headers
Adrian Farrel | 8 Jan 2011 20:37
Favicon

AD review of draft-ietf-vrrp-unified-mib

Hi,

Don't panic!

I have performed my AD review of your draft. The purpose of the
review is to catch any nits or issues before the document goes
forward to IETF last call and IESG review. By getting these issues
out at this stage we can hope for a higher quality review and a
smoother passage through the process.

There are a good number of small issues that I believe can be
fixed really easily.

I appreciate that a number of these issues are inherited from 
RFC 2787, but this is an ideal chance to clean up.

You will need a new revision to address these points, and I'd ask the
WG chairs to evaluate whether the changes are large enough to warrant 
a further WG last call.

I have moved the draft into "AD-review:Revised-ID-needed" state in
the datatracker, and I look forward to seeing the new revision which
I can put forward for IETF last call.

Thanks for all your work with this draft,

Adrian

---
(Continue reading)

Permalink | Reply |
headers
Kalyan (Srinivas)Tata | 10 Jan 2011 23:13
Picon
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Thanks Adrian for the review. I will update the draft (Once WG chairs confirm). I will getback if I need any clarifications.

Thanks
Kalyan

-----Original Message-----
From: vrrp-bounces <at> ietf.org [mailto:vrrp-bounces <at> ietf.org] On Behalf Of Adrian Farrel
Sent: Saturday, January 08, 2011 11:37 AM
To: draft-ietf-vrrp-unified-mib <at> tools.ietf.org
Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
Subject: [VRRP] AD review of draft-ietf-vrrp-unified-mib

Hi,

Don't panic!

I have performed my AD review of your draft. The purpose of the review is to catch any nits or issues before the
document goes forward to IETF last call and IESG review. By getting these issues out at this stage we can
hope for a higher quality review and a smoother passage through the process.

There are a good number of small issues that I believe can be fixed really easily.

I appreciate that a number of these issues are inherited from RFC 2787, but this is an ideal chance to clean up.

You will need a new revision to address these points, and I'd ask the WG chairs to evaluate whether the
changes are large enough to warrant a further WG last call.

I have moved the draft into "AD-review:Revised-ID-needed" state in the datatracker, and I look forward to
seeing the new revision which I can put forward for IETF last call.
(Continue reading)

Permalink | Reply |
headers
Mukesh Gupta | 10 Jan 2011 23:56
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Kalyan,

Thanks a lot.  Please go ahead and address the comments and publish
the next rev. We all want this draft done asap :)

- Mukesh

Sent from my iPhone

On Jan 10, 2011, at 2:12 PM, "Kalyan (Srinivas)Tata" <stata <at> checkpoint.com
 > wrote:

> Thanks Adrian for the review. I will update the draft (Once WG
> chairs confirm). I will getback if I need any clarifications.
>
> Thanks
> Kalyan
>
> -----Original Message-----
> From: vrrp-bounces <at> ietf.org [mailto:vrrp-bounces <at> ietf.org] On Behalf
> Of Adrian Farrel
> Sent: Saturday, January 08, 2011 11:37 AM
> To: draft-ietf-vrrp-unified-mib <at> tools.ietf.org
> Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
> Subject: [VRRP] AD review of draft-ietf-vrrp-unified-mib
>
> Hi,
>
> Don't panic!
>
(Continue reading)

Permalink | Reply |
headers
Rio Asnara | 11 Jan 2011 09:12
Picon

Re: AD review of draft-ietf-vrrp-unified-mib

All,
I'm interested to implemented on my virtual system :)

Regards,
Asnara



On Tue, Jan 11, 2011 at 5:56 AM, Mukesh Gupta <mukesh <at> juniper.net> wrote:
Kalyan,

Thanks a lot.  Please go ahead and address the comments and publish
the next rev. We all want this draft done asap :)

- Mukesh

Sent from my iPhone

On Jan 10, 2011, at 2:12 PM, "Kalyan (Srinivas)Tata" <stata <at> checkpoint.com
 > wrote:

