IETF Logo Mail Archive

Re: [Softwires] [Gen-art] Gen-ART review of draft-ietf-softwire-hs-framework-l2tpv2-10

Mark Townsley <townsley@cisco.com> Tue, 23 December 2008 03:13 UTC

Return-Path: <softwires-bounces@ietf.org>
X-Original-To: softwires-archive@megatron.ietf.org
Delivered-To: ietfarch-softwires-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A87FC3A6A0B; Mon, 22 Dec 2008 19:13:43 -0800 (PST)
X-Original-To: softwires@core3.amsl.com
Delivered-To: softwires@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DCCE33A69A1; Mon, 22 Dec 2008 19:13:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.432
X-Spam-Level:
X-Spam-Status: No, score=-10.432 tagged_above=-999 required=5 tests=[AWL=0.167, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oZNeYWzabJYN; Mon, 22 Dec 2008 19:13:42 -0800 (PST)
Received: from ams-iport-1.cisco.com (ams-iport-1.cisco.com [144.254.224.140]) by core3.amsl.com (Postfix) with ESMTP id 504983A68A0; Mon, 22 Dec 2008 19:13:41 -0800 (PST)
X-IronPort-AV: E=Sophos;i="4.36,267,1228089600"; d="scan'208";a="29364891"
Received: from ams-dkim-1.cisco.com ([144.254.224.138]) by ams-iport-1.cisco.com with ESMTP; 23 Dec 2008 03:13:31 +0000
Received: from ams-core-1.cisco.com (ams-core-1.cisco.com [144.254.224.150]) by ams-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id mBN3DVNf025659; Tue, 23 Dec 2008 04:13:31 +0100
Received: from xbh-ams-332.emea.cisco.com (xbh-ams-332.cisco.com [144.254.231.87]) by ams-core-1.cisco.com (8.13.8/8.13.8) with ESMTP id mBN3DVxf018782; Tue, 23 Dec 2008 03:13:31 GMT
Received: from xfe-ams-331.emea.cisco.com ([144.254.231.72]) by xbh-ams-332.emea.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 23 Dec 2008 04:13:30 +0100
Received: from ams-townsley-8711.cisco.com ([10.55.233.226]) by xfe-ams-331.emea.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 23 Dec 2008 04:13:30 +0100
Message-ID: <4950575D.4090009@cisco.com>
Date: Tue, 23 Dec 2008 04:13:33 +0100
From: Mark Townsley <townsley@cisco.com>
User-Agent: Thunderbird 2.0.0.18 (Macintosh/20081105)
MIME-Version: 1.0
To: Carlos Pignataro <cpignata@cisco.com>
References: <9FA859626025B64FBC2AF149D97C944A01074B3E@CORPUSMX80A.corp.emc.com><49401299.4010203@cisco.com> <49427871.8040204@cisco.com> <9FA859626025B64FBC2AF149D97C944A01074B84@CORPUSMX80A.corp.emc.com> <494314A7.5050507@cisco.com> <9FA859626025B64FBC2AF149D97C944A01074C43@CORPUSMX80A.corp.emc.com> <4950547D.106@cisco.com>
In-Reply-To: <4950547D.106@cisco.com>
X-OriginalArrivalTime: 23 Dec 2008 03:13:30.0188 (UTC) FILETIME=[6E2598C0:01C964AC]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=3452; t=1230002011; x=1230866011; c=relaxed/simple; s=amsdkim1002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=townsley@cisco.com; z=From:=20Mark=20Townsley=20<townsley@cisco.com> |Subject:=20Re=3A=20[Gen-art]=20[Softwires]=20Gen-ART=20rev iew=20of=20draft-ietf-softwire-hs-framework-l2tpv2-10 |Sender:=20; bh=4ae684yBwmuwcPcEyiSbcWLZP8Fm9uK4eFTlznfNC/w=; b=YX0LH/4bZA1dQheDMv108Od0EgMdpVoMyDq3LeUeHV90xDIQbfhMtcZVpu 72t/bZD4ptszOWUBjVpOZB3bld6l4lqOfAVEyiw4s3WSBxVDng6cW0JOYSqF XlwnVwVqeo;
Authentication-Results: ams-dkim-1; header.From=townsley@cisco.com; dkim=pass ( sig from cisco.com/amsdkim1002 verified; );
Cc: softwires@ietf.org, gen-art@ietf.org, Black_David@emc.com
Subject: Re: [Softwires] [Gen-art] Gen-ART review of draft-ietf-softwire-hs-framework-l2tpv2-10
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/softwires>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: softwires-bounces@ietf.org
Errors-To: softwires-bounces@ietf.org

