Re: [RTG-DIR] RtgDir review: draft-ietf-opsec-urpf-improvements03.txt

"Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov> Sat, 31 August 2019 00:52 UTC

Return-Path: <kotikalapudi.sriram@nist.gov>
X-Original-To: rtg-dir@ietfa.amsl.com
Delivered-To: rtg-dir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 513051200B7; Fri, 30 Aug 2019 17:52:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4VkiMpJB9zdP; Fri, 30 Aug 2019 17:52:02 -0700 (PDT)
Received: from GCC02-BL0-obe.outbound.protection.outlook.com (mail-bl2gcc02on2137.outbound.protection.outlook.com [40.107.89.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED1F81200B1; Fri, 30 Aug 2019 17:52:01 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=DG4ORTrIoinR4W30ztc9VdpxIHoV/f8vbVuxWniYj+xnqcoageMcgkXdT39DmUYKeKAqq7F9TBcVXvr/2dBGuB1f7AsFS7ki2Zqakzm2R5knBIkks80jj9c6VC2Lbp9sY825PepsGnLYuo0WxVCgje7bxOyw5kPb72irFimWXUwxAWDb0tIMtKZDb3J9S4IulbYBiREbcJwyhyK+WXFFCo7rwYPdxRdjBCO/nqviosv3NlKzEtJldOspsGPOnRhjv2vJLg9IcoxPyV5NKhF3jPB+qCc5abt0IFkXjdwtNiIRboW+n4xC7KzvPdXOmtBSotsO2NCd9SF/gVM1h8ISUw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ifDgFJFkoY7GxCSQ0Yt1iPsPg88VNS5kQqLn0siPQ00=; b=EPh84Hsf86RSFBMiIhOHZFeibxh79JOho7Nd/JUwZ5SJHT23f420tuKiXVlv0mcIabRmEzAzhjA025d8hbzMCqH6DEopnsBGNCDPwyIA0yDBWERuWFCW2jCjK4nZMitxEZfnqBMI94X9s/aOp1ENuhUoUG12XfKhNntqkmsGArQihEJzeYNEu9JSVtJBt8YN/DCaJ6VwapD2A1Yga/NVoN76fz7ELxZGAv4S0GnN1tswlAVn2cTdHiX/8G2WswLILgr8MDyElTNUcYbF01qZv87RA+ls5G4L+1b/euz2mTy1853VNfEDaCmgDS0ko2Gj5FI4v9FwmFNrCPVIpW5miw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ifDgFJFkoY7GxCSQ0Yt1iPsPg88VNS5kQqLn0siPQ00=; b=fT5HswcoWRVinKxbtUDCzpmFLW9xIFZRAZ5HpfDkFgw4H8TkB5NK5FEPTxHfn+bkuUBgdknKFX7w5cLNapJ2iJG8+uFLrbMaoGMN7VbKUugf91tafiozuM/rmW+VuUcjHX2ISmlYfZumxXc6nCw7xl7UFQ/KB6IxO2NM2dG+J0s=
Received: from BL0PR0901MB4563.namprd09.prod.outlook.com (52.135.47.206) by BL0PR0901MB3171.namprd09.prod.outlook.com (20.177.243.150) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2220.19; Sat, 31 Aug 2019 00:51:58 +0000
Received: from BL0PR0901MB4563.namprd09.prod.outlook.com ([fe80::b532:35b9:abd0:ee7e]) by BL0PR0901MB4563.namprd09.prod.outlook.com ([fe80::b532:35b9:abd0:ee7e%4]) with mapi id 15.20.2220.013; Sat, 31 Aug 2019 00:51:58 +0000
From: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram@nist.gov>
To: "Bocci, Matthew (Nokia - GB)" <matthew.bocci@nokia.com>, "rtg-ads@ietf.org" <rtg-ads@ietf.org>
CC: "rtg-dir@ietf.org" <rtg-dir@ietf.org>, "opsec@ietf.org" <opsec@ietf.org>, "draft-ietf-opsec-urpf-improvements@ietf.org" <draft-ietf-opsec-urpf-improvements@ietf.org>, "Murphy, Sandra" <Sandra.Murphy@parsons.com>, Jen Linkova <furry13@gmail.com>, "opsec-chairs@ietf.org" <opsec-chairs@ietf.org>, Warren Kumari <warren@kumari.net>
Thread-Topic: RtgDir review: draft-ietf-opsec-urpf-improvements03.txt
Thread-Index: AQHVWCSLk+WxzCivaUqM/Uc+Pc7zTqcUdRis
Date: Sat, 31 Aug 2019 00:51:58 +0000
Message-ID: <BL0PR0901MB4563F1983AA3C3763C29BF3384BC0@BL0PR0901MB4563.namprd09.prod.outlook.com>
References: <695D6B79-C68C-47FB-9950-CE50233E9BDC@nokia.com>
In-Reply-To: <695D6B79-C68C-47FB-9950-CE50233E9BDC@nokia.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=kotikalapudi.sriram@nist.gov;
x-originating-ip: [129.6.223.86]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7478b2f6-7b98-4db8-c05f-08d72dad6d6c
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600166)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:BL0PR0901MB3171;
x-ms-traffictypediagnostic: BL0PR0901MB3171:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <BL0PR0901MB3171E109E3A7A20E9F204E4884BC0@BL0PR0901MB3171.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 014617085B
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(39830400003)(396003)(376002)(136003)(346002)(189003)(199004)(2501003)(486006)(54906003)(110136005)(3846002)(7696005)(8676002)(6116002)(476003)(446003)(11346002)(71190400001)(71200400001)(52536014)(66556008)(2906002)(5660300002)(86362001)(33656002)(25786009)(66446008)(66476007)(76116006)(66946007)(4326008)(478600001)(6436002)(316002)(53936002)(229853002)(6246003)(64756008)(66574012)(66066001)(55016002)(102836004)(26005)(186003)(99286004)(74316002)(7736002)(305945005)(14454004)(9686003)(256004)(6306002)(14444005)(81156014)(81166006)(76176011)(8936002)(966005)(6506007); DIR:OUT; SFP:1102; SCL:1; SRVR:BL0PR0901MB3171; H:BL0PR0901MB4563.namprd09.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: nist.gov does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: /4H0wiAZlnS93jBE2yDHqjW1xwnMs8HwT+Zo6+KeO1RPIkQhCv0KcEmc1BrZcybMAXc5S03PtPreyCVG0NgRJ83WchF5Du1eP3pwNCmpLNatMAXCYNU1aZHq5AqFGc6xJON0zzrW4FvwpJL43Nr+fC2bjIGnf0C9IoBwIRIkUKiMkzBTHq6JqrpvUxbk73OEB0vw02SJbr9oK1/qWR508rxNey2+2XZvMGsk5smxz2pm0cEuZYjtMfSB8UW225+WL6YrDubveVAouXJJh1r0Rw0W/ZXlvjYLtqEm380B8F4qBG8xZQbstLZUURnxyRLTCO31yBXU4Pdy+nj8amKzduP8mMKSqe37w6ryekA0EVzk6qVRfO1itn3qsrWAJHCSX/jb9X7vj8PU413VG7m9DM39fyLdLO1sFMLOIzb4i44=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-Network-Message-Id: 7478b2f6-7b98-4db8-c05f-08d72dad6d6c
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Aug 2019 00:51:58.2288 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 1ARx0E+HT1aObJvLej4pFjWqUJ6WuaTq2uI3RlNNIHfwqlZ3Kg7GhMIcm9WxxV+iZZ564I+ZlVPCjBg+eBGydA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR0901MB3171
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-dir/JlKoSSayi_UbyrPRdZEfspxY620>
Subject: Re: [RTG-DIR] RtgDir review: draft-ietf-opsec-urpf-improvements03.txt
X-BeenThere: rtg-dir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Area Directorate <rtg-dir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-dir/>
List-Post: <mailto:rtg-dir@ietf.org>
List-Help: <mailto:rtg-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 31 Aug 2019 00:52:06 -0000