> Thanks Adrian for the review. I will update the draft (Once WG
> chairs confirm). I will getback if I need any clarifications.
>
> Thanks
> Kalyan
>
> -----Original Message-----
> From: vrrp-bounces <at> ietf.org [mailto:vrrp-bounces <at> ietf.org] On Behalf
> Of Adrian Farrel
> Sent: Saturday, January 08, 2011 11:37 AM
> To: draft-ietf-vrrp-unified-mib <at> tools.ietf.org
> Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
> Subject: [VRRP] AD review of draft-ietf-vrrp-unified-mib
>
> Hi,
>
> Don't panic!
>
> I have performed my AD review of your draft. The purpose of the
> review is to catch any nits or issues before the document goes
> forward to IETF last call and IESG review. By getting these issues
> out at this stage we can hope for a higher quality review and a
> smoother passage through the process.
>
> There are a good number of small issues that I believe can be fixed
> really easily.
>
> I appreciate that a number of these issues are inherited from RFC
> 2787, but this is an ideal chance to clean up.
>
> You will need a new revision to address these points, and I'd ask
> the WG chairs to evaluate whether the changes are large enough to
> warrant a further WG last call.
>
> I have moved the draft into "AD-review:Revised-ID-needed" state in
> the datatracker, and I look forward to seeing the new revision which
> I can put forward for IETF last call.
>
> Thanks for all your work with this draft,
>
> Adrian
>
> ---
>
> Document header
>
> OLD
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Intended Status: Proposed Standard
> NEW
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Obsoletes: 2787 (if approved)
>   Intended Status: Proposed Standard
> END
>
> ---
>
> Abstract
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2 etc.
>
> Is it necessary to introduce the term "IPvX"? It is only used a
> couple of times, and the time it is used in the MIB module is a
> problem because the definition of the term is outside the module.
> (Typically, MIB modules are extracted from RFCs and have to survive
> as standalone
> text.)
>
> Can you:
> - remove "(IPvX)" form section 2
> - remove the definition for section 3
> - say "IPv4 and IPv6" in the two uses in section 6 and section 9
>
> ---
>
> Section 4
>
> You need to add text to describe what has changed from 2787. Not a
> lot of details - perhaps a series of bullet points.
>
> --
>
> Section 6 etc.
>
> You need to say "MIB module" not "MIB" because there is only one
> MIB, and you are making just a module in the MIB.
>
> s/This MIB is designed/This MIB module is designed/
>
>
> ---
>
>
> Section 7
>
>   Tables in the MIB include the following:
>
> In fact, there are exactly these three tables, so how about...
>
>   This MIB module contains three tables:
>
> ---
>
> Section 8
>
> Trivial, but...
>
>           -----   MIB Tables For VRRP Router "VR 1":   -----
>
> ...should read "VR1"
> Similarly for VR2 later in the section.
>
> ---
>
> IMPORTS
>
> It is helpful, but mandatory, to show the RFC numbers from which
> things are imported. Thus...
>
> OLD
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>           Integer32, mib-2, Unsigned32        FROM SNMPv2-SMI
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval                        FROM SNMPv2-TC
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP                  FROM SNMPv2-CONF
>           ifIndex                             FROM IF-MIB
>           InetAddressType, InetAddress        FROM INET-ADDRESS-MIB;
> NEW
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>
>           Integer32, mib-2, Unsigned32
>               FROM SNMPv2-SMI                               -- RFC2578
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval
>               FROM SNMPv2-TC                                -- RFC2579
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP
>               FROM SNMPv2-CONF                              -- RFC2580
>
>           ifIndex
>               FROM IF-MIB                                   -- RFC2863
>
>
>           InetAddressType, InetAddress
>               FROM INET-ADDRESS-MIB;                        -- RFC3291
> END
>
> ---
>
> Section 9
>
> In order to ensure that references can be provided, it is customary
> to begin Section 9 (i.e. before the module BEGIN statement) with
> some text such as:
>
>   This MIB module makes reference to the following documents
> [RFC2578],
>   [RFC2579], [RFC2580], [RFC2863], [RFC3291], and [RFC4001].
>
> ---
>
> Vrrpv3VrIdTC
>
> Typos
>               (ifIndex)and IP version, serves to uniquely identify a
> Missing space.
>
>           REFERENCE " RFC 5798 (Sections 3 and 5.2.3"
> Missing close brace.
>
> ---
>
> vrrpv3OperationsTable
>
>               "Unified Operations table for a VRRP router which
>                consists of a sequence (i.e., one or more conceptual
>                rows) of 'vrrpv3OperationsEntry' items which describe
>                the operational characteristics of a virtual router."
>
> I think "which describe" should read "each of which describes"
>
> ---
>
> vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> I think a little more precision would help...
>
>                A rows in this table cannot be modified unless the
> value
>                of 'vrrpv3OperStatus' in the row has transitioned to
>                'initialize' state.
>
> ---
>
> vrrpv3OperationsInetAddrType
>
> As far as I can tell, you only support two values: ipv4(1) and ipv6
> (2).
> Other values of the InetAddressType textual conventions are, I
> think, not supported.
>
> You should add this fact as a note to the DESCRIPTION clause.
>
> ---
>
> vrrpv3OperationsPrimaryIpAddr
>
>               "In the case where there are more than one IP
>
> s/are/is/
>
> ---
>
> vrrpv3OperationsVirtualMacAddr
>
>           REFERENCE "STD 58 RFC 2578"
>
> I am not clear why this reference is cited. MacAddress is defined in
> RFC 2579, but you don't need to provide a reference because that is
> implicit in the IMPORTS clause. Perhaps you mean to give a reference
> to where the mapping from VRID to MAC address is defined?
>
> ---
>
> vrpv3OperStatus
>
> This object is incongruously named.
> To fit with the naming convention for the table you need one of:
> - vrpv3OperationsStatus
> - vrpv3OperationsOperStatus
>
> Note that there are many references to this object throughout the
> document.
>
> ---
>
> vrrpv3OperationsAcceptMode
>
>               "Controls whether a virtual router in Master state
>               will accept packets addressed to the address owner's
>               IPv6 address as its own if it is not the IPv6 address
>               owner.  Default is False.
>               This object is not relevant for rows representing VRRP
>               over IPv4 and should be set to false."
>
> Should read...
>
>   Default is false(2)
>
> ...and...
>
>   should be set to false(2)."
>
> ---
>
> vrrpv3OperationsUpTime
>           SYNTAX       TimeStamp
>           MAX-ACCESS   read-only
>           STATUS       current
>           DESCRIPTION
>               "This is the value of the `sysUpTime' object when this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialized'."
>
> I am not saying that you MUST change this, but I wonder how useful
> it is, because to make sense of it, a management station must also
> read the current value of sysUpTime.
>
>
> An alternative is to supply the up time in timer ticks. That means
> that the management agent has to perform a computation each the row
> is read. If you did this you would have...
>
>           SYNTAX       TimeTicks
>           MAX-ACCESS   read-only
>           STATUS        current
>           DESCRIPTION
>               "This value represents the amount of time since this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialize'."
>
> I just need you to think about which you prefer (there is a trade-
> off) and make a decision. No need to tell me which you chose, or why.
>
> Note also s/initialized/initialize/
>
> ---
>
> Creation and deletion of a vrrpv3OperationsTable row
>
> I'm slightly confused :-(
>
> We have...
>
>       vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> and
>
>       vrrpv3OperationsRowStatus
>
>               When `vrrpv3OperationsRowStatus' is set to
>               active(1), no other objects in the conceptual row can
>               be modified.
>
> In general, the instructions in the description of the rowStatus are
> good an detailed. But I have some difficulty with row creation. What
> I think is missing is a statement that the row must be created with
> operStatus set to initialize(1) and cannot transition to backup(2) or
> master(3) until rowStatus is transitioned to active(1).
>
> Similarly, there is an issue with row deletion. In order to delete,
> the row I must first set rowStatus to notInService(2), and later to
> delete(6). But, according to the description of operStatus, I cannot
> modify the row (including the rowStatus) until operStatus has gone
> to initialize(1). How do I get that to happen?
>
> I suspect this can be fixed by allowing rowStatus to be changed
> regardless of the value of operStatus.
>
> ---
>
> vrrpv3AssociatedIpAddrTable
>
>               "The table of addresses associated with this virtual
>                router."
>
> I think that there is just one table, and it contains the addresses
> of all virtual routers. What about...
>
>               "The table of addresses associated with each virtual
>                router."
>
> ---
>
> vrrpv3AssociatedIpAddrEntry
>
> OLD
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' has transitioned to
>               `initialize'.
> NEW
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' for the corresponding entry in the
>               vrrpv3OperationsTable has transitioned to initialize(1).
> END
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> This object's name is odd given the convention for naming objects
> within their tables. You probably need:
>
> vrrpv3AssociatedIpAddrAddress
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> You should add a statement the description that says that the
> content of the object is to be interpreted in the context of the
> setting of vrrpv3OperationsInetAddrType in the index of this row.
>
> ---
>
> VRRP Router Statistics
>
> Do you need a discontinuity timer for the three global objects:
> - vrrpv3RouterChecksumErrors
> - vrrpv3RouterVersionErrors
> - vrrpv3RouterVrIdErrors
>
> ---
>
> VRRP Router Statistics
>
> In the presence of an attack or a broken router or host nearby, is
> it possible that Countr32 will not be large enough for the up-time
> of this router?
>
> You can choose to use Counter64 or describe wrapping conditions.
>
> ---
>
> vrrpv3RouterVrIdErrors
>
>               "The total number of VRRP packets received with an
>               invalid VRID for this virtual router."
>
> This object is global, so it is wider than the scope of a single VR.
> I think you need:
>
>               "The total number of VRRP packets received with a
>               VRID that is not valid for any virtual router on this
>               router."
>
> ---
>
> vrrpv3StatisticsAdvIntervalErrors
>
>               "The total number of VRRP advertisement packets
>               received for which the advertisement interval is
>               different than the one configured for the local virtual
>               router.
>
> Can you add a reference to vrrpv3OperationsAdvInterval
>
> ---
>
> vrrpv3ProtoError
>
> Don't you think this is a *really* dangerous notification?
>
> If a VR is under attack or receiving packets from a faulty speaker,
> it will spew notifications.
>
> You should probably either add some thresholding objects (which is a
> fair bit of work) or a single object to turn notifications on and
> off (with the default being "off").
>
> ---
>
> Notifications
>
> As currently specified, both of the notifications will come from the
> management agent which will identify the physical router that
> sourced the notification, but not the VR.
>
> Don't you need to add some index values to the notifications as well?
>
> ---
>
> Section 11
>
> Since you are obsoleting RFC 2787, is it your intention to ask IANA
> to deprecate {mib-2 68} ?
>
> ---
>
> Would you please consider adding
>
> ---
>
> Section 12
>
> A reference to RFC 4001 needs to be added as it shows up in some
> REFERENCE clauses.
>
> ---
>
> Would you please consider adding a short section on migrating from
> VRRP-MIB to VRRPV3-MIB?
>
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
>
> Scanned by Check Point Total Security Gateway.
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp

_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |
headers
Mukesh Gupta | 13 Jan 2011 21:20
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Asnara,

 

Thanks for your interest.  Do you have any timeline in mind? 

 

As you might know, IETF believes in rough consensus and running code.  So, having a few implementations of the draft would make all of us comfortable with the quality of the draft.

 

Regards               

Mukesh

 

From: Rio Asnara [mailto:asnara101 <at> gmail.com]
Sent: Tuesday, January 11, 2011 12:12 AM
To: Mukesh Gupta
Cc: Kalyan (Srinivas)Tata; vrrp-chairs <at> tools.ietf.org; Adrian.Farrel <at> huawei.com; draft-ietf-vrrp-unified-mib <at> tools.ietf.org; vrrp <at> ietf.org
Subject: Re: [VRRP] AD review of draft-ietf-vrrp-unified-mib

 

All,
I'm interested to implemented on my virtual system :)

Regards,
Asnara


On Tue, Jan 11, 2011 at 5:56 AM, Mukesh Gupta <mukesh <at> juniper.net> wrote:

Kalyan,

Thanks a lot.  Please go ahead and address the comments and publish
the next rev. We all want this draft done asap :)

- Mukesh

Sent from my iPhone

On Jan 10, 2011, at 2:12 PM, "Kalyan (Srinivas)Tata" <stata <at> checkpoint.com

 > wrote:

