Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filtering
Ron Bonica <rbonica@juniper.net> Fri, 18 October 2019 17:16 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCBBC120881 for <opsec@ietfa.amsl.com>; Fri, 18 Oct 2019 10:16:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xu7j_I14wnod for <opsec@ietfa.amsl.com>; Fri, 18 Oct 2019 10:16:08 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E2551208A3 for <opsec@ietf.org>; Fri, 18 Oct 2019 10:15:29 -0700 (PDT)
Received: from pps.filterd (m0108158.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id x9IHBkKq026278; Fri, 18 Oct 2019 10:15:28 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=rkv778aXUavleJGKlcGpcQKOcJEcA8rxOI9Ywh2AZ/Y=; b=p4BQCWHO+SjPxqPRhtazlYhmLGd3FTM+e2sI9NtSXVLnx/rfMqErpsSK2pqzP9+8x6Ne 85DH0USM0pY+6vykJIUuPaKDFGAju8Nxf7DSgjlP11mZjNZGtmr5i8tYB3p0OK/KBoO6 Mm6AzYmkCCFa+VyPfR9MEy/hBJ39b/hu5/Z3XvIet0A3HFLlOLTg5sUq73qIJQj991S1 Q09iJhWX+61rwxe4EEsTs9bGP8AxwNZQW6hD8V9TSSZCrPr31jI9ywcHu17o/t+EcIBp AAG/Ftz/fmaNoYji3Rm181uUBIK6yCin1YNyRJ9XVr9xf6TAvE0n1lE3ABgtstbCxs/u Ug==
Received: from nam03-co1-obe.outbound.protection.outlook.com (mail-co1nam03lp2054.outbound.protection.outlook.com [104.47.40.54]) by mx0a-00273201.pphosted.com with ESMTP id 2vpmydk1yn-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Fri, 18 Oct 2019 10:15:28 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WD03G3avSkkNbIDGXhCGc0npDAQ7jgFGHYp8FAxtl/+SRp6B/FkQB+KYAMdy4yUMIOBWwQq01VgmHzRmiznR9YcoHC54eglzDJKc7K+ND8c6kpB7EuWz9DPIiem1R9iZaojPvsGNnNV5aao+hhe/wjw7lfWuM5CRvtwVs+HUdYh3DnKzLyOyrYIYnfTw9eK0IztJ92QHaxymzrnpdjoOFCrfualub64ldsRLNMXgrkZ12VZwygaHNC3ooEkVBRp3LiRi3L8/XuJDXPSqLkuGImLVjTdYis77Tc617gbgXCMlWO7kyN0YbCklGViMFF+9gTxNyXoblWYYS6rk1jv2Nw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=rkv778aXUavleJGKlcGpcQKOcJEcA8rxOI9Ywh2AZ/Y=; b=KwSCMW16gOEEvAHztyJ4OVmXZBSTM0un7rV5ggVfnmCOcYORrak9hCqnMOa0JwCCGxsCejgBNvNKwTWX5ddvJzR2ie7KzIK6EZSnwAOg6Bp0DUUj78evo8r3fUUJeKxBWpP2GxOfWQY3DWZpoXfNC/sj16200A0BGNkf0nGz3eIvQrAN98npk+uN6+5NuBuevEsQ/Yika8F4d7tumNhZBK0uDnmdfPPlVipWO2WXCDfYzKON8aJL9kFk5O5HCLAL6FzxTCuLiwFbWo0NkczTAz50SEGGb4x3Pf/15WAjb6wgDPtms0THzVp+RXPMTijgdpNlUSCqspIAFn6fVuaE+A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
Received: from SN6PR05MB5710.namprd05.prod.outlook.com (20.178.7.89) by SN6PR05MB5935.namprd05.prod.outlook.com (20.178.7.157) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2347.13; Fri, 18 Oct 2019 17:15:26 +0000
Received: from SN6PR05MB5710.namprd05.prod.outlook.com ([fe80::8dbe:b15c:b2ba:5ab4]) by SN6PR05MB5710.namprd05.prod.outlook.com ([fe80::8dbe:b15c:b2ba:5ab4%7]) with mapi id 15.20.2367.016; Fri, 18 Oct 2019 17:15:26 +0000
From: Ron Bonica <rbonica@juniper.net>
To: Bob Hinden <bob.hinden@gmail.com>, "C. M. Heard" <heard@pobox.com>, OPSEC <opsec@ietf.org>, Fernando Gont <fgont@si6networks.com>
Thread-Topic: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filtering
Thread-Index: AQHVhcR7BTUYPZznMkKLF87MBaBWyqdgg4sAgAAe8nA=
Content-Class:
Date: Fri, 18 Oct 2019 17:15:26 +0000
Message-ID: <SN6PR05MB5710A5B0D7500208440037BEAE6C0@SN6PR05MB5710.namprd05.prod.outlook.com>
References: <CACL_3VGnhQNHXY+fB+BdFG+MqH3Hv+0iwoHOEWn-KkHOcS9iOg@mail.gmail.com> <2731CA86-139F-4004-B9DB-0F43729403E7@gmail.com>
In-Reply-To: <2731CA86-139F-4004-B9DB-0F43729403E7@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2019-10-18T17:15:25.0146279Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=93879700-a652-4c07-bf22-837fb6147b12; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.2.0.14
dlp-reaction: no-action
x-originating-ip: [66.129.241.11]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e316a579-38db-458e-adde-08d753eec4c7
x-ms-office365-filtering-ht: Tenant
x-ms-traffictypediagnostic: SN6PR05MB5935:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <SN6PR05MB59357FD8E788487B8A4702D7AE6C0@SN6PR05MB5935.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 01949FE337
