Re: [netmod] I-D Action: draft-han-netmod-intf-ext-ppp-yang-00.txt

Hansance, Thanks for bringing this draft to the attention of the WG (and Thanks to Tom for suggesting it). Models that don't otherwise have a home certainly can be discussed in this group. This said, it is then up to the WG to decide if there is sufficient interest/support to take on

[netmod] The NETMOD WG has placed draft-nmdsdt-netmod-revised-datastores in state "Candidate for WG Adoption"

The NETMOD WG has placed draft-nmdsdt-netmod-revised-datastores in state Candidate for WG Adoption (entered by Lou Berger) The document is available at https://datatracker.ietf.org/doc/draft-nmdsdt-netmod-revised-datastores/ Comment: IP Poll started:

[netmod] WG Last Call: draft-ietf-netmod-yang-model-classification-04

All, This starts a two-week working group last call on draft-ietf-netmod-yang-model-classification-04. The working group last call ends on December 14. Please send your comments to the netmod mailing list. Positive comments, e.g., "I've reviewed this document and believe it is ready for

[netmod] Key Strings in ietf-key-chain operational state

In the days of MIBs, we used to omit key strings from the data that would be returned. This was ostensibly done for security purposes. We did the same for the operational state returned for keystring in key-chain-entries. I'm now thinking this was a mistake. Rather, it would seem that one could

Re: [netmod] Key Strings in ietf-key-chain operational state

Acee, This is something we ran into with ietf-keystore model also. The thoughts are that key strings should never leave the device. If anything most devices have tamper proof capability (FIPS 140-2) to wipe the keys out if tampered with or exported. So exporting the string, encrypted, even

Re: [netmod] How to prevent a client from modifying the type of an interface?

On Wed, Nov 30, 2016 at 1:26 PM, Alex Campbell wrote: > At Aviat we've been using deviations for this: > > module aviat-ietf-interfaces-dev { > // ... > > deviation "/if:interfaces/if:interface" { > deviate add { > must "if:type =

Re: [netmod] How to prevent a client from modifying the type of an interface?

On 11/29/2016 05:18 PM, Jan Lindblad wrote: Bart, Jürgen et al are of course right in what they say, but if you really want to use YANG to enable a manager to know a priori what values are possible for a particular leaf somewhere, that's easy too -- if you see the addition of a new

Re: [netmod] Key Strings in ietf-key-chain operational state

> On Nov 30, 2016, at 2:33 PM, Acee Lindem (acee) wrote: > > > This is something we ran into with ietf-keystore model also. The thoughts are > that key strings should never leave the device. If anything most devices have > tamper proof capability (FIPS 140-2) to wipe the keys

Re: [netmod] Key Strings in ietf-key-chain operational state

> On Nov 30, 2016, at 2:33 PM, Acee Lindem (acee) > wrote: > > > This is something we ran into with ietf-keystore model also. The thoughts are > that key strings should never leave the device. If anything most devices have > tamper proof capability

Re: [netmod] Key Strings in ietf-key-chain operational state

Hi Mahesh, From: Mahesh Jethanandani > Date: Wednesday, November 30, 2016 at 5:25 PM To: Acee Lindem > Cc: "netmod@ietf.org" > Subject: