[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Comments on the draft-ietf-radext-filter-04 or.. -05

To: <bernard_aboba@hotmail.com>, <radiusext@ops.ietf.org>
Subject: RE: Comments on the draft-ietf-radext-filter-04 or.. -05
From: <jouni.korhonen@teliasonera.com>
Date: Mon, 6 Nov 2006 23:33:27 +0100

 

> -----Original Message-----
> From: Bernard Aboba [mailto:bernard_aboba@hotmail.com] 
> Sent: 6. marraskuuta 2006 22:39
> To: Korhonen, Jouni /TeliaSonera Finland Oyj; radiusext@ops.ietf.org
> Subject: RE: Comments on the draft-ietf-radext-filter-04 or.. -05
> 
> >Just a small note/question regarding the text stating Filter-ID and 
> >NAS-Filter-Rule must not appear in the same message. I don't 
> see this 
> >kind of "must" restriction on Diameter side (RFC4005) so why should 
> >RADIUS have it?
> 
> Right.  Diameter allows both Filter-ID and NAS-Filter-Rule 
> AVPs, so adding a usage restriction within RADIUS might 
> result in a Diameter -> RADIUS translation issue.
> 
> >So e.g. in section 2 would
> >"..attributes, and SHOULD NOT appear in the same RADIUS 
> packet." be better?
> 
> There might be a case where Filter-Id and NAS-Filter-Rule 
> might be included in the same packet, but then the document 
> would need to explain what happens when that occurs.
> 
> I don't think there would ever be a reason to include both 
> NAS-Traffic-Rule and NAS-Filter-Rule in the same packet.

Right. I was actually only referring to Filter-ID and
NAS-Filter-ID case.

> >Also it is not entirely clear to me why e.g. Filter-Id and 
> >NAS-Filter-Rule must be mutually exclusive?
> 
> The question was what the resulting filter rule set would be. 
>  Is the result consistent or unpredictable?  If it is 
> predictable, how does it work?

I didn't find anything on e.g. preferred order of applying
filters in RFC4005. I guess it makes this somewhat more complicated.

> >This was questioned by some organizations that intend to use 
> >NAS-Filter-Rule. I guess defining rule applying order would also be 
> >alternative..?
> 
> Do you have an opinion on how this should be handled?
> 
> For example, you could say that Filter-ID would be applied 
> first, then NAS-Filter-Rule.

Something like the above. We could state that Filter-ID must be applied
first and then NAS-Filter-Rule. However, I'm not sure whether this kind
of recommendation should also be reflected in Diameter as well?


/Jouni


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Prev by Date: VS: Comments on the draft-ietf-radext-filter-04 or.. -05
Next by Date: RE: Comments on the draft-ietf-radext-filter-04 or.. -05
Previous by thread: RE: Comments on the draft-ietf-radext-filter-04 or.. -05
Next by thread: RE: Comments on the draft-ietf-radext-filter-04 or.. -05
Index(es):
- Date
- Thread