IETF Logo Mail Archive

Re: [netconf] Éric Vyncke's No Objection on draft-ietf-netconf-trust-anchors-23: (with COMMENT)

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Wed, 31 January 2024 09:43 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35742C1CAF35; Wed, 31 Jan 2024 01:43:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.606
X-Spam-Level:
X-Spam-Status: No, score=-14.606 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GART6G_ibby5; Wed, 31 Jan 2024 01:43:42 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D876CC1CAF2D; Wed, 31 Jan 2024 01:43:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; i=@cisco.com; l=3720; q=dns/txt; s=iport; t=1706694222; x=1707903822; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=uBjDf0MHCnI8AoQA0gtoG7+Hynw7BSE2ZMNjbcFdkMA=; b=DrMlIXstRzaTVNAIdWMYdfHWu0TKsGw5oDjnWW0Rdk8CHxP3C4cMf0uA 4054NOBGEamBAb+Snhg8ARIYZv3Q73UZyl1TA/e5zHOicmtGC6U1acRE1 dKX21fDmm6fE8fTAv0dJZ82AE62FJN8VICs6D/CSd92b/nAFKG1QaP9pE E=;
X-CSE-ConnectionGUID: BHecoUrISGC3iuNojxKu7A==
X-CSE-MsgGUID: NzegTyKXQOSEpW/g9Ni7GA==
X-IPAS-Result: A0ANAADXFbplmJJdJa1aHAEBAQEBAQcBARIBAQQEAQFAJYEWBwEBCwGBZlJ6AoEXSIRSg0wDhE5fiGkDgSmQF4xFFIFWFA8BAQENAQE7CQQBAYUGAhaHPAImNAkOAQIEAQEBAQMCAwEBAQEBAQEBBgEBBQEBAQIBBwUUAQEBAQEBAQEeGQUOECeFbA2GRQEBAQECARIREUUFCwIBCBgCAiMDAgICLxQBBQsCBA4FIoJeAYI8IwMBEKsBAYFAAoooeoEygQGCFgWBTkGwaQaBGi4BiAsaAWprg1cmhFcnG4FJRIE8CxCCaD6CYQEBA4EoAQsGAgEgF4NEOYIvBIETgQCDP4lsJ4IfAYdsCUt/HQOBBgRcDRsQHjcREBMNAwhuHQIxOgMFAwQyChIMCyEFE0IDQAZJCwMCGgUDAwSBMAUNGgIQGgYMJgMDEkkCEBQDOAMDBgMKMTBVQQxQA2UfMgk8DwwaAhsbDScjAixAAxEQAhYDIhYENhEJCyYDKgY6AhIMBgYGXSMWCQQlAwgEA1QDIXQRAwQKAxQHCwd4ggmBPgQTRgENA4E2gzQDGSsdQAMLbT01FBsGIgEdAplyAgGCQDMBGRgBAyIZFwEgLwknAgGBADABGymSTgqDFwFJrl8KhBGMB48khgkEL4QFjHeGdop9hkxkhhaSPoJRixyVJAoKBAQPhQoCBAIEBQIOAQEGNYEuOmtwcBVlAYIIAQEBMVIZD445H4hWimV2OwIBBgEKAQEDCQGCOYY0gXkBAQ
IronPort-PHdr: A9a23:trnryhBj0vkjFjblLuWQUyQVpxdPi9zP1kY9454jjfdJaqu8usikN 03E7vIrh1jMDs3X6PNB3vLfqLuoGXcB7pCIrG0YfdRSWgUEh8Qbk01oAMOMBUDhav+/Ryc7B 89FElRi+iLzKlBbTf73fEaauXiu9XgXExT7OxByI7H4BJ/UhMe6/+uz4JbUJQ5PgWn1bbZ7N h7jtQzKrYFWmd54J6Q8wQeBrnpTLuJRw24pbV7GlBfn7cD295lmmxk=
IronPort-Data: A9a23:OAV/yaN5zxW23W/vrR1xl8FynXyQoLVcMsEvi/4bfWQNrUpx1TMFy DcYX2uFPfqDZmX3e9x/PYu18xkFuJCEnNEyTnM5pCpnJ55oRWUpJjg4wmPYZX76whjrFRo/h ykmQoCdaphyFjmF/kvF3oHJ9RFUzbuPSqf3FNnKMyVwQR4MYCo6gHqPocZh6mJTqYb/W17lV e/a+ZWFZAf8gGcsaAr41orawP9RlKWq0N8nlgRWicBj5Df2i3QTBZQDEqC9R1OQrl58R7PSq 07rldlVz0uBl/sfIorNfoXTLiXmdoXv0T2m0RK6bUQNbi9q/UTe2o5jXBYVhNw+Zz+hx7idw /0V3XC8pJtA0qDkwIwgvxdk/y5WF41L87j6O1mEnufIzlDgdHn84OgxJRRjVWEY0r4f7WBm7 /cULnUGaQqOwrvuhrm6UeJrwM8kKaEHPqtG5Somlm6fXK1gGMydK0nJzYcwMDMYi95fG/3da uISaCFka1LLZBgn1lI/UcJmzLvy2iSkG9FegHSHqKUL8kvj9StK/aDSd9WEXN3VauwAyy50o UqdojymWUtFXDCF8hKD/26ngenBtSL2RIxUE6e3ntZsjUGYwWodTRYWXFqhutG4h1KwHdVFJ CQ89jAno7R39UG3QJz7UgGzp3iK+wIGRsFMVuQ84wGK0LH84guFCC4DVDEpQN0rr8AeRDE22 BmOhdyBONB0mKeeRXTY/bCOoHbrYW4eLHQJYmkPSg5tD8TfTJ8bpDLCRdFeCo+OofauGCzWx DKajzVhruBG5SIU7JmT8VfCijOqg5HGSA8p+wnaNl5JCCskNeZJgKT1uTDmAeZ8EWqPcrWWU JE5dyW29usCC9SGkzaABbxVWrqo/P2CdjbbhDaD/qXNFRzzoBZPnqgJvFmSwXuF1O5fKVcFh 2eI6WtsCGd7ZifCUEOOS9vZ5z4W5abhD8/5cfvfc8BDZJN8HCfeo3kwOxXBgzC0wBBx+U3aB Xt9WZj0ZZr9Ifk2pAdau89DuVPW7nlnmjONH8yTI+qPiOLPNBZ5tovpwHPVM7hmt/nbyOkk2 91eLMCNgw5OS/HzZzKf8IgYazg3wYsTW/jLRzhsXrfbeGJOQTh5Y9eImO9JU9I+xcx9yLyXl kxRr2cFkjITc1Wdd1XTAp2iAZuyNatCQYUTZnF2YAbyhiFzPe5CLs43LvMKQFXuz8Q6pdZcR PgecMLGCfNKIgkrMRxBBXUhhOSOrCiWuD8=