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(366004)(39860400002)(346002)(376002)(136003)(13464003)(189003)(199004)(6246003)(76176011)(66446008)(64756008)(14444005)(9686003)(476003)(7696005)(86362001)(99286004)(66946007)(6506007)(6116002)(66476007)(26005)(11346002)(66556008)(186003)(446003)(66066001)(76116006)(53546011)(102836004)(486006)(2906002)(3846002)(7736002)(8676002)(305945005)(52536014)(81156014)(5660300002)(6306002)(33656002)(8936002)(74316002)(229853002)(81166006)(966005)(478600001)(110136005)(316002)(25786009)(55016002)(256004)(71190400001)(14454004)(71200400001)(6436002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR05MB5935; H:SN6PR05MB5710.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: ziMhF6ouL1Q0RXozNEo2z8BkaThQHXc4O655Miz2LS/5XFlil0nQAYqlPNaBYOuqTN+ETDjMrdUKq2LKUOIp2hDseqedXAcqHr1OFPvHlKL+0h2OWWFdgsu7AMe9Pw2PCjkovNOuTbkizkOblNd7bjTME3er/ra5lj0UF4H/nIDkEHeHFzARNNyGAXKCS17T73OltTjvzJNMeE4emPqYtVHbFrcinD2ON6ct9uyGgZkFsj4bIpyTuZGmGLWhTsBRBQI/ija4wj7pfisYbFR73BIfTDUbS95II+y2mRNaKFxtDDlhyUgd4fT9x9QYW8zUB5M5Yq8jTsgC+7z3dDNh3YnqadPlB1xu5DdqSWOMJCm/xpufpbiWCVfEs8XYFCJZzuhfM5nkF0XN6WxTGTCJc94pj1JTBm+V0VWlKY6SaCUBlVs8FvbdexlJU3s12lF1vRsIpsZarkbe2Txm2pycDA==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: e316a579-38db-458e-adde-08d753eec4c7
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Oct 2019 17:15:26.3697 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Hj2xTfEqiQS8KfjcenDedxYJ3BDUDQraytbfF0u/k7VQvZ9jX1g53jJv1PFLlYH+cF3NwttbqL54gxGECHXnWA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR05MB5935
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.95,1.0.8 definitions=2019-10-18_04:2019-10-18,2019-10-18 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 mlxscore=0 malwarescore=0 phishscore=0 suspectscore=0 adultscore=0 spamscore=0 clxscore=1015 bulkscore=0 priorityscore=1501 mlxlogscore=999 lowpriorityscore=0 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-1908290000 definitions=main-1910180157
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/Co61RTrRrv0bvm8lmqvdSRGnFyM>
Subject: Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filtering
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Oct 2019 17:16:17 -0000
Folks,
Given these comments, let's suspend the WGLC until a new version is submitted.
Ron
Juniper Business Use Only
-----Original Message-----
From: Bob Hinden <bob.hinden@gmail.com>
Sent: Friday, October 18, 2019 11:20 AM
To: C. M. Heard <heard@pobox.com>
Cc: Bob Hinden <bob.hinden@gmail.com>; Ron Bonica <rbonica@juniper.net>; OPSEC <opsec@ietf.org>
Subject: Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filtering
I agree with Mike. Without a discussion of the issues raised and how to resolve them, I think it’s premature to start a w.g. last call.
I also note that the draft expired January 3, 2019, over eight months ago.
Bob
> On Oct 18, 2019, at 7:58 AM, C. M. Heard <heard@pobox.com> wrote:
>
> The document (version -06, expired 2019-01-03) is unchanged since last year's IETF last call that started in November 2018. That version drew a lot of substantive comments that have not been addressed (see thread starting at https://mailarchive.ietf.org/arch/msg/ietf/KKyXXrvHa5r5mNcqlu_CbkktQmY). Isn't a WGLC without any discussion of these issues (not even to dismiss them) somewhat premature? Would it not be more appropriate to comb through the last call threads, extract the substantive comments, and make a considered decision what to do about each, possibly after submitting a new version without changes to un-expire the document?
>
> As a reminder, one of the substantive objections raised was that the document recommends blanket discarding of unknown next header values, violating RFC 7045. Expect this to come up again as both a technical and process issue if it's not fixed (for the latter see Brian Carpenter's comments in https://mailarchive.ietf.org/arch/msg/ietf/c0DyXd_rLtMCrHQ3NmmRRGe7Z-A).
>
> Mike Heard
>
> On Thu, 17 October 2019 15:18 UTC Ron Bonica wrote:
> Folks,
>
> This begins a WGLC on draft-ietf-opsec-ipv6-eh-filtering. Please post your comments by 10/31/2019.
>
> Ron
>
>
>
> Juniper Business Use Only
>
> _______________________________________________
> OPSEC mailing list
> OPSEC@ietf.org
> https://www.ietf.org/mailman/listinfo/opsec
- [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filtering Ron Bonica
- Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filter… C. M. Heard
- Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filter… Bob Hinden
- Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filter… Ron Bonica
- Re: [OPSEC] WGLC: draft-ietf-opsec-ipv6-eh-filter… Ron Bonica