[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Filter-rules-01 & Issue 192

To: <mauricio.sanchez@hp.com>, <radiusext@ops.ietf.org>
Subject: RE: Filter-rules-01 & Issue 192
From: <jouni.korhonen@teliasonera.com>
Date: Mon, 19 Mar 2007 13:34:27 +0100
In-reply-to: <2F2D38A4B8346F48A683750A46BAB2110130D622@G3W0072.americas.hpqcorp.net>

Hi Sanchez,

See my replies inline.. using [JiK] for my replies. 

> -----Original Message-----
> From: Sanchez, Mauricio (ProCurve) [mailto:mauricio.sanchez@hp.com] 
> Sent: 19. maaliskuuta 2007 12:43
> To: Korhonen, Jouni /TeliaSonera Finland Oyj; radiusext@ops.ietf.org
> Subject: RE: Filter-rules-01 & Issue 192
> 
> Jouni,
> 
> See below for response to your comments.  Using [MS1] for my 
> responses. 
> 
> > -----Original Message-----
> > From: owner-radiusext@ops.ietf.org [mailto:owner- 
> > radiusext@ops.ietf.org] On Behalf Of jouni.korhonen@teliasonera.com
> > Sent: Friday, November 10, 2006 7:01 PM [JiK] -01 looks 
> better now. I 
> > would still change change the
> >        'local operator' to 'local visited operator'.
> 
> [MS1] Ok. I forgot to do this in -02, but will make change in -03. 

[JiK] Thanks.

> > >  o what is the purpose of the rule-delim in the
> > >    NAS-Traffic-Rule ABNF? As far as I interpreted the
> > >    ABNF there can be only one rule per attribute anyway?
> > >    I could be wrong ;)
> > 
> > The first version of the syntax had no rule delimiter and people 
> > commented that having a delimiter would eliminate any 
> possibility for 
> > ambiguity of rule end.
> > 
> > [JiK] So if there can be only one rule per attribute I 
> still don't see 
> > a
> >       need for rule-delim. It does not add any value imho.
> 
> [MS1]  There may actually be more than one rule per 
> attribute. Another interesting case is when one rule is split 
> across two attributes (due to length).  What if we added the 
> following to in the description section?  
> "A NAS-Traffic-Rule attribute may contain a partial rule, one 
> rule, or more than one rule. Traffic rules may be contained 
> across attribute boundaries, so implementations cannot assume 
> that individual traffic rules begin or end on attribute boundaries."

[JiK] The proposed text is OK. Just wondering whether the ABNF is up to
date with the above text. I could be wrong but to me it appears the the
ABNF cannot support more than one rule per attribute.

> > >  o What's the intended use for the L2 filtering? I'd
> > >    like to see some real use case described here
> > 
> > BPDU filtering is one real use case.
> > 
> > [JiK] Right. Probably a sentence or two saying L2 filtering 
> is needed
> >       e.g. for BPDU filtering in the intro or some appendix examples
> >       would be good..
> 
> [MS1] Ok.  How about the following in the intro?
> "Layer 2 filters are useful in filtering BPDU traffic for 
> which layer 3 filters have no effect."
> 
> We may also consider adding BPDU to the terminology section.

[JiK] Thanks.. and I think it would be good to add the BPDU to the
terminology section.


And then one more nit. Aren't we supposed to use example.com for all
example domain names? Now there are goo.org etc ;)

Cheers,
	Jouni

> 
> Cheers,
> MS
> 

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- RE: Filter-rules-01 & Issue 192
  - From: "Sanchez, Mauricio (ProCurve)" <mauricio.sanchez@hp.com>

References:
- RE: Filter-rules-01 & Issue 192
  - From: "Sanchez, Mauricio (ProCurve)" <mauricio.sanchez@hp.com>

Prev by Date: RE: Extended Filter attribute: Change summary from -01 to 02; Issues score card review
Next by Date: Re: Review of RFC 4590bis
Previous by thread: RE: Filter-rules-01 & Issue 192
Next by thread: RE: Filter-rules-01 & Issue 192
Index(es):
- Date
- Thread