[Softwires] Fwd: I-D Action: draft-ietf-softwire-map-radius-16.txt
ianfarrer@gmx.com Fri, 20 July 2018 08:30 UTC
Return-Path: <ianfarrer@gmx.com>
X-Original-To: softwires@ietfa.amsl.com
Delivered-To: softwires@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B29DF131074 for <softwires@ietfa.amsl.com>; Fri, 20 Jul 2018 01:30:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FYtfIJLrYiwN for <softwires@ietfa.amsl.com>; Fri, 20 Jul 2018 01:30:26 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55FBA130E18 for <softwires@ietf.org>; Fri, 20 Jul 2018 01:30:24 -0700 (PDT)
Received: from ians-mbp.lan ([80.159.240.8]) by mail.gmx.com (mrgmx001 [212.227.17.184]) with ESMTPSA (Nemesis) id 0MTBLi-1fZNoe0J4Y-00S3gD for <softwires@ietf.org>; Fri, 20 Jul 2018 10:30:22 +0200
From: ianfarrer@gmx.com
Content-Type: multipart/alternative; boundary="Apple-Mail=_9811B7A3-5655-484F-AEFF-C7FC8BBDCA3C"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Message-Id: <90F8DC64-16E5-4F49-9951-B5BCD883A943@gmx.com>
References: <77C785B6-E868-46A0-BF95-2853F4E940F5@me.com>
To: Softwires WG <softwires@ietf.org>
Date: Fri, 20 Jul 2018 10:30:20 +0200
X-Mailer: Apple Mail (2.3445.9.1)
X-Provags-ID: V03:K1:0GWrxXwavaK5Dgu/uYkjx451gDmZ+T23uyI4cWMHd+jkhmStJPH f2ddsYE+D6/zryER4ceDsgUjX2fJSojfFvalPJAmyyGNykoH9UfqgAde0i1BlbW10Lpr/36 mEKKbzjyCrqjopnXry0ujDgu2jjNBgh1DBgp8hmJ9Ep5H2smXQV0JtHBrm+TGIz5UuvCKjU Z3OhRXsewqVFJ28u5U3QA==
X-UI-Out-Filterresults: notjunk:1;V01:K0:8JCss2TB+VY=:EuWH1614EQDMJ8/9Oz9Gvf maZ/e8fB2d4UNsxQAOkTXE16ztrbAGVZE5mM6RZdjBkbPAjp7WSV1AXagmQEe/XacUFePrMQT oPoDzVuaF42co87Zj6iWEUAZNH+qfZfbA0EaeC8YRNlYDEyBXnTBYmL5VfWKpBInSfbYSJRQR pSouU4TVinkwwFBbEmlUQaP7oaRA3QXq9vcgPYAzZqKdKdkiPHw8/Y+RL/Zk9nQSxMEw5y+rI 4/N0cI8yzIDkswJu+huahgJ6oY53yuNqqylZC0nDa52q7q0pk/gsLChVsH36WqIXqQTSLRl+V xxi0qOGEQaP4ThM/lknWb9VyRAm6A2irxjUL/Y/5TZRQrDkockTwY40cytCBx1UvbtA2VK715 Jj8QZYbgTw6RH0pP41ruYZmTJBtbdOXBCVU+STtzQEiEAcpGae0Ft0+hmcmcnsPeLVZL3eBD8 QEA/wg7V4i/HEKQbZ2zjx6ACdAO/AnSTYzFHU6Q2DGJUc7MfWMbrFgxdASL8xq8SebYAMlevS GEUXcE775AJ1SewKTnnZeYu9/OlMDS51BDsGubpfZZogJIy20I6VWR63iwO679WlGv8yHsMCC /1eywjAVTnJm09X0Ry26Bjm6EHHBmqLgJSi5KfhfKj3E55WyYNpGIDlgzWpyEylK89MGsD8zo FvExqwTmgRUU/wra6Mfw8mNcZUth82CHvWu0iSsmJlGgBuY5e3aLQaYYoEeKho7SQSKOqe4dJ 4uj92v0nJxoLue20XBYG7eap36mR22k9NOIUIeSFWyftqNfas6GPFEGJtCW/DMUxJKs8G9a1W SP+MRl/
Archived-At: <https://mailarchive.ietf.org/arch/msg/softwires/mh53RSdChmgeMiq0W3m2gCNrxDI>
X-Mailman-Approved-At: Fri, 20 Jul 2018 01:32:57 -0700
Subject: [Softwires] Fwd: I-D Action: draft-ietf-softwire-map-radius-16.txt
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/softwires/>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jul 2018 08:30:30 -0000
Forwarding to the list. Hi Yu, Thanks for the update. I think the changes that you have made have improved the document significantly, but there’s still a few things that need to be addressed. Please see below. Also, Jordi asked a question about this draft, which I don’t think has been replied to: https://mailarchive.ietf.org/arch/msg/softwires/_7ocUxBwy9i2UqNj2tzqri9p0Gw <https://mailarchive.ietf.org/arch/msg/softwires/_7ocUxBwy9i2UqNj2tzqri9p0Gw> Thanks, Ian New comments on -16: Throughout - the use of 'Sub TLV' and 'Sub-TLV' is not consistent. Sub-TLV seems to be the convention in other RFCs (e.g. RFC6929). Introduction. s/At the Section 4.9/In Section 4.9/ As the softwire prioritisation funciton of RFC8026 is also included, there should be a short paragraph (a cut down version of sec 4, para 3) stating that this function is included. Section 3, point 6. In the diagram, you show a simple reply message being sent to the client, but the accompanying text describes a number of other communication flows and updates that can potentially need to happen. Really, the whole of this section is not really well constructed in it's current form. The purpose of the numbered points is to describe what is in the flows in the diagram, but point 6. goes on to included a further page and a half of options and considerations. Can point 6 not be ended after the sentance ending ...enumerated in the ORO.? and the remaining text in section 3 be put into relevantly named sub-sections. 4.4.2 S46-BR Sub TLV S46-Lightweight--4over6 TLV - please remove duplicate '-'. 