Re: [mpls] Kathleen Moriarty's No Objection on draft-ietf-mpls-self-ping-05: (with COMMENT)
Ronald Bonica <rbonica@juniper.net> Fri, 16 October 2015 16:02 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABCE31B32AB; Fri, 16 Oct 2015 09:02:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.902
X-Spam-Level:
X-Spam-Status: No, score=-101.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3rOnK1VWtXqP; Fri, 16 Oct 2015 09:02:41 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1on0773.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::773]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C59591B32C7; Fri, 16 Oct 2015 09:02:13 -0700 (PDT)
Received: from BLUPR05MB1985.namprd05.prod.outlook.com (10.162.224.27) by BLUPR05MB1985.namprd05.prod.outlook.com (10.162.224.27) with Microsoft SMTP Server (TLS) id 15.1.300.14; Fri, 16 Oct 2015 16:01:52 +0000
Received: from BLUPR05MB1985.namprd05.prod.outlook.com ([10.162.224.27]) by BLUPR05MB1985.namprd05.prod.outlook.com ([10.162.224.27]) with mapi id 15.01.0300.010; Fri, 16 Oct 2015 16:01:52 +0000
From: Ronald Bonica <rbonica@juniper.net>
To: "mpls@ietf.org" <mpls@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>, "Kathleen.Moriarty.ietf@gmail.com" <Kathleen.Moriarty.ietf@gmail.com>
Thread-Topic: [mpls] Kathleen Moriarty's No Objection on draft-ietf-mpls-self-ping-05: (with COMMENT)
Thread-Index: AdEIK/YEvROYU6m2Tcqmu32XzfwG+w==
Date: Fri, 16 Oct 2015 16:01:51 +0000
Message-ID: <BLUPR05MB198562BB2E0F5A9FCA35D9F5AE3D0@BLUPR05MB1985.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=rbonica@juniper.net;
x-originating-ip: [66.129.241.11]
x-microsoft-exchange-diagnostics: 1; BLUPR05MB1985; 5:clphwA/08c6wo3N6p7yWM3oRbCC5wW4guGaYZDGQPy9uXhOXubwbk81Kk9Kns1rfR1ebpgW/j1S7KAhLxCaVAlWDojE9A9twFPNmqMe5QqxrVMUtUCp9YzK0/wXrNdzmFMiKLc+e2H5HKofo2o1AyA==; 24:k9fAGT90y32Rj3ViRzpB5Ed8qpfVklyLID5V3kw2lNCMBRPhG2Y6+Lmhw1i6cn4133Tr6v1+AS9DaH6ixFb2rTpLR67Q6iHqH7DPrcXZOis=; 20:mvxd3hYPktDpSVZsMNj2ep5vk3K51Dm6UWYarjzBH+XGFSOT4q4AeObOXlbjWQxrqFE1hBUcjpxaoeLR9hco3g==
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BLUPR05MB1985;
x-microsoft-antispam-prvs: <BLUPR05MB19857A7B9A66D37008937CBEAE3D0@BLUPR05MB1985.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(2401047)(520078)(5005006)(8121501046)(3002001); SRVR:BLUPR05MB1985; BCL:0; PCL:0; RULEID:; SRVR:BLUPR05MB1985;
x-forefront-prvs: 0731AA2DE6
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(199003)(189002)(51914003)(86362001)(15975445007)(106356001)(92566002)(102836002)(77096005)(46102003)(40100003)(87936001)(66066001)(122556002)(2201001)(5003600100002)(107886002)(81156007)(19580395003)(230783001)(99286002)(5002640100001)(33656002)(189998001)(5004730100002)(5001770100001)(97736004)(5001960100002)(74316001)(5007970100001)(101416001)(10400500002)(2501003)(54356999)(64706001)(76576001)(50986999)(2900100001)(11100500001)(5008740100001)(105586002); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB1985; H:BLUPR05MB1985.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Oct 2015 16:01:51.8209 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB1985
Archived-At: <http://mailarchive.ietf.org/arch/msg/mpls/mOkymu8pZerCW4P1AU6bVvWAVHk>
Subject: Re: [mpls] Kathleen Moriarty's No Objection on draft-ietf-mpls-self-ping-05: (with COMMENT)
X-BeenThere: mpls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mpls>, <mailto:mpls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls/>
List-Post: <mailto:mpls@ietf.org>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mpls>, <mailto:mpls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Oct 2015 16:02:44 -0000
Hi Kathleen,
Thanks for the thoughtful review. Response inline.
Ron
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> I see that the Security Considerations section says,
> "operators SHOULD
> filter LSP Self-ping packets at network ingress points"
>
> I think it would be helpful to have the draft explicitly state the scope for this
> new function - within a single operator's network is my assumption. If that
> assumption is not correct, I may come back with more questions.
>
[RPB]
Good catch. The statement that you quote, above, reflects the mental model that I had in my head when I wrote it. That is:
- MPLS-SIGNALING-DOMAIN == OPERATORS-NETWORK-DOMAIN
While this is generally true, it may not be 100% of the time. We can fix the problem by editing the text as follows:
OLD>
operators SHOULD filter LSP Self-ping packets at network ingress points"
<OLD
NEW>
operators SHOLD filter LSP Self-ping packets at the edges of the MPLS signaling domain.
<NEW
> There was also a suggestion made int he SecDir review that you may want to
> consider:
> https://mailarchive.ietf.org/arch/search/?email_list=secdir
>
>
[RPB]
Good idea. I will add a sentence to the text.
Ron
>
- [mpls] Kathleen Moriarty's No Objection on draft-… Kathleen Moriarty
- Re: [mpls] Kathleen Moriarty's No Objection on dr… Ronald Bonica
- Re: [mpls] Kathleen Moriarty's No Objection on dr… Kathleen Moriarty