IETF Logo Mail Archive

Re: [netmod] WG Last Call for draft-ietf-netmod-syslog-model-15

Kent Watsen <kwatsen@juniper.net> Mon, 14 August 2017 13:53 UTC

Return-Path: <kwatsen@juniper.net>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F252A132223 for <netmod@ietfa.amsl.com>; Mon, 14 Aug 2017 06:53:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.801
X-Spam-Level:
X-Spam-Status: No, score=-4.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RzL3dm0GrbvH for <netmod@ietfa.amsl.com>; Mon, 14 Aug 2017 06:53:48 -0700 (PDT)
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (mail-sn1nam02on0131.outbound.protection.outlook.com [104.47.36.131]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B7481321F5 for <netmod@ietf.org>; Mon, 14 Aug 2017 06:53:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=5h/8QrqADBD8J4M1L4a9W7UdNt2lPIMRK/22Bhg6DTM=; b=EznJzSIm30aDIlPy0AKyTF+Hf3/K88RqwcCwVfYHPtYF89xxOus3+Xv3dRc3h3su1kQuG8nxuWC1uuvIb7QAF3rDfs1R1IxznaSlv/DNNHIv1g9xogszZH+XKY8PdQRrBjZZWU0QbEn/3LZ+57XpgDfYYVIBVWbV43TJ9RbESiE=
Received: from BN3PR0501MB1442.namprd05.prod.outlook.com (10.160.117.151) by BN3PR0501MB1619.namprd05.prod.outlook.com (10.161.220.25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.1.1362.12; Mon, 14 Aug 2017 13:53:46 +0000
Received: from BN3PR0501MB1442.namprd05.prod.outlook.com ([10.160.117.151]) by BN3PR0501MB1442.namprd05.prod.outlook.com ([10.160.117.151]) with mapi id 15.01.1362.012; Mon, 14 Aug 2017 13:53:46 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: "Clyde Wildes (cwildes)" <cwildes@cisco.com>, "netmod@ietf.org" <netmod@ietf.org>
Thread-Topic: [netmod] WG Last Call for draft-ietf-netmod-syslog-model-15
Thread-Index: AQHS+qgfFNU1WyBT406RudsboUthDKKD0SUA
Date: Mon, 14 Aug 2017 13:53:46 +0000
Message-ID: <A4CCB5EA-263B-480A-905D-B4D1992BF32A@juniper.net>
References: <A9577A53-2B74-49E5-B87A-118C4AC4E2ED@juniper.net> <0558E64E-2CE7-4C3E-94C8-1CA7CE78171E@cisco.com>
In-Reply-To: <0558E64E-2CE7-4C3E-94C8-1CA7CE78171E@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
authentication-results: spf=none (sender IP is ) smtp.mailfrom=kwatsen@juniper.net;
x-originating-ip: [66.129.241.13]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN3PR0501MB1619; 6:ai5J1AuWOxSh++4/Ep691TsGH0GKQoL9K5CbC84MOxtYqI4LYDjv1+kEz6Q/fy6AQAAuUUru4ryUcjRb0OXeyiRq3ZbmuM6qC64EVteJV9pyxI6+ii/fslwNOtYhVy/eDbjO1TqJ+VINeqyW+0CnFFTtxk4jSsh81u6Cj/3L6FHhDSiG6l54vnCZ4PlhYGtaBeXYVr7/4qgY6h27Mp0c6sTb24I9grzdCUzXY9VtXibCQeYLZa3QfjkRXHu2A1Ijpy0boyxwceZdJ8+qtarAIkwblLGIATjf4j/MrUu7hoks3PvkyWiZJPICKAmYljZN1Ky030psAKE+iZ7cJUArIg==; 5:ahV7Qo1nHQsMZB6Q9uzronPA9/INEHvkP/yUi9P0rWsixGNO+rHgsxCLrq1ekhci4KhPXgQyUAuSlyPZdxlv7ofLxnDkSSehWqdGuHhu7KhZAPmAAPGCN3Mj9RV6J7B2GwiwERrs5X2vpGYThRZShQ==; 24:Hl57VuV7zwinB7HwFKocG8NqCGQrHlJWgHHLWTdSO0SzMvcFU6ebAcpYnYQptYSXUOsBrsdo4lRpWOZn9kcKmB5xJcwhJbGioqnVJPA70OE=; 7:Z+GoVluyJtKvoLqbs/jC65qEUgL8ePsBamWmOmlo62Z+y2Hztx2pel0SmPU45RlXVnXrVL8InAHiFyB9DTcyfNDIRYCgxVsAQD9qG6UKmkExEPQvvSDjTZi4BnYp6LOhrHGJzHR9NDgNIATMpzzTv+ddKV45U9LpRxMCFolCKHF8FsGhlLAkqFeuYpe/5UYjBPxiDeUOF0+6ukNEZOU7TKwd5qtJ3j3tRhFnw6FDC1s=
x-ms-office365-filtering-correlation-id: 8ec6b165-e38d-48f5-5cf6-08d4e31be27f
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254152)(48565401081)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:BN3PR0501MB1619;
x-ms-traffictypediagnostic: BN3PR0501MB1619:
x-exchange-antispam-report-test: UriScan:;
x-microsoft-antispam-prvs: <BN3PR0501MB1619637F571828C9AAE08B87A58C0@BN3PR0501MB1619.namprd05.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(93006095)(93001095)(10201501046)(100000703101)(100105400095)(3002001)(6055026)(6041248)(20161123558100)(20161123560025)(20161123562025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123564025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:BN3PR0501MB1619; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:BN3PR0501MB1619;
x-forefront-prvs: 039975700A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(39860400002)(57704003)(199003)(189002)(2900100001)(6246003)(86362001)(101416001)(33656002)(25786009)(36756003)(50986999)(478600001)(76176999)(54356999)(14454004)(99286003)(230783001)(6512007)(189998001)(2950100002)(6486002)(77096006)(53936002)(6506006)(6436002)(106356001)(229853002)(105586002)(2501003)(3280700002)(3660700001)(83506001)(5660300001)(97736004)(2906002)(4001350100001)(83716003)(82746002)(102836003)(6116002)(81156014)(81166006)(66066001)(68736007)(3846002)(8676002)(8936002)(305945005)(7736002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN3PR0501MB1619; H:BN3PR0501MB1442.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <9D50C794A183E54989CE8CDF3C339670@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Aug 2017 13:53:46.8921 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN3PR0501MB1619
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/U54HtmdINqXic5fHvNB1aGQnrsU>
Subject: Re: [netmod] WG Last Call for draft-ietf-netmod-syslog-model-15
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Aug 2017 13:53:51 -0000


