Re: [Netconf] I-D Action: draft-ietf-netconf-zerotouch-21.txt
Kent Watsen <kwatsen@juniper.net> Tue, 06 March 2018 17:08 UTC
Return-Path: <kwatsen@juniper.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E308E12420B for <netconf@ietfa.amsl.com>; Tue, 6 Mar 2018 09:08:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 32ZPK7QjE-u0 for <netconf@ietfa.amsl.com>; Tue, 6 Mar 2018 09:08:34 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 216F0120725 for <netconf@ietf.org>; Tue, 6 Mar 2018 09:08:34 -0800 (PST)
Received: from pps.filterd (m0108158.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.22/8.16.0.22) with SMTP id w26H6bEZ013199 for <netconf@ietf.org>; Tue, 6 Mar 2018 09:08:33 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=27Ip2Q/7v/sTYE4mT67B0j5Z564AfqyDCXmLjjfx1i0=; b=RJz7ppO/qdQH1Tp1cmAAgL5dAfa+C9WU83uA503uam6ZmcajAVX7ORLrXBCjraSYXh8V dH1I7gAuOtoMaz/Bl5ufNh2nOwuhUwYTl4fy3GnVZdBAIWw0KTBvrnK3DrIfyOmlOgYr I08bVyzowpo3YQoJ/0eFOTGhUIXQ4VdoEhb1md7fDOnQQt6PnLYBLepFFuToJz5MNUgN BUfaduEDBWRc31g+CZKKAU3iUXlHzvbh+mAuYI6xQ40k+qTrvcGSqzo0yF/r56ofMjxn xZQu5VQL6NprhcaepMeBfNuaFyCX9RY1U9s5nZsY++rbXurziOE/P/+09MwtFgdU+YCn wg==
Received: from nam03-dm3-obe.outbound.protection.outlook.com (mail-dm3nam03lp0015.outbound.protection.outlook.com [207.46.163.15]) by mx0a-00273201.pphosted.com with ESMTP id 2ghxaag4rm-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <netconf@ietf.org>; Tue, 06 Mar 2018 09:08:27 -0800
Received: from DM5PR05MB3484.namprd05.prod.outlook.com (10.174.240.147) by DM5PR05MB3564.namprd05.prod.outlook.com (10.174.242.157) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.567.6; Tue, 6 Mar 2018 17:08:25 +0000
Received: from DM5PR05MB3484.namprd05.prod.outlook.com ([fe80::d42c:9ad2:ced3:e377]) by DM5PR05MB3484.namprd05.prod.outlook.com ([fe80::d42c:9ad2:ced3:e377%2]) with mapi id 15.20.0567.011; Tue, 6 Mar 2018 17:08:25 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: "netconf@ietf.org" <netconf@ietf.org>
Thread-Topic: [Netconf] I-D Action: draft-ietf-netconf-zerotouch-21.txt
Thread-Index: AQHTtMehDgzNoit3ukCH/PAeIZ2T4KPDHhAA
Date: Tue, 06 Mar 2018 17:08:25 +0000
Message-ID: <DD032258-C5D7-4671-B750-58519DE0AC80@juniper.net>
References: <152028473581.31763.10407560925041212953@ietfa.amsl.com>
In-Reply-To: <152028473581.31763.10407560925041212953@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR05MB3564; 7:E7XlMyQ74VqdiHYr+/RkZR9Gma+v6l0z7cPyHrywcr2X+RAZmmWNf6PsExzaQAoUMXSBDojDO86ljXplSShzzjo5wWE9cToY3aahwJy/ablnXptgN+P112t3xc/EURPti4qwD+5tJWMycXy40Zm3lNKLm8SnBtvMdva1VWD0Wn7fboZhRJxcs/zJZpWE84P1ukLjvbO+NvcCcq6Th9UUARUaFTGoTVQE0+mgol2Diq5KlUvcgZT3fOUaBdKhgsRk
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 12bf7602-65f4-4045-bea0-08d58384df83
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(49563074)(7193020); SRVR:DM5PR05MB3564;
x-ms-traffictypediagnostic: DM5PR05MB3564:
x-microsoft-antispam-prvs: <DM5PR05MB3564C071D7103047E672E3F7A5D90@DM5PR05MB3564.namprd05.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(10436049006162);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(102415395)(6040501)(2401047)(5005006)(8121501046)(3231220)(944501244)(52105095)(10201501046)(3002001)(93006095)(93001095)(6055026)(6041288)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(20161123562045)(6072148)(201708071742011); SRVR:DM5PR05MB3564; BCL:0; PCL:0; RULEID:; SRVR:DM5PR05MB3564;
x-forefront-prvs: 06036BD506
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39860400002)(39380400002)(366004)(346002)(376002)(396003)(189003)(199004)(377424004)(43234003)(2900100001)(53936002)(68736007)(26005)(102836004)(229853002)(6506007)(59450400001)(186003)(3280700002)(6512007)(6306002)(105586002)(478600001)(5640700003)(14454004)(36756003)(966005)(97736004)(6486002)(6246003)(6436002)(81156014)(1730700003)(305945005)(2906002)(83716003)(81166006)(5660300001)(99286004)(25786009)(8936002)(66066001)(2950100002)(76176011)(8676002)(6916009)(2351001)(82746002)(575784001)(3846002)(86362001)(2501003)(7736002)(33656002)(99936001)(3660700001)(5250100002)(316002)(5890100001)(58126008)(6116002)(106356001); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3564; H:DM5PR05MB3484.