IETF Logo Mail Archive

Re: [yang-doctors] [I2nsf] Yangdoctors early review of draft-ietf-i2nsf-nsf-monitoring-data-model-04

Reshad Rahman <reshad@yahoo.com> Wed, 24 February 2021 16:40 UTC

Return-Path: <reshad@yahoo.com>
X-Original-To: yang-doctors@ietfa.amsl.com
Delivered-To: yang-doctors@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A2173A0B53 for <yang-doctors@ietfa.amsl.com>; Wed, 24 Feb 2021 08:40:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RRHuKH0iB8yP for <yang-doctors@ietfa.amsl.com>; Wed, 24 Feb 2021 08:40:33 -0800 (PST)
Received: from sonic317-26.consmr.mail.bf2.yahoo.com (sonic317-26.consmr.mail.bf2.yahoo.com [74.6.129.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 36D023A0A0B for <yang-doctors@ietf.org>; Wed, 24 Feb 2021 08:40:33 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1614184832; bh=sMI2G0KRKZ5j+VGCO5rVvXgIreoZJRBxkNr9qBai+JI=; h=Date:Subject:From:To:CC:References:In-Reply-To:From:Subject:Reply-To; b=oxEGRlLKDGrPMyd6/gwXCb02Ft/y5p2cDPrc6bcNWTRIdYXLVmrRWDbiPx758DPR0hH1DB/Cx7rYcCd//dLtxdqLBTiYOEKoUd2a1C0jIErbGm+HPRrvKqY75kTFw/VzVfOtlWuK1FqhvqjxokW1FyVWJFNewlNCRO4M5eODEw8NI/k1HSp9Mrdz+zfJVa+kzN8SOEFQW5DD6qidgERAIh9lNne2SbtbMr6ap9j1aEvYx6MosIngtNzddW2WiIn+BmVf/57IWSc/LjNRR7sA4k67gdbPFfCGTXIb1GxWO44h9dej200HQT2iXtvEclV2yaAp9+mC5lcoCASwoJW1sg==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1614184832; bh=12buPfAsb2O0SqOgblkrkR3G/dfg3l2n/GsQiw+rsca=; h=X-Sonic-MF:Date:Subject:From:To:From:Subject; b=BZGM4HVajcNizCYIdbDMqoAqmzorRL8qUcCXbL880UcS7/cn9Ng6pRJKo/aUdxZgWX8q1dEu4IYAmra8MPtaieVeCJMyfQAq/v0OKH6bcd2wxBF+fe0qH9d+m7pY5pYjlTNrCdK7p9nfHZ6yOLUW4V4rlCg05So+WEKGNgQyxjnaBmzaow5pfajyy+9aMP3uF8aJJW6fcG4/jL+eT5TXuPttuyGmcgdkDVG0qgU/74SVX3WY4qSOiwcm4LhvPB9fehjfDe7Rrzc8Gzuc17Q0ZHYbQCkux17MiRAQ0XLinA96UMXE13Lh1SFHeEUiLaapI/GXAU7PvkFufj7vMsLHuA==
X-YMail-OSG: XekCv4QVM1nKV988stuylfZKxHaiGPPEHMuD4ZGEgihAYWGUF8jp7XDbD_WARhA 50BXjDf_PnjCaXSRdDm5hZB3Fw59Et45sPsi98VUSDFYmNxRvdGz6iabhOfYfiPcywzUFYV4CE3H yrTUyOO8Bp7fxmJnN9WypNRjfB413tTdONIw7m68KkmG86PLKmMA8WYKWsxzVDolqDn0KARwH_Tq flIbnWZ8bH1udSvOjKe1cf9x15D67pdvLB6dImhHyQpHU5ftxhuRiVipbHV5UBsvKkcDekksTb0X p.15oToVBS1Li7pqR0Mb9fnYobN4ONkvOek2yexbBhWZmKwnPm73woNYJLku0n1IJNkF7pEcRunT OPrI5hdO_lWdJ..tER1A7H0TJqQp.KgLUhcSciT3_1cBas1Va6rwi.r4QB64GIMMnS_KFGg84d7G XequHMLOoZK6DSkizAFRLtfHV2n9Ix.dneexYYNS3IoUkvYdsws3PLWwexQWhyRriKvykOuhgFCk G48LBe8.vEtnTINFyPlQsFDoQkQ9H6EqN2OmL5YUnw7izHQXSnV6hWDWgtUJ8.SGEV6dIpqpN2A. rno7C2Xzhjc.RZX_ge_d380p2NQD2t7Z54ozed.TWz.akB0aXBSljKmMiyhUIdDXvlBXb09PlR._ rJPgqNn6D6z31rXEuFcmIi5J1sEBMN4byQBEXXfGSOanqvbfu73_yVlgAo6a9hZC1PaZYSiY9DEL s41_kBAPivezeKAqUalE00HufoR052UPBj5N34bVK0kLQYgOaN9syao0U4PULYzxwZkd9WPbUM5P bZPMH4lzygKuv61koHYaSiGLhnU0ulmhnG5Go8P48dwFNJtlLqt7EWxT5C3Va9iGArSXrbG14X4d HScDPpFbscplkECEPnE4hpBW5fa8GXK7wcZuBimS8eYUschu2XmeSVzdSEgFk8gRblBFD.X.FzJg 5jpXMPg25aBMbjYFBnvhuroTIf0OeDDP02Y2rI0O0LrbllPHWQIu3G.nVABo5YGjYeZGI3t1Vcm0 i.WR.N3x_m7I8wS5RSwI01NO90iCp8wDXEDq7CzIZF5cWxuTQYpKPLDNSaS5clUBH291tqOfZgS4 V_XdGgnqyeFSsWq5ajG.mo50D5Qz3M9LQ55IiKfNWyf6wDnn4A.psmhOtEG52nbgJ3VIbqZpYB4y xcI0xKGywkfFnI_5.uMt7faozvn02cWZDlkKMrllkhzqLOmDpPBB5y..ZPe72Mhbd8Su0OxaFpG0 UwVirU3GfKD882aHdwd0bg_MVEKCWut8s5dYGZCUJnmzplJV6wPqB.2fq_cQlLY8SSkaj1rkuqP8 nznJ18uNHL9X4X4hx8p8iy73rG9ltyPRGWqYSZJNygHeIpqsowtX3EEqcao_TmalPykCAN3._2cW iKWZiI4CwB7SzbpC7STzJAOJsq7l3Zwu4DXZ220svSI4ss1xqxuOHJdQ5fMqJov6Vb3sON7Evq7z Vq0dlGfVNWEBa8cCfQfwZfpzg0XfpBJWEhEGNS2_XD4iQBS446CPh70MmH__IUgqmgYy9LVzD_xk tTk43kkN6SxDv4I6Eigwx78ICDUi7oUdsJqIjhCohWPHu68yEoV1aLe7KXcJbQrTa.5zLafT_zDn Bp72oHdWvN3uv4kNxNuy5DgTo6LdCsw8ZUphRnGW75Y7H4NZOS3Gt0cavQB4rMrA24L7hy6GZUOc b2jGRJzeDhSsbxrSYV.CBXBNR3Eo.nEwlEuSkqMShs6b9UlKRlJfunfBztrT4nGa4zkC1hURGvgG zap.y3a5xkMSUrCHT0gB.tI4vWi7liWGYbTRYOAtX_u5Q1lPDFibhoFRzq3Cbl4qqQ8srf5s5RCo 75FH_Fmukub2Gdx3VXTW4Lqubv3_L87lEsAj2a..FVn1vFbEkw9ZiPIOiP25Zc3emrjNC.fId5sm Bif7Vf4JoiRuV4BplizJ1TE.ACX3iBEEPEOYOjNmuSmYgfQnrSnToNeySVFvrPkCHmw5zHmJDgdb g4QmOfiQu4YokG0WpgHa7yyvbHthrhUp_oTQ8DqBGaQMZfet8sHpWfMsYw1NAg4oQXMKTCJerv4q P6x2VI7FHJxaMuDq._WoQIDoNHW_TF3v47yb9I_hbQyP991c1KHoJExwGtmzHEBJgfkUhGrXRqNV 2BGpvLIUkzGAWT.AXQYAPU3bCZ73e7h6kjtY647rvjP6zWGGgUfnM37U8IZUDMsoDoImLQpfTZDy 1ZAVmFWmOAbFoeACJ0t8eZi14WlhdHdT3cL3fEzpT1BQ_Bv5IRjmSoC93maJNG4G7po2mlLiKuxj spF4v4YcMf6qoA3JK6tuakeVraP43gm4sQ3E8ndpfWWPlcGDLKAZytCLuFO9DRcgSRi.M4va05Cb M7V7033Mqf6ri6mqyjc1fUjeP1fNFQfDO2mEUhq28cyehQPzzDRH2mv1dOdWZcyLEYCxpFqubh5a mKRHo26ElOvIGeo4kWL1e9OXeziUw5Rev8jI303GFx75bjwnR9l_ZvqNRMpJqj2cqNN2V559RCI6 Gq5_Q._MBSue8GEzifafTzsAZbhAV11ai0wAnmkwIQcskuGSx2MNx92zl0lC8PJp3H7qLDnKnO7C AU2JQFpcLl4moE1wbUJhwUkgEtjhAYcynk0FEdawRzX9XzyqtzsqNRq4gPSdsnNrtR7CsrfYHB86 sVgA4AI1CF3pv00B9XRJBBEeTqrubkv0n5L93lOWW3x_TeLkpTsVizwJkpd3aeZtpFncGLesJVd9 qD8R32qXjQSRHly7KvQQ.qkz4wHPfFzyHpgQAKiiS.hN5ROuRvvtVeVQMus3VTfjgFJ5BSo9poH1 pj7nOj73KCdd4j0rTtZl6UrwkhO52_G9S4Yu7HqO1xTi9gcxE8._rW6jekuSCTEoxivrvTq1xnkm VRvxiTSdPJ8JeunNFAEkytYVN7sZs579iqHPIkER5OGNtn2gr0LgM65BmZTKk5HcYGfkD6z9yhc3 CllrRsCvDJZv6m3XdMbOi3BDFr.hRyQq1BBs2qLwbhbH2huan0LKwKR2anUWySliYh1ZUH3kF9j7 FTgoVbvbP9oE6XMPrubk0wgtc8Gnex5Bw.3NAl2D.0Ogi50P0fxJZ92QSYUVKsvj6IZJDGDDZ3R_ ejg6yRUTxihnV0g--
