Re: [netmod] RV: New Version Notification for draft-dbb-netmod-acl-00.txt
"Aseem Choudhary (asechoud)" <asechoud@cisco.com> Mon, 25 October 2021 06:36 UTC
Return-Path: <asechoud@cisco.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D3593A005F for <netmod@ietfa.amsl.com>; Sun, 24 Oct 2021 23:36:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.599
X-Spam-Level:
X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=WwooL2xx; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=dI+xUsq8
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qh5A2joE2hFn for <netmod@ietfa.amsl.com>; Sun, 24 Oct 2021 23:36:02 -0700 (PDT)
Received: from alln-iport-3.cisco.com (alln-iport-3.cisco.com [173.37.142.90]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AEE383A0820 for <netmod@ietf.org>; Sun, 24 Oct 2021 23:36:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7796; q=dns/txt; s=iport; t=1635143762; x=1636353362; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=TyGG6Oz+UsD9LSNRzB7PfRGKv9o1BEOZD4lc/7Gyk6s=; b=WwooL2xxEHr+e0O+5kV5pc32AxSxSX5O86OOnkyJl53bq9/qSgCgNn6d njswVW2A8eH0gyeGMHF+7TfwJJvm9Hy5C0FJy4IOK5/uqc1wB7G0ljtrd WwGxy1tNEPEMCXx01hgAMFmBsAva++1aNQRmOGYFJW5Jt2rWkHlMcWaz/ Y=;
X-IPAS-Result: A0ALAAAAUHZh/4kNJK1aGgEBAQEBAQEBAQEDAQEBARIBAQEBAgIBAQEBQIFFBQEBAQELAYFQUQd3WjcxhEeDRwOEWWCFaIIlA4caiHyKYIEuFIERA1QLAQEBDQEBKgsMBAEBhDtFGYI3AiU0CQ4BAgQBAQEBAwIDAQEBAQEBAwEBBQEBAQIBBgSBEROFaA2GQwIBAwEBEBERDAEBLAkDEQEGAhoCJgIEJQIJFRIEARIigk8BglUDLwEOkAWPNgGBOgKKH3qBMYEBgggBAQYEBIFKQYJ/GII1AwaBECoBgwWEF4V+eyccgUlEJoEWDBCCZz6CYwEBAgGBHwRRgwE3gi6MZy+BLQMEFD0CFAwuDQweE1EZHR46kTuDY4lFn0cKgzKKS4ZwiAyFMQUtg2qLboZIkHyWDB+MUpNZLQ8EhHICBAIEBQIOAQEGgWE7gVlwFRohKgGCPlEZD4EbjQWDcoUUhUp0AjYCBgEKAQEDCZJvAQE
IronPort-PHdr: A9a23:Pxs1xR9pMdnB1f9uWMXoyV9kXcBvk6n5OgMb7ZwmgLsIeaOmrNzuP 03asPNqilKBHYDW8OlNhOeetaf8EXcB7pCMvDFnEtRMWhYJhN9Qk1kmB8iIWlH2KPPkaCo7F 80EX1hgrDm3NEFPE5P4YFvf6nS58T8VHED5Mgx4buT4E4LflYK5zee3rpbSeA5PwjG6ZOAaE Q==
IronPort-Data: A9a23:VdjxEq/u+lljO/scpWMPDrUDHnyTJUtcMsCJ2f8bNWPcYEJGY0x3z TMZXzzXb/zfZmXxe9oga9vj9xgB6MDQz941SQc4+y1EQiMRo6IpJzg2wmQcns+2BpeeJK6yx 5xGMrEsFC2wJ5Pljk/F3oLJ9RGQ7onVAOqjYAL4EnopH1Y9EH190UgLd9MR2+aEv/DoW2thh vuqyyHvEAfNN+lcaz98Bwqr8XuDjdyq0N8qlgVWicNj4Dcyo0Io4Kc3fsldGZdXrr58RYZWT 86bpF2wE/iwEx0FUrtJmZ6jGqEGryK70QWm0hJrt6aebhdqtnco3pY3K9MlSl5Jkxy5rtxy7 cVBnMnlIespFvWkdOU1Wh1cFWR1OrdLveOBKnmkusvVxErDG5fu66wxVwdtY8tBoaAuWj4mG f8wcFjhajiKnO+9wLWmRsFnh98oK4/gO4Z3VnRIkmGAUap5H82SK0nMzf8J7Gwgm+kJIfTXZ vtaUjpOXgvbMxIabz/7D7p7xo9EnELXdTBErVWZjas6/2aVyxZ+uJDqK9HcYJqFQsNHl0KVt G7L82X+GTkGOdiSxz2D83mlwOTImEvGtJk6Hbm88Lthh0eegzBVAxwNXlz9qv684qKjZ+9ix 4Uv0nJGhcAPGIaDF7ERgzXQTKa4gyMh