IronPort-HdrOrdr: A9a23:dKOrIK4n44BQVWfSggPXwbWCI+orL9Y04lQ7vn2ZFiYlEfBwxv rPoB1E737JYW4qKQ8dcLC7VJVpQRvnhPhICRF4B8btYOCUghrYEGgE1/qi/9SAIVywygcz79 YbT0ETMqyVMbE+t7eE3ODaKadh/DDkytHUuQ629R4EJm8aCdAE0+46MHfmLqQcfng+OXNNLu vm2iMxnUvZRZ14VLXdOlA1G8L4i5ngkpXgbRQaBxghxjWvoFqTgoLSIlyz5DtbdylA74sD3A H+/jAR4J/Nj9iLjjvnk0PD5ZVfn9XsjvFZAtaXt8QTIjLwzi61eYVIQdS5zXIIidDqzGxvvM jHoh8mMcg2wWjWZHuJrRzk3BSl+Coy6kXl1USTjRLY0InErXMBeo58bLBiA13kAnkbzYhBOW VwrjqkXq9sfFT9deLGloP1vl9R5xCJSDEZ4J4uZjRkIPgjgflq3M8iFIc/KuZdIMo8g7pXTd WHRqvnlYRrWELfYHbDsmZ1xtuwGnw1AxedW0AH/teYyj5MgRlCvgElLeEk7z89HagGOtJ5zv WBNr4tmKBFT8cQY644DOAdQdGvAmiIRR7XKmqdLVnuCalCYhv22tLKyaRw4PvvdI0DzZM0lp iEWFREtXQqc0arDcGVxpVE/h3EXW34VzXwzcNV4YR/p9THNffWGDzGTEprn9qrov0ZDMGeU/ GvOIhOC/umNmfqEZYh5Xy2Z3CTEwhpbCQ4gKdNZ7vVmLO/FmTDjJ2uTMru
X-Talos-CUID: 9a23:bAmeym6ujL8fd/8LRNss3m4ZEccYaFzm41yLIlKeDmR5a6DKYArF
X-Talos-MUID: 9a23:F+ZYcAmbPlDIdsvZ+rUkdnpEJspn37WNOHkqqrgehI6LZApxZBi02WE=
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by rcdn-iport-5.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 Jan 2024 09:43:28 +0000
Received: from alln-opgw-4.cisco.com (alln-opgw-4.cisco.com [173.37.147.252]) by rcdn-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id 40V9hRXZ024375 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 31 Jan 2024 09:43:28 GMT
X-CSE-ConnectionGUID: rBD/zVz5SG+FQ39S29qpZg==
X-CSE-MsgGUID: wo9ePMs4SQ2gX/ACNXXG/w==
Authentication-Results: alln-opgw-4.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=evyncke@cisco.com; dmarc=pass (p=reject dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.05,231,1701129600"; d="scan'208";a="22113289"
Received: from mail-co1nam11lp2168.outbound.protection.outlook.com (HELO NAM11-CO1-obe.outbound.protection.outlook.com) ([104.47.56.168]) by alln-opgw-4.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 Jan 2024 09:43:26 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=nBf+Cz2SMokHc7dE7aE86djByaSXSUDmJTEvz7pXTgqp5JGRzTsTHRDNp0ULwera7O+mCpqm75rMfHHYgGrefZDGJXBtviTKrqEeeubpjmSK9avMLPBRtknLL3+cdh1eHGqeB20NHtTrphQJ5HDtWLnM8n3RsszMXzm43UUh/sIM3nW/CU0qa8Iz0I7hX9JU3IzpBc/Oh/ESyh44qOaoCNhzSHQ28oaxqqD0boYfFcihRXxxI0IICKEnZGMguV9SKN0+SozU6evIMhfz6UTn9m4ULZy7SSywfTqd0N2l2JQSX02yAnWhXMZi/aaOeKmcWbLdxdd9oJe3yqZIRqULFA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uBjDf0MHCnI8AoQA0gtoG7+Hynw7BSE2ZMNjbcFdkMA=; b=jeFnDGYFJZFM/V300l9ZPpMZcAijs0W5Kho7WCRDsV4Mc9X+NHhevN8sD3Rc1fS4Kgi/jM5z/Gpgz5+2chzmi20tINoTG6K1bxRRBRpwTYSl0GC4A8ydrx9pAUMMA07Qfd8FpglPLQp4DFanTZA98Ctue4VKsSjgKZuhOCkd1tk/ysl2WZuLiN+CR/gaNo4UvsSxdBXV/pLcRGOF8PxpOR0E4e9+vchxghmCZb9tFWx2qVtRPd4+xIAlbyCqdaUgzk2+9z5ypsVcnsRZihUz2YjyCKysk3OE6cuKS21NuGXRfr5yiG2SXkS4TjuHHaH4zJGh44ymYic8v2KkcqQknA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
Received: from PH0PR11MB4966.namprd11.prod.outlook.com (2603:10b6:510:42::21) by DS7PR11MB5965.namprd11.prod.outlook.com (2603:10b6:8:70::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7228.34; Wed, 31 Jan 2024 09:43:25 +0000
Received: from PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::251c:6e15:4d7d:2a88]) by PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::251c:6e15:4d7d:2a88%7]) with mapi id 15.20.7228.029; Wed, 31 Jan 2024 09:43:25 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Kent Watsen <kent+ietf@watsen.net>