4.5 Sub-TLVs for S46-Rule Sub TLV Given the RFC2119 language used in the requirements for the other options, suggest the following: s/It should appear for once and only once./It MUST appear exactly once./ 4.6.2 The Bind-IPv6-Prefix Sub-TLV s/The bind-ipv6-prefix field specified in this field/The bind-ipv6-prefix specified in this field/ --------- Updated comments from my previous review: 1.f) After the sentence "A DHCPv6 server function is assumed to be embedded in the BNG that allows it to locally handle any DHCPv6 requests initiated by hosts." it would be worth adding that the term BNG is used througout the document to describe a device which functions as both the AAA client and DHCPv6 server. [if - New version is better, but a suggested rewording for these two sentances: A DHCPv6 server function is assumed to be embedded in the BNG that allows it to locally handle DHCPv6 requests initiated by hosts. The abbrieviation BNG is used in this document to describe a device which functions as both the AAA client and DHCPv6 sever.] 1.i) Last paragraph: It would also be worth saying how the structure of the DHCP options and field namings are preserved so they can easily be mapped between DHCP and RADIUS. [if - I can't find any changes in the text for this, or any repsonse to the comment.] ---------------------------- 3.c) The figure is easier to follow if it is space out a bit more and clafifies the first step: CE BNG AAA Server | | | |-------1.DHCPv6 Solicit------->| | |(ORO with unicast and/or m'cast| | | container option code(s)) | | | | | | |-------2.Access-Request------->| | | (S46-Configuration attribute | | |and/or S46-Multicast attribute)| | | | | |<------3.Access-Accept---------| | | (S46-Configuration attribute | | |and/or S46-Multicast attribute)| | | | |<----4.DHCPv6 Advertisement----| | | (container option(s)) | | | | | |-------5.DHCPv6 Request------>| | | (container Option(s)) | | | | | |<--------6.DHCPv6 Reply--------| | | (container option(s)) | | | | | DHCPv6 RADIUS [if - Old diagram is still present, please use the above figure.] 3.f) Replace: For the multicast case, OPTION_V6_PREFIX64 should be included for the delivery of multicast services in the context of transition to IPv6. with: For the multicast case, the the option number for OPTION_V6_PREFIX64 (113) should be included in the client's ORO. [if - Sorry, I doubled the word 'the' in my suggested text. Please use 'case, the option number'] 3.l) Item 3. uses an RFC2119 MUST statement. This is the first time in the message flow that any compulsory behaviour is defined. The requirements language should be consitent throughout all of the steps (either all RFC2119, or none) A MUST here is also strange. What if the AAA server doesn't have the requested configuration to supply to the client? [if - Sorry, I doubled the word 'the' in my suggested text. Please use 'case, the option number'] 3.m) In the DHCPv6 Advertisement message, there needs to be the corresponding DHCPv6 option holding the correct information from the RADIUS message. This means that we need to map the fields from the attributes to the options. A table showing how this mapping is done would be very useful. [if - I can't find any changes in the text for this, or any repsonse to the comment.] 3.p) "The recommended format of the MAC address is defined as Calling-Station- Id (Section 3.20 in [RFC3580] without the SSID (Service Set Identifier) portion." I don't understand the meaning of this sentence in context of where we are in the message flow. What is the MAC address that is needed at this stage? [if - The addtional text doesn't answer this question. The BNG is constructing a DHCPv6 Reply message. Where does a MAC address belong in this message? If it's the MAC address that it will source the DHCPv6 reply message from, why is it being changed at this stage rather than configured in advance (i.e. before the Advertise is sent) so it can be consistent throughout the whole DHCP message flow?] 3.r) The paragraph begining "The authorization process could also..." doesn't really make sense where it is located. The previous paragraph does not follow from the previous para. concerning lw4o6 syncronisation and refers to a previous scenario, although it's not really clear what that scenario is. This could be cleared up by (1) making it clear that section 3 fig 1. is describing combined Authentication and Authorisation. (2) Creating a sub-section for this paragraph (and the one below it) that detail what the changes are from the steps in section 3 (i.e. where additional attributes are needed / not needed and what they contain). [if - Currently still a problem, please see my general comments on this version above.] 