> Thanks Adrian for the review. I will update the draft (Once WG
> chairs confirm). I will getback if I need any clarifications.
>
> Thanks
> Kalyan
>
> -----Original Message-----
> From: vrrp-bounces <at> ietf.org [mailto:vrrp-bounces <at> ietf.org] On Behalf
> Of Adrian Farrel
> Sent: Saturday, January 08, 2011 11:37 AM
> To: draft-ietf-vrrp-unified-mib <at> tools.ietf.org
> Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
> Subject: [VRRP] AD review of draft-ietf-vrrp-unified-mib
>
> Hi,
>
> Don't panic!
>
> I have performed my AD review of your draft. The purpose of the
> review is to catch any nits or issues before the document goes
> forward to IETF last call and IESG review. By getting these issues
> out at this stage we can hope for a higher quality review and a
> smoother passage through the process.
>
> There are a good number of small issues that I believe can be fixed
> really easily.
>
> I appreciate that a number of these issues are inherited from RFC
> 2787, but this is an ideal chance to clean up.
>
> You will need a new revision to address these points, and I'd ask
> the WG chairs to evaluate whether the changes are large enough to
> warrant a further WG last call.
>
> I have moved the draft into "AD-review:Revised-ID-needed" state in
> the datatracker, and I look forward to seeing the new revision which
> I can put forward for IETF last call.
>
> Thanks for all your work with this draft,
>
> Adrian
>
> ---
>
> Document header
>
> OLD
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Intended Status: Proposed Standard
> NEW
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Obsoletes: 2787 (if approved)
>   Intended Status: Proposed Standard
> END
>
> ---
>
> Abstract
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2 etc.
>
> Is it necessary to introduce the term "IPvX"? It is only used a
> couple of times, and the time it is used in the MIB module is a
> problem because the definition of the term is outside the module.
> (Typically, MIB modules are extracted from RFCs and have to survive
> as standalone
> text.)
>
> Can you:
> - remove "(IPvX)" form section 2
> - remove the definition for section 3
> - say "IPv4 and IPv6" in the two uses in section 6 and section 9
>
> ---
>
> Section 4
>
> You need to add text to describe what has changed from 2787. Not a
> lot of details - perhaps a series of bullet points.
>
> --
>
> Section 6 etc.
>
> You need to say "MIB module" not "MIB" because there is only one
> MIB, and you are making just a module in the MIB.
>
> s/This MIB is designed/This MIB module is designed/
>
>
> ---
>
>
> Section 7
>
>   Tables in the MIB include the following:
>
> In fact, there are exactly these three tables, so how about...
>
>   This MIB module contains three tables:
>
> ---
>
> Section 8
>
> Trivial, but...
>
>           -----   MIB Tables For VRRP Router "VR 1":   -----
>
> ...should read "VR1"
> Similarly for VR2 later in the section.
>
> ---
>
> IMPORTS
>
> It is helpful, but mandatory, to show the RFC numbers from which
> things are imported. Thus...
>
> OLD
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>           Integer32, mib-2, Unsigned32        FROM SNMPv2-SMI
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval                        FROM SNMPv2-TC
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP                  FROM SNMPv2-CONF
>           ifIndex                             FROM IF-MIB
>           InetAddressType, InetAddress        FROM INET-ADDRESS-MIB;
> NEW
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>
>           Integer32, mib-2, Unsigned32
>               FROM SNMPv2-SMI                               -- RFC2578
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval
>               FROM SNMPv2-TC                                -- RFC2579
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP
>               FROM SNMPv2-CONF                              -- RFC2580
>
>           ifIndex
>               FROM IF-MIB                                   -- RFC2863
>
>
>           InetAddressType, InetAddress
>               FROM INET-ADDRESS-MIB;                        -- RFC3291
> END
>
> ---
>
> Section 9
>
> In order to ensure that references can be provided, it is customary
> to begin Section 9 (i.e. before the module BEGIN statement) with
> some text such as:
>
>   This MIB module makes reference to the following documents
> [RFC2578],
>   [RFC2579], [RFC2580], [RFC2863], [RFC3291], and [RFC4001].
>
> ---
>
> Vrrpv3VrIdTC
>
> Typos
>               (ifIndex)and IP version, serves to uniquely identify a
> Missing space.
>
>           REFERENCE " RFC 5798 (Sections 3 and 5.2.3"
> Missing close brace.
>
> ---
>
> vrrpv3OperationsTable
>
>               "Unified Operations table for a VRRP router which
>                consists of a sequence (i.e., one or more conceptual
>                rows) of 'vrrpv3OperationsEntry' items which describe
>                the operational characteristics of a virtual router."
>
> I think "which describe" should read "each of which describes"
>
> ---
>
> vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> I think a little more precision would help...
>
>                A rows in this table cannot be modified unless the
> value
>                of 'vrrpv3OperStatus' in the row has transitioned to
>                'initialize' state.
>
> ---
>
> vrrpv3OperationsInetAddrType
>
> As far as I can tell, you only support two values: ipv4(1) and ipv6
> (2).
> Other values of the InetAddressType textual conventions are, I
> think, not supported.
>
> You should add this fact as a note to the DESCRIPTION clause.
>
> ---
>
> vrrpv3OperationsPrimaryIpAddr
>
>               "In the case where there are more than one IP
>
> s/are/is/
>
> ---
>
> vrrpv3OperationsVirtualMacAddr
>
>           REFERENCE "STD 58 RFC 2578"
>
> I am not clear why this reference is cited. MacAddress is defined in
> RFC 2579, but you don't need to provide a reference because that is
> implicit in the IMPORTS clause. Perhaps you mean to give a reference
> to where the mapping from VRID to MAC address is defined?
>
> ---
>
> vrpv3OperStatus
>
> This object is incongruously named.
> To fit with the naming convention for the table you need one of:
> - vrpv3OperationsStatus
> - vrpv3OperationsOperStatus
>
> Note that there are many references to this object throughout the
> document.
>
> ---
>
> vrrpv3OperationsAcceptMode
>
>               "Controls whether a virtual router in Master state
>               will accept packets addressed to the address owner's
>               IPv6 address as its own if it is not the IPv6 address
>               owner.  Default is False.
>               This object is not relevant for rows representing VRRP
>               over IPv4 and should be set to false."
>
> Should read...
>
>   Default is false(2)
>
> ...and...
>
>   should be set to false(2)."
>
> ---
>
> vrrpv3OperationsUpTime
>           SYNTAX       TimeStamp
>           MAX-ACCESS   read-only
>           STATUS       current
>           DESCRIPTION
>               "This is the value of the `sysUpTime' object when this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialized'."
>
> I am not saying that you MUST change this, but I wonder how useful
> it is, because to make sense of it, a management station must also
> read the current value of sysUpTime.
>
>
> An alternative is to supply the up time in timer ticks. That means
> that the management agent has to perform a computation each the row
> is read. If you did this you would have...
>
>           SYNTAX       TimeTicks
>           MAX-ACCESS   read-only
>           STATUS        current
>           DESCRIPTION
>               "This value represents the amount of time since this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialize'."
>
> I just need you to think about which you prefer (there is a trade-
> off) and make a decision. No need to tell me which you chose, or why.
>
> Note also s/initialized/initialize/
>
> ---
>
> Creation and deletion of a vrrpv3OperationsTable row
>
> I'm slightly confused :-(
>
> We have...
>
>       vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> and
>
>       vrrpv3OperationsRowStatus
>
>               When `vrrpv3OperationsRowStatus' is set to
>               active(1), no other objects in the conceptual row can
>               be modified.
>
> In general, the instructions in the description of the rowStatus are
> good an detailed. But I have some difficulty with row creation. What
> I think is missing is a statement that the row must be created with
> operStatus set to initialize(1) and cannot transition to backup(2) or
> master(3) until rowStatus is transitioned to active(1).
>
> Similarly, there is an issue with row deletion. In order to delete,
> the row I must first set rowStatus to notInService(2), and later to
> delete(6). But, according to the description of operStatus, I cannot
> modify the row (including the rowStatus) until operStatus has gone
> to initialize(1). How do I get that to happen?
>
> I suspect this can be fixed by allowing rowStatus to be changed
> regardless of the value of operStatus.
>
> ---
>
> vrrpv3AssociatedIpAddrTable
>
>               "The table of addresses associated with this virtual
>                router."
>
> I think that there is just one table, and it contains the addresses
> of all virtual routers. What about...
>
>               "The table of addresses associated with each virtual
>                router."
>
> ---
>
> vrrpv3AssociatedIpAddrEntry
>
> OLD
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' has transitioned to
>               `initialize'.
> NEW
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' for the corresponding entry in the
>               vrrpv3OperationsTable has transitioned to initialize(1).
> END
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> This object's name is odd given the convention for naming objects
> within their tables. You probably need:
>
> vrrpv3AssociatedIpAddrAddress
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> You should add a statement the description that says that the
> content of the object is to be interpreted in the context of the
> setting of vrrpv3OperationsInetAddrType in the index of this row.
>
> ---
>
> VRRP Router Statistics
>
> Do you need a discontinuity timer for the three global objects:
> - vrrpv3RouterChecksumErrors
> - vrrpv3RouterVersionErrors
> - vrrpv3RouterVrIdErrors
>
> ---
>
> VRRP Router Statistics
>
> In the presence of an attack or a broken router or host nearby, is
> it possible that Countr32 will not be large enough for the up-time
> of this router?
>
> You can choose to use Counter64 or describe wrapping conditions.
>
> ---
>
> vrrpv3RouterVrIdErrors
>
>               "The total number of VRRP packets received with an
>               invalid VRID for this virtual router."
>
> This object is global, so it is wider than the scope of a single VR.
> I think you need:
>
>               "The total number of VRRP packets received with a
>               VRID that is not valid for any virtual router on this
>               router."
>
> ---
>
> vrrpv3StatisticsAdvIntervalErrors
>
>               "The total number of VRRP advertisement packets
>               received for which the advertisement interval is
>               different than the one configured for the local virtual
>               router.
>
> Can you add a reference to vrrpv3OperationsAdvInterval
>
> ---
>
> vrrpv3ProtoError
>
> Don't you think this is a *really* dangerous notification?
>
> If a VR is under attack or receiving packets from a faulty speaker,
> it will spew notifications.
>
> You should probably either add some thresholding objects (which is a
> fair bit of work) or a single object to turn notifications on and
> off (with the default being "off").
>
> ---
>
> Notifications
>
> As currently specified, both of the notifications will come from the
> management agent which will identify the physical router that
> sourced the notification, but not the VR.
>
> Don't you need to add some index values to the notifications as well?
>
> ---
>
> Section 11
>
> Since you are obsoleting RFC 2787, is it your intention to ask IANA
> to deprecate {mib-2 68} ?
>
> ---
>
> Would you please consider adding
>
> ---
>
> Section 12
>
> A reference to RFC 4001 needs to be added as it shows up in some
> REFERENCE clauses.
>
> ---
>
> Would you please consider adding a short section on migrating from
> VRRP-MIB to VRRPV3-MIB?
>
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
>
> Scanned by Check Point Total Security Gateway.
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp

 

_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |
headers
Rio Asnara | 14 Jan 2011 18:18
Picon

Re: AD review of draft-ietf-vrrp-unified-mib

Please forgive my late to respond.
This weekend I had a conference with friends from china to discuss about the SMSC, iVAS, CRBT as well as cellular network intelligence

yes, I had planned to immediately implement as soon as possible :)

Regards,
Asnara





On Fri, Jan 14, 2011 at 3:20 AM, Mukesh Gupta <mukesh <at> juniper.net> wrote:

Asnara,

 

Thanks for your interest.  Do you have any timeline in mind? 