IronPort-HdrOrdr: A9a23:R025vqwQPotK5Z2/Rs6vKrPxgeskLtp133Aq2lEZdPULSK2lfp GV8sjziyWatN9IYgBbpTgZUJPwDk80hqQFnLX5Wo3SEjUO2VHYYL2KiLGD/9SOIVyHygcw79 YET0EcMqywMbEZt7eA3ODQKb9Jq7PrnNHK9IXjJhxWPGZXgtRbnn5E43GgYytLrWd9dP4EPa vZwvACiyureHwRYMj+LGICRfL/q9rCk4+jSQIaBjY8gTP+zQ+A2frfKVy1zx0eWzRAzfMJ6m 7eiTH04a2lrrWS1gLc7WnO9J5b8eGRieerRfb8yPT9GA+czjpAV74RHIFqewpF5t1H3Wxa1e UkZS1QZvibpUmhJl1d6iGdpzUImAxelEMKj2Xo2kcKZafCNW8H4w0rv/MCTvKR0TtQgDk3up g7oV6xpt5ZCwjNkz/64MWNXxZ2llCsqX5niuILiWdDOLFuI4O5gLZvtX+9Kq1wVB4SKbpXZd VGHYXZ/rJbYFmaZ3fWsi1mx8GtRG06GlODTlIZssKY3jBKlDQhpnFoifA3jzMF7tYwWpNE7+ PLPuBhk6xPVNYfaeZ4CP0aScW6B2TRSVbHMX6UI17gCKYbUki94aLf8fEw/qWnaZYIxJw9lN DIV05Zr3c7fwb0BciHzPRwg2bwqaWGLEPQI+1llutEU4zHNc7W2He4OSATeuOb0ociPvE=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.87,179,1631577600"; d="scan'208";a="781447659"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by alln-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 25 Oct 2021 06:36:01 +0000
Received: from mail.cisco.com (xbe-aln-004.cisco.com [173.36.7.19]) by alln-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 19P6a1On017891 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Mon, 25 Oct 2021 06:36:01 GMT
Received: from xfe-aln-004.cisco.com (173.37.135.124) by xbe-aln-004.cisco.com (173.36.7.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 25 Oct 2021 01:36:00 -0500
Received: from xfe-aln-005.cisco.com (173.37.135.125) by xfe-aln-004.cisco.com (173.37.135.124) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 25 Oct 2021 01:36:00 -0500
Received: from NAM04-MW2-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-005.cisco.com (173.37.135.125) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Mon, 25 Oct 2021 01:36:00 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LldwyGR+leBui0GyZGT1FE2LJqbIwi4yTq4Lij1n7bwrLdgMEzAuNsrkAOugZuYjIXPkRej305U881VUteTMffYAaMGN6Xen8Ljfkb+y1ji5DP6FtPq0ZzRIi+hHG3+HgtJZRtIKxyRkFF4+1vja/PbtrnERyJygFWlTWyaTVKFQBrxRuU+6DtlL3Pf6h0vNG7PRd58MzqB+y5FpQHABLHrNbRiXy7H80BW6Xbgp1jUQpqd0EfJwoHCNHfjQfRFkTXkKRKKsxkNXGrzvUSa84vzVsdoPjwn+dOLRBKqMKkg+yXXz7wvEysDILY9RYjP2Tozq7qNbyrU5UXVNqyTmGQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=TyGG6Oz+UsD9LSNRzB7PfRGKv9o1BEOZD4lc/7Gyk6s=; b=Q3MxfiD+5Jt51E7yK8LuEA+o6uEVBjWZmbLpNQ2f4E3thaOMabViqj4PoGNY9JWuqPCC7uKUlb6kX4w21c88WtUWI8unhjgMvbmzFxSe1KduhpxBf8IIL9AItYtM/f3aZuESao2pfG3bMOCcupBYGNMxUytixVmsRSgcRs9j78B3rYcbJH+qzQ5Lh95t9Ead7Adas0YlLZDW309xALWidEOAAlIYIGQ85bRw3UrKYs138QOboCyOilASuWlmoHe/qKDb/8Cbml53MbioFu8Zevwjlk2IRvVNoLf2i9zb0thuogsNS6kjrHIw1HJzUwTz5nAMOQUu3KBfBIIjiQBCHQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TyGG6Oz+UsD9LSNRzB7PfRGKv9o1BEOZD4lc/7Gyk6s=; b=dI+xUsq86q1VCabt48BXcTkwEXIbYznMo3KEEZWw/27fXLmvlvhskDgONrBDqjoYpiqMCdeXOKUb5QHDdQx4bzpRRASSqqLoxYWE4kJLFrMFSxA/RrZpNbw4rR1HhHzyoZ7D3T85NEVBp/36CksU7/PWeYJPQ/X0QwPhwP4kIVk=
Received: from DM4PR11MB5533.namprd11.prod.outlook.com (2603:10b6:5:38a::7) by DM4PR11MB5376.namprd11.prod.outlook.com (2603:10b6:5:397::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4628.16; Mon, 25 Oct 2021 06:35:59 +0000
Received: from DM4PR11MB5533.namprd11.prod.outlook.com ([fe80::68a8:b2c4:aa27:f0e]) by DM4PR11MB5533.namprd11.prod.outlook.com ([fe80::68a8:b2c4:aa27:f0e%7]) with mapi id 15.20.4628.020; Mon, 25 Oct 2021 06:35:59 +0000
From: "Aseem Choudhary (asechoud)" <asechoud@cisco.com>
To: Oscar González de Dios <oscar.gonzalezdedios@telefonica.com>, "netmod@ietf.org" <netmod@ietf.org>
Thread-Topic: [netmod] RV: New Version Notification for draft-dbb-netmod-acl-00.txt
Thread-Index: AQHXyWqSoSVzakA3CkmJn3o1iTEIVQ==
Date: Mon, 25 Oct 2021 06:35:59 +0000
Message-ID: <599D8085-C9C4-4141-8268-CB0A07B7F786@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.53.21091200
authentication-results: telefonica.com; dkim=none (message not signed) header.d=none;telefonica.com; dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4f0edb87-89b5-424f-da5e-08d99781b535
x-ms-traffictypediagnostic: DM4PR11MB5376:
x-microsoft-antispam-prvs: <DM4PR11MB53764F80922A3FE02FF67D50C2839@DM4PR11MB5376.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM4PR11MB5533.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(4001150100001)(15650500001)(6506007)(66556008)(66446008)(91956017)(76116006)(6486002)(86362001)(5660300002)(66946007)(186003)(296002)(6512007)(64756008)(316002)(110136005)(38100700002)(8676002)(71200400001)(66476007)(33656002)(66574015)(8936002)(2906002)(83380400001)(122000001)(966005)(508600001)(2616005)(36756003)(38070700005)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: