Re: [netmod] [Netconf] draft-kwatsen-netconf-server / VRF specification for listening ports & outgoing connections
Ladislav Lhotka <lhotka@nic.cz> Wed, 05 March 2014 17:15 UTC
Return-Path: <lhotka@nic.cz>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3095D1A03BC; Wed, 5 Mar 2014 09:15:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.198
X-Spam-Level:
X-Spam-Status: No, score=-1.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HELO_EQ_CZ=0.445, HOST_EQ_CZ=0.904, RP_MATCHES_RCVD=-0.547] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PSnWNXYJmxCl; Wed, 5 Mar 2014 09:15:29 -0800 (PST)
Received: from mail.nic.cz (mail.nic.cz [IPv6:2001:1488:800:400::400]) by ietfa.amsl.com (Postfix) with ESMTP id A9A411A01A7; Wed, 5 Mar 2014 09:15:28 -0800 (PST)
Received: from wireless-v6.meeting.ietf.org (unknown [IPv6:2001:67c:370:160:81f5:2b14:607f:7f9c]) by mail.nic.cz (Postfix) with ESMTPSA id 3415913F94C; Wed, 5 Mar 2014 18:15:24 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nic.cz; s=default; t=1394039724; bh=Zpw55qUaW7mexjOk/4UtM0PvhZZUDYCKgr5mKMju+vk=; h=Content-Type:Mime-Version:Subject:From:In-Reply-To:Date:Cc: Content-Transfer-Encoding:Message-Id:References:To; b=VmqpiLrfd1TVOlGZJEqcZlBDMy8HFBU7LesZT52FGJvtDfuEZABghHAlLimvooDCe DN/ABkFeBg+Xh8WrT9sNTxoXk/VIcjHvdzMoTHLSnVZy94VW+w1p1IggpH2l1PBa16 lHxa5rPKWrX+zFSHvBMTV0fcZvG5i3oi+gVIvi8E=
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.2 \(1874\))
From: Ladislav Lhotka <lhotka@nic.cz>
In-Reply-To: <20140305170103.GQ104882@jupiter.n2.diac24.net>
Date: Wed, 05 Mar 2014 17:15:23 +0000
Content-Transfer-Encoding: quoted-printable
Message-Id: <E7ECC10A-0CC3-463A-98A9-A8B7A92062A4@nic.cz>
References: <20140303140039.GZ856433@jupiter.n2.diac24.net> <20140305.163154.391777655.mbj@tail-f.com> <20140305170103.GQ104882@jupiter.n2.diac24.net>
To: David Lamparter <equinox@diac24.net>
X-Mailer: Apple Mail (2.1874)
X-Virus-Scanned: clamav-milter 0.97.8 at mail
X-Virus-Status: Clean
Archived-At: http://mailarchive.ietf.org/arch/msg/netmod/eN992sc_yRp-QXA2bQBnoCbCAGw
Cc: Netconf <netconf@ietf.org>, netmod@ietf.org
Subject: Re: [netmod] [Netconf] draft-kwatsen-netconf-server / VRF specification for listening ports & outgoing connections
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Mar 2014 17:15:32 -0000
On 05 Mar 2014, at 17:01, David Lamparter <equinox@diac24.net> wrote: > (comments below) > > On Wed, Mar 05, 2014 at 04:31:54PM +0000, Martin Bjorklund wrote: >> David Lamparter <equinox@diac24.net> wrote: >>> The original question was, how the configured device chooses a "VPN" >>> for >>> either incoming or outgoing connections. This referred to VRF >>> instances. In particular, for the very simplest case where this >>> matters, there are devices that have out of band management ports and >>> treat those as a VRF. So, both for listening and for connecting, the >>> device needs to choose between "VR-Default" and "VR-Mgmt" (actual >>> names, >>> guess the vendor.) It could even listen in both VRFs, to be >>> manageable >>> inband (normal ops maybe?) and out of band (network in flames?). >>> >>> Even though this was raised on the server config model, this is a >>> rather >>> generic problem. E.g. specifying a NTP or Syslog server has the same >>> issue. (Cc' from netconf to netmod due to this.) >> >> If I understand this correctly, the proposal is to include a reference >> to a routing-instance (rt:routing-instance-ref) in all cases where we >> currently have an ip-address (or host) and a port, since the >> combination of ip-adress and port is not guaranteed to be unique, on >> systems with multiple routing instances. > > Indeed, with the caveat that this also applies to listening ports (which > are specified just the same, just noting it so this doesn't get lost.) > >> leaf address { type inet:ip-address; } >> leaf port { type inet:port-number; } >> leaf routing-instance { type rt:routing-instance-ref; } >> >> >> The existsing data models (specifically ietf-system) are designed in a >> way that vendors can augment there own definition of routing-instance >> or vrf. (However, I noticed that ietf-snmp is not). >> >> The question is if the IETF models should include a standardized way >> to handle this. I can see three alternatives: >> >> 1) Do nothing. I.e., assume ip/port is unique. >> >> 2) In all our data models, always make sure we add an (optional) >> reference to a routing-instance, whenever we have a ip/port for >> inbound/outbound traffic. >> >> 3) Do not add the routing-instance references, but design our data >> models so that vendors can augment with this if they have to. > > It seems that 1) would imply a mixture of not having support for this > and case 3) in places where we already allow extensions, and I'd claim > that this inconsistency is undesirable. > > I would however argue for option 2), based on the fact that routing-cfg > does have routing instances in a standardised way, and I don't see the > point in each vendor defining a distinct extension to add this > reference. Essentially, I would say that if there's a problem with 2) As Juergen already pointed out in his reply, a standard model can be written for this purpose, too. Lada > here, there's also a problem with routing instances in routing-cfg, > which in turn means we fix that or we're headed for neverland on the > express train. > > > Cheers, > > > -David > > _______________________________________________ > Netconf mailing list > Netconf@ietf.org > https://www.ietf.org/mailman/listinfo/netconf -- Ladislav Lhotka, CZ.NIC Labs PGP Key ID: E74E8C0C
- [netmod] draft-kwatsen-netconf-server / VRF speci… David Lamparter
- Re: [netmod] draft-kwatsen-netconf-server / VRF s… Martin Bjorklund
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Juergen Schoenwaelder
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka
- Re: [netmod] draft-kwatsen-netconf-server / VRF s… David Lamparter
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… David Lamparter
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Martin Bjorklund
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Kent Watsen
- Re: [netmod] [Netconf] draft-kwatsen-netconf-serv… Ladislav Lhotka