>    5. S1 as a whole.  I'm a bit unclear what this section is doing.  It
>    seems to be a general summary of Syslog (RFC5424).  Do we need this here?
>
> [clyde] Suggestions appreciated. I wanted to provide a high level overview
> of the syslog process. I cleaned it up a little.
 
Move Section 2 text to Section 1, replacing the text that's there?



>       12. S3, P8: I'm having trouble understanding the pseudocode.  What
>    happens if S and/or F are not present?  Can S or F ever not be
>    present? - looking at the tree diagram, it seems like they might
>    always be set to something in the model.
>
> [clyde] S or F might not be present. 

In the YANG module, facility-list is keyed by [facility severity], which
means the values are always present, right?



>    14. S3.1: is /syslog/actions/remote/destination/tls/ missing an
>    'address' leaf?
>
> [clyde] not as far as I know
>

Looking at the tree-diagram, the 'tls' case doesn't seem to have the
address or port fields.  FWIW, the ietf-tls-client module doesn't 
provide these fields so that consuming modules can configure a normal
client versus a client listening for call-home connections...

	   +--:(tcp)
	   |  +--rw tcp
	   |     +--rw address?   inet:host
	   |     +--rw port?      inet:port-number
	   +--:(udp)
	      +--rw udp
	         +--rw address?   inet:host
	         +--rw port?      inet:port-number
	      +--:(tls)
	         +--rw tls
                  <address/port missing here, right?>
	            +--rw server-auth
                     <more ietf-tls-client grouping here>

    

> 19. S4.1, in the 'severity-filter' grouping, why does leaf 'severity'
>    have values set for enums 'none' and 'all'?  When would these values
>    be used, as opposed to the enum's name string?  If you do need values,
>    then shouldn't 'none' be 2147483647 (so nothing can be greater than it)
>    and 'all' be -2147483648 (so everything is greater than it)?
>
> [clyde] ‘none’ and ‘all’ are set to values that are not defined in 
> RFC 5424. These values were previously suggested by Martin Björklund

Fine, but let's re-evaluate the values now.  Image having a variable x
and stepping through the selector list:

  if x >= facility-list/severity then foo.

Now imagine it read:

  if x >= 'all' then foo.

What integer value for 'all' would always ensure True?  MIN-INT
Likewise, you can see that MAX-INT is the best value for 'none'.



>    20. S7: can you indent the two blocks of details so the whole thing
>    reads better?
>
> [clyde] I searched for an example that shows how to do this in XML
> and couldn’t find the keyword.

Assuming xml2rfc XML, then you could convert the contents to a figure,
or a list with style='empty'


  
Thanks,
Kent

v2.23.0 | Report a Bug | By Email