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: Gd3FDWAQKuhjNi8W9ypqzK7v7e2rLWMvwn8iQETlLiw4pBzfiMXh6GIF5D5Y3EzKCB6PgclnRAYuA+n0g6wlFUHmWX7z9v7pq70SVZ3tJF2Uji5ZJGwOCbxAAu/feThvfqHmk/ImxKzXV7y/qaB5DxzHfXG3Ct6FVD/3dzx2kR0bNSX+gYb0iNdvnuWHVbzSdPR24pFj9HU/9hyG+wwqTXhbRWspY8rg4ZzOy1FfTJ1FKobqUm4Yiqh/YYnBQSsD28EWI8AIIejbj+MBstfWOOjBzMjiKZXcF9pPNA+RcM6PlVOpOqwTJIBdHHdnyW1qtgBLcBnBeYT+7VR9PHo1MQ==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/mixed; boundary="_002_DD032258C5D74671B75058519DE0AC80junipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 12bf7602-65f4-4045-bea0-08d58384df83
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Mar 2018 17:08:25.0886 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3564
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, , definitions=2018-03-06_08:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=scan_limit adjust=0 reason=mlx scancount=1 engine=8.0.1-1711220000 definitions=main-1803060188
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/h0HMtE_EajBj3IGgtdcJUeqGVrk>
Subject: Re: [Netconf] I-D Action: draft-ietf-netconf-zerotouch-21.txt
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Mar 2018 17:08:40 -0000
This update addresses all the Last Call comments, as well as items discussed after the Last Call, including support for encryption. I believe that the draft is now ready to be published.
PS: attached is an updated powerpoint presentation that includes the new support for encryption.
Thanks,
Kent // author
=====
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Network Configuration WG of the IETF.
Title : Zero Touch Provisioning for Networking Devices
Authors : Kent Watsen
Mikael Abrahamsson
Ian Farrer
Filename : draft-ietf-netconf-zerotouch-21.txt
Pages : 81
Date : 2018-03-05
Abstract:
This draft presents a technique to securely provision a networking
device when it is booting in a factory-default state. Variations in
the solution enables it to be used on both public and private
networks. The provisioning steps are able to update the boot image,
commit an initial configuration, and execute arbitrary scripts to
address auxiliary needs. The updated device is subsequently able to
establish secure connections with other systems. For instance, a
device may establish NETCONF [RFC6241] and/or RESTCONF [RFC8040]
connections with deployment-specific network management systems.
The IETF datatracker status page for this draft is:
https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dietf-2Dnetconf-2Dzerotouch_&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=2YfQReaS7vvkuMkI7m8v3ri0QOmCigo4uRb3Q6BPGQ8&e=
There are also htmlized versions available at:
https://urldefense.proofpoint.com/v2/url?u=https-3A__tools.ietf.org_html_draft-2Dietf-2Dnetconf-2Dzerotouch-2D21&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=8Tf7eC9eNkP-MA3gsqSO9VuELeaFritrZ8eLjCN30U4&e=
https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_html_draft-2Dietf-2Dnetconf-2Dzerotouch-2D21&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=Jl4XBlJe5GVboXzYbwA8Ocu8YtbiUZeJUWUI3ykRtgw&e=
A diff from the previous version is available at:
https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_rfcdiff-3Furl2-3Ddraft-2Dietf-2Dnetconf-2Dzerotouch-2D21&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=lDyuT8Gl6E7euJ3hm61mAW0dW4OoGBWDucmjQbqSBvY&e=
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
https://urldefense.proofpoint.com/v2/url?u=ftp-3A__ftp.ietf.org_internet-2Ddrafts_&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=MVtNw8ys6b1dfCzCj3aTMoDOOEzKSEnqujm7TTD_HZg&e=
_______________________________________________
Netconf mailing list
Netconf@ietf.org
https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_netconf&d=DwICAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=yQFtIkkQEG4OhJDGoN_l9mjZG6mA9rzJA2fZigM79k8&s=fKlWJlzGR0gi_tzPRbg7vWQ9kMMY6mtIw1HF2Cbk_V0&e=
- [Netconf] I-D Action: draft-ietf-netconf-zerotouc… internet-drafts
- Re: [Netconf] I-D Action: draft-ietf-netconf-zero… Kent Watsen