EzPiIVsMwM6QAuig5sPiFl0Okqcb121Gg7N6edkkyoCP0V95AcEwcZ2C16SRd91zuW0OjyuBPEqRGWyPUsVT/rBDbvqB+9NykqCM75WCfvSSAc8fxjGZhl1jxlRBrxiiNpdtcqdzvYBXJCloMzz0TwLe5NGFn+CCgTza1WopFAgEMo3Z+1FTC0DR5jcfwy66yUMG0pVFgP4hCGOZ0vuAeYst+3hGUhOXo8cvHYIqQz99s4li/xH0nSVBjglA+4Yz6v91vp77fDgvK/5BK3ABm9/t7/IdXE/7+yNXUezuHS28QH9JSpKy6NNEWwnLfZlnRuDN4E/yVnz1OlQU/f7GV+Ntp3XPZfIQplWLoi+NY0A0hqy1CxU91O5BhH6Gc4d+1msxHEgcI4vGX5DUVfvXtuKITtu2qosd9c9wxyLvTC8mwCalzZGiptsHCtnKxgu+k6o15vZE31AkprBCXvuvvi7UEshqcgL3FIyU2HBjvHxSHr3am1Cj1UtTBSOcEdr4i41pvdaBVpj0uYivZJXuAFNEY7zjdrz7Sb7qO/nftHUwpkQ5wvzlcmKpLdEiCf69UuMilh6DfEkRdT6YFHmjGvFDJyOFpliEi9pM4ixA0CVw2J8coWrY40zJ/HRE0NaeTYtLd2wp+CTpRmfXWr5kiIB1NwyNik/OS8UkGySvqQ1zXzxDK3RL4fhL5eeUZXitFY9U0wCiwmMR2shy48Q7Fdk7oijUjI7e9ETn6+90wy+uRtNIPoDWiNNvIJR5D/Qdmbi47LifvUDDod22FJa+of61eLnZJvk88y5kGS5SkeCd19qfNE4L+layTEBnawotISFGRt5fVotqvOl4tjg6BDwwQtR2yPFLl12RHpy5hS71QCX0RzvkWuVWARYs2W3iCWjFF1KcpnVWrdK9m6ogzMLYHzoTo15PvIdObtQPJp/HaBB78y5x0A+WY50tbEu0yBNR9CsbiGaaZxT5b6HS7oOiphu+RjT5xc6m7BpRuxy37reeremYhmaI1WhssWDul4NpOQ3O05Vfg3KCwfCLPoUizdFpmQWQwT2p6rrspsDZfCiaBzRmSGev8zGpTtAh5dNUk/rPog8aHOgXf5ocoGRWrjJ4RUSRFzaRrMVuei2s6jdvEvE8viGiBU9syABxd7MY/jSy9ecfJ+PeqKem9FCeaGUpe9a8qrX7T0ydpLoVjHFFk3sYd7VMyXohMH6X/69Y7karzAOwPy6DY9N2hQDWalbnBoh7CraqQ43K95R0L5bfqlzwf7FYZS2Y410aKGOtYwbN/2KWFteAetICqht0rP8fX/DcSHgXTQBqFdhiQW8kFom54xr3YOBTl/q6Z7hQMwcJ+H8wnsxpan+f65TcB9+Ajvy+Q815dE/fR+QbOJbTEeqqki+M1EfVJf58M2l/EIu6h99zXoBjd7F56o9ZSXwsCiWlJK64sel//Dxaug1//nir5CzbEP0MIPdAlHsmYIfjmJbsuABIEo5aJ3RjrVuh/5I+C9iJq8v79fhL6p3G5UQ8oVJ0stg0gFR8SBMrozu8D37tiiQ7qNZdETwgYY13yeVsrINrgwZ336sPLVagGR9SuYONyHSY/vpRGUJtOgNmu04wulidNvYCeI7A/k7IeMHnjYgvGOqMNWIY8jtBf0KBOmQ7miMS4EZc35G2mklvd5wFKLul30kIX0B3mutYpmVpGHcauV5/7vQ7RTAc3AhVJiCt3h9XtnPv
Content-Type: text/plain; charset="utf-8"
Content-ID: <7C44EB7D5FD02A49A44BD327EA8F22F0@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM4PR11MB5533.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4f0edb87-89b5-424f-da5e-08d99781b535
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Oct 2021 06:35:59.4753 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Me74oCrvwpZvs83Rk5CCVM4GhPnDsV7ADqo/wDxydbPktMqG81R/MycxbApfHy9JuRTs6DGswEwEJDuaH2ldAQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR11MB5376
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.19, xbe-aln-004.cisco.com
X-Outbound-Node: alln-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/IOYZe8InG_43v0JnSVIPxplzja0>
Subject: Re: [netmod] RV: New Version Notification for draft-dbb-netmod-acl-00.txt
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Oct 2021 06:36:08 -0000
Hi, Oscar et al.
