subject:"Re\: \[netmod\] WG Last Call for draft\-ietf\-netmod\-acl\-model\-08 \(until Oct 5, 2016\)"

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

2016-11-18 Thread Mahesh Jethanandani


> On Nov 13, 2016, at 11:02 AM, Dean Bogdanovic  wrote:
> 
> Adrian,
> 
> Sorry for not replying earlier. Your email fell through the cracks. 
> 
>> On Sep 21, 2016, at 5:55 PM, Adrian Pan > > wrote:
>> 
>> I have reviewed draft-ietf-netmod-acl-model-08 and I am considering to 
>> implement the data model in the draft, while I found below issue:
>> - Operator is able to configure the matches of ace different from the 
>> acl-type, i.e ace configured with ipv6 matches while the “acl-type” is 
>> configured as ipv4 in the acl, this is not aligned with the model design 
>> intention.
> 
> The acl-type provides implicit specification of the match criteria. Authors 
> wanted to enable support for mixed type acl (example mac and ip) in the same 
> list. And let the vendors determine based on their platform and what is 
> supported how to implement the model.

I do not understand “implicit specification of the match criteria". Say the 
acl-type is specified as ipv6, and the user configures a ipv4 address in the 
ACL, how does it help the platform?

I agree with Adrian that a more intuitive use of the acl-type would be to check 
whether the address being configured matches the type and reject the 
configuration if it does not.

> 
> Dean
> 
>>  
>> Thanks
>> Adrian
>> From: netmod [mailto:netmod-boun...@ietf.org 
>> ] On Behalf Of Kent Watsen
>> Sent: Wednesday, September 21, 2016 4:46 AM
>> To: netmod@ietf.org 
>> Subject: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 
>> 5, 2016)
>>  
>>  
>> This is a notice to start a two-week NETMOD WG last call for the document:
>>  
>>Network Access Control List (ACL) YANG Data Model
>>https://tools.ietf.org/html/draft-ietf-netmod-acl-model-08 
>> 
>>  
>> Please indicate your support or concerns by Wednesday, October 5, 2016.
>>  
>> We are particularly interested in statements of the form:
>>   * I have reviewed draft-ietf-netmod-acl-model-08 and found no issues.
>>   * I have reviewed draft-ietf-netmod-acl-model-08 and found the following 
>> issues: ...
>>  
>> As well as:
>>  * I have implemented the data model in draft-ietf-netmod-acl-model-08.
>>   * I am implementing the data model in draft-ietf-netmod-acl-model-08.
>>   * I am considering to implement the data model in 
>> draft-ietf-netmod-acl-model-08.
>>   * I am not considering to implement the data model in 
>> draft-ietf-netmod-acl-model-08.
>>  
>> Thank you,
>> NETMOD WG Chairs
>>  
>>  
>> ___
>> netmod mailing list
>> netmod@ietf.org 
>> https://www.ietf.org/mailman/listinfo/netmod 
>> 
> 
> ___
> netmod mailing list
> netmod@ietf.org
> https://www.ietf.org/mailman/listinfo/netmod

Mahesh Jethanandani
mjethanand...@gmail.com



___
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

2016-11-12 Thread Dean Bogdanovic

Adrian,

Sorry for not replying earlier. Your email fell through the cracks. 

> On Sep 21, 2016, at 5:55 PM, Adrian Pan  wrote:
> 
> I have reviewed draft-ietf-netmod-acl-model-08 and I am considering to 
> implement the data model in the draft, while I found below issue:
> - Operator is able to configure the matches of ace different from the 
> acl-type, i.e ace configured with ipv6 matches while the “acl-type” is 
> configured as ipv4 in the acl, this is not aligned with the model design 
> intention.

The acl-type provides implicit specification of the match criteria. Authors 
wanted to enable support for mixed type acl (example mac and ip) in the same 
list. And let the vendors determine based on their platform and what is 
supported how to implement the model.

