IETF Logo Mail Archive

Re: [netmod] system configuration sync mechanism

Qin Wu <bill.wu@huawei.com> Tue, 17 August 2021 01:14 UTC

Return-Path: <bill.wu@huawei.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FF383A0BD6 for <netmod@ietfa.amsl.com>; Mon, 16 Aug 2021 18:14:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9MmdfbOsIQz6 for <netmod@ietfa.amsl.com>; Mon, 16 Aug 2021 18:14:07 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 747423A0AE2 for <netmod@ietf.org>; Mon, 16 Aug 2021 18:14:07 -0700 (PDT)
Received: from fraeml710-chm.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GpY1d01pwz6FGpB for <netmod@ietf.org>; Tue, 17 Aug 2021 09:13:09 +0800 (CST)
Received: from dggeml701-chm.china.huawei.com (10.3.17.134) by fraeml710-chm.china.huawei.com (10.206.15.59) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 17 Aug 2021 03:14:01 +0200
Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml701-chm.china.huawei.com (10.3.17.134) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 17 Aug 2021 09:13:59 +0800
Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 17 Aug 2021 09:13:58 +0800
From: Qin Wu <bill.wu@huawei.com>
To: Andy Bierman <andy@yumaworks.com>, Kent Watsen <kent+ietf@watsen.net>
CC: "netmod@ietf.org" <netmod@ietf.org>
Thread-Topic: [netmod] system configuration sync mechanism
Thread-Index: AdeS/smIORNkTLFjSz+tOLhWazMEpw==
Date: Tue, 17 Aug 2021 01:13:58 +0000
Message-ID: <ad7ec21e0d3d477b91bebdfdeec01303@huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.136.123.117]
Content-Type: multipart/alternative; boundary="_000_ad7ec21e0d3d477b91bebdfdeec01303huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/IWRpd_dIsgewE_4_ExDzmqJy4iM>
Subject: Re: [netmod] system configuration sync mechanism
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Aug 2021 01:14:14 -0000

Hi, Andy:
A few clarifications below.
>发件人: netmod [mailto:netmod-bounces@ietf.org] 代表 Andy Bierman
>发送时间: 2021年8月17日 3:21
>收件人: Kent Watsen <kent+ietf@watsen.net>
>>抄送: netmod@ietf.org
主题: Re: [netmod] system configuration sync mechanism



On Sun, Aug 15, 2021 at 12:49 PM Kent Watsen <kent+ietf@watsen.net<mailto:kent%2Bietf@watsen.net>> wrote:

It was a different email I think proposing extensions instead of a datastore.

This email: https://mailarchive.ietf.org/arch/msg/netmod/SHRPSxHIDxsfF2t0GXXiyFHOnGw/



>What is the purpose of system-configuration



>Use-case A)    The system sets some values because it knows what they shall

>be. In this case the client must not be allowed to modify these values. We

>want to check configuration data against these values.  E.g., AcmeHomeRouter

>has 5 interfaces called eth0, eth1, eth,2, eth3 and WAN. The client should

>not try to add or remove interfaces to this set.

>

>Use-case B)    The system provides initial values for something that can be

>configured in many ways. In this case the client is free to modify the

>system-defined values. E.g., an initial set of NACM rules is provided. In

>this case any constraints based on the system data are very weak, as the

>user can change the system-data itself.
>It is possible to support these use-cases with access-control conventions.

>I re-read RFC 8808 and 8342 again.
>IMO this draft overlaps the factory-default datastore.
>Unfortunately, RFC 8808 does not document NMDA, Appendix A3 details
>https://datatracker.ietf.org/doc/html/rfc8342#appendix-A.3
>It does not say if <factory-default> datastore feeds into <running> or into <intended>.
>It is not clear how <system> would interact with other datastores.
[Qin]: As described in Appendix-A.3, two ways to interact with other datastore are discussed, one is interact implicitly, the other is to use
RPC to trigger application of the datastore's data, in factory default setting case, <factory-reset> rpc will reset the contents of all relevant datastores to factory default state.
The extreme case of factory default state is no configuration at all for each datastore.


>It is not clear why it is even needed since <factory-default> contains only system settings.
[Qin]: I agree <factory-default> could have system setting. But unspecified for some reasons.
Based on earlier discussion on factory default, what content is included in <factory-default> and how to format this content, e.g., YANG instance file format
Have been ruled out of the scope. See the diff in v-07
https://www.ietf.org/rfcdiff?url2=draft-ietf-netmod-factory-default-07.txt

K.


>Andy

v2.23.0 | Report a Bug | By Email