This is a useful work and an obvious extension to acl yang.
I have following comments on the draft:
1. I think it is important to highlight m x n issue in the acl yang (section 3.1/3.2). Let me describe a bit:
If there are 4 prefixes and 3 ports such that for each prefix and port combination a matching rule needs to be created, it results into 12 matching rule. As the scale goes high, the number of rules multiplies much faster. By creating object-groups/defined-sets for prefix and port, it need to be updated m and n times respectively (making it m + n order) which is much lower than m x n rules which needs to be created otherwise.
2. icmp defined sets for type and code can be defined independently, similar to flowspec and will be simple extension of ACL yang.
3. Can the defined-sets contains ranges as well (say for port: 40,47, 83-93, 98, 120-140 etc)
4. section 3.4, 3.5: It needs to be decided how much ACL yang can be aligned with flowspec config options. Some of the things like "numeric operator" and "bitmast operand format" are powerful but makes rules complex.
5. For section 3.6,
a). it need to be decided whether policer will be pps (packets per sec) or bps or both. In true ACL way, I think pps makes more sense.
b) the counters need to be enhanced to support "drop count" as well since "match count" will not be enough.
6. Similarly, "redirect" to nexthop (VRF and/or prefix) action can also be defined for matching ACL rules.
Best Regards,
Aseem
On 10/19/21, 9:34 AM, "netmod on behalf of Oscar González de Dios" <netmod-bounces@ietf.org on behalf of oscar.gonzalezdedios@telefonica.com> wrote:
Dear Netmod colleagues,
We discussed in the list some time ago a few possible enhancements on the ACL Yang model (RFC 8519).
Following the suggestions received the list, we've prepared an individual draft in which we document the motivation of several enhacements to the Access control list Yang model. Note that, in this first version of the document, we have not included on purpose any yang model. We are seeking the work direction from the netmod WG whether the missing features can be accomplished by means of augmentations or whether an ACL-bis document is more appropriate.
Looking forward to receiving your comments / thoughts/ suggestions.
Best Regards,
Oscar, Samier, Med
-----Mensaje original-----
De: internet-drafts@ietf.org <internet-drafts@ietf.org>
Enviado el: lunes, 18 de octubre de 2021 13:06
Para: Mohamed Boucadair <mohamed.boucadair@orange.com>; Oscar González de Dios <oscar.gonzalezdedios@telefonica.com>; Oscar González de Dios <oscar.gonzalezdedios@telefonica.com>; SAMIER BARGUIL GIRALDO <samier.barguilgiraldo.ext@telefonica.com>; SAMIER BARGUIL GIRALDO <samier.barguilgiraldo.ext@telefonica.com>
Asunto: New Version Notification for draft-dbb-netmod-acl-00.txt
A new version of I-D, draft-dbb-netmod-acl-00.txt has been successfully submitted by Oscar Gonzalez de Dios and posted to the IETF repository.
Name: draft-dbb-netmod-acl
Revision: 00
Title: Extensions to the Access Control Lists (ACLs) YANG Model
Document date: 2021-10-18
Group: Individual Submission
Pages: 18
URL: https://www.ietf.org/archive/id/draft-dbb-netmod-acl-00.txt
Status: https://datatracker.ietf.org/doc/draft-dbb-netmod-acl/
Htmlized: https://datatracker.ietf.org/doc/html/draft-dbb-netmod-acl
Abstract:
RFC 8519 defines a YANG data model for Access Control Lists (ACLs).
This document discusses a set of extensions that fix many of the
limitations of the ACL model as initially defined in RFC 8519.
The IETF Secretariat
________________________________
Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.
The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.
Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição
_______________________________________________
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod
- [netmod] RV: New Version Notification for draft-d… Oscar González de Dios
- Re: [netmod] New Version Notification for draft-d… Mahesh Jethanandani
- Re: [netmod] RV: New Version Notification for dra… Aseem Choudhary (asechoud)