| < draft-ietf-bess-l2l3-vpn-mcast-mib-12.txt | draft-ietf-bess-l2l3-vpn-mcast-mib-13.txt > | |||
|---|---|---|---|---|
| Network Working Group Z. Zhang | Network Working Group Z. Zhang | |||
| Internet-Draft Juniper Networks, Inc. | Internet-Draft Juniper Networks, Inc. | |||
| Intended status: Standards Track H. Tsunoda | Intended status: Standards Track H. Tsunoda | |||
| Expires: May 31, 2018 Tohoku Institute of Technology | Expires: June 15, 2018 Tohoku Institute of Technology | |||
| November 27, 2017 | December 12, 2017 | |||
| L2L3 VPN Multicast MIB | L2L3 VPN Multicast MIB | |||
| draft-ietf-bess-l2l3-vpn-mcast-mib-12 | draft-ietf-bess-l2l3-vpn-mcast-mib-13 | |||
| Abstract | Abstract | |||
| This memo defines a portion of the Management Information Base (MIB) | This memo defines a portion of the Management Information Base (MIB) | |||
| for use with network management protocols in the Internet community. | for use with network management protocols in the Internet community. | |||
| In particular, it describes two MIB modules which will be used by | In particular, it describes two MIB modules which will be used by | |||
| other MIB modules for monitoring and/or configuring Layer 2 and Layer | other MIB modules for monitoring and/or configuring Layer 2 and Layer | |||
| 3 Virtual Private Networks that support multicast. | 3 Virtual Private Networks that support multicast. | |||
| Status of This Memo | Status of This Memo | |||
| skipping to change at page 1, line 35 ¶ | skipping to change at page 1, line 35 ¶ | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF). Note that other groups may also distribute | Task Force (IETF). Note that other groups may also distribute | |||
| working documents as Internet-Drafts. The list of current Internet- | working documents as Internet-Drafts. The list of current Internet- | |||
| Drafts is at http://datatracker.ietf.org/drafts/current/. | Drafts is at http://datatracker.ietf.org/drafts/current/. | |||
| Internet-Drafts are draft documents valid for a maximum of six months | Internet-Drafts are draft documents valid for a maximum of six months | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| This Internet-Draft will expire on May 31, 2018. | This Internet-Draft will expire on June 15, 2018. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (c) 2017 IETF Trust and the persons identified as the | Copyright (c) 2017 IETF Trust and the persons identified as the | |||
| document authors. All rights reserved. | document authors. All rights reserved. | |||
| This document is subject to BCP 78 and the IETF Trust's Legal | This document is subject to BCP 78 and the IETF Trust's Legal | |||
| Provisions Relating to IETF Documents | Provisions Relating to IETF Documents | |||
| (http://trustee.ietf.org/license-info) in effect on the date of | (http://trustee.ietf.org/license-info) in effect on the date of | |||
| publication of this document. Please review these documents | publication of this document. Please review these documents | |||
| skipping to change at page 9, line 29 ¶ | skipping to change at page 9, line 29 ¶ | |||
| MplsLabel | MplsLabel | |||
| FROM MPLS-TC-STD-MIB -- [RFC3811] | FROM MPLS-TC-STD-MIB -- [RFC3811] | |||
| L2L3VpnMcastProviderTunnelType, | L2L3VpnMcastProviderTunnelType, | |||
| L2L3VpnMcastProviderTunnelId | L2L3VpnMcastProviderTunnelId | |||
| FROM L2L3-VPN-MCAST-TC-MIB; -- [RFCXXXX] | FROM L2L3-VPN-MCAST-TC-MIB; -- [RFCXXXX] | |||
| -- RFC Ed.: replace XXXX with actual RFC number and remove this note | -- RFC Ed.: replace XXXX with actual RFC number and remove this note | |||
| l2L3VpnMcastMIB MODULE-IDENTITY | l2L3VpnMcastMIB MODULE-IDENTITY | |||
| LAST-UPDATED "201711271200Z" -- 27th November, 2017 | LAST-UPDATED "201712121200Z" -- 12th December, 2017 | |||
| ORGANIZATION "IETF BESS Working Group." | ORGANIZATION "IETF BESS Working Group." | |||
| CONTACT-INFO | CONTACT-INFO | |||
| " Zhaohui Zhang | " Zhaohui Zhang | |||
| Juniper Networks, Inc. | Juniper Networks, Inc. | |||
| 10 Technology Park Drive | 10 Technology Park Drive | |||
| Westford, MA 01886 | Westford, MA 01886 | |||
| USA | USA | |||
| Email: zzhang@juniper.net | Email: zzhang@juniper.net | |||
| Hiroshi Tsunoda | Hiroshi Tsunoda | |||
| skipping to change at page 10, line 17 ¶ | skipping to change at page 10, line 17 ¶ | |||
| information of the provider tunnels (P-tunnels) on a PE router. | information of the provider tunnels (P-tunnels) on a PE router. | |||
| This MIB module will be used by other MIB modules designed for | This MIB module will be used by other MIB modules designed for | |||