 

As you might know, IETF believes in rough consensus and running code.  So, having a few implementations of the draft would make all of us comfortable with the quality of the draft.

 

Regards               

Mukesh

 

From: Rio Asnara [mailto:asnara101 <at> gmail.com]
Sent: Tuesday, January 11, 2011 12:12 AM
To: Mukesh Gupta
Cc: Kalyan (Srinivas)Tata; vrrp-chairs <at> tools.ietf.org; Adrian.Farrel <at> huawei.com; draft-ietf-vrrp-unified-mib <at> tools.ietf.org; vrrp <at> ietf.org
Subject: Re: [VRRP] AD review of draft-ietf-vrrp-unified-mib

 

All,
I'm interested to implemented on my virtual system :)

Regards,
Asnara


On Tue, Jan 11, 2011 at 5:56 AM, Mukesh Gupta <mukesh <at> juniper.net> wrote:

Kalyan,

Thanks a lot.  Please go ahead and address the comments and publish
the next rev. We all want this draft done asap :)

- Mukesh

Sent from my iPhone

On Jan 10, 2011, at 2:12 PM, "Kalyan (Srinivas)Tata" <stata <at> checkpoint.com

 > wrote:

> Thanks Adrian for the review. I will update the draft (Once WG
> chairs confirm). I will getback if I need any clarifications.
>
> Thanks
> Kalyan
>
> -----Original Message-----
> From: vrrp-bounces <at> ietf.org [mailto:vrrp-bounces <at> ietf.org] On Behalf
> Of Adrian Farrel
> Sent: Saturday, January 08, 2011 11:37 AM
> To: draft-ietf-vrrp-unified-mib <at> tools.ietf.org
> Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
> Subject: [VRRP] AD review of draft-ietf-vrrp-unified-mib
>
> Hi,
>
> Don't panic!
>
> I have performed my AD review of your draft. The purpose of the
> review is to catch any nits or issues before the document goes
> forward to IETF last call and IESG review. By getting these issues
> out at this stage we can hope for a higher quality review and a
> smoother passage through the process.
>
> There are a good number of small issues that I believe can be fixed
> really easily.
>
> I appreciate that a number of these issues are inherited from RFC
> 2787, but this is an ideal chance to clean up.
>
> You will need a new revision to address these points, and I'd ask
> the WG chairs to evaluate whether the changes are large enough to
> warrant a further WG last call.
>
> I have moved the draft into "AD-review:Revised-ID-needed" state in
> the datatracker, and I look forward to seeing the new revision which
> I can put forward for IETF last call.
>
> Thanks for all your work with this draft,
>
> Adrian
>
> ---
>
> Document header
>
> OLD
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Intended Status: Proposed Standard
> NEW
>   Document: draft-ietf-vrrp-unified-mib-08.txt               July 2010
>   Obsoletes: 2787 (if approved)
>   Intended Status: Proposed Standard
> END
>
> ---
>
> Abstract
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2
>
> OLD
>   This specification defines a Management Information Base (MIB) for
> NEW
>   This specification defines a portion of the Management Information
>   Base (MIB) for
> END
>
> ---
>
> Section 2 etc.
>
> Is it necessary to introduce the term "IPvX"? It is only used a
> couple of times, and the time it is used in the MIB module is a
> problem because the definition of the term is outside the module.
> (Typically, MIB modules are extracted from RFCs and have to survive
> as standalone
> text.)
>
> Can you:
> - remove "(IPvX)" form section 2
> - remove the definition for section 3
> - say "IPv4 and IPv6" in the two uses in section 6 and section 9
>
> ---
>
> Section 4
>
> You need to add text to describe what has changed from 2787. Not a
> lot of details - perhaps a series of bullet points.
>
> --
>
> Section 6 etc.
>
> You need to say "MIB module" not "MIB" because there is only one
> MIB, and you are making just a module in the MIB.
>
> s/This MIB is designed/This MIB module is designed/
>
>
> ---
>
>
> Section 7
>
>   Tables in the MIB include the following:
>
> In fact, there are exactly these three tables, so how about...
>
>   This MIB module contains three tables:
>
> ---
>
> Section 8
>
> Trivial, but...
>
>           -----   MIB Tables For VRRP Router "VR 1":   -----
>
> ...should read "VR1"
> Similarly for VR2 later in the section.
>
> ---
>
> IMPORTS
>
> It is helpful, but mandatory, to show the RFC numbers from which
> things are imported. Thus...
>
> OLD
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>           Integer32, mib-2, Unsigned32        FROM SNMPv2-SMI
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval                        FROM SNMPv2-TC
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP                  FROM SNMPv2-CONF
>           ifIndex                             FROM IF-MIB
>           InetAddressType, InetAddress        FROM INET-ADDRESS-MIB;
> NEW
>       IMPORTS
>           MODULE-IDENTITY, OBJECT-TYPE,
>           NOTIFICATION-TYPE, Counter32,
>
>           Integer32, mib-2, Unsigned32
>               FROM SNMPv2-SMI                               -- RFC2578
>
>           TEXTUAL-CONVENTION, RowStatus,
>           MacAddress, TruthValue, TimeStamp,
>           TimeInterval
>               FROM SNMPv2-TC                                -- RFC2579
>
>           MODULE-COMPLIANCE, OBJECT-GROUP,
>           NOTIFICATION-GROUP
>               FROM SNMPv2-CONF                              -- RFC2580
>
>           ifIndex
>               FROM IF-MIB                                   -- RFC2863
>
>
>           InetAddressType, InetAddress
>               FROM INET-ADDRESS-MIB;                        -- RFC3291
> END
>
> ---
>
> Section 9
>
> In order to ensure that references can be provided, it is customary
> to begin Section 9 (i.e. before the module BEGIN statement) with
> some text such as:
>
>   This MIB module makes reference to the following documents
> [RFC2578],
>   [RFC2579], [RFC2580], [RFC2863], [RFC3291], and [RFC4001].
>
> ---
>
> Vrrpv3VrIdTC
>
> Typos
>               (ifIndex)and IP version, serves to uniquely identify a
> Missing space.
>
>           REFERENCE " RFC 5798 (Sections 3 and 5.2.3"
> Missing close brace.
>
> ---
>
> vrrpv3OperationsTable
>
>               "Unified Operations table for a VRRP router which
>                consists of a sequence (i.e., one or more conceptual
>                rows) of 'vrrpv3OperationsEntry' items which describe
>                the operational characteristics of a virtual router."
>
> I think "which describe" should read "each of which describes"
>
> ---
>
> vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> I think a little more precision would help...
>
>                A rows in this table cannot be modified unless the
> value
>                of 'vrrpv3OperStatus' in the row has transitioned to
>                'initialize' state.
>
> ---
>
> vrrpv3OperationsInetAddrType
>
> As far as I can tell, you only support two values: ipv4(1) and ipv6
> (2).
> Other values of the InetAddressType textual conventions are, I
> think, not supported.
>
> You should add this fact as a note to the DESCRIPTION clause.
>
> ---
>
> vrrpv3OperationsPrimaryIpAddr
>
>               "In the case where there are more than one IP
>
> s/are/is/
>
> ---
>
> vrrpv3OperationsVirtualMacAddr
>
>           REFERENCE "STD 58 RFC 2578"
>
> I am not clear why this reference is cited. MacAddress is defined in
> RFC 2579, but you don't need to provide a reference because that is
> implicit in the IMPORTS clause. Perhaps you mean to give a reference
> to where the mapping from VRID to MAC address is defined?
>
> ---
>
> vrpv3OperStatus
>
> This object is incongruously named.
> To fit with the naming convention for the table you need one of:
> - vrpv3OperationsStatus
> - vrpv3OperationsOperStatus
>
> Note that there are many references to this object throughout the
> document.
>
> ---
>
> vrrpv3OperationsAcceptMode
>
>               "Controls whether a virtual router in Master state
>               will accept packets addressed to the address owner's
>               IPv6 address as its own if it is not the IPv6 address
>               owner.  Default is False.
>               This object is not relevant for rows representing VRRP
>               over IPv4 and should be set to false."
>
> Should read...
>
>   Default is false(2)
>
> ...and...
>
>   should be set to false(2)."
>
> ---
>
> vrrpv3OperationsUpTime
>           SYNTAX       TimeStamp
>           MAX-ACCESS   read-only
>           STATUS       current
>           DESCRIPTION
>               "This is the value of the `sysUpTime' object when this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialized'."
>
> I am not saying that you MUST change this, but I wonder how useful
> it is, because to make sense of it, a management station must also
> read the current value of sysUpTime.
>
>
> An alternative is to supply the up time in timer ticks. That means
> that the management agent has to perform a computation each the row
> is read. If you did this you would have...
>
>           SYNTAX       TimeTicks
>           MAX-ACCESS   read-only
>           STATUS        current
>           DESCRIPTION
>               "This value represents the amount of time since this
>               virtual router (i.e., the `vrrpv3OperStatus')
>               transitioned out of `initialize'."
>
> I just need you to think about which you prefer (there is a trade-
> off) and make a decision. No need to tell me which you chose, or why.
>
> Note also s/initialized/initialize/
>
> ---
>
> Creation and deletion of a vrrpv3OperationsTable row
>
> I'm slightly confused :-(
>
> We have...
>
>       vrrpv3OperationsEntry
>
>                Rows in the table cannot be modified unless the value
>
>                of 'vrrpv3OperStatus' has transitioned to
>                'initialize' state.
>
> and
>
>       vrrpv3OperationsRowStatus
>
>               When `vrrpv3OperationsRowStatus' is set to
>               active(1), no other objects in the conceptual row can
>               be modified.
>
> In general, the instructions in the description of the rowStatus are
> good an detailed. But I have some difficulty with row creation. What
> I think is missing is a statement that the row must be created with
> operStatus set to initialize(1) and cannot transition to backup(2) or
> master(3) until rowStatus is transitioned to active(1).
>
> Similarly, there is an issue with row deletion. In order to delete,
> the row I must first set rowStatus to notInService(2), and later to
> delete(6). But, according to the description of operStatus, I cannot
> modify the row (including the rowStatus) until operStatus has gone
> to initialize(1). How do I get that to happen?
>
> I suspect this can be fixed by allowing rowStatus to be changed
> regardless of the value of operStatus.
>
> ---
>
> vrrpv3AssociatedIpAddrTable
>
>               "The table of addresses associated with this virtual
>                router."
>
> I think that there is just one table, and it contains the addresses
> of all virtual routers. What about...
>
>               "The table of addresses associated with each virtual
>                router."
>
> ---
>
> vrrpv3AssociatedIpAddrEntry
>
> OLD
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' has transitioned to
>               `initialize'.
> NEW
>               Rows in the table cannot be modified unless the value
>               of `vrrpv3OperStatus' for the corresponding entry in the
>               vrrpv3OperationsTable has transitioned to initialize(1).
> END
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> This object's name is odd given the convention for naming objects
> within their tables. You probably need:
>
> vrrpv3AssociatedIpAddrAddress
>
> ---
>
> vrrpv3AssociatedIpAddr
>
> You should add a statement the description that says that the
> content of the object is to be interpreted in the context of the
> setting of vrrpv3OperationsInetAddrType in the index of this row.
>
> ---
>
> VRRP Router Statistics
>
> Do you need a discontinuity timer for the three global objects:
> - vrrpv3RouterChecksumErrors
> - vrrpv3RouterVersionErrors
> - vrrpv3RouterVrIdErrors
>
> ---
>
> VRRP Router Statistics
>
> In the presence of an attack or a broken router or host nearby, is
> it possible that Countr32 will not be large enough for the up-time
> of this router?
>
> You can choose to use Counter64 or describe wrapping conditions.
>
> ---
>
> vrrpv3RouterVrIdErrors
>
>               "The total number of VRRP packets received with an
>               invalid VRID for this virtual router."
>
> This object is global, so it is wider than the scope of a single VR.
> I think you need:
>
>               "The total number of VRRP packets received with a
>               VRID that is not valid for any virtual router on this
>               router."
>
> ---
>
> vrrpv3StatisticsAdvIntervalErrors
>
>               "The total number of VRRP advertisement packets
>               received for which the advertisement interval is
>               different than the one configured for the local virtual
>               router.
>
> Can you add a reference to vrrpv3OperationsAdvInterval
>
> ---
>
> vrrpv3ProtoError
>
> Don't you think this is a *really* dangerous notification?
>
> If a VR is under attack or receiving packets from a faulty speaker,
> it will spew notifications.
>
> You should probably either add some thresholding objects (which is a
> fair bit of work) or a single object to turn notifications on and
> off (with the default being "off").
>
> ---
>
> Notifications
>
> As currently specified, both of the notifications will come from the
> management agent which will identify the physical router that
> sourced the notification, but not the VR.
>
> Don't you need to add some index values to the notifications as well?
>
> ---
>
> Section 11
>
> Since you are obsoleting RFC 2787, is it your intention to ask IANA
> to deprecate {mib-2 68} ?
>
> ---
>
> Would you please consider adding
>
> ---
>
> Section 12
>
> A reference to RFC 4001 needs to be added as it shows up in some
> REFERENCE clauses.
>
> ---
>
> Would you please consider adding a short section on migrating from
> VRRP-MIB to VRRPV3-MIB?
>
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
>
> Scanned by Check Point Total Security Gateway.
> _______________________________________________
> vrrp mailing list
> vrrp <at> ietf.org
> https://www.ietf.org/mailman/listinfo/vrrp
_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp

 


_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |
headers
Kalyan (Srinivas)Tata | 3 Mar 2011 01:30
Picon
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Hi Adrian,
Thanks again for the review - I made most of the changes suggested by you - I listed some of the changes for any
comments &
I have couple of questions/clarifications inline:

Thanks
Kalyan

Creation and deletion of a vrrpv3OperationsTable row

[kalyan>>>] This is what i have based on your suggestions. Please comment if this looks OK

    vrrpv3OperationsEntry OBJECT-TYPE 
        SYNTAX       Vrrpv3OperationsEntry 
        MAX-ACCESS   not-accessible 
        STATUS       current 
        DESCRIPTION 
            "An entry in the vrrpv3OperationsTable containing the  
             operational characteristics of a virtual router.  On a 
             VRRP router, a given virtual router is identified by a
             combination of ifIndex, VRID and the IP version.
             ifIndex represents a interface of the router.

             A row must be created with vrrpv3OperationsStatus
             set to initialize(1) and cannot transition to
             backup(2) or master(3) until vrrpv3OperationsRowStatus
             is transitioned to active(1).

             The information in this table is persistent and when 
             written the entity SHOULD save the change to non-
             volatile storage."

        INDEX    { ifIndex, vrrpv3OperationsVrId, 
                   vrrpv3OperationsInetAddrType
                  } 
        ::= { vrrpv3OperationsTable 1 }

=======================================
    vrrpv3OperationsRowStatus OBJECT-TYPE 
        SYNTAX       RowStatus 
        MAX-ACCESS   read-create 
        STATUS       current 
        DESCRIPTION 
            "The RowStatus variable should be used in accordance to
            installation and removal conventions for conceptual 
            rows.

            To create a row in this table, a manager sets this 
            object to either createAndGo(4) or createAndWait(5). 
            Until instances of all corresponding columns are 
            appropriately configured, the value of the 
            Corresponding instance of the 
            `vrrpv3OperationsRowStatus' column will be read as 
            notReady(3).  

            In particular, a newly created row cannot be made 
            active(1) until (minimally) the corresponding instance 
            of vrrpv3OperationsInetAddrType, vrrpv3OperationsVrId 
            and vrrpv3OperationsPrimaryIpAddr has been set and 
            there is at least one active row in the 
            `vrrpv3AssociatedIpAddrTable' defining an associated 
            IP address.

            notInService(2) should be used to administratively 
            bring the row down.

            A typical order of operation to add a row is:
            1. Create a row in vrrpv3OperationsTable with 
            createAndWait(5).
               2. Create one or more corresponding rows in
            vrrpv3AssociatedIpAddrTable.
            3. Populate the vrrpv3OperationsEntry.
            4. set vrrpv3OperationsRowStatus to active(1).

            A typical order of operation to delete an entry is:
            1. Set vrrpv3OperationsRowStatus to notInService(2).
            2. Set the corresponding rows in 
            vrrpv3AssociatedIpAddrTable to destroy(6) to delete the 
            entry. 
            3. set vrrpv3OperationsRowStatus to destroy(6) to 
            delete the entry." 
        ::= { vrrpv3OperationsEntry 13 }

---

vrrpv3AssociatedIpAddr

You should add a statement the description that says that the content of the object is to be interpreted in
the context of the setting of vrrpv3OperationsInetAddrType in the index of this row.

