[netmod] Comments on draft-ietf-netmod-acl-extensions
Mahesh Jethanandani <mjethanandani@gmail.com> Mon, 24 July 2023 21:52 UTC
Return-Path: <mjethanandani@gmail.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91AEEC14CEFE for <netmod@ietfa.amsl.com>; Mon, 24 Jul 2023 14:52:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AARNPWqrT7xq for <netmod@ietfa.amsl.com>; Mon, 24 Jul 2023 14:52:49 -0700 (PDT)
Received: from mail-pf1-x431.google.com (mail-pf1-x431.google.com [IPv6:2607:f8b0:4864:20::431]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 200F6C14F747 for <netmod@ietf.org>; Mon, 24 Jul 2023 14:52:49 -0700 (PDT)
Received: by mail-pf1-x431.google.com with SMTP id d2e1a72fcca58-6686708c986so4575977b3a.0 for <netmod@ietf.org>; Mon, 24 Jul 2023 14:52:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1690235568; x=1690840368; h=to:date:message-id:subject:mime-version:from:from:to:cc:subject :date:message-id:reply-to; bh=NIvzozHGt/KOBpeODf28zzYgvOSxVBoQaqFVePSRpKo=; b=aeKzLHHGAK85zmMKyJa6RteyLirqhlGrTPU5YjIpinvF02ybN0+CIwWO+KcTaoaRKc ZK7BH/XnWlTAEePGytA8oh4lk4cWtMWTOHwjKuS69RUomoSwghZQrkxBzSVGuLQ+4ZPc w1FFWqqVbilR2+kghDq1fJX1d24C7YJjBUicDBp/pZCVrUewcgbfaSF9q4pcorfcomzB 0r1CoQC1AHwzVBsB1pRzPD4017UR8tC6iLIbwpguNP+z7KXqzi0uuJ13lOoATv1E7zcW wB2pSfV1LvL30UhtbKPy28KV999YV9nNv5fMgaLbqju3e/me3muCn0LQy7IVhCgtbI+I tm6Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1690235568; x=1690840368; h=to:date:message-id:subject:mime-version:from:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=NIvzozHGt/KOBpeODf28zzYgvOSxVBoQaqFVePSRpKo=; b=VvwCBkV5Nf39hEIk0jLfKoquBJizoUK+jc7+/ExWY3T5D3wkpqfwoIYICRr3xNpSgi RW4H4lqtVCfTdLjVJgmVlNq9e6RioIXwCB9UpdXwCiyLicUM8wDRCCuUTzvhggzx0r0+ xUY9+f2nksYhDZ/aO6oC7l0sV9pHQodcvptHiE6WvWx/oVrIajNyLvyYRg0siWOVv1lJ c1nuKD+nZhTrbSs/mIbPqcAqWnfQc9QBo2MHv8Wo6C02vagTdRrz9wzXl/f8tvZOrZ7b TRQRoEAla3brCkba+cMZuw2qqkaMoHBPnqTgadYkYPW4IjYuF4KqRrnxO0cJeoQI8U6x yScA==
X-Gm-Message-State: ABy/qLYlXUVDEGat9T5LACJd/2XXcb4J5LZRidg7jr419RbII5pB/dsN f0HtSB5szNq6mHPVneyPCDJIOL20mB8=
X-Google-Smtp-Source: APBJJlFkDaKG5CkR7O7eWCXAsQmuU6olTNKrt9oJ8wyIlh/D7TZcQRP8QOObjRNXXkfb3lTCSFvhrw==
X-Received: by 2002:a05:6a00:174b:b0:680:98c:c595 with SMTP id j11-20020a056a00174b00b00680098cc595mr11912646pfc.13.1690235567964; Mon, 24 Jul 2023 14:52:47 -0700 (PDT)
Received: from smtpclient.apple ([2001:67c:370:128:bcc6:bcf:d2ab:67a8]) by smtp.gmail.com with ESMTPSA id x18-20020a056a00271200b00671aa6b4962sm8154685pfv.114.2023.07.24.14.52.47 for <netmod@ietf.org> (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 24 Jul 2023 14:52:47 -0700 (PDT)
From: Mahesh Jethanandani <mjethanandani@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_D3CFD8A9-171E-43BF-A82A-73B8349A1E46"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.15\))
Message-Id: <0D59286E-150B-4393-9059-0F0454A76AB6@gmail.com>
Date: Mon, 24 Jul 2023 14:52:46 -0700
To: NetMod WG <netmod@ietf.org>
X-Mailer: Apple Mail (2.3654.120.0.1.15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/TLbK8HkJlFSgpogQD_wmT2LuFPY>
Subject: [netmod] Comments on draft-ietf-netmod-acl-extensions
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Jul 2023 21:52:49 -0000
I do support this work to extend the ACL model defined in RFC 8519. What I suggested on the mike was that the ICMP types be defined in an existing IANA YANG module. But my own search did not reveal an existing model that has type definitions where ICMP types could be added. I would suggest that the authors name the module something more generic than iana-icmp-types simply to allow future additions to the model for other type definitions, something like iana-acl-header-types. The other question relates to how ICMP type are currently defined in RFC 8519. Is there a plan to update that type to the new types that will be defined in the IANA module? Is there a plan to include ICMP subtype (called code in RFC 8519) both in the new IANA module, but also update RFC 8519 with the definition in the IANA module? Regards Mahesh Jethanandani mjethanandani@gmail.com
- [netmod] Comments on draft-ietf-netmod-acl-extens… Mahesh Jethanandani
- Re: [netmod] Comments on draft-ietf-netmod-acl-ex… mohamed.boucadair
- Re: [netmod] Comments on draft-ietf-netmod-acl-ex… Oscar González de Dios