X-Sonic-MF: <reshad@yahoo.com>
Received: from sonic.gate.mail.ne1.yahoo.com by sonic317.consmr.mail.bf2.yahoo.com with HTTP; Wed, 24 Feb 2021 16:40:32 +0000
Received: by smtp413.mail.gq1.yahoo.com (VZM Hermes SMTP Server) with ESMTPA ID 7d6b8a14c214263a7bc663b46f6b67a1; Wed, 24 Feb 2021 16:40:26 +0000 (UTC)
User-Agent: Microsoft-MacOutlook/16.44.20121301
Date: Wed, 24 Feb 2021 11:40:19 -0500
From: Reshad Rahman <reshad@yahoo.com>
To: Andy Bierman <andy@yumaworks.com>
CC: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>, Roman Danyliw <rdd@cert.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, JungSoo Park <pjs@etri.re.kr>, Yunchul Choi <cyc79@etri.re.kr>, Patrick Lingga <patricklink888@gmail.com>, YANG Doctors <yang-doctors@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>
Message-ID: <B04E9EA2-C43F-4DA4-9D93-DEFFEE20993D@yahoo.com>
Thread-Topic: [yang-doctors] [I2nsf] Yangdoctors early review of draft-ietf-i2nsf-nsf-monitoring-data-model-04
References: <160192102291.6633.15935674903085952087@ietfa.amsl.com> <CAPK2DewwLOJnnj1ZEYMSvZB1Hpc-8rY1+-dFvzOkJvrT4X2jqA@mail.gmail.com> <CABCOCHRaSTLDngZnMaQFiq05AZbymJfFFVY+P_fmzuU4e3S7FQ@mail.gmail.com> <01E6A215-B86F-4F69-93B5-0CA124DF0A02@yahoo.com> <CABCOCHTrOkhfpvr2L9yRzXxVJjiF8pNYXQ-G8TLV8MD-i_XSpA@mail.gmail.com>
In-Reply-To: <CABCOCHTrOkhfpvr2L9yRzXxVJjiF8pNYXQ-G8TLV8MD-i_XSpA@mail.gmail.com>
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_3697011625_969592961"
X-Mailer: WebService/1.1.17712 mail.backend.jedi.jws.acl:role.jedi.acl.token.atz.jws.hermes.yahoo Apache-HttpAsyncClient/4.1.4 (Java/11.0.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/yang-doctors/vg8km4W_K7GGFzT4iS-OrreLNsI>
Subject: Re: [yang-doctors] [I2nsf] Yangdoctors early review of draft-ietf-i2nsf-nsf-monitoring-data-model-04
X-BeenThere: yang-doctors@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Email list of the yang-doctors directorate <yang-doctors.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/yang-doctors>, <mailto:yang-doctors-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/yang-doctors/>
List-Post: <mailto:yang-doctors@ietf.org>
List-Help: <mailto:yang-doctors-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/yang-doctors>, <mailto:yang-doctors-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Feb 2021 16:40:36 -0000

