IETF Logo Mail Archive

Re: [netmod] I-D Action: draft-ietf-netmod-syslog-model-28.txt

Reshad Rahman <reshad@yahoo.com> Wed, 02 November 2022 19:51 UTC

Return-Path: <reshad@yahoo.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 57CE9C1524B5 for <netmod@ietfa.amsl.com>; Wed, 2 Nov 2022 12:51:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.105
X-Spam-Level:
X-Spam-Status: No, score=-7.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WTJEm8uUfx3G for <netmod@ietfa.amsl.com>; Wed, 2 Nov 2022 12:51:35 -0700 (PDT)
Received: from sonic321-26.consmr.mail.bf2.yahoo.com (sonic321-26.consmr.mail.bf2.yahoo.com [74.6.133.81]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 982F9C1524B2 for <netmod@ietf.org>; Wed, 2 Nov 2022 12:51:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1667418694; bh=ZYbRXPoywSIby6nn7t+bgqwFbn0PUJxTRlySFwOHbOY=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject:Reply-To; b=XLtpgI4LroQ++a2Iw/NA5QVd0LE2VJ27xp6iVkva2faiN5iSZlSHJtaW2SL8bT5MRoqK/cE5u9gSv05UeAduvULPAcVdriGyHh/8IwqLjmN9bvKE7k2sSgn9N+v0/fjf3jAyjDCNPFzwx1Ny9bSW/YOLNxZ6wwMAenZKXe4H3l/Io8HmZnSxCC42hkmvIzE+JpyJgtFYEcFLvqwkWys7iKdDJl1iURyCzyZzotQeq3T/77b7d9yg71jSFkZMtL3RK4iYeSYePveN+tyw9V6R2JfLpcpi/7IWNJoj2kSlCGE9ZdEqiTgfTsvT1OPpf9BGFKjexwoFSaFhTCSWj9KlQw==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1667418694; bh=Y4tigNOGynBJj0qxxOEEYNTW6s5PTYuJMbQRD41ZZ5p=; h=X-Sonic-MF:Date:From:To:Subject:From:Subject; b=bwMm7VYkSiFsUJxV7NetPr9skdavNZyeRi2SAmgwXiupeC+fGWQ63FjRGjHAAIanj0AashyoPpZhjdPHKUP/v9xQIugT/O4v8bHMxyb3ovnrnEQbJgUYeaQK89YsS90PfDqDTcmU5KR2auPVlvbPMxxfRvy+4CyEx9OOwX2GmJJpqfjxi34GMTJpVdX+hD64F30ei3arZJI+PuP3UUi1VkJB+zH6rZPKyLltp/wcCKcBl/1RRxd0G2WNlqzmmBNI/yxkZvSDfWNtgY1KiflyVVc2NsgwNV+XzSfOz/nLXCya7jYNldgKF7ozibTwFpO1I1E+q8WAN9/MbUZ+gc2JnA==
X-YMail-OSG: 8e1QKGQVM1kHCjZSJodMnC0g0Apa7.xKlx_p4LIGNQhnuYKc3UvvO8wv5ZHT5uB PHQoPWo3VuMM_RgITDeOuWWZWHg8lCN_G1.mzamZLJk6W1hFto1nqq6bPKstBvgGnHVJMgAbSRem qXqDHjwSvYg7ybfo2i4GLa5mR_FKSdonbcVK6VaAeW1HSeBaqnQZdoIgmR6q6n4953qzVzkC_.1E UdyFd0tHNcTF6Ci_EhO3sFZHcyeZKEdQpUCEdXPQRrq0r3BpqEygfoHNrnNsIDMlz6Sleiltz6Op DPs37C4Hl_UyTHq9RyIWX3qG5gI1tERbcZ645O6D0Ihl_Ksh6gr2WHUh0W4w1yqVrlI7Pq_HUKyv 1BPI95sSr3iwte_jAaBwf7pNqTyxUt05E483ZJuSx_.C30qeacbTkRzWVtgLXJoCXl12dAHva2bQ ApZ.FyM5H5Rf1oP7N1QUhEyuVzlH7I.18xvNaSJ9TF9JoNgXc3OW_R7EMF7gqqDPqoA4Ve.FeNA. NVse2nhLnPPhPfbiN8vrK5dV7bRCq7hMInZP.IiUlpAaJvG7u7IxfeVI0m.ZjfFsG5a9WoSj8Iil sl4isQAKfmFsaTe0sSWPUzUbVHbO1Hm1JpV.NWYZUk1M0a4qT_FKp97.KZsE5DsIyJjgLbjqSxv3 0efS4x4RTo9QstzkTdC5Fq_pnhQfcQTdB_T9GSRBn1lN7wAuvl0.d4GWqsWxQzBWL_6L29fp9Ucl zObWsVJJJ5ZE6yxHVEILclbzd5d5uGEKFsRHJvff44yRyf4TZMofHXKYuKF0lcpxydMlHJKCpvkN 4KX0xFZuAxoQx3jB0cO2ErVGuqagUFhVe7CmK1VV6ib2hUkSreR1.6ylHaEqRmsDfveP4W43Q4sC