Re: [netmod] AD review: draft-ietf-netmod-snmp-cfg-05
Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Mon, 21 July 2014 20:45 UTC
Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE3E31A043D for <netmod@ietfa.amsl.com>; Mon, 21 Jul 2014 13:45:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.551
X-Spam-Level:
X-Spam-Status: No, score=-1.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_DE=0.35, RP_MATCHES_RCVD=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VwtQkExkHX-k for <netmod@ietfa.amsl.com>; Mon, 21 Jul 2014 13:45:29 -0700 (PDT)
Received: from atlas3.jacobs-university.de (atlas3.jacobs-university.de [212.201.44.18]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D42D61A0328 for <netmod@ietf.org>; Mon, 21 Jul 2014 13:45:28 -0700 (PDT)
Received: from localhost (demetrius5.irc-it.jacobs-university.de [10.70.0.222]) by atlas3.jacobs-university.de (Postfix) with ESMTP id 4AAFBA89; Mon, 21 Jul 2014 22:45:27 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from atlas3.jacobs-university.de ([10.70.0.220]) by localhost (demetrius5.jacobs-university.de [10.70.0.222]) (amavisd-new, port 10030) with ESMTP id 55JnyWifTKru; Mon, 21 Jul 2014 22:45:22 +0200 (CEST)
Received: from hermes.jacobs-university.de (hermes.jacobs-university.de [212.201.44.23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hermes.jacobs-university.de", Issuer "Jacobs University CA - G01" (verified OK)) by atlas3.jacobs-university.de (Postfix) with ESMTPS; Mon, 21 Jul 2014 22:45:26 +0200 (CEST)
Received: from localhost (demetrius2.jacobs-university.de [212.201.44.47]) by hermes.jacobs-university.de (Postfix) with ESMTP id 7E2CB2002C; Mon, 21 Jul 2014 22:45:26 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from hermes.jacobs-university.de ([212.201.44.23]) by localhost (demetrius2.jacobs-university.de [212.201.44.32]) (amavisd-new, port 10024) with ESMTP id 536Ay15SZEX6; Mon, 21 Jul 2014 22:45:25 +0200 (CEST)
Received: from elstar.local (elstar.jacobs.jacobs-university.de [10.50.231.133]) by hermes.jacobs-university.de (Postfix) with ESMTP id 9E4CF20017; Mon, 21 Jul 2014 22:45:24 +0200 (CEST)
Received: by elstar.local (Postfix, from userid 501) id C73E92DDF15E; Mon, 21 Jul 2014 22:45:23 +0200 (CEST)
Date: Mon, 21 Jul 2014 22:45:23 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: Randy Presuhn <randy_presuhn@mindspring.com>
Message-ID: <20140721204523.GA9966@elstar.local>
Mail-Followup-To: Randy Presuhn <randy_presuhn@mindspring.com>, Benoit Claise <bclaise@cisco.com>, NETMOD Working Group <netmod@ietf.org>
References: <14507864.1402339265349.JavaMail.root@mswamui-cedar.atl.sa.earthlink.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <14507864.1402339265349.JavaMail.root@mswamui-cedar.atl.sa.earthlink.net>
User-Agent: Mutt/1.4.2.3i
Archived-At: http://mailarchive.ietf.org/arch/msg/netmod/0tceFXiKfEfX1yuVPwt-W08yQww
Cc: NETMOD Working Group <netmod@ietf.org>
Subject: Re: [netmod] AD review: draft-ietf-netmod-snmp-cfg-05
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jul 2014 20:45:30 -0000
On Mon, Jun 09, 2014 at 11:41:05AM -0700, Randy Presuhn wrote: > Hi - > > >From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> > >Sent: Jun 7, 2014 12:02 AM > >To: Benoit Claise <bclaise@cisco.com> > >Cc: draft-ietf-netmod-snmp-cfg@tools.ietf.org, NETMOD Working Group <netmod@ietf.org> > >Subject: Re: [netmod] AD review: draft-ietf-netmod-snmp-cfg-05 > ... > >Concerning "designed to": The data model has been designed to cover > >everything that the SNMP configuration models describe. It allows an > >implementation that supports both configuration via NETCONF and > >configuration via SNMP. The details are discussed in section 3.2. > > When SNMP is used to change the value of an > instance of vacmGroupName in the vacmSecurityToGroupTable, > some side-effects will need to happen in the netconf datastores, > due to the decision to model the information differently. > I know this has come up before, but it's unclear to me what > needs to happen on the netconf server side in a couple > of specific cases: > > (1) If the vacmGroupName has a value that hasn't been seen before, > a "group" obviously needs to be created as a side-effect in > netconf land. What's less obvious is what happens to the > old "group" in the case where no other entries in the > vacmSecurityToGroupTable still have that particular value > for vacmGroupName. Is it to be automagically deleted > because the security-model's min-elements constrainted > would otherwise be violated? We previously removed the min-elements from the 'member' list and as such it is not necessary to remove the group until all references to it have been removed. The min-elements of the 'security-model' only applies if an instance exists in the 'member' list, which seems to be consistent with the way VACM works. > (2) Likewise, when the value of the StorageType of an entry > in vacmSecurityToGroupTable is modified from nonVolatile > to volatile, does similar "garbage collection" have > to happen as a side-effect? An implementation may do garbage collection if no nonVolatile references to a group exist anymore. > (3) When the entry in vacmSecurityToGroupTable is volatile, > and some (but not all) of the corresponding vacmAccessTable > entries are nonVolatile, what happens in the netconf datastores? In this case the configuration datastore would only store the group without any members. /js -- Juergen Schoenwaelder Jacobs University Bremen gGmbH Phone: +49 421 200 3587 Campus Ring 1, 28759 Bremen, Germany Fax: +49 421 200 3103 <http://www.jacobs-university.de/>
- [netmod] AD review: draft-ietf-netmod-snmp-cfg-05 Benoit Claise
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Juergen Schoenwaelder
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Randy Presuhn
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Benoit Claise
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Benoit Claise
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Juergen Schoenwaelder
- Re: [netmod] AD review: draft-ietf-netmod-snmp-cf… Juergen Schoenwaelder