Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB Dr. Review
"Kalyan (Srinivas)Tata" <stata@checkpoint.com> Tue, 09 March 2010 07:27 UTC
Return-Path: <stata@checkpoint.com>
X-Original-To: vrrp@core3.amsl.com
Delivered-To: vrrp@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3DFFA3A6878; Mon, 8 Mar 2010 23:27:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.669
X-Spam-Level:
X-Spam-Status: No, score=-2.669 tagged_above=-999 required=5 tests=[AWL=0.929, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, WEIRD_PORT=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q6TdIOjC1YzS; Mon, 8 Mar 2010 23:27:47 -0800 (PST)
Received: from us.checkpoint.com (usmail2.us.checkpoint.com [216.200.240.146]) by core3.amsl.com (Postfix) with ESMTP id B87C13A67B3; Mon, 8 Mar 2010 23:27:47 -0800 (PST)
Received: from us-ex01.ad.checkpoint.com (localhost.localdomain [127.0.0.1]) by us.checkpoint.com (8.13.5/8.13) with ESMTP id o297RbjK027460; Mon, 8 Mar 2010 23:27:38 -0800
Received: from USEXCHANGE.ad.checkpoint.com ([216.200.240.133]) by US-EX01.ad.checkpoint.com ([216.200.240.139]) with mapi; Mon, 8 Mar 2010 23:27:58 -0800
From: "Kalyan (Srinivas)Tata" <stata@checkpoint.com>
To: Joan Cucchiara <jcucchiara@mindspring.com>, Mukesh Gupta <mukesh@juniper.net>, "Romascanu, Dan (Dan)" <dromasca@avaya.com>, Adrian Farrel <Adrian.Farrel@huawei.com>, Ronald Bonica <rbonica@juniper.net>, "tata_kalyan@yahoo.com" <tata_kalyan@yahoo.com>, "vrrp@ietf.org" <vrrp@ietf.org>
Date: Mon, 08 Mar 2010 23:27:57 -0800
Thread-Topic: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB Dr. Review
Thread-Index: Acq8m1X7o+23A1VGQBqqieCc8WuA7wCsXVRw
Message-ID: <9FFC3234F1B7F0439C9B8BF94A83F48214ACB1A6A2@USEXCHANGE.ad.checkpoint.com>
References: <9CEB032BDB454422BA9F65732441BDF0@your029b8cecfe> <EDC652A26FB23C4EB6384A4584434A0401F0DE0F@307622ANEX5.global.avaya.com> <001c01caaa58$e7924fd0$6501a8c0@JoanPC> <EDC652A26FB23C4EB6384A4584434A0401F0E16E@307622ANEX5.global.avaya.com> <497B6D90E0023142AF34948DEFFAB38D3A8772AFBA@EMBX01-HQ.jnpr.net> <002201cabc98$04417510$6501a8c0@JoanPC>
In-Reply-To: <002201cabc98$04417510$6501a8c0@JoanPC>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Mailman-Approved-At: Mon, 08 Mar 2010 23:45:33 -0800
Cc: "MIB Doctors (E-mail)" <mib-doctors@ietf.org>, "vrrp-chairs@tools.ietf.org" <vrrp-chairs@tools.ietf.org>, Radia Perlman <radia@alum.mit.edu>, "draft-ietf-vrrp-unified-mib@tools.ietf.org" <draft-ietf-vrrp-unified-mib@tools.ietf.org>
Subject: Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB Dr. Review
X-BeenThere: vrrp@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Virtual Router Redundancy Protocol <vrrp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/vrrp>, <mailto:vrrp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/vrrp>
List-Post: <mailto:vrrp@ietf.org>
List-Help: <mailto:vrrp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/vrrp>, <mailto:vrrp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Mar 2010 07:27:49 -0000
HI Joan, My comments inline. MIB Compiler: SMICng -------------------- W: f(VRRP-MIB.my), (437,8) Row "vrrpAssociatedIpAddrEntry" has indexing that may create variables with more than 128 sub-ids W: f(VRRP-MIB.my), (158,23) Row "vrrpOperationsEntry" does not have a consistent indexing scheme - index items from current table must come after index items from other tables W: f(VRRP-MIB.my), (453,23) Row "vrrpAssociatedIpAddrEntry" does not have a consistent indexing scheme - cannot specify an index item from additional "base row" vrrpOperationsEntry, since can have only one "base row" which is ifEntry WRT the INDEX To Large error. I think this was addressed by Bert Wijnen in prior versions but I don't see any wording in the DESCRIPTION clause or any SIZE limit on the Index vrrpAssociatedIpAddr. So something like this (and some text describing why the size limits in the DESCRIPTION clause would be appropriate. Additionally, the vrrpOperationsInetAddrType should be restricted. vrrpAssociatedIpAddr OBJECT-TYPE SYNTAX InetAddress (SIZE(0|4|16)) MAX-ACCESS not-accessible STATUS current DESCRIPTION [Kalyan>] Will do. Please discuss the other 2 warnings wrt Indexing. Specifically, why are tables using AddrType, VrId and ifIndex, rather than ifIndex, VrId, AddrType? (Please see comment below regarding section 8.) [Kalyan>] The table indexing order was suggested by Bert during very initial review of the draft. The comment was that it would be easier for the administrator to sort based on the address type. Though I am not sure if I changed from ifIndex, VrId, AddrType. I probably had it wrong at that time too. I will change this ifIndex, VrId, AddrType MIB Compiler: SmiLint ------------------------ mibs/VRRP-MIB.my:437: [5] {index-exceeds-too-large} warning: index of row `vrrpAssociatedIpAddrEntry' can exceed OID size limit by 142 subidentifier(s) Comments -------- 1)NIT: Does not strip cleanly with SmicngPRO mstrip (This doesn't need to be fixed for MIB Dr. review, just as an fyi). [Kalyan>] Will fix it. 2) Please Discuss: My understanding (based on an old email exchange (fall 2008) with the MIB author and the AD of the WG at that time) was that the VRRP unified MIB was not going to be an update of the original VRRP-MIB (RFC2787), but rather a new MIB based on the new unified spec that was being created. There are a couple issues that I'd like clarified wrt to an updated MIB (this draft) vs. a new MIB: A) draft-ietf-vrrp-unified-spec-05.txt, section 8.4 states "that VRRPv2 and VRRPv3 interoperation is optional" and the recommendation is that it should only be done for transitioning from VRRPv2 to VRRPv3. A new MIB (rather than an updated MIB) would likely re-enforce the guidelines from the specification. Could you discuss why an updated MIB is better in this regard? B) Additionally, this new MIB is based on a MIB that is 10 years old (RFC2787), while not specifically an issue, I do see that this updated MIB is using older MIB conventions. Not a show-stopper but certainly a consideration. Was this considered? C) Comment: Most of the MIB objects contained in RFC2787 are deprecated by this MIB. This indicates that creating a new MIB would be fairly straightforward. [Kalyan>] We had this discussion during the first draft. At that time updating made more sense but now with a separate unified spec, probably creating a new MIB would be better. Also my reasoning was that the previous draft has gone through multiple reviews and revisions, I wanted to just make the required changes to quickly get this done with less issues (and less work from me :) ). But, I see your point, a new draft would certainly be much cleaner and probably the way to go. 3) The terminology of this document does not consistently utilize the Definitions outlined in the draft-ietf-vrrp-unified-spec-05.txt. So for example, VRRP is used in places to mean VRRP Router. The use of IPvX is not done. Would be better to be consistent between the spec and the MIB. [Kalyan>] Will be more aware of this in the next revision. 4) DEPRECATED OBJECT DESCRIPTIONS: Way back when, Dave Perkins suggested starting the DESCRIPTION clause for a deprecated object with: "This object is DEPRECATED. This is done because..." followed by the original description. While you have done a great job including the reasons why an object was deprecated, could you move this to the beginning of the DESCRIPTION clause (rather than end)? [Kalyan>] Will do. 5) Title: Please mention that this is Version 3 somewhere in the title (as does the specification) [Kalyan>] I remember asking Mukesh if we should change the title and I think he mentioned that we keep the same one. We can change the title if we are going with a new MIB. [Kalyan>] 6) Section 4. Relationship to RFC2787 The following sentence is troublesome because the MIB Module "deprecates" objects and does not obsolete them. While you may be trying to indicate that this document will obsolete RFC2787, that is not exactly clear. (perhaps, this is another reason to create a new MIB module vs. an updated one?) "RFC2787 [RFC2787] defines managed objects for VRRP over IPv4 and is now obsoleted by this memo." [Kalyan>] I was meaning to say that this document will obsolete RFC2787. I get it :), going to a new MIB probably is the right thing. 7) Section 5. Relation to Interface Group (IF-MIB) A) Please remove the word "physical" in front of physical interface. [Kalyan>] Will do. B) Should specify a reference such as: The VRRP-MIB Module imports ifIndex from the IF-MIB. At this time, the latest version of IF-MIB is from [RFC2863]. C) A reference to [RFC2863] needs to be provided in the Normative References. [Kalyan>] Will do 8) Section 7. VRRP MIB Structure This section should discuss the relationship between the tables. The groups listed are part of the conformance, and while okay to mention these, that really isn't the MIB's structure. NIT: Should have a (3) before "The vrrpAssociatedIpAddrTable" [Kalyan>] Will do. 9) Section 8. VRRP MIB Table Design The MIB design should focus on indexing the tables such that the table lookups are more advantageous for the device (e.g. router), not the NM app. The NM app should be able to handle rearranging data for display purposes. I would like to see a discussion of the indexing wrt the device. The warnings from the MIB compiler indicate that there may be a better indexing (table structure) available. That doesn't mean that you need to resolve the warnings, but I would like to see some text included which shows why the chosen indexes are advantageous for the VRRP router, and the Virtual Routers. IMHO, if an interface goes down, then would be probably more advantageous to know the Virtual router(s) associated with that interface. (and subsequently the IP addresses on those Virtual Routers). Please combine Section 7 and Section 8. [Kalyan>] I do not have any strong reasons for the indexing, As I mentioned, It was suggested in the earlier meeting and it remained that way during all these revisions. I will change this to ifIndex, VrId, AddrType 10) Section 9. Thank you for these examples. 11) Section 10. Please specify that this is the VRRP MIB Module Definition * DATE and REVISION dates need to be updated. * VrId (Textual Convention) There is already a VrId in RFC2787. While it looks as if the only difference is the DESCRIPTION clause, need to caution against doing redefining this. I would suggest creating a VRID TC and making the DESCRIPTION simple, for example: This value uniquely identifies a Virtual Router on a VRRP router. While the remaining text is informative, it is not really necessary. Please also give a REFERENCE clause for this. [Kalyan>] Agreed. * vrrpNodeVersion This scalar has correctly been deprecated, but I don't see any version object replacement in a table. Why not? (There is field in the protocol for this.) [Kalyan>] This MIB would support only version 3 of the protocol and hence I removed the version from the table. * vrrpNotificationCntl, vrrpTrapNewMasterCntl, vrrpTrapProtoErrorCntl Could notifications be generated or not, using RFC3413? [Kalyan>] Notifications could be filtered/generated using RFC3413. I added these to conveniently control notifications within this MIB (Based on request from some one on the mailing list) You suggest we getrid of these? *StorageType objects: If an operator configures the VRRP Router with Virtual Router(s) and IPvX addresses then I suspect that this information would be saved to nonVolatile storage. Do you agree? In other words, I'm trying to think of a scenario when an operator wouldn't want to save this information (once he/she is satisfied with the configuration) in the sake of simplification, would there be benefit to just state that the configuration should be saved to NV storage? If so, then the use of StorageType objects in this MIB could be removed and replaced with text in the Table Entry DESCRIPTION. (RFC4181, Section 4.6.4 specifies that StorageType objects can be used OR, the Table Entry DESCRIPTION clause specify what happens to dynamically-created rows after an agent restart.) [Kalyan>] I am OK with either way of doing this - Will add the text to description and remove the StorageType. [Kalyan>] * RowStatus Objects There is some discussion about having to have the corresponding Virtual Router in vrrpOperationsState have the value of 'initialize' before changing a value in the Row, and then the RowStatus object is supposed to not be "active(1)", but I don't understand what values are acceptable for modifying a read-creat object in a row? Also, how does this impact vrrpOperationsState? * NIT: AdminState and OperationsState, could these be renamed to use use AdminStatus and OperStatus? [Kalyan>] Will do. * vrrpRouterVrIdErrors Please verify that the DESCRIPTION is still valid for this MIB? Should a value be added to the Statistics Table instead (i.e. on a per Virtual Router basis? [Kalyan>] vrId itself is invalid, so we probably cant index into the table? (as one of the indexes for the table is vrId)? May be I am not understanding the problem correctly. * Please refrain from using the term "trap" in the current objects/notifications. Please use the term "notification" as appropriate for the current objects/notifications. (Deprecated items are fine to leave the term trap.) [Kalyan>] Will do. * vrrpNewMasterReason, vrrpTrapProtoErrReason Where are these Enum values from? Could you add a reference? Also, please explain the values. [Kalyan>] These are not defined in the spec. We just came up with possible reasons for a VR to transmission to Master state. * Conformance looks fine, but will review again once above MIB Module comments are addressed. Same with security section. [Kalyan>] Thanks again for the detailed review. I probably is a good idea to start with a new MIB and address all the issues you raised. Thanks, -Joan _______________________________________________ vrrp mailing list vrrp@ietf.org https://www.ietf.org/mailman/listinfo/vrrp Scanned by Check Point Total Security Gateway.
- [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB Dr.… Joan Cucchiara
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Joan Cucchiara
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Joan Cucchiara
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Mukesh Gupta
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Joan Cucchiara
- Re: [VRRP] draft-ietf-vrrp-unified-mib-07.txt MIB… Kalyan (Srinivas)Tata
- Re: [VRRP] Going on Vacation 7/5 to 7/23 Kalyan (Srinivas)Tata
- Re: [VRRP] Going on Vacation 7/5 to 7/23 Joan Cucchiara