p3pTlpnhrnWIyF1ePKkjkRgD.t6b58SiCJSMKSsSpNpovpByrzHGz2w1DOs93N0KkpiIH43Tzthj z_RH5fQ3uythTACeCVkKClcTa9_0dmT2ShhyWJ6sTOYocuDDidcoblMAPcyDHfb2JI7jDuYixDp1 Ci3EQDInMjfIkZBkjVRRWBO9r._EdRkZ0KW9aNrA8GklxMUs7ppeJIzQ3_GrN0PUiguM8fyGQfAG M3ICU5tDld_e95XejCRTOkO56FY2gV7b2z811Pd05E7txfkiKC1M_S9yh.WuJ.KAzCZ0OZGvm7l0 VHMxA5DzDScG.6IVE4wCUCGOvCYYe6de8i2d6zox_ixiEIzj1.qrwAzw1ru64GYyMlElpp9Y83Yz _n4bf4vJ8zhJ4jb5euSn.i62UrYyAzOf7vSkICvVK2bSVkOdp63SqsvvK3dTTizZh.4cPNx21TQr k1chZlQqdpQbyOc5Jx244D7G_Q1Z6L3Rp5ui4eNN65HfaWYNSKeY5ZyCo_2bccgTee.ZrYnYpiQA 1sRDtbOznKuWqh6vHvH0PJitTQ8KaYzNDhiqJJenoScPSo6Q_L5ZO1mqkHXMCJuY2N_TxU_5wdHJ Y0ABId_FmYa8.XtFQWrBf90bebIlfahZzaC8sas_dCq8xMR2fafFZ7KVPmGNYUEYxhewi.JoVdMq iVfe8vaKBLnWb4t6SxBbJ3f5ev3BOIvCsIztlgL15RJXfVKgG_XktgWXRFamSRaTvsBECO7Ivzig Qf1UWCZofW2Uvtbnv2MaREJf5or4cW9opqdGNaX0wy4etk1VBZlrqzDvzcDIB65ndzOZQVrckNzE 8CJOdovrTEBSGw0SWAmiIx419.MRziwEZTV6J3tVfYdz5tqET0z7FRXHTbjRHIvgRqakxT84OO31 y.RSrNFbGACGsYJf_cN9L2Zv6qn9y3p90jIAJaAPNIBZZVsDIMDP31R3PE00Z9CUhT6tSEZs2ze8 H6pJs8QXePBWL1h221aAiOuqKEAbrPk3UO9V6IREGg1oF_kAk6rArtPXgjFt6yO5r8yL5SkTSR_E 4hF3PvWNZo8yl0CnWH.Ac.NLUIfCo69.goKskTJSOj4NpdI_uzaqctDAmUq4jUIVqz0l9pr7zRbM OcAdCQwvwxr9ddrrKZ_6SfTVxikmk8r_Pk3J.cwpzgJNxVku68tvUD2t.vwNeRMeiVeN8mfoH0.2 0_4Ctut91SVRyLooOOE.R7wUIQ93vjnvd4k5In.1xoyz0.026y_qHw5NMc1_IsFx4ymTEK5QZtj0 FwQAxaEYRFdoD9rbf_4AwHqwMnqBSzDoA1hxX2TfE.KJDYwAHDpn25e9GsLil.JKXWq8hAc2cEtW _zJsi64wIZyTLgeSRAxZeovzQIx5l4wZtivpI4keEeyULVyWskm8XOsQYbipnJ64RGA_2.PNHq5m a7GYYn1_B6aTRM62XKzFzD4Or69wcHVB_MfkRIA--
X-Sonic-MF: <reshad@yahoo.com>
Received: from sonic.gate.mail.ne1.yahoo.com by sonic321.consmr.mail.bf2.yahoo.com with HTTP; Wed, 2 Nov 2022 19:51:34 +0000
Date: Wed, 02 Nov 2022 19:35:40 +0000
From: Reshad Rahman <reshad@yahoo.com>
Reply-To: Reshad Rahman <reshad@yahoo.com>
To: Kent Watsen <kent+ietf@watsen.net>
Cc: "netmod@ietf.org" <netmod@ietf.org>, "Joe Clarke (jclarke)" <jclarke=40cisco.com@dmarc.ietf.org>, "netmod-chairs@ietf.org" <netmod-chairs@ietf.org>
Message-ID: <1373706766.1738380.1667417740616@mail.yahoo.com>
In-Reply-To: <0100018430805c7b-626cee46-68f9-4396-9d5f-8d7b795e791e-000000@email.amazonses.com>
References: <166550781186.32963.9887765015952461336@ietfa.amsl.com> <BN9PR11MB5371ECA66CDF56D413BA3069B8239@BN9PR11MB5371.namprd11.prod.outlook.com> <1069671707.1837247.1666017224763@mail.yahoo.com> <0100018430805c7b-626cee46-68f9-4396-9d5f-8d7b795e791e-000000@email.amazonses.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_1738379_1093774573.1667417740612"
X-Mailer: WebService/1.1.20783 YMailNorrin
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/cAXqY6R5_hTPp4dXZKatnRKvg2k>
Subject: Re: [netmod] I-D Action: draft-ietf-netmod-syslog-model-28.txt
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Nov 2022 19:51:40 -0000

