicious app could capture traffic from another app by gaming the > configuration settings. Well, currently, connection managers can leverage on kernel tools (e.g. Linux/iptables) to dynamically influence the configuration. So, if we consider that the MIF API should be the unique interface for manipulation of IP objects, IMHO, "set configuration" should be part of the MIF API services. _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, France Telecom - Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, France Telecom - Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [mif] questions on draft-ietf-mif-api-extension pierrick.seite
- Re: [mif] questions on draft-ietf-mif-api-extensi… Ted Lemon
- Re: [mif] questions on draft-ietf-mif-api-extensi… pierrick.seite
- Re: [mif] questions on draft-ietf-mif-api-extensi… Ted Lemon
- Re: [mif] questions on draft-ietf-mif-api-extensi… pierrick.seite
- Re: [mif] questions on draft-ietf-mif-api-extensi… Ted Lemon
- Re: [mif] questions on draft-ietf-mif-api-extensi… Zuniga, Juan Carlos