Matthew:

Thank you for your comments. Sorry about the delay in replying.
We (authors) have uploaded a new version and have included changes
reflecting your comments. Please see:
https://tools.ietf.org/rfcdiff?url2=draft-ietf-opsec-urpf-improvements-04.txt  
Please also see responses to your comments inline below. 

>Summary:
>I have some minor concerns about this document that I think should be resolved before publication.
>
>
>Comments:
>
>Generally, I found the draft quite readable, with a clear explanation of the problem statements and solutions as well
>as the trade-offs on the implementation. However, I have one minor comment and a nit.
>
>Major Issues:
>
>No major issues found.
>
>
>Minor Issues:
>
>Terminology: The document expands 'uRPF' as 'unicast reverse path filtering'. However, I
>believe that uRPF commonly means 'unicast reverse path forwarding'   (see RFC3704 and
>most vendor documentation). "Ingress filtering" is the general concept and "reverse path
> forwarding" the specific algorithm. Did the authors intend to use a new term, and if so why?
>

Great catch. I am surprised we (authors) overlooked and no one else caught it for so long.
Thank you!  Fixed. 

>
>Nits:
>
>Section 2.5: "...separate from the global Routing Information Base (RIB) [Juniper][RFC4364]."
>VRFs are supported by most vendors so I think it is sufficient just to reference RFC4364.
>

The sentence now reads:
   The Virtual Routing and Forwarding (VRF) technology [RFC4364]
   [Juniper] allows a router to maintain multiple routing table
   instances separate from the global Routing Information Base (RIB).

Shuffled the order of references. Keeping [Juniper] because there is some 
tutorial material in it that may be helpful for some readers.

Regards,
Sriram