CC: The IESG <iesg@ietf.org>, "draft-ietf-netconf-trust-anchors@ietf.org" <draft-ietf-netconf-trust-anchors@ietf.org>, "netconf-chairs@ietf.org" <netconf-chairs@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>, Qin Wu <bill.wu@huawei.com>, Mahesh Jethanandani <mjethanandani@gmail.com>
Thread-Topic: Éric Vyncke's No Objection on draft-ietf-netconf-trust-anchors-23: (with COMMENT)
Thread-Index: AQHaUp5aVOsJs6iwHUewdYYNulxgkbDw24KAgALj4gA=
Date: Wed, 31 Jan 2024 09:43:25 +0000
Message-ID: <A52D287A-487A-4146-8E05-D6E896FE4AEF@cisco.com>
References: <170652427877.6671.15721070975651867436@ietfa.amsl.com> <0100018d55a55762-0b9f0225-e11e-42a8-984c-738f1e100c15-000000@email.amazonses.com>
In-Reply-To: <0100018d55a55762-0b9f0225-e11e-42a8-984c-738f1e100c15-000000@email.amazonses.com>
Accept-Language: fr-BE, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.81.24012117
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH0PR11MB4966:EE_|DS7PR11MB5965:EE_
x-ms-office365-filtering-correlation-id: a8281820-4f3c-4e4f-fa49-08dc22411222
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 9f/VVJG4Pf2CqA94qCeVRx4rrZLlst07Zf9m/QKikFxcjyJobmCBhgUSZljc30dY6QHQL7WqufJ9XhdU/hLKsjzclXc2H+65U/oynnNbkrpkZcb62FDP9RtlthmohxWohVh7MpcNWrHOwjve9puHN7yi/T25+ZWVh+ullH8mHV6yreZWLK3l512uGiYjN6aMO7J0vUeLg6sUjqih9p1C0XYA+EVg7DOYyIXMvPAIwvpAzMeQ2yVcIEFB6bO9SuFuewtZTfkXuglhJBHaJk9DbNYgkS4H0SoDz6UhBOLLWKG7qRU//8XEAwYqCst2fDwZZJQHtzXTXtMK9E5khj9DayMbF0+qKcwX77jl59L+2ij7TM/WPsdXrife7bj82zPbAXNzf39U1H3+rC/lGkfPlJtetc0Wm9A5Sl4f93sv2Fisf2ylvurM4FsOvssV1UZp3LZpjZK/TEp7nrK4/X4yg+2G0rJR8thB2pL/gAFND3/KmXd/FJpZaKvVQpfuUiORg2Qk2Z7Rs+G9KEr0IOBIQ7RlNQISoWJbxhpvYNjRvZHxf/brjQ+zQckTSIuDyB5xXPY3e7DrZNxm9FpTg3SVXShrCWe3mkjl71N7bPpTRr3od4nAOJDk6BkAHbsnnEvum3NmETppn5XvtuuiHa0Dxw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR11MB4966.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(346002)(376002)(366004)(136003)(396003)(39860400002)(230922051799003)(64100799003)(1800799012)(451199024)(186009)(966005)(6486002)(64756008)(66946007)(66556008)(66476007)(66446008)(54906003)(76116006)(91956017)(6512007)(316002)(478600001)(4326008)(8936002)(6506007)(53546011)(2616005)(83380400001)(2906002)(66574015)(122000001)(38100700002)(5660300002)(71200400001)(86362001)(224303003)(41300700001)(33656002)(36756003)(38070700009)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <AB0466BCD1B79B43848A7695F1DA2CDF@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4966.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a8281820-4f3c-4e4f-fa49-08dc22411222
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Jan 2024 09:43:25.2008 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: z2yTxeh+P2ZRseYoxXteX8LJdLKj66BZ8/w60emNRl06eiqSzOs9ipMQ3cditC6+793pxRoSwmaj/in8eRui4g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DS7PR11MB5965
X-Outbound-SMTP-Client: 173.37.147.252, alln-opgw-4.cisco.com
X-Outbound-Node: rcdn-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/AinGlO-BL-O5ltnxVNP_RlOLQR8>
Subject: Re: [netconf] Éric Vyncke's No Objection on draft-ietf-netconf-trust-anchors-23: (with COMMENT)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2024 09:43:46 -0000