[kalyan>>>]  Following is what i added :
    vrrpv3AssociatedIpAddrAddress OBJECT-TYPE 
        SYNTAX       InetAddress (SIZE (0|4|16))
        MAX-ACCESS   not-accessible 
        STATUS       current 
        DESCRIPTION 
            "The assigned IP addresses that a virtual router is 
            responsible for backing up.

            The IP address type is determined by the value of 
            vrrpv3OperationsInetAddrType in the index of this
            row" 
        REFERENCE " RFC 5798 "
        ::= { vrrpv3AssociatedIpAddrEntry 1 }

---

VRRP Router Statistics  

Do you need a discontinuity timer for the three global objects:
- vrrpv3RouterChecksumErrors
- vrrpv3RouterVersionErrors
- vrrpv3RouterVrIdErrors

[kalyan>>>]  I added the following :

   vrrpv3GlobalStatisticsDiscontinuityTime OBJECT-TYPE 
       SYNTAX     TimeStamp 
       MAX-ACCESS read-only 
       STATUS     current 
       DESCRIPTION 
           "The value of sysUpTime on the most recent occasion at 
            which one of vrrpv3RouterChecksumErrors, 
            vrrpv3RouterVersionErrors and vrrpv3RouterVrIdErrors
            suffered a discontinuity.

            If no such discontinuities have occurred since the last
            re-initialization of the local management subsystem, 
            then this object contains a zero value."

       ::= { vrrpv3Statistics 4 }

---

VRRP Router Statistics  

In the presence of an attack or a broken router or host nearby, is it possible that Countr32 will not be large
enough for the up-time of this router?

You can choose to use Counter64 or describe wrapping conditions.

[kalyan>>>] Changed all the statistics counters to Counter64 except for 
            vrrpv3StatisticsMasterTransitions  
 ---
---

vrrpv3StatisticsAdvIntervalErrors

               "The total number of VRRP advertisement packets  
               received for which the advertisement interval is  
               different than the one configured for the local virtual 
               router. 

Can you add a reference to vrrpv3OperationsAdvInterval

[kalyan>>>]  Following is the new text i have :

           The total number of VRRP advertisement packets 
            received for which the advertisement interval is 
            different from the vrrpv3OperationsAdvInterval 
            configured on this virtual router.
---

vrrpv3ProtoError

Don't you think this is a *really* dangerous notification?

If a VR is under attack or receiving packets from a faulty speaker, it will spew notifications.

You should probably either add some thresholding objects (which is a fair bit of work) or a single object to
turn notifications on and off (with the default being "off").

[kalyan>>>] I agree.  I had a notification control object in  earlier drafts but was asked to be removed 
during MIB DR. review. Following is the 
cut and paste of the comments:

>
>> * vrrpTrapNewMasterCntl, vrrpTrapProtoErrorCntl
>>
>> Could notifications be generated or not, using
>> RFC3413?
>>
> [Kalyan>] Notifications could be filtered/generated using RFC3413. I added
> these to conveniently control notifications within this MIB (Based on
> request from some one on the mailing list) You suggest we get rid of these?
>

Yes, I think that most operators would likely use rfc3413.  Having this in 2
places
may create some confusion...

---

Notifications

As currently specified, both of the notifications will come from the management agent which will identify
the physical router that sourced the notification, but not the VR.

Don't you need to add some index values to the notifications as well?

[kalyan>>>] Good point. Added the Following to uniquely identify row in vrrpv3OperationsTable:

    vrrpv3NewMaster NOTIFICATION-TYPE 
        OBJECTS      { ifIndex,
                       vrrpv3OperationsVrId, 
                       vrrpv3OperationsInetAddrType,
                       vrrpv3OperationsMasterIpAddr, 
                       vrrpv3StatisticsNewMasterReason 
                     } 
        STATUS       current 
        DESCRIPTION 
            "The newMaster notification indicates that the sending
            agent has transitioned to 'Master' state." 
        ::= { vrrpv3Notifications 1 } 

    vrrpv3ProtoError NOTIFICATION-TYPE 
        OBJECTS      { ifIndex,
                       vrrpv3OperationsVrId,
                       vrrpv3OperationsInetAddrType,
                       vrrpv3StatisticsProtoErrReason 
                     } 
        STATUS       current 
        DESCRIPTION 
            "The notification indicates that the sending agent has 
            encountered the protocol error indicated by 
            vrrpv3StatisticsProtoErrReason." 
        ::= { vrrpv3Notifications 2 }

---

Section 11                                                                    

Since you are obsoleting RFC 2787, is it your intention to ask IANA to deprecate {mib-2 68} ?

[kalyan>>>] Yes.  I added the following to IANA considerations :

   [Editor's Note (to be removed prior to publication):  The IANA is 
   requested to assign a value for "ZZZ" under the 'mib-2' subtree 
   and to record the assignment in the SMI Numbers registry. When 
   the assignment has been made, the RFC Editor is asked to replace 
   "ZZZ" (here and in the MIB module) with the assigned value.

   This document obsoletes RFC 2787 and the IANA is requested to
   deprecate the value 68 under 'mib-2' assigned to VRRP-MIB.]

---

Would you please consider adding a short section on migrating from VRRP-MIB to VRRPV3-MIB?

[kalyan>>>] I am not sure there is a smooth migration path from VRRP-MIB to VRRPV3-MIB - I think we made a
conscious decision 
	that VRRV3 MIB will only support RFC5798 and will not support earlier versions.  

	The way i see it -  Routers that implement  RFC2338 and VRRP-MIB will have to first migrate to RFC5798 and then
make changes to 
	VRRP-MIB implementation  to conform to  VRRPv3-MIB. 

	Should i mention this fact in the section? 
	
Thanks
Kalyan

_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp

Scanned by Check Point Total Security Gateway.
_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |
headers
Adrian Farrel | 6 Apr 2011 12:00
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Hi,

Sorry for the delay around the IETF meeting.

All agreed with a small suggestion around RFC 3413

> Thanks again for the review - I made most of the changes suggested by you - I
> listed some of the changes for any comments &
> I have couple of questions/clarifications inline:
> 
>> Creation and deletion of a vrrpv3OperationsTable row
> 
> [kalyan>>>] This is what i have based on your suggestions. Please comment if
this
> looks OK
> 
>     vrrpv3OperationsEntry OBJECT-TYPE
>         SYNTAX       Vrrpv3OperationsEntry
>         MAX-ACCESS   not-accessible
>         STATUS       current
>         DESCRIPTION
>             "An entry in the vrrpv3OperationsTable containing the
>              operational characteristics of a virtual router.  On a
>              VRRP router, a given virtual router is identified by a
>              combination of ifIndex, VRID and the IP version.
>              ifIndex represents a interface of the router.
> 
>              A row must be created with vrrpv3OperationsStatus
>              set to initialize(1) and cannot transition to
>              backup(2) or master(3) until vrrpv3OperationsRowStatus
>              is transitioned to active(1).
> 
>              The information in this table is persistent and when
>              written the entity SHOULD save the change to non-
>              volatile storage."
> 
>         INDEX    { ifIndex, vrrpv3OperationsVrId,
>                    vrrpv3OperationsInetAddrType
>                   }
>         ::= { vrrpv3OperationsTable 1 }
> 
> =======================================
>     vrrpv3OperationsRowStatus OBJECT-TYPE
>         SYNTAX       RowStatus
>         MAX-ACCESS   read-create
>         STATUS       current
>         DESCRIPTION
>             "The RowStatus variable should be used in accordance to
>             installation and removal conventions for conceptual
>             rows.
> 
>             To create a row in this table, a manager sets this
>             object to either createAndGo(4) or createAndWait(5).
>             Until instances of all corresponding columns are
>             appropriately configured, the value of the
>             Corresponding instance of the
>             `vrrpv3OperationsRowStatus' column will be read as
>             notReady(3).
> 
>             In particular, a newly created row cannot be made
>             active(1) until (minimally) the corresponding instance
>             of vrrpv3OperationsInetAddrType, vrrpv3OperationsVrId
>             and vrrpv3OperationsPrimaryIpAddr has been set and
>             there is at least one active row in the
>             `vrrpv3AssociatedIpAddrTable' defining an associated
>             IP address.
> 
>             notInService(2) should be used to administratively
>             bring the row down.
> 
>             A typical order of operation to add a row is:
>             1. Create a row in vrrpv3OperationsTable with
>             createAndWait(5).
>                2. Create one or more corresponding rows in
>             vrrpv3AssociatedIpAddrTable.
>             3. Populate the vrrpv3OperationsEntry.
>             4. set vrrpv3OperationsRowStatus to active(1).
> 
>             A typical order of operation to delete an entry is:
>             1. Set vrrpv3OperationsRowStatus to notInService(2).
>             2. Set the corresponding rows in
>             vrrpv3AssociatedIpAddrTable to destroy(6) to delete the
>             entry.
>             3. set vrrpv3OperationsRowStatus to destroy(6) to
>             delete the entry."
>         ::= { vrrpv3OperationsEntry 13 }

Looks good.