 

 

From: Andy Bierman <andy@yumaworks.com>
Date: Wednesday, February 24, 2021 at 11:30 AM
To: Reshad Rahman <reshad@yahoo.com>
Cc: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>, Roman Danyliw <rdd@cert.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, JungSoo Park <pjs@etri.re.kr>, Yunchul Choi <cyc79@etri.re.kr>, Patrick Lingga <patricklink888@gmail.com>, YANG Doctors <yang-doctors@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>
Subject: Re: [yang-doctors] [I2nsf] Yangdoctors early review of draft-ietf-i2nsf-nsf-monitoring-data-model-04

 

 

 

On Mon, Feb 22, 2021 at 7:31 PM Reshad Rahman <reshad@yahoo.com> wrote:

I cannot figure out how to enter a new review in the IETF pages (even logged in),

I have run into the same issue in the past. You need to go to the actual review link, https://datatracker.ietf.org/doc/draft-ietf-i2nsf-nsf-monitoring-data-model/reviewrequest/13767/ in this case, and click on the “Correct review” button. My recollection is that this will create a newer version of the review.

 

 

But I am not modifying my review of the old draft.

I am entering my review of the new draft.

<RR> Version 00 will remain as a review of the old rev. The new version will be a review of the new draft (you can provide a new reviewed revision).

I agree that correct review implies that you can only change the review of the old rev, so the button should probably be “Correct/new review” instead. Anyway I believe that, even though the UI is misleading, you can enter a new review while keeping the old review.

 

Regards,

Reshad.

 

I think a better procedure would be for the authors to request a new review for the updated draft.  

Hopefully the same reviewer can be assigned automatically.

 

 

Regards,

Reshad.

 

 

Andy

 

From: yang-doctors <yang-doctors-bounces@ietf.org> on behalf of Andy Bierman <andy@yumaworks.com>
Date: Saturday, February 20, 2021 at 12:11 PM
To: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Cc: Roman Danyliw <rdd@cert.org>, "i2nsf@ietf.org" <i2nsf@ietf.org>, JungSoo Park <pjs@etri.re.kr>, Yunchul Choi <cyc79@etri.re.kr>, Patrick Lingga <patricklink888@gmail.com>, YANG Doctors <yang-doctors@ietf.org>, skku-iotlab-members <skku-iotlab-members@googlegroups.com>
Subject: Re: [yang-doctors] [I2nsf] Yangdoctors early review of draft-ietf-i2nsf-nsf-monitoring-data-model-04

 

Hi,

 

I have reviewed the module in draft-05.

Thanks for the revision letter. That really helped make the review go fast.

All my draft-04 comments have been addressed.

 

I cannot figure out how to enter a new review in the IETF pages (even logged in),

so it is attached here. pyang is reporting some minor style issues.

 

 

Status: Ready with nits (see attached file)

 

 

Andy

 

 

On Wed, Feb 17, 2021 at 7:15 AM Mr. Jaehoon Paul Jeong <jaehoon.paul@gmail.com> wrote:

Hi Andy,

Patrick and I have addressed your comments on the following revision:

 

https://datatracker.ietf.org/doc/draft-ietf-i2nsf-nsf-monitoring-data-model/

https://tools.ietf.org/html/draft-ietf-i2nsf-nsf-monitoring-data-model-05

 

I attach the revision letter to explain how to address your comments on the revision.

 

If you have further comments, please let me know.

  

If you are satisfied with our revision, please update the YANG doctor review status in the following link:

https://datatracker.ietf.org/doc/draft-ietf-i2nsf-nsf-monitoring-data-model/

 

Thanks.

 

Best Regards,

Paul

 

On Tue, Oct 6, 2020 at 3:03 AM Andy Bierman via Datatracker <noreply@ietf.org> wrote:

Reviewer: Andy Bierman
Review result: Almost Ready



Major Issues:

 - None

Moderate Issues:

 - top-level 'counters' container does not follow naming conventions.
   Should start with 'i2nsf', probably 'i2nsf-state'

 - There do not seem to be any writable objects in the /counters
   subtree so this container should have a 'config false' statement

 - top-level typedef and grouping description-stmts are self-referential
   and not useful. Need to rewrite description-stmts and/or add
   reference-stmts as needed.

 - grouping common-monitoring-data/time-stamp
   Is this a different time stamp than the one in the NETCONF notification?
   The 'message generation time' sounds like the standard timestamp.
   Does this object represent the event detection time?

