IETF Logo Mail Archive

Re: [radext] I-D Action: draft-ietf-radext-coa-proxy-06.txt

Alan DeKok <aland@deployingradius.com> Wed, 15 August 2018 18:10 UTC

Return-Path: <aland@deployingradius.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FA2C130DEF for <radext@ietfa.amsl.com>; Wed, 15 Aug 2018 11:10:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GuqDGfP2D1ZS for <radext@ietfa.amsl.com>; Wed, 15 Aug 2018 11:10:33 -0700 (PDT)
Received: from mail.networkradius.com (mail.networkradius.com [62.210.147.122]) by ietfa.amsl.com (Postfix) with ESMTP id 12DC2130E85 for <radext@ietf.org>; Wed, 15 Aug 2018 11:10:33 -0700 (PDT)
Received: from [192.168.20.38] (CPEf4cc55220745-CM64777ddff610.cpe.net.cable.rogers.com [173.32.191.82]) by mail.networkradius.com (Postfix) with ESMTPSA id 1D8723AC for <radext@ietf.org>; Wed, 15 Aug 2018 18:10:31 +0000 (UTC)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Alan DeKok <aland@deployingradius.com>
In-Reply-To: <153435656468.3040.11103339656733903067@ietfa.amsl.com>
Date: Wed, 15 Aug 2018 14:10:30 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <3E724BD8-290F-48AC-93EA-3384187C2A91@deployingradius.com>
References: <153435656468.3040.11103339656733903067@ietfa.amsl.com>
To: radext@ietf.org
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/medysbuw3LnB9W3YuEz5Kfq9rkM>
Subject: Re: [radext] I-D Action: draft-ietf-radext-coa-proxy-06.txt
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Aug 2018 18:10:44 -0000

  A few more changes with this draft:

* updates as per IESG review

* note that we update Section 5 of RFC 5580 to allow Operator-Name in
  CoA-Request and Disconnect-Request packets

* update the discussion of Operator-NAS-Identifier to remove text on
  "verification", and to note that it is simply an opaque token with
  minimal other meaning.  And no requirement for privacy, integrity
  checks, or replay prevention.

* note that when the Visited Server removes the Operator-Name and
  Operator-NAS-Identifier attribute, it MUST add a NAS-Identifier, or
  NAS-IP-Address, or NAS-IPv6-Address attribute.  i.e. On the reverse
  path, it MUST undo the editing it did on the forward path.


> On Aug 15, 2018, at 2:09 PM, internet-drafts@ietf.org wrote:
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the RADIUS EXTensions WG of the IETF.
> 
>        Title           : Dynamic Authorization Proxying in Remote Authorization Dial-In User Service Protocol (RADIUS)
>        Authors         : Alan DeKok
>                          Jouni Korhonen
> 	Filename        : draft-ietf-radext-coa-proxy-06.txt
> 	Pages           : 21
> 	Date            : 2018-08-15
> 
> Abstract:
>   RFC 5176 defines Change of Authorization (CoA) and Disconnect Message
>   (DM) behavior for RADIUS.  That document suggests that proxying these
>   messages is possible, but gives no guidance as to how it is done.
>   This specification corrects that omission for scenarios where
>   networks use Realm-based proxying as defined in RFC 7542.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-radext-coa-proxy/
> 
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-radext-coa-proxy-06
> https://datatracker.ietf.org/doc/html/draft-ietf-radext-coa-proxy-06
> 
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-radext-coa-proxy-06
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________
> radext mailing list
> radext@ietf.org
> https://www.ietf.org/mailman/listinfo/radext

v2.23.0 | Report a Bug | By Email