>> vrrpv3AssociatedIpAddr
>> 
>> You should add a statement the description that says that the content 
>> of the object is to be interpreted in the context of the setting of
>> vrrpv3OperationsInetAddrType in the index of this row.
> 
> [kalyan>>>]  Following is what i added :
>     vrrpv3AssociatedIpAddrAddress OBJECT-TYPE
>         SYNTAX       InetAddress (SIZE (0|4|16))
>         MAX-ACCESS   not-accessible
>         STATUS       current
>         DESCRIPTION
>             "The assigned IP addresses that a virtual router is
>             responsible for backing up.
> 
>             The IP address type is determined by the value of
>             vrrpv3OperationsInetAddrType in the index of this
>             row"
>         REFERENCE " RFC 5798 "
>         ::= { vrrpv3AssociatedIpAddrEntry 1 }

OK

>> VRRP Router Statistics
>> 
>> Do you need a discontinuity timer for the three global objects:
>> - vrrpv3RouterChecksumErrors
>> - vrrpv3RouterVersionErrors
>> - vrrpv3RouterVrIdErrors
> 
> [kalyan>>>]  I added the following :
> 
>    vrrpv3GlobalStatisticsDiscontinuityTime OBJECT-TYPE
>        SYNTAX     TimeStamp
>        MAX-ACCESS read-only
>        STATUS     current
>        DESCRIPTION
>            "The value of sysUpTime on the most recent occasion at
>             which one of vrrpv3RouterChecksumErrors,
>             vrrpv3RouterVersionErrors and vrrpv3RouterVrIdErrors
>             suffered a discontinuity.
> 
>             If no such discontinuities have occurred since the last
>             re-initialization of the local management subsystem,
>             then this object contains a zero value."
> 
>        ::= { vrrpv3Statistics 4 }

Fine

>> VRRP Router Statistics
>> 
>> In the presence of an attack or a broken router or host nearby, is it
possible
>> that Countr32 will not be large enough for the up-time of this router?
>> 
>> You can choose to use Counter64 or describe wrapping conditions.
> 
> [kalyan>>>] Changed all the statistics counters to Counter64 except for
>             vrrpv3StatisticsMasterTransitions

Great

>> vrrpv3StatisticsAdvIntervalErrors
>> 
>>                "The total number of VRRP advertisement packets
>>                received for which the advertisement interval is
>>                different than the one configured for the local virtual
>>                router.
>> 
>> Can you add a reference to vrrpv3OperationsAdvInterval
> 
> [kalyan>>>]  Following is the new text i have :
> 
>            The total number of VRRP advertisement packets
>             received for which the advertisement interval is
>             different from the vrrpv3OperationsAdvInterval
>             configured on this virtual router.

Perfect

>> vrrpv3ProtoError
>> 
>> Don't you think this is a *really* dangerous notification?
>> 
>> If a VR is under attack or receiving packets from a faulty speaker, it 
>> will spew notifications.
>> 
>> You should probably either add some thresholding objects (which is a fair 
>> bit of work) or a single object to turn notifications on and off (with the 
>> default being "off").
> 
> [kalyan>>>] I agree.  I had a notification control object in  earlier drafts
but was
> asked to be removed  during MIB DR. review. Following is the
> cut and paste of the comments:
> 
> >
> >> * vrrpTrapNewMasterCntl, vrrpTrapProtoErrorCntl
> >>
> >> Could notifications be generated or not, using
> >> RFC3413?
> >>
> > [Kalyan>] Notifications could be filtered/generated using RFC3413. I added
> > these to conveniently control notifications within this MIB (Based on
> > request from some one on the mailing list) You suggest we get rid of these?
> >
> 
> Yes, I think that most operators would likely use rfc3413.  Having this in 2
> places may create some confusion...

OK, we can go with 3413 if that is what you are happy with.

But I think you need a reference to 3413.
- Add it to the normative references
- Add it to some text early in the draft. There is not a lot
  of option. I suggest a new paragraph in the into saying:
    Notifications in this MIB module are controlled using the
    mechanisms defined in [RFC3413].
- Add a comment within the MIB module as:
OLD
   --   Notification Definitions
NEW
   --   Notification Definitions
   --   Notifications may be controlled using SNMP-NOTIFICATION-MIB
END

>> Notifications
>> 
>> As currently specified, both of the notifications will come from the
management
>> agent which will identify the physical router that sourced the notification,
but not
>> the VR.
>> 
>> Don't you need to add some index values to the notifications as well?
> 
> [kalyan>>>] Good point. Added the Following to uniquely identify row in
> vrrpv3OperationsTable:
> 
>     vrrpv3NewMaster NOTIFICATION-TYPE
>         OBJECTS      { ifIndex,
>                        vrrpv3OperationsVrId,
>                        vrrpv3OperationsInetAddrType,
>                        vrrpv3OperationsMasterIpAddr,
>                        vrrpv3StatisticsNewMasterReason
>                      }
>         STATUS       current
>         DESCRIPTION
>             "The newMaster notification indicates that the sending
>             agent has transitioned to 'Master' state."
>         ::= { vrrpv3Notifications 1 }
> 
>     vrrpv3ProtoError NOTIFICATION-TYPE
>         OBJECTS      { ifIndex,
>                        vrrpv3OperationsVrId,
>                        vrrpv3OperationsInetAddrType,
>                        vrrpv3StatisticsProtoErrReason
>                      }
>         STATUS       current
>         DESCRIPTION
>             "The notification indicates that the sending agent has
>             encountered the protocol error indicated by
>             vrrpv3StatisticsProtoErrReason."
>         ::= { vrrpv3Notifications 2 }

OK

>> Section 11
>> 
>> Since you are obsoleting RFC 2787, is it your intention to ask IANA to
deprecate
>> {mib-2 68} ?
> 
> [kalyan>>>] Yes.  I added the following to IANA considerations :
> 
>    [Editor's Note (to be removed prior to publication):  The IANA is
>    requested to assign a value for "ZZZ" under the 'mib-2' subtree
>    and to record the assignment in the SMI Numbers registry. When
>    the assignment has been made, the RFC Editor is asked to replace
>    "ZZZ" (here and in the MIB module) with the assigned value.
> 
>    This document obsoletes RFC 2787 and the IANA is requested to
>    deprecate the value 68 under 'mib-2' assigned to VRRP-MIB.]

OK

>> Would you please consider adding a short section on migrating from 
>> VRRP-MIB to VRRPV3-MIB?
> 
> [kalyan>>>] I am not sure there is a smooth migration path from VRRP-MIB to
> VRRPV3-MIB - I think we made a conscious decision that VRRV3 MIB will only
>  support RFC5798 and will not support earlier versions.
> 
> The way i see it -  Routers that implement  RFC2338 and VRRP-MIB will
> have to first migrate to RFC5798 and then make changes to
> VRRP-MIB implementation  to conform to  VRRPv3-MIB.
> 
> Should i mention this fact in the section?

No need. Your explanation here is clear.

Looking forward to seeing the revision.

Cheers,
Adrian

_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |
headers
Kalyan (Srinivas)Tata | 6 Apr 2011 20:21
Picon
Favicon

Re: AD review of draft-ietf-vrrp-unified-mib

Thanks Adrian,
I will have new draft ready this weekend.

Thanks
Kalyan
-----Original Message-----
From: Adrian Farrel [mailto:Adrian.Farrel <at> huawei.com] 
Sent: Wednesday, April 06, 2011 3:01 AM
To: Kalyan (Srinivas)Tata; draft-ietf-vrrp-unified-mib <at> tools.ietf.org
Cc: vrrp-chairs <at> tools.ietf.org; vrrp <at> ietf.org
Subject: RE: [VRRP] AD review of draft-ietf-vrrp-unified-mib

Hi,

Sorry for the delay around the IETF meeting.