3.s) The final 3 paragraphs deal with some error handling conditions. Perhaps a sub-section for these would make for a better structure? [if - The error handling text is now duplicated, once with bullet points and again in the body text. Please fix.] 3.u) There's no text on what happens when the client send a DHCPv6 Release, Decline, or an associtated DHCPv6 lease expires (invalidating any options supplied with that lease). [if - I can't find any changes in the text for this, or any repsonse to the comment.] On 26. Jun 2018, at 10:54, Yu Fu <fuyu@cnnic.cn> wrote: Hi Ian, Sorry to update the 16 version of this draft a little late. It takes me a long long time to redesign the format of Softwire46-Configuration Attribute and Priority Attribute and the nested TLVS according to the RFC6929 and RFC8044. And it also takes me a long time to double check the new formatting and the hierarchy of the nested TLVs. The main changes for this version are as followed base on your comments from WGLC. 1) As your suggested, it divided the Figure 2 into 3 diagrams (one for each type) for MAP-E, MAP-T, and Lightweight 4over6. So it can make the Figure 2 more clear to show which TLV is necessary and which is optional. 2) It makes a common format for the definitions of which RADIUS messages types the Softwire46-configuration/ Priority /multicast attributes can appear in the section 4.1 and 4.8. 3) It changes the description text and formatting of the Softwire46-configuration/ Priority attribute according to the RFC6929 and RFC8044 so as to consistent with the format of Softwire46-multicast attribute. 4) The IANA Consideration has been rewritten so that it will be more clear for the assignment of the Attribute Types and new RADIUS TLVs. 5) Some grammar mistakes and typos have been corrected. Your valuable comments are appreciated. Thanks Yu -----Original Message----- From: softwires-bounces@ietf.org [mailto:softwires-bounces@ietf.org] On Behalf Of internet-drafts@ietf.org Sent: Tuesday, June 26, 2018 3:59 PM To: i-d-announce@ietf.org Cc: softwires@ietf.org Subject: [Softwires] I-D Action: draft-ietf-softwire-map-radius-16.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Softwires WG of the IETF. Title : RADIUS Attributes for Address plus Port based Softwire Mechanisms Authors : Sheng Jiang Yu Fu Bing Liu Peter Deacon Chongfeng Xie Tianxiang Li Mohamed Boucadair Filename : draft-ietf-softwire-map-radius-16.txt Pages : 37 Date : 2018-06-26 Abstract: IPv4-over-IPv6 transition mechanisms provide both IPv4 and IPv6 connectivity services simultaneously during the IPv4/IPv6 co- existence period. DHCPv6 options have been defined for configuring clients to use MAP-E, MAP-T, Lightweight 4over6 and Multicast Basic Bridging BroadBand (mB4) in multicast scenarios. However, in many networks, the configuration information may be stored in an AAA server, while user configuration information is mainly provided by the BNG through the DHCPv6 protocol. This document defines three new RADIUS attributes that carry CE or mB4 configuration information from an AAA server to BNG. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-softwire-map-radius/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-softwire-map-radius-16 https://datatracker.ietf.org/doc/html/draft-ietf-softwire-map-radius-16 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-softwire-map-radius-16 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ Softwires mailing list Softwires@ietf.org https://www.ietf.org/mailman/listinfo/softwires >
- [Softwires] FW: I-D Action: draft-ietf-softwire-m… Yu Fu
- [Softwires] I-D Action: draft-ietf-softwire-map-r… internet-drafts
- [Softwires] Fwd: I-D Action: draft-ietf-softwire-… ianfarrer
- Re: [Softwires] I-D Action: draft-ietf-softwire-m… Yu Fu
- Re: [Softwires] I-D Action: draft-ietf-softwire-m… ianfarrer