IETF Logo Mail Archive

Re: [radext] WGLC for draft-ietf-radext-dynamic-discovery-09

<lionel.morand@orange.com> Tue, 14 January 2014 13:43 UTC

Return-Path: <lionel.morand@orange.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A511D1AE067 for <radext@ietfa.amsl.com>; Tue, 14 Jan 2014 05:43:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.699
X-Spam-Level:
X-Spam-Status: No, score=-0.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, J_CHICKENPOX_34=0.6, J_CHICKENPOX_37=0.6, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7oKESYitt0Dk for <radext@ietfa.amsl.com>; Tue, 14 Jan 2014 05:43:16 -0800 (PST)
Received: from relais-inet.francetelecom.com (relais-ias244.francetelecom.com [80.12.204.244]) by ietfa.amsl.com (Postfix) with ESMTP id 7FBA51AE056 for <radext@ietf.org>; Tue, 14 Jan 2014 05:43:15 -0800 (PST)
Received: from omfeda05.si.francetelecom.fr (unknown [xx.xx.xx.198]) by omfeda14.si.francetelecom.fr (ESMTP service) with ESMTP id 550C22AC0D3; Tue, 14 Jan 2014 14:43:03 +0100 (CET)
Received: from Exchangemail-eme1.itn.ftgroup (unknown [10.114.1.183]) by omfeda05.si.francetelecom.fr (ESMTP service) with ESMTP id 38F96180051; Tue, 14 Jan 2014 14:43:03 +0100 (CET)
Received: from PEXCVZYM13.corporate.adroot.infra.ftgroup ([fe80::cc7e:e40b:42ef:164e]) by PEXCVZYH02.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.03.0174.001; Tue, 14 Jan 2014 14:43:02 +0100
From: lionel.morand@orange.com
To: Jouni Korhonen <jouni.nospam@gmail.com>, "radext@ietf.org" <radext@ietf.org>
Thread-Topic: [radext] WGLC for draft-ietf-radext-dynamic-discovery-09
Thread-Index: AQHPBRwWQ1ipdRVr6EqY0ZMy7ZuBfpqD71CAgAA2R6A=
Date: Tue, 14 Jan 2014 13:43:02 +0000
Message-ID: <11892_1389706983_52D53EE7_11892_12055_1_6B7134B31289DC4FAF731D844122B36E43D683@PEXCVZYM13.corporate.adroot.infra.ftgroup>
References: <15BCB5AD-55A0-4C74-B9BB-67448122EFF6@gmail.com> <23ABE552-71C9-4231-82B0-0D1861C922CB@gmail.com>
In-Reply-To: <23ABE552-71C9-4231-82B0-0D1861C922CB@gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.197.38.3]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-PMX-Version: 6.0.3.2322014, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2014.1.14.52715
Cc: "radext-chairs@tools.ietf.org" <radext-chairs@tools.ietf.org>, "draft-ietf-radext-dynamic-discovery@tools.ietf.org" <draft-ietf-radext-dynamic-discovery@tools.ietf.org>
Subject: Re: [radext] WGLC for draft-ietf-radext-dynamic-discovery-09
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jan 2014 13:43:17 -0000

Hi Stefan, Jouni,


I'm ok with the general content of this draft.
But, just after a brief review of the last version, I have the following comments/questions.

In Section 2.1.1.1. Registration of Application Service and Protocol Tags


   This specification defines three S-NAPTR service tags:


   +-----------------+-----------------------------------------+
   | Service Tag     | Use                                     |
   +-----------------+-----------------------------------------+
   | aaa+auth        | RADIUS Authentication, i.e. traffic as  |
   |                 | defined in [RFC2865]                    |
   | - - - - - - - - | - - - - - - - - - - - - - - - - - - - - |
   | aaa+acct        | RADIUS Accounting, i.e. traffic as      |
   |                 | defined in [RFC2866]                    |
   | - - - - - - - - | - - - - - - - - - - - - - - - - - - - - |
   | aaa+dynauth     | RADIUS Dynamic Authorisation, i.e.      |
   |                 | traffic as defined in [RFC5176]         |
   +--------------- --+-----------------------------------------+

                      Figure 1: List of Service Tags

[LM] For historical reasons, "aaa" is already assigned to Diameter. The proposed values for RADIUS related Application Service Tags are not wrong per se but it could be misleading... What about using "RADIUS+" instead of "aaa+" to avoid such possible confusion? 

[LM] I don't know if it is something commonly in use but I was wondering if it would be also suitable to define a service tag for Auth+Acc when both types of traffic are sent to the same server. 


In Section 3.1. Applicability


   Dynamic server discovery as defined in this document is only
   applicable for AAA transactions where a RADIUS entity which acts as a
   forwarding server for one or more realms receives a request with a
   realm for which it is not authoritative, and which no explicit next
   hop is configured.  It is only applicable for

   a.  new user sessions, i.e. for the initial Access-Request.
       Subsequent messages concerning this session, for example Access-
       Challenges and Access-Accepts use the previously-established
       communication channel between client and server.

   b.  RADIUS DynAuth server discovery

[LM] I think that the case for initial Accounting-Request is missing. Sorry if this point was discussed earlier on the mailing list.

Regards,

Lionel

-----Message d'origine-----
De : radext [mailto:radext-bounces@ietf.org] De la part de Jouni Korhonen
Envoyé : mardi 14 janvier 2014 09:47
À : radext@ietf.org
Cc : radext-chairs@tools.ietf.org; draft-ietf-radext-dynamic-discovery@tools.ietf.org
Objet : Re: [radext] WGLC for draft-ietf-radext-dynamic-discovery-09


The WGLC ended recently for this document. Zero reviews or comments.
If folks think the document is ready, at least express that on the
list. I'll extend the WGLC by few weeks shortly.

In a meanwhile I have requested reviews from various externals
interest groups (secdir, DNS ppl etc).

- Jouni & Mauricio

On Dec 30, 2013, at 7:00 AM, Jouni Korhonen <jouni.nospam@gmail.com> wrote:

> Folks,
> 
> This email starts a two week WGLC for the
> draft-ietf-radext-dynamic-discovery-09.
> The WGLC ends 13th Jan 2014.
> 
> Please, review the document, submit your
> comments to the mailing list and also enter
> them into Issue Tracker.
> 
> - Jouni & Mauricio
> 
> 

_______________________________________________
radext mailing list
radext@ietf.org
https://www.ietf.org/mailman/listinfo/radext

_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

v2.23.0 | Report a Bug | By Email