| monitoring and/or configuring Border Gateway | monitoring and/or configuring Border Gateway | |||
| Protocol/MultiProtocol Label Switching | Protocol/MultiProtocol Label Switching | |||
| Layer 2 and Layer 3 Virtual Private | Layer 2 and Layer 3 Virtual Private | |||
| Network that support multicast (L2L3VpnMCast network). | Network that support multicast (L2L3VpnMCast network). | |||
| Copyright (C) The Internet Society (2017). | Copyright (C) The Internet Society (2017). | |||
| " | " | |||
| -- Revision history. | -- Revision history. | |||
| REVISION "201711271200Z" -- 27th November, 2017 | REVISION "201712121200Z" -- 12th December, 2017 | |||
| DESCRIPTION | DESCRIPTION | |||
| "Initial version, published as RFC XXXX." | "Initial version, published as RFC XXXX." | |||
| -- RFC Ed.: replace XXXX with actual RFC number and remove this note | -- RFC Ed.: replace XXXX with actual RFC number and remove this note | |||
| ::= { mib-2 BBBB } | ::= { mib-2 BBBB } | |||
| -- IANA Reg.: Please assign a value for "BBBB" under the | -- IANA Reg.: Please assign a value for "BBBB" under the | |||
| -- 'mib-2' subtree and record the assignment in the SMI | -- 'mib-2' subtree and record the assignment in the SMI | |||
| -- Numbers registry. | -- Numbers registry. | |||
| skipping to change at page 13, line 32 ¶ | skipping to change at page 13, line 32 ¶ | |||
| l2L3VpnMcastPmsiTunnelAttributeMplsLabel OBJECT-TYPE | l2L3VpnMcastPmsiTunnelAttributeMplsLabel OBJECT-TYPE | |||
| SYNTAX MplsLabel | SYNTAX MplsLabel | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "This object represents the MPLS Label in the PMSI Tunnel | "This object represents the MPLS Label in the PMSI Tunnel | |||
| attribute of the P-tunnel corresponding to this entry. | attribute of the P-tunnel corresponding to this entry. | |||
| When BGP-based PMSI signaling is used, the PMSI Tunnel | When BGP-based PMSI signaling is used, the PMSI Tunnel | |||
| attribute of the P-tunnel will be advertised/received | attribute of the P-tunnel will be advertised/received | |||
| in an PMSI auto-discovery (A-D) route. The value of | in a PMSI auto-discovery (A-D) route. The value of | |||
| this object corresponds to the MPLS Label in the attribute. | this object corresponds to the MPLS Label in the attribute. | |||
| When the P-tunnel does not have correspondent PMSI tunnel | When the P-tunnel does not have a PMSI tunnel | |||
| attribute, the value of this object will be 0 that | attribute, the value of this object will be 0. | |||
| indicates the absence of any MPLS Label. | ||||
| " | " | |||
| REFERENCE | REFERENCE | |||
| "RFC6514, Section 5" | "RFC6514, Section 5" | |||
| ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 4 } | ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 4 } | |||
| l2L3VpnMcastPmsiTunnelPointer OBJECT-TYPE | l2L3VpnMcastPmsiTunnelPointer OBJECT-TYPE | |||
| SYNTAX RowPointer | SYNTAX RowPointer | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The P-tunnel identified by | "Details of a P-tunnel identified by | |||
| l2L3VpnMcastPmsiTunnelAttributeId may be represented | l2L3VpnMcastPmsiTunnelAttributeId may be present | |||
| as an entry in some other table, e.g., | in some other table, e.g., | |||
| mplsTunnelTable [RFC3812]. This object specifies | mplsTunnelTable [RFC3812]. This object specifies | |||
| the pointer to the row pertaining to the entry. | the pointer to the row that pertains to the entry | |||
| in the table. | ||||
| If such an entry does not exist, the value of this object | If no such entry exists, the value of this object | |||
| MUST be zeroDotZero. | will be zeroDotZero. | |||
| " | " | |||
| REFERENCE | REFERENCE | |||
| "RFC3812, Section 6.1 and Section 11" | "RFC3812, Section 6.1 and Section 11" | |||
| DEFVAL { zeroDotZero } | DEFVAL { zeroDotZero } | |||
| ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 5 } | ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 5 } | |||
| l2L3VpnMcastPmsiTunnelIf OBJECT-TYPE | l2L3VpnMcastPmsiTunnelIf OBJECT-TYPE | |||
| SYNTAX RowPointer | SYNTAX RowPointer | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "If the P-tunnel identified by | "If the P-tunnel identified by | |||
| l2L3VpnMcastPmsiTunnelAttributeId has a corresponding | l2L3VpnMcastPmsiTunnelAttributeId has a corresponding | |||
| entry in the ifXTable [RFC2863], this object will | entry in ifXTable [RFC2863], this object will | |||
| point to the row pertaining to the entry in the ifXTable. | