发件人: Joe Clarke (jclarke) [mailto:[email protected]] 发送时间: 2019年11月19日 17:20 收件人: Qin Wu <[email protected]> 抄送: Kent Watsen <[email protected]>; [email protected]; [email protected] 主题: Re: [netmod] [netconf] WG Last Call: draft-ietf-netmod-factory-default-05
[Qin]: Yes, resetting processes or restarting node did cover ZTP part, from Martin’s comment, I feel we don’t need to tie resetting process with RFC8572, since RFC8572 actually focuses on SZTP. Actually we may have a lot of legacy ZTP mechanism we can leverage, I am not sure which reference I should stick to. Make sense? It does. You should remove the informative reference. [Qin]: Okay More importantly, though, how do you see this practically being implemented? With an ops dir hat, I’m walking through Section 2, and sending a factory-reset RPC to a device. The device immediately resets <running> to default and <operational> to some similar default state. The device has become unreachable within the network. A reboot or other reset is optional to implement, so as an operator I’m not really sure what to expect at this point. [Qin]:I am not sure we should make restart or reboot as mandatory after factory-reset rpc, I think factory-reset rpc affects kernel level, it will be good not to restart the node, if it touches hardware level, it is be important to reboot or restart the node. Another angle we can have is if factory-reset rpc is executed in the trust environment, it may be not necessary to restart the node or root. Here’s my use case. I have a switch that has a config (including a management IP [OOB or IB]). When I send it the factory-default RPC, I now have a switch in the network I cannot reach. It continues to run, but with a factory default config (which doesn’t include the management IP). I now have a problem. Sure, the switch may not need to reboot. It might immediately do DHCP and begin a bootstrap workflow. It may need a reboot to do that. What I was asking is does it make sense to add some Operational Considerations text to let implementors and operators know about these types of things and encourage them (vendors in particular) to do think about how they will implement factory-default to ensure that these types of processes can be restarted without additional user intervention? [Qin]: How about the add a few text at the end of section 2 to say: OLD TEXT: “ The "factory-reset" RPC MAY also be used to trigger some other resetting tasks such as restarting the node or some of the software processes. ” NEW TEXT: “ The "factory-reset" RPC MAY also be used to trigger some other resetting tasks such as restarting the node or some of the software processes, especially after having onboard information being processed or when a specified boot image needs to be downloaded, verified and installed. ” Joe
_______________________________________________ netmod mailing list [email protected] https://www.ietf.org/mailman/listinfo/netmod