 - grouping i2nsf-system-alarm-type-content/usage
 - grouping i2nsf-system-alarm-type-content/threshold
   These are uint8 leafs with unclear descriptions.
   Not sure why uint8 is the appropriate type.
   Needs 1 or more of (reference, units, better description)

 - grouping traffic-rates
   Add a units statement to each leaf. Not sure what units to use
   but it should be consistent. (e.g, pps, bps used in descriptions
   should also be in a units-stmt)

 - grouping i2nsf-system-counter-type-content
   These counters should use the yang:counter32 type instead of uint32

 - container counters/system-interface
 - container counters/nsf-firewall
 - container counters/nsf-policy-hits
  The descriptions are too terse and confusing, and need a rewrite.

 -  container counters/nsf-firewall
 -  container counters/nsf-policy-hits
    - uses i2nsf-nsf-counters-type-content;
    Many of the fields expanded from this grouping all say
    they refer to 'the packet'. Why are they in this global
    container of counters? E.g. (src-ip, dst-ip, src-port, dst-port)
    Not clear at all how the server is supposed to apply this
    grouping to these containers.

 - many leafs use "uint32" type for a rate.
   Should add a units-stmt

 - leaf counters/nsf-policy-hits/hit-times
   The purpose and type are confusing and generic.
   If this is a counter then use counter32

 - cut-and-paste for notification-stmt content should be replaced
   with grouping/uses instead. Applies to the nsf-detection-*
   and the various logging notifications. Even a grouping that
   has 1 object in it is better than cut-and-paste 5+ times

Minor Issues:

 - top-level identifiers are too generic
   should have 'i2nsf-' prefix to be more reusable outside this module

 - quite a lot of identities that an implementation is required to support.
   If this set of identities might change a lot faster than the
   notifications and counter objects, then consider putting them
   in a separate module

 - leaf with same type named differently; both intrusion-attack-type
   - nsf-detection-intrusion/sub-attack-type
   - nsf-log-intrusion/attack-type

 - quite a lot of notification event types for a server to implement
   and a user to manage. All are mandatory (no if-feature statements).
   Some such as nsf-detection-* subset are very similar.
   A section or table would be useful that showed the YANG notification
   names and their purpose -- maybe a reference to another RFC
   with more details

 - there seems to be notifications for intrusion events and then
   again for the logging of those events.  This seems excessive
   but


 - grouping common-monitoring-data/time-stamp
   Is this a different time stamp than the one in the NETCONF notification?
   The 'message generation time' sounds like the standard timestamp.
   Is this event detection time?

 - grouping common-monitoring-data/module-name
   Is this a YANG module or some other type of module?

 - there is no way to configure which notifications should be generated
   or maybe how often.  YANG Push has its own dampening-period.
   Since these are event stream subscriptions, not datastore subscriptions,
   YANG-Push does not apply to this document at all.

   If there are a lot of notifications then a server implementation
   might drop some

 - grouping i2nsf-nsf-event-type-content-extend/src-zone
 - grouping i2nsf-nsf-event-type-content-extend/src-zone
   These use type 'string'. Consider using a typedef that constrains
   the string.  General comment where unconstrained string is used:
   The corner-case values such as empty string are often not allowed
   in implementations.


 - grouping i2nsf-nsf-event-type-content-extend/rule-id
 - grouping i2nsf-nsf-event-type-content-extend/rule-name
 - grouping i2nsf-nsf-event-type-content-extend/profile
   These objects seem to reference objects in another YANG module.
   If so, then leafref types might be more appropriate.

 - grouping i2nsf-nsf-event-type-content/rule-id
 - grouping i2nsf-nsf-event-type-content/rule-name
 - grouping i2nsf-nsf-event-type-content/profile
 - grouping i2nsf-nsf-event-type-content/raw-info
   These objects are cut-and-paste duplicates from
   grouping i2nsf-nsf-event-type-content. They should
   be in a separate grouping used by both. Also applies
   to some other sets of objects

 - limits issues (e.g. current-session, maximum-session
   The type is uint8. This is only OK it is impossible for any
   implementation to ever have or want more than 255 of them.
   If some other RFC really does limit the values where uint8
   is used, then that is OK. If so, a reference-stmt would help.



_______________________________________________
I2nsf mailing list
I2nsf@ietf.org
https://www.ietf.org/mailman/listinfo/i2nsf

 

_______________________________________________ yang-doctors mailing list yang-doctors@ietf.org https://www.ietf.org/mailman/listinfo/yang-doctors

v2.23.0 | Report a Bug | By Email