IETF Logo Mail Archive

Re: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02

"Wubo (lana)" <lana.wubo@huawei.com> Tue, 09 July 2019 06:59 UTC

Return-Path: <lana.wubo@huawei.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 262E6120326; Mon, 8 Jul 2019 23:59:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.199
X-Spam-Level:
X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TQej7K6eCzNd; Mon, 8 Jul 2019 23:59:42 -0700 (PDT)
Received: from huawei.com (lhrrgout.huawei.com [185.176.76.210]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6168C1200F7; Mon, 8 Jul 2019 23:59:42 -0700 (PDT)
Received: from lhreml702-cah.china.huawei.com (unknown [172.18.7.108]) by Forcepoint Email with ESMTP id C1ACFF03B00C56F72985; Tue, 9 Jul 2019 07:59:40 +0100 (IST)
Received: from dggeme753-chm.china.huawei.com (10.3.19.99) by lhreml702-cah.china.huawei.com (10.201.108.43) with Microsoft SMTP Server (TLS) id 14.3.408.0; Tue, 9 Jul 2019 07:59:39 +0100
Received: from dggeme752-chm.china.huawei.com (10.3.19.98) by dggeme753-chm.china.huawei.com (10.3.19.99) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1591.10; Tue, 9 Jul 2019 14:59:37 +0800
Received: from dggeme752-chm.china.huawei.com ([10.6.80.76]) by dggeme752-chm.china.huawei.com ([10.6.80.76]) with mapi id 15.01.1591.008; Tue, 9 Jul 2019 14:59:37 +0800
From: "Wubo (lana)" <lana.wubo@huawei.com>
To: Qin Wu <bill.wu@huawei.com>, Tianran Zhou <zhoutianran@huawei.com>, Eliot Lear <lear@cisco.com>
CC: "opsawg@ietf.org" <opsawg@ietf.org>, OpsAWG Chairs <opsawg-chairs@ietf.org>
Thread-Topic: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02
Thread-Index: AdU2CQ41E/GZ+r0GQz+4sqXXAPFCeQ==
Date: Tue, 09 Jul 2019 06:59:37 +0000
Message-ID: <b53684f398a548dd8fac2e9f74a45fa2@huawei.com>
Accept-Language: en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.134.189.23]
Content-Type: multipart/alternative; boundary="_000_b53684f398a548dd8fac2e9f74a45fa2huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/3jl8A4h4gcRM4X6pIJ33veo84J8>
Subject: Re: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Jul 2019 06:59:46 -0000

Thank Eliot for pointing out these questions. I share a similar view with Qin, and I suggest to make the following changes in the next version:

1. draft-ietf-opsawg-tacacs will be changed as a normative reference according to RFC3967.

2. For the second point, I think your concern may be whether the TACACS + YANG model is flexible enough to accommodate the TACACS advanced features.
The current TACACS + YANG architecture is designed with per-server configuration and statistics methods. Each server is configured with a TCP port and a shared key.
These nodes may change to use a "choice" statement. If the TACACS++ extends to use TLS protocol, the transport extensions can be added as new "case" statements.

Thanks,
Bo
发件人: OPSAWG [mailto:opsawg-bounces@ietf.org] 代表 Qin Wu
发送时间: 2019年7月9日 11:20
收件人: Tianran Zhou <zhoutianran@huawei.com>; Eliot Lear <lear@cisco.com>
抄送: opsawg@ietf.org; OpsAWG Chairs <opsawg-chairs@ietf.org>
主题: Re: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02

A few thoughts on Eliot’s two questions:

1.       Do we have YANG data model draft developed by IETF published as informational RFC? I haven’t seen one.

2.       This model uses system management YANG data model defined in RFC7317 as base model and augment it with TACACS+ specifics, and RFC7317 is standard track RFC.

3.       Downref is allowed in some circumstance, See RFC3967 section 2, first two bullets.

4.       TACACS+ protocol has been moved for publication. Whether or not TACACS++ comes later, TACACS+ will be basis for any advanced features. So timing is perfect.

-Qin
发件人: OPSAWG [mailto:opsawg-bounces@ietf.org] 代表 Tianran Zhou
发送时间: 2019年7月9日 10:35
收件人: Eliot Lear <lear@cisco.com<mailto:lear@cisco.com>>
抄送: opsawg@ietf.org<mailto:opsawg@ietf.org>; OpsAWG Chairs <opsawg-chairs@ietf.org<mailto:opsawg-chairs@ietf.org>>
主题: Re: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02

Hi Eliot,

Thanks for your suggestions. Please see inline.

Tianran

From: Eliot Lear [mailto:lear@cisco.com]
Sent: Monday, July 08, 2019 8:13 PM
To: Tianran Zhou <zhoutianran@huawei.com<mailto:zhoutianran@huawei.com>>
Cc: opsawg@ietf.org<mailto:opsawg@ietf.org>; OpsAWG Chairs <opsawg-chairs@ietf.org<mailto:opsawg-chairs@ietf.org>>
Subject: Re: [OPSAWG] WG adoption poll for draft-zheng-opsawg-tacacs-yang-02

Hi Tianran,

I have two concerns about this draft.  First is the intended status of this document.  It currently calls out draft-ietf-opsawg-tacacs as an informational reference.  I think the question here is really whether this draft should also be informational.  As a practical matter you really do need to have implemented the other draft for this one to be implemented.  And that means that really it should be a normative reference.  But it would be a downref.  To address this, I suggest just making this document an informational draft, rather than targeting for standards, and make the reference normative.

[Tianran] Yes, I have the same concern. You provided a good approach. On the other hand, I think RFC3967 described this case.
“2.  The Need for Downward References
    …
   o  A standards document may need to refer to a proprietary protocol,
      and the IETF normally documents proprietary protocols using
      informational RFCs.”

In addition, I have another question.  Is there interest or appetite for creating a standardized and more version of T+?  If so, is the timing of a standardized YANG model appropriate?

[Tianran] I would like to see how the WG would like to approach.

Eliot


On 7 Jul 2019, at 09:58, Tianran Zhou <zhoutianran@huawei.com<mailto:zhoutianran@huawei.com>> wrote:

Hi WG,

This document was presented in Prague. The authors have addressed all the comments and believe it’s ready for further working group discussion.
https://tools.ietf.org/html/draft-zheng-opsawg-tacacs-yang-02


This email starts a two weeks poll for adoption.
If you support adopting this document please say so, and please give an indication of why you think it is important. Also please say if you will be willing to review and help the draft.
If you do not support adopting this document as a starting point for work on this topic, please say why..
This poll will run until 22nd July.

Regards,
Tianran & Joe

_______________________________________________
OPSAWG mailing list
OPSAWG@ietf.org<mailto:OPSAWG@ietf.org>
https://www.ietf.org/mailman/listinfo/opsawg

v2.23.0 | Report a Bug | By Email