Carlos Pignataro wrote:
> WG,
>
> On 12/22/2008 7:49 PM, Black_David@emc.com said the following:
>   
>> After a lengthy private discussion with Carlos, and some
>> serious "quality time" spent with RFC 2661 ;-), here's
>> where I think the two major issues from my Gen-ART review
>> of this draft stand:
>>
>> (1) AVP for softwire profile of L2TPv2.  I'm no longer
>> convinced that a new AVP is needed, but the specification
>> of the profile needs significant clarification and cleanup.
>>     
>
> For completeness, I do not think that significant cleanup is needed, but
> rather that some localized editorial clarifications of context might
> help the reader. In any case, one of the big decisions in this
> discussion is that there's no new "softwire AVP", and some fall out is
> that S5.1.1.X can use more specific descriptions.
>
>   
>> For example, what happens if a softwire implementation of
>> L2TPv2 happens to receive an OCRQ message?
>>     
>
> For example, draft-ietf-softwire-hs-framework-l2tpv2 specifies that:
>
>    in the Softwire context, the voluntary tunneling model applies
> ...
>    Since L2TPv2 compulsory tunneling model does
>    not apply to Softwires, it should not be requested or honored.
> ...
>    In the Softwire "Hub and Spoke" model, the Softwire Initiator (SI)
>    assumes the role of the LAC Client
>
> And more notably:
>
>    No outgoing or analog calls are permitted.
>
>
> So, if a softwire implementation of L2TPv2 happens to receive an OCRQ
> message, it needs to CDN it (as strongly hinted though not explicitly
> spelled out; for a versatile and variation-rich protocol as L2TP a this
> seems a self-evident exception protocol paths for softwire). The
> fall-through protocol definition lies in RFC2661 (the doc says "as
> defined in [RFC2661]"), and that scenario is the same as "if a full
> RFC2661 implementation of L2TP not configured for outgoing calls
> receives an OCRQ message".
>   
That was certainly my thinking here... If OCRQ functionality is not 
supported, send a CDN.
>
>   
>> This has also
>> turned up a topic that needs to be covered in the Security
>> Considerations section - a brief discussion of the security
>> consequences of the recommendation not to hide AVPs.
>>     
>
> Right, this is one new thing that came up, from looking into the Random
> Vector AVP. The document is recommending not to hide AVPs, from the very
> original text. But, I think, the document "MAY" allow AVP hiding
> (instead of describing the consequences of not hiding).
>   
I see no problem updating the security considerations to point out the 
weaknesses of the hiding mechanism with 2009 knowledge vs. the 1999 
state of the art when L2TP first made it from draft to RFC.

- Mark
>   
>> (2) RFC 5405 and UDP.  In addition to referencing RFC 5405,
>> a recommendation for L2TPv2 use of PMTUD will be added.
>>     
>
> We will describe all the changes when we post an updated version of the
> document.
>
> Thanks,
>
> --Carlos.
>
>   
>> Thanks,
>> --David
>> ----------------------------------------------------
>> David L. Black, Distinguished Engineer
>> EMC Corporation, 176 South St., Hopkinton, MA  01748
>> +1 (508) 293-7953             FAX: +1 (508) 293-7786
>> black_david@emc.com        Mobile: +1 (978) 394-7754
>> ----------------------------------------------------
>>
>>     
>
>   

_______________________________________________
Softwires mailing list
Softwires@ietf.org
https://www.ietf.org/mailman/listinfo/softwires

v2.23.0 | Report a Bug | By Email