Re: [radext] Extended Identifiers: failure modes
Stefan Winter <stefan.winter@restena.lu> Fri, 15 December 2017 07:30 UTC
Return-Path: <stefan.winter@restena.lu>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1872126FB3 for <radext@ietfa.amsl.com>; Thu, 14 Dec 2017 23:30:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gIzs_Q4FsunT for <radext@ietfa.amsl.com>; Thu, 14 Dec 2017 23:30:40 -0800 (PST)
Received: from smtprelay.restena.lu (smtprelay.restena.lu [158.64.1.62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2714D124BFA for <radext@ietf.org>; Thu, 14 Dec 2017 23:30:40 -0800 (PST)
Received: from aragorn.restena.lu (aragorn.restena.lu [IPv6:2001:a18:1:8::155]) by smtprelay.restena.lu (Postfix) with ESMTPS id C4CA443A65 for <radext@ietf.org>; Fri, 15 Dec 2017 08:30:38 +0100 (CET)
From: Stefan Winter <stefan.winter@restena.lu>
To: "radext@ietf.org" <radext@ietf.org>
References: <bf0f5d3d-333c-b871-afbf-1a59be5d5bb1@restena.lu>
Organization: RESTENA
Message-ID: <cec93d48-a554-ab29-3322-94830f0ffe8f@restena.lu>
Date: Fri, 15 Dec 2017 08:30:38 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.5.0
MIME-Version: 1.0
In-Reply-To: <bf0f5d3d-333c-b871-afbf-1a59be5d5bb1@restena.lu>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Content-Language: lb-LU
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/9uoUqeX_F0zIWy_sZZpKPshAvVo>
Subject: Re: [radext] Extended Identifiers: failure modes
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Dec 2017 07:30:42 -0000
Hello, thanks for the clarification. In this case - manual configuration is considered in scope -, both need to be prepared for particular scrutiny of their respective failure modes. The considerations in RFC5706 are of course valid for every draft in the IETF; but they are even more in the focus of the Operations & Management area, as the Appendix A of that RFC is what the Ops Directorate uses for its OPSDIR reviews during IETF Last Call. Failure Management is an explicit item to look out for, and the pertinent question is: "Does the solution have failure modes that are difficult to diagnose or correct?" If there were only one draft, I'd happily care about this after WG adoption. But considering that there are two competing concepts where one of the main differences is apparently on this very question, and where the difference is rooted in the /concept/ (i.e. not easy to fix with draft revisions later on), I believe it makes sense to highlight this right now. We have seen many arguments going back and forth on this topic. I'm trying to summarise those below. The failure modes possible in draft-dekok a) are always local to the client/server pair that tries to communicate b) are harder to see during packet inspection of the request; need to correlate request and response c) correction of faulty configuration requires action of admnistrators of two adjacent RADIUS nodes who are usually in contact with each other, or even in the same administrative domain The failure modes possible in draft-chen a) possibly transpire over an arbitrary amount of proxies b) are easier to see in a packet inspection in the request; no need to correlate request and response c) correction of faulty configuration requires interaction of all administrators along the affected proxy chain, who are not necessarily otherwise in direct contact (IOW, two distinct arguments made earlier, "easier to debug" vs. "stay local", actually both relate to the same topic of failure modes and their remediation) In that light, it would seem that neither of the two drafts are perfect. draft-dekok has harder debugging on the local link, draft-chen may involve parties across "the internet" (or rather the subset of RADIUS servers on it). In the end, the question is which failure mode is "less difficult" to handle. Greetings, Stefan Winter Am 14.12.2017 um 15:43 schrieb Stefan Winter: > Hello, > > > there is one question to which the answer did not become entirely clear > in the discussion so far. > > > Could the authors of the respective drafts please clearly indicate the > answer to this question: > > > Is a manually configured mode of operation considered in scope? > > > I.e. do you consider it a valid use case that an implementation presents > administrators with a configuration option "Enable Extended > Identifiers", and that the implementation starts making use of that > feature /without/ a capability negotiation using Status-Server with its > next-hop peer? > > > Greetings, > > > Stefan Winter > >
- [radext] Extended Identifiers: is manual configur… Stefan Winter
- Re: [radext] Extended Identifiers: is manual conf… Alan DeKok
- Re: [radext] Extended Identifiers: is manual conf… Enke Chen
- Re: [radext] Extended Identifiers: failure modes Stefan Winter
- Re: [radext] Extended Identifiers: failure modes Alan DeKok