All agreed with a small suggestion around RFC 3413

> Thanks again for the review - I made most of the changes suggested by 
> you - I listed some of the changes for any comments & I have couple of 
> questions/clarifications inline:
> 
>> Creation and deletion of a vrrpv3OperationsTable row
> 
> [kalyan>>>] This is what i have based on your suggestions. Please 
> comment if
this
> looks OK
> 
>     vrrpv3OperationsEntry OBJECT-TYPE
>         SYNTAX       Vrrpv3OperationsEntry
>         MAX-ACCESS   not-accessible
>         STATUS       current
>         DESCRIPTION
>             "An entry in the vrrpv3OperationsTable containing the
>              operational characteristics of a virtual router.  On a
>              VRRP router, a given virtual router is identified by a
>              combination of ifIndex, VRID and the IP version.
>              ifIndex represents a interface of the router.
> 
>              A row must be created with vrrpv3OperationsStatus
>              set to initialize(1) and cannot transition to
>              backup(2) or master(3) until vrrpv3OperationsRowStatus
>              is transitioned to active(1).
> 
>              The information in this table is persistent and when
>              written the entity SHOULD save the change to non-
>              volatile storage."
> 
>         INDEX    { ifIndex, vrrpv3OperationsVrId,
>                    vrrpv3OperationsInetAddrType
>                   }
>         ::= { vrrpv3OperationsTable 1 }
> 
> =======================================
>     vrrpv3OperationsRowStatus OBJECT-TYPE
>         SYNTAX       RowStatus
>         MAX-ACCESS   read-create
>         STATUS       current
>         DESCRIPTION
>             "The RowStatus variable should be used in accordance to
>             installation and removal conventions for conceptual
>             rows.
> 
>             To create a row in this table, a manager sets this
>             object to either createAndGo(4) or createAndWait(5).
>             Until instances of all corresponding columns are
>             appropriately configured, the value of the
>             Corresponding instance of the
>             `vrrpv3OperationsRowStatus' column will be read as
>             notReady(3).
> 
>             In particular, a newly created row cannot be made
>             active(1) until (minimally) the corresponding instance
>             of vrrpv3OperationsInetAddrType, vrrpv3OperationsVrId
>             and vrrpv3OperationsPrimaryIpAddr has been set and
>             there is at least one active row in the
>             `vrrpv3AssociatedIpAddrTable' defining an associated
>             IP address.
> 
>             notInService(2) should be used to administratively
>             bring the row down.
> 
>             A typical order of operation to add a row is:
>             1. Create a row in vrrpv3OperationsTable with
>             createAndWait(5).
>                2. Create one or more corresponding rows in
>             vrrpv3AssociatedIpAddrTable.
>             3. Populate the vrrpv3OperationsEntry.
>             4. set vrrpv3OperationsRowStatus to active(1).
> 
>             A typical order of operation to delete an entry is:
>             1. Set vrrpv3OperationsRowStatus to notInService(2).
>             2. Set the corresponding rows in
>             vrrpv3AssociatedIpAddrTable to destroy(6) to delete the
>             entry.
>             3. set vrrpv3OperationsRowStatus to destroy(6) to
>             delete the entry."
>         ::= { vrrpv3OperationsEntry 13 }

Looks good.

>> vrrpv3AssociatedIpAddr
>> 
>> You should add a statement the description that says that the content 
>> of the object is to be interpreted in the context of the setting of 
>> vrrpv3OperationsInetAddrType in the index of this row.
> 
> [kalyan>>>]  Following is what i added :
>     vrrpv3AssociatedIpAddrAddress OBJECT-TYPE
>         SYNTAX       InetAddress (SIZE (0|4|16))
>         MAX-ACCESS   not-accessible
>         STATUS       current
>         DESCRIPTION
>             "The assigned IP addresses that a virtual router is
>             responsible for backing up.
> 
>             The IP address type is determined by the value of
>             vrrpv3OperationsInetAddrType in the index of this
>             row"
>         REFERENCE " RFC 5798 "
>         ::= { vrrpv3AssociatedIpAddrEntry 1 }

OK

>> VRRP Router Statistics
>> 
>> Do you need a discontinuity timer for the three global objects:
>> - vrrpv3RouterChecksumErrors
>> - vrrpv3RouterVersionErrors
>> - vrrpv3RouterVrIdErrors
> 
> [kalyan>>>]  I added the following :
> 
>    vrrpv3GlobalStatisticsDiscontinuityTime OBJECT-TYPE
>        SYNTAX     TimeStamp
>        MAX-ACCESS read-only
>        STATUS     current
>        DESCRIPTION
>            "The value of sysUpTime on the most recent occasion at
>             which one of vrrpv3RouterChecksumErrors,
>             vrrpv3RouterVersionErrors and vrrpv3RouterVrIdErrors
>             suffered a discontinuity.
> 
>             If no such discontinuities have occurred since the last
>             re-initialization of the local management subsystem,
>             then this object contains a zero value."
> 
>        ::= { vrrpv3Statistics 4 }

Fine

>> VRRP Router Statistics
>> 
>> In the presence of an attack or a broken router or host nearby, is it
possible
>> that Countr32 will not be large enough for the up-time of this router?
>> 
>> You can choose to use Counter64 or describe wrapping conditions.
> 
> [kalyan>>>] Changed all the statistics counters to Counter64 except for
>             vrrpv3StatisticsMasterTransitions

Great

>> vrrpv3StatisticsAdvIntervalErrors
>> 
>>                "The total number of VRRP advertisement packets
>>                received for which the advertisement interval is
>>                different than the one configured for the local virtual
>>                router.
>> 
>> Can you add a reference to vrrpv3OperationsAdvInterval
> 
> [kalyan>>>]  Following is the new text i have :
> 
>            The total number of VRRP advertisement packets
>             received for which the advertisement interval is
>             different from the vrrpv3OperationsAdvInterval
>             configured on this virtual router.

Perfect

>> vrrpv3ProtoError
>> 
>> Don't you think this is a *really* dangerous notification?
>> 
>> If a VR is under attack or receiving packets from a faulty speaker, 
>> it will spew notifications.
>> 
>> You should probably either add some thresholding objects (which is a 
>> fair bit of work) or a single object to turn notifications on and off 
>> (with the default being "off").
> 
> [kalyan>>>] I agree.  I had a notification control object in  earlier 
> drafts
but was
> asked to be removed  during MIB DR. review. Following is the cut and 
> paste of the comments:
> 
> >
> >> * vrrpTrapNewMasterCntl, vrrpTrapProtoErrorCntl
> >>
> >> Could notifications be generated or not, using RFC3413?
> >>
> > [Kalyan>] Notifications could be filtered/generated using RFC3413. I 
> > added these to conveniently control notifications within this MIB 
> > (Based on request from some one on the mailing list) You suggest we get rid of these?
> >
> 
> Yes, I think that most operators would likely use rfc3413.  Having 
> this in 2 places may create some confusion...

OK, we can go with 3413 if that is what you are happy with.

But I think you need a reference to 3413.
- Add it to the normative references
- Add it to some text early in the draft. There is not a lot
  of option. I suggest a new paragraph in the into saying:
    Notifications in this MIB module are controlled using the
    mechanisms defined in [RFC3413].
- Add a comment within the MIB module as:
OLD
   --   Notification Definitions
NEW
   --   Notification Definitions
   --   Notifications may be controlled using SNMP-NOTIFICATION-MIB
END

>> Notifications
>> 
>> As currently specified, both of the notifications will come from the
management
>> agent which will identify the physical router that sourced the 
>> notification,
but not
>> the VR.
>> 
>> Don't you need to add some index values to the notifications as well?
> 
> [kalyan>>>] Good point. Added the Following to uniquely identify row 
> in
> vrrpv3OperationsTable:
> 
>     vrrpv3NewMaster NOTIFICATION-TYPE
>         OBJECTS      { ifIndex,
>                        vrrpv3OperationsVrId,
>                        vrrpv3OperationsInetAddrType,
>                        vrrpv3OperationsMasterIpAddr,
>                        vrrpv3StatisticsNewMasterReason
>                      }
>         STATUS       current
>         DESCRIPTION
>             "The newMaster notification indicates that the sending
>             agent has transitioned to 'Master' state."
>         ::= { vrrpv3Notifications 1 }
> 
>     vrrpv3ProtoError NOTIFICATION-TYPE
>         OBJECTS      { ifIndex,
>                        vrrpv3OperationsVrId,
>                        vrrpv3OperationsInetAddrType,
>                        vrrpv3StatisticsProtoErrReason
>                      }
>         STATUS       current
>         DESCRIPTION
>             "The notification indicates that the sending agent has
>             encountered the protocol error indicated by
>             vrrpv3StatisticsProtoErrReason."
>         ::= { vrrpv3Notifications 2 }

OK

>> Section 11
>> 
>> Since you are obsoleting RFC 2787, is it your intention to ask IANA 
>> to
deprecate
>> {mib-2 68} ?
> 
> [kalyan>>>] Yes.  I added the following to IANA considerations :
> 
>    [Editor's Note (to be removed prior to publication):  The IANA is
>    requested to assign a value for "ZZZ" under the 'mib-2' subtree
>    and to record the assignment in the SMI Numbers registry. When
>    the assignment has been made, the RFC Editor is asked to replace
>    "ZZZ" (here and in the MIB module) with the assigned value.
> 
>    This document obsoletes RFC 2787 and the IANA is requested to
>    deprecate the value 68 under 'mib-2' assigned to VRRP-MIB.]

OK

>> Would you please consider adding a short section on migrating from 
>> VRRP-MIB to VRRPV3-MIB?
> 
> [kalyan>>>] I am not sure there is a smooth migration path from 
> VRRP-MIB to VRRPV3-MIB - I think we made a conscious decision that 
> VRRV3 MIB will only  support RFC5798 and will not support earlier versions.
> 
> The way i see it -  Routers that implement  RFC2338 and VRRP-MIB will 
> have to first migrate to RFC5798 and then make changes to VRRP-MIB 
> implementation  to conform to  VRRPv3-MIB.
> 
> Should i mention this fact in the section?

No need. Your explanation here is clear.

Looking forward to seeing the revision.

Cheers,
Adrian

Scanned by Check Point Total Security Gateway.
_______________________________________________
vrrp mailing list
vrrp <at> ietf.org
https://www.ietf.org/mailman/listinfo/vrrp
Permalink | Reply |

Gmane