IETF Logo Mail Archive

Re: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS)

<mohamed.boucadair@orange.com> Wed, 12 October 2016 14:15 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA006129538; Wed, 12 Oct 2016 07:15:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.615
X-Spam-Level:
X-Spam-Status: No, score=-5.615 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-2.996, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AH3k6vyT5MtR; Wed, 12 Oct 2016 07:15:15 -0700 (PDT)
Received: from relais-inet.orange.com (relais-nor34.orange.com [80.12.70.34]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3C0BE129535; Wed, 12 Oct 2016 07:15:15 -0700 (PDT)
Received: from opfednr07.francetelecom.fr (unknown [xx.xx.xx.71]) by opfednr21.francetelecom.fr (ESMTP service) with ESMTP id 9A7C6C0C66; Wed, 12 Oct 2016 16:15:13 +0200 (CEST)
Received: from Exchangemail-eme2.itn.ftgroup (unknown [xx.xx.31.10]) by opfednr07.francetelecom.fr (ESMTP service) with ESMTP id 1F5A71C006D; Wed, 12 Oct 2016 16:15:13 +0200 (CEST)
Received: from OPEXCLILMA3.corporate.adroot.infra.ftgroup ([fe80::60a9:abc3:86e6:2541]) by OPEXCLILM5C.corporate.adroot.infra.ftgroup ([fe80::4bd:9b2b:3651:6fba%19]) with mapi id 14.03.0319.002; Wed, 12 Oct 2016 16:15:08 +0200
From: mohamed.boucadair@orange.com
To: Mirja Kühlewind <ietf@kuehlewind.net>, The IESG <iesg@ietf.org>
Thread-Topic: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS)
Thread-Index: AQHSJJAx8YBholNGtk6W3SdwKizTX6Ck206Q
Date: Wed, 12 Oct 2016 14:15:07 +0000
Message-ID: <ae84fdde-2f81-4b36-96c0-d237cebc0d3b@OPEXCLILM5C.corporate.adroot.infra.ftgroup>
References: <147144264456.12177.17817646214313923394.idtracker@ietfa.amsl.com> <a8015c6d-ae29-442c-a5bb-ec00ea986e54@OPEXCLILM5F.corporate.adroot.infra.ftgroup> <0172bbaa-df60-cbb1-d305-07263fd193b3@kuehlewind.net>
In-Reply-To: <0172bbaa-df60-cbb1-d305-07263fd193b3@kuehlewind.net>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.168.234.5]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/Hkn3u98JrBb3zoHJIu8qNwg0x2o>
Cc: "draft-ietf-radext-ip-port-radius-ext@ietf.org" <draft-ietf-radext-ip-port-radius-ext@ietf.org>, "radext@ietf.org" <radext@ietf.org>, "radext-chairs@ietf.org" <radext-chairs@ietf.org>, MORAND Lionel IMT/OLN <lionel.morand@orange.com>
Subject: Re: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS)
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Oct 2016 14:15:25 -0000

Hi Mirja, 

Please see inline.

Cheers,
Med

> -----Message d'origine-----
> De : Mirja Kühlewind [mailto:ietf@kuehlewind.net]
> Envoyé : mercredi 12 octobre 2016 15:55
> À : BOUCADAIR Mohamed IMT/OLN; The IESG
> Cc : draft-ietf-radext-ip-port-radius-ext@ietf.org; MORAND Lionel IMT/OLN;
> radext-chairs@ietf.org; radext@ietf.org
> Objet : Re: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-
> port-radius-ext-11: (with DISCUSS)
> 
> Hi Mohamed,
> 
> thanks for these changes. Using the IANA protocol number seems to be the
> right thing to do!

[Med] Great!

> 
> One tiny additional question/comment: the term "IP port" or "IP transport
> port" seems a little weird (because ports are in the transport header and
> not
> in the IP header). Is it important to use this term to indicate that it's
> IP
> underneath or could you simply speak about "transport ports" instead?

[Med] We used "IP" on purpose to avoid that the term "port" is misunderstood as referring to a physical port. Using simply "transport port" does not help either to clarify that confusion. This is why we went for explicitly using "IP xxx" to make it clear we are dealing with port numbers that are used by protocols transported over IP.

> 
> Thanks!
> Mirja
> 
> 
> On 29.09.2016 08:44, mohamed.boucadair@orange.com wrote:
> > Dear Mirja,
> >
> > Please see inline.
> >
> > Cheers,
> > Med
> >
> >> -----Message d'origine-----
> >> De : radext [mailto:radext-bounces@ietf.org] De la part de Mirja
> >> Kuehlewind
> >> Envoyé : mercredi 17 août 2016 16:04
> >> À : The IESG
> >> Cc : draft-ietf-radext-ip-port-radius-ext@ietf.org; MORAND Lionel
> IMT/OLN;
> >> radext-chairs@ietf.org; radext@ietf.org
> >> Objet : [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-
> port-
> >> radius-ext-11: (with DISCUSS)
> >>
> >> Mirja Kühlewind has entered the following ballot position for
> >> draft-ietf-radext-ip-port-radius-ext-11: Discuss
> >>
> >> When responding, please keep the subject line intact and reply to all
> >> email addresses included in the To and CC lines. (Feel free to cut this
> >> introductory paragraph, however.)
> >>
> >>
> >> Please refer to https://www.ietf.org/iesg/statement/discuss-
> criteria.html
> >> for more information about IESG DISCUSS and COMMENT positions.
> >>
> >>
> >> The document, along with other ballot positions, can be found here:
> >> https://datatracker.ietf.org/doc/draft-ietf-radext-ip-port-radius-ext/
> >>
> >>
> >>
> >> ----------------------------------------------------------------------
> >> DISCUSS:
> >> ----------------------------------------------------------------------
> >>
> >> I fully support Alissa's discussion points and have two more to add:
> >>
> >> 1) IP-Port-Type TLV only covers UDP, TCP and ICMP. This is not very
> >> future-proof: there are other transport protocols that have ports or
> >> identifiers that may want to be supported in future.
> >
> > [Med] This is a fair comment. FWIW, only TCP/UDP/ICMP are covered
> initially in the draft because those are currently the only ones supported
> by widely deployed CGNs.
> >
> >  Also it is not clear
> >> to me from the document why this information is needed at all in the
> >> described use cases.
> >
> > [Med] Because ports are bound to a transport protocol (e.g., of the port
> forwarding in Section 4.1.3). In modern NATs, when an (explicit/implicit)
> mapping is created, a port is reserved only for a given transport protocol
> not for all transport protocols.
> >
> >  Therefore I see two possible ways forward: Either
> >> remove the IP-Port-Type TLV or extend it to also cover other cases.
> >
> > [Med] The new version of the draft extends the TLV to be applicable to
> other transport protocols. We are using the IANA protocol numbers
> (http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml).
> >
> >>
> >> Related to this point I would like to mention that RFC6887 is not
> >> restricted to UDP/TCP and therefore the following sentence in section 2
> >> is not correct:
> >> "Note that the definitions of [...] "internal port", [...] "external
> >> port" [...] are the same as defined in Port Control Protocol (PCP)
> >> [RFC6887]"
> >
> > [Med] This is not an issue given that the new version of the draft is
> not restricted to TCP/UDP.
> >

v2.23.0 | Report a Bug | By Email