It looks like I was thinking of the review of draft-ietf-opsawg-nat-yang,
not this one -- sorry for the mixup! (And thanks for spotting the issue!)
-Benjamin
On Wed, Sep 26, 2018 at 02:39:23PM -0700, Alissa Cooper wrote:
> This is in the -19:
>
> /*
> * Logging actions for a packet
> */
> identity log-action {
> description
> "Base identity for defining the destination for logging actions";
> }
>
> identity log-syslog {
> base log-action;
> description
> "System log (syslog) the information for the packet";
> }
>
> identity log-none {
> base log-action;
> description
> "No logging for the packet";
> }
> Is there a more recent version?
>
> Thanks,
> Alissa
>
> > On Sep 26, 2018, at 2:25 PM, Benjamin Kaduk <[email protected]> wrote:
> >
> > Just on the logging point...
> >
> > On Wed, Sep 26, 2018 at 02:20:49PM -0700, Alissa Cooper wrote:
> >>
> >> Sec 5:
> >>
> >> In this section or elsewhere it would be nice to see a sentence noting that
> >> this YANG model allows the configuration of packet logging, which if used
> >> would
> >> additionally warrant protections against unauthorized log access and a logs
> >> retention policy.
> >
> > My understanding is that this was removed entirely from the document in
> > response to the secdir review. Could you double-check which version you
> > were looking at, or if the current version still is problematic?
> >
> > Thanks,
> >
> > Benjamin
>
_______________________________________________
netmod mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/netmod
