Hi, all, Some high-level updates of -01: * Change the document title and add a reference to "policy" * Split the definition of schedule YANG module into a separate document (https://datatracker.ietf.org/doc/draft-ma-opsawg-schedule-yang/) * Add reference to I-D. dekok-radext-deprecating-radius for authentication method recommendations * Change endpoint group-id as a string, and fix related examples accordingly * Use typedef to ease leafref of the node * Tweaks to the RADIUS section and add a restriction to the length based on comments from RADEXT * Add IPv6 examples
There are still some unclosed issues which are available at: https://github.com/boucadair/policy-based-network-acl/issues Further comments and suggestions are welcome. Best Regards, Qiufang(on behalf of authors) -----Original Message----- From: OPSAWG [mailto:[email protected]] On Behalf Of [email protected] Sent: Wednesday, October 18, 2023 10:41 AM To: [email protected] Cc: [email protected] Subject: [OPSAWG] I-D Action: draft-ietf-opsawg-ucl-acl-01.txt Internet-Draft draft-ietf-opsawg-ucl-acl-01.txt is now available. It is a work item of the Operations and Management Area Working Group (OPSAWG) WG of the IETF. Title: A YANG Data Model and RADIUS Extension for Policy-based Network Access Control Authors: Qiufang Ma Qin Wu Mohamed Boucadair Daniel King Name: draft-ietf-opsawg-ucl-acl-01.txt Pages: 34 Dates: 2023-10-17 Abstract: This document defines a YANG data model for policy-based network access control, which provides consistent and efficient enforcement of network access control policies based on group identity. Moreover, this document defines a mechanism to ease the maintenance of the mapping between a user group identifier and a set of IP/MAC addresses to enforce policy-based network access control. In addition, the document defines a RADIUS attribute that is used to communicate the user group identifier as part of identification and authorization information. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-opsawg-ucl-acl/ There is also an HTMLized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-opsawg-ucl-acl-01 A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-opsawg-ucl-acl-01 Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts _______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg _______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
