|
Submitter name: David Nelson Submitter email address: dnelson@enterasys.com Date first submitted: August
10, 2005 Reference: (missing from the
RADEXT archive ???) Document: VLAN, Priority and
Filtering Attributes Comment type: 'E' Editorial Priority: '1' Should fix Section: 2.1 Rationale/Explanation of
issue: This section seems out of
place. 2.1 Capability Advertisement
RADIUS does not
currently define a method by which a NAS can advertise its
capabilities and in many instances, it would be desirable for the home
network to know what capabilities are supported by the NAS
to ensure proper operational behavior. The attributes defined in
this document are intended to be used to enforce policy by the
NAS. If a NAS does not recognize these attributes it will
most likely ignore them and the desired policy will not be enforced.
A method for the NAS advertising the capability to support
these attributes would help the RADIUS server understand if
the intended policies can be enforced. As a result, the attributes
in this document, in particular NAS-Filter- Rule(TBD), can benefit
from capability advertisement, if available. Requested changes: Should this entire section
perhaps be part of the Security Considerations? |