 Hi Kent,
It's not the text, but the way the YANG model is organized v/s rsyslog config+behaviour.
The YANG model is organized with collectors at the top. e.g. for remote collectors we have a list of destinations, for each destination a facility-list (keyed on facility + severity and ordered-by-user) and for each facility+severity tuple we have an action: "block" or "log".
rsyslog config is not organized the same way as the YANG model: it first matches on facility+severity and then the action is a "collector" (e.g. destination or logfile) or "stop". "stop" is not the equivalent of "block": once a "stop" is hit, the message is discarded. This means if other destinations were meant to receive this message, they won't.
So translating/mapping the YANG model to rsyslog config is problematic when "block" is used. As per previous disclaimer, I am no rsyslog expert. If there's anyone who's managed to make it work....
And JTBC, I'm not saying the model is wrong since it probably matches how many/most network OSes behave.
Regards,Reshad.

On Monday, October 31, 2022, 08:03:50 PM EDT, Kent Watsen <kent+ietf@watsen.net> wrote:
 
 
 Reshad,
Which text in the draft are you pointing to?
Thanks,Kent // as Shepherd


On Oct 17, 2022, at 10:33 AM, Reshad Rahman <reshad@yahoo.com> wrote:
 Hi,
I believe this model is hard (impossible?) to implement with rsyslog since with rsyslog as soon as a message is blocked/discarded, no further processing of that message takes place (so other destinations won't get the message either). I don't have a solution proposal, just an observation...
Disclaimer: I'm not a syslog expert and I have no idea what implementations out there typically do.

Regards,Reshad.
    On Tuesday, October 11, 2022, 01:11:26 PM EDT, Joe Clarke (jclarke) <jclarke=40cisco.com@dmarc.ietf.org> wrote:  
 
 
This revision does a few things:
  
    
   - Addresses comment from 114 to use ct:asymmetric-key-pair-with-cert-grouping instead of ct:asymmetric-key-pair-with-certs-grouping
   - Fix Mahesh’s email
   - Replace obsolete RFC references
   - Adjust some line lengths
  

This passes YANG validation and IDNITS and addresses all known open comments.
  

We’d like to ask the chairs to conduct another WG LC for this work.
  

Joe
  
 
From: netmod <netmod-bounces@ietf.org> on behalf of internet-drafts@ietf.org <internet-drafts@ietf.org>
Date: Tuesday, October 11, 2022 at 13:04
To: i-d-announce@ietf.org <i-d-announce@ietf.org>
Cc: netmod@ietf.org <netmod@ietf.org>
Subject: [netmod] I-D Action: draft-ietf-netmod-syslog-model-28.txt
 

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Network Modeling WG of the IETF.

        Title           : A YANG Data Model for Syslog Configuration
        Authors         : Joe Clarke
                          Mahesh Jethanandani
                          Clyde Wildes
                          Kiran Koushik
  Filename        : draft-ietf-netmod-syslog-model-28.txt
  Pages           : 41
  Date            : 2022-10-11

Abstract:
   This document defines a YANG data model for the configuration of a
   syslog process.  It is intended this model be used by vendors who
   implement syslog in their systems.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-netmod-syslog-model/

There is also an htmlized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-netmod-syslog-model-28

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-netmod-syslog-model-28


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts


_______________________________________________
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod
 _______________________________________________
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod

v2.23.0 | Report a Bug | By Email