Hello Kent and thank you for your prompt reply.

As my corporate mail agent is quite broken, please see below for EVY>

Regards

-éric


On 29/01/2024, 15:35, "Kent Watsen" <kent+ietf@watsen.net <mailto:kent+ietf@watsen.net>> wrote:


Hi Éric,




> On Jan 29, 2024, at 5:31 AM, Éric Vyncke via Datatracker <noreply@ietf.org <mailto:noreply@ietf.org>> wrote:
> 
> Éric Vyncke has entered the following ballot position for
> draft-ietf-netconf-trust-anchors-23: No Objection
> 
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ <https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/> 
> for more information about how to handle DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-netconf-trust-anchors/ <https://datatracker.ietf.org/doc/draft-ietf-netconf-trust-anchors/>
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> Thanks for the work done for this document.
> 
> Suggest to refresh some dates used in examples (2018 is a long time ago).


I updated the date in the example to 2024.
This update is only in my local copy for now...


EVY> thank you

> Should there also be a 'not valid before' date for certificates ?


Is this comment connected to the previous comment regarding the "certificate-expiration” notification?
Assuming “yes”, I do not think there is a need for a *notification* for 'not valid before’ - agreed?

EVY> my only issue with the above statement is that the store is then limited to sending notification and not on how to select the right certificate. 
EVY> selecting the right certificate is important when doing cert rollover (i.e., the sender has 2 certs with a small time overlap).


> How can a node know where to send the certificate expiration notifications ? Is
> it also a pub/sub model ? (I should probably know the answer…)


How YANG notifications are delivered is topic outside the scope of this draft but, since you asked…
- delivery varies by protocol: e.g. NETCONF and RESTCONF have their own delivery mechanisms
- delivery can also be via UDP or HTTP (see the udp-notif and http-notif drafts - WG documents)

EVY> I will have to (re)-read the udp/http notifications then ;-)


Thanks,
Kent

v2.23.0 | Report a Bug | By Email