[netconf] Gorry Fairhurst's Discuss on draft-ietf-netconf-port-numbers-06: (with DISCUSS and COMMENT)

Gorry Fairhurst via Datatracker <noreply@ietf.org> Tue, 16 September 2025 08:06 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: netconf@ietf.org
Delivered-To: netconf@mail2.ietf.org
Received: from [10.244.8.59] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id EF36F636A7B4; Tue, 16 Sep 2025 01:06:31 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Gorry Fairhurst via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 12.49.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <175800999171.1766084.8083778073212361386@dt-datatracker-f7c8fdcb7-pjx77>
Date: Tue, 16 Sep 2025 01:06:31 -0700
Message-ID-Hash: ZN7VKRDTBHSSQGXETJL62NTRIHIZIXEU
X-Message-ID-Hash: ZN7VKRDTBHSSQGXETJL62NTRIHIZIXEU
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-netconf.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-netconf-port-numbers@ietf.org, netconf-chairs@ietf.org, netconf@ietf.org, kent+ietf@watsen.net
X-Mailman-Version: 3.3.9rc6
Reply-To: Gorry Fairhurst <gorry@erg.abdn.ac.uk>
Subject: [netconf] Gorry Fairhurst's Discuss on draft-ietf-netconf-port-numbers-06: (with DISCUSS and COMMENT)
List-Id: NETCONF WG list <netconf.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/AdzfL1bhAHklymtSWKBxsSn_jto>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Owner: <mailto:netconf-owner@ietf.org>
List-Post: <mailto:netconf@ietf.org>
List-Subscribe: <mailto:netconf-join@ietf.org>
List-Unsubscribe: <mailto:netconf-leave@ietf.org>

Gorry Fairhurst has entered the following ballot position for
draft-ietf-netconf-port-numbers-06: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ 
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-netconf-port-numbers/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

Thank you previous discussions with the IANA port experts on the requested IANA
actions, and the follow-up with me to refine the request to IANA this document.

I have some topics I'd like too DISCUSS to see if this document could be
improved. I hope these are simple to address, and if addressed I intend to
ballot "YES".

1. The para starting "However, three..."  seems to require some small editorial
work: The current document identifies three set of port usage, and (I think
correctly requests 2 of these are "released" because those protocols have not
been deployed, but it mentions "3" in the text.

2. A statement is made: "All these assignments are undesirable." I am unsure
what it means for the IETF to declare something as undesirable, and would like
to discuss the reason behind this sentence, because think that this text ought
to be updated. For instance, it could say use of these ports to configure
security policies may be problematic, or maybe give some other reason?

3. Please check carefully the words used to describe the action proposed. At
various places the document speaks of de-assigning and releasing. (Note to the
IESG: The result of this RFC will be to trigger an IANA policy to reserve these
ports, which may allow future use, per Section 8.2 of [RFC6335].)

4. I note the Security Considerations does not introduce a new vulnerability,
but maybe this ought to consider also adding the advice that security policies
that are based around using the previous port assignments need to be updated to
not associate these ports with the named services.


----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------


I also note that the abstract could be slightly more descriptive.