IETF Logo Mail Archive

Re: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS)

Mirja Kühlewind <ietf@kuehlewind.net> Wed, 17 August 2016 15:31 UTC

Return-Path: <ietf@kuehlewind.net>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9B74C12DA09 for <radext@ietfa.amsl.com>; Wed, 17 Aug 2016 08:31:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.149
X-Spam-Level:
X-Spam-Status: No, score=-3.149 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-1.247, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gtu4IsfQDKxO for <radext@ietfa.amsl.com>; Wed, 17 Aug 2016 08:31:11 -0700 (PDT)
Received: from kuehlewind.net (kuehlewind.net [83.169.45.111]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F223A12DA1F for <radext@ietf.org>; Wed, 17 Aug 2016 08:31:10 -0700 (PDT)
Received: (qmail 23836 invoked from network); 17 Aug 2016 17:24:28 +0200
Received: from nb-10510.ethz.ch (HELO ?82.130.103.143?) (82.130.103.143) by kuehlewind.net with ESMTPSA (DHE-RSA-AES128-SHA encrypted, authenticated); 17 Aug 2016 17:24:28 +0200
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
References: <147144264456.12177.17817646214313923394.idtracker@ietfa.amsl.com> <CAHbuEH7=+2sY2FwXC+yK5dZ3dgqBi3wHEy6R8mf6Tmws_Mh2BQ@mail.gmail.com>
From: Mirja Kühlewind <ietf@kuehlewind.net>
Message-ID: <57B4816E.3030807@kuehlewind.net>
Date: Wed, 17 Aug 2016 17:23:26 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.8.0
MIME-Version: 1.0
In-Reply-To: <CAHbuEH7=+2sY2FwXC+yK5dZ3dgqBi3wHEy6R8mf6Tmws_Mh2BQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/PznYt4bi21cJ5Q6X8rCHWZqJ8UU>
Cc: radext-chairs@ietf.org, draft-ietf-radext-ip-port-radius-ext@ietf.org, "radext@ietf.org" <radext@ietf.org>, The IESG <iesg@ietf.org>, "<lionel.morand@orange.com>" <lionel.morand@orange.com>
Subject: Re: [radext] Mirja Kühlewind's Discuss on draft-ietf-radext-ip-port-radius-ext-11: (with DISCUSS)
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Aug 2016 15:31:12 -0000

Hi Kathleen,

see below.

On 17.08.2016 16:55, Kathleen Moriarty wrote:
> Hi Mirja,
>
> Hopefully the editors will chime in soon.  One question...
>
> On Wed, Aug 17, 2016 at 10:04 AM, Mirja Kuehlewind <ietf@kuehlewind.net> wrote:
>> Mirja Kühlewind has entered the following ballot position for
>> draft-ietf-radext-ip-port-radius-ext-11: Discuss
>>
>> When responding, please keep the subject line intact and reply to all
>> email addresses included in the To and CC lines. (Feel free to cut this
>> introductory paragraph, however.)
>>
>>
>> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
>> for more information about IESG DISCUSS and COMMENT positions.
>>
>>
>> The document, along with other ballot positions, can be found here:
>> https://datatracker.ietf.org/doc/draft-ietf-radext-ip-port-radius-ext/
>>
>>
>>
>> ----------------------------------------------------------------------
>> DISCUSS:
>> ----------------------------------------------------------------------
>>
>> I fully support Alissa's discussion points and have two more to add:
>>
>> 1) IP-Port-Type TLV only covers UDP, TCP and ICMP. This is not very
>> future-proof: there are other transport protocols that have ports or
>> identifiers that may want to be supported in future. Also it is not clear
>> to me from the document why this information is needed at all in the
>> described use cases. Therefore I see two possible ways forward: Either
>> remove the IP-Port-Type TLV or extend it to also cover other cases.
>
> I don't see why this needs to be future proofed as it is meeting a
> current need and the other protocols may not be using RADIUS.  If they
> do, an update to this document could easily fix that, while keeping
> the document in line with current use cases.  I'm fine with any of
> these 3 responses depending on what the working group thinks is best.

I don't think RADIUS is specified in a way that would only allow it to be 
used for UDP and TCP transmissions. At least PCP is not; see my next 
paragraph in the discuss below.

Further, I don't see a reason for any restrictions here. However, my other 
question is also why is this information needed at all. The use cases in this 
doc gives no explanation why this is needed and what this information is used 
for. If there is no concrete reason to have this information, it should be 
removed.

>
>>
>> Related to this point I would like to mention that RFC6887 is not
>> restricted to UDP/TCP and therefore the following sentence in section 2
>> is not correct:
>> "Note that the definitions of [...] "internal port", [...] "external
>> port" [...] are the same as defined in Port Control Protocol (PCP)
>> [RFC6887]"
>>
>> 2) The IE doctors have provide feedback to IANA that the Information
>> Elements in this doc are underspecified (not confirm with rules in RFC
>> 7013) and should therefore be not registered.  Addressing this feedback
>> could lead to a mayor rewrite of this doc, especially in the relation to
>> the use and definition of transportType and receptively IP-Port-Type TLV,
>> and should therefore be done before a final IESG decision.
>
> If you see the end of the message that went out from IANA, the WG
> might be a little confused on order here.  I agree that the WG needs
> to address these questions from IANA and it should be done prior to
> tomorrow's telechat.  The IANA state shows that an update was posted
> and a review is needed.  It would be helpful for the IESG to see the
> full discussion if any more has happened outside of the emails from
> August 11th.

I replied to this on the other email. I was not talking about the IANA review 
but the expert review that IANA already requested. This review goes back to 
IANA (and Brian confirmed that they have send it) and IANA should forward it 
to the authors. My whole (other) emails was about the fact that this 
communication is not visible to anybody and I just know about it because I 
happen to talked to Brian.

For this document this is actually important because the feedback says that 
the IEs in this doc are underspecified and cannot be registered as they are. 
There is more detailed feedback but my high level summary would be that the 
underspecification could lead to larger changes.

I guess we could ask Brian or IANA to forward this feedback to the IESG list 
to have a more informed discussion here.

Mirja


>
> Thanks,
> Kathleen
>
>>
>>
>>
>>
>
>
>

v2.23.0 | Report a Bug | By Email