Dean

>  
> Thanks
> Adrian
> From: netmod [mailto:netmod-boun...@ietf.org] On Behalf Of Kent Watsen
> Sent: Wednesday, September 21, 2016 4:46 AM
> To: netmod@ietf.org
> Subject: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 
> 5, 2016)
>  
>  
> This is a notice to start a two-week NETMOD WG last call for the document:
>  
>Network Access Control List (ACL) YANG Data Model
>https://tools.ietf.org/html/draft-ietf-netmod-acl-model-08 
> 
>  
> Please indicate your support or concerns by Wednesday, October 5, 2016.
>  
> We are particularly interested in statements of the form:
>   * I have reviewed draft-ietf-netmod-acl-model-08 and found no issues.
>   * I have reviewed draft-ietf-netmod-acl-model-08 and found the following 
> issues: ...
>  
> As well as:
>  * I have implemented the data model in draft-ietf-netmod-acl-model-08.
>   * I am implementing the data model in draft-ietf-netmod-acl-model-08.
>   * I am considering to implement the data model in 
> draft-ietf-netmod-acl-model-08.
>   * I am not considering to implement the data model in 
> draft-ietf-netmod-acl-model-08.
>  
> Thank you,
> NETMOD WG Chairs
>  
>  
> ___
> netmod mailing list
> netmod@ietf.org
> https://www.ietf.org/mailman/listinfo/netmod

___
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

2016-09-22 Thread Kent Watsen

All,

Let’s put this Last Call on pause.   Dean just informed me that a -09 draft 
should come out over the weekend.  We’ll restart the Last Call again after the 
-09 is posted.

Adrian, thank you for your review.  We’ll track your reported issue the same as 
any other Last Call comment.

Thanks,
Kent (and Lou)


From: Adrian Pan <adrian@ericsson.com>
Date: Wednesday, September 21, 2016 at 4:55 AM
To: Kent Watsen <kwat...@juniper.net>, "netmod@ietf.org" <netmod@ietf.org>
Subject: RE: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until 
Oct 5, 2016)

I have reviewed draft-ietf-netmod-acl-model-08 and I am considering to 
implement the data model in the draft, while I found below issue:
- Operator is able to configure the matches of ace different from the acl-type, 
i.e ace configured with ipv6 matches while the “acl-type” is configured as ipv4 
in the acl, this is not aligned with the model design intention.

Thanks
Adrian
From: netmod [mailto:netmod-boun...@ietf.org] On Behalf Of Kent Watsen
Sent: Wednesday, September 21, 2016 4:46 AM
To: netmod@ietf.org
Subject: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 
2016)


This is a notice to start a two-week NETMOD WG last call for the document:

   Network Access Control List (ACL) YANG Data Model
   https://tools.ietf.org/html/draft-ietf-netmod-acl-model-08

Please indicate your support or concerns by Wednesday, October 5, 2016.

We are particularly interested in statements of the form:
  * I have reviewed draft-ietf-netmod-acl-model-08 and found no issues.
  * I have reviewed draft-ietf-netmod-acl-model-08 and found the following 
issues: ...

As well as:
 * I have implemented the data model in draft-ietf-netmod-acl-model-08.
  * I am implementing the data model in draft-ietf-netmod-acl-model-08.
  * I am considering to implement the data model in 
draft-ietf-netmod-acl-model-08.
  * I am not considering to implement the data model in 
draft-ietf-netmod-acl-model-08.

Thank you,
NETMOD WG Chairs


___
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

2016-09-21 Thread Adrian Pan

I have reviewed draft-ietf-netmod-acl-model-08 and I am considering to 
implement the data model in the draft, while I found below issue:
- Operator is able to configure the matches of ace different from the acl-type, 
i.e ace configured with ipv6 matches while the “acl-type” is configured as ipv4 
in the acl, this is not aligned with the model design intention.

Thanks
Adrian
From: netmod [mailto:netmod-boun...@ietf.org] On Behalf Of Kent Watsen
Sent: Wednesday, September 21, 2016 4:46 AM
To: netmod@ietf.org
Subject: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 
2016)


This is a notice to start a two-week NETMOD WG last call for the document:

   Network Access Control List (ACL) YANG Data Model
   https://tools.ietf.org/html/draft-ietf-netmod-acl-model-08

Please indicate your support or concerns by Wednesday, October 5, 2016.

We are particularly interested in statements of the form:
  * I have reviewed draft-ietf-netmod-acl-model-08 and found no issues.
  * I have reviewed draft-ietf-netmod-acl-model-08 and found the following 
issues: ...

As well as:
 * I have implemented the data model in draft-ietf-netmod-acl-model-08.
  * I am implementing the data model in draft-ietf-netmod-acl-model-08.
  * I am considering to implement the data model in 
draft-ietf-netmod-acl-model-08.
  * I am not considering to implement the data model in 
draft-ietf-netmod-acl-model-08.

Thank you,
NETMOD WG Chairs


___
netmod mailing list
netmod@ietf.org
https://www.ietf.org/mailman/listinfo/netmod

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

Re: [netmod] WG Last Call for draft-ietf-netmod-acl-model-08 (until Oct 5, 2016)

4 matches

Site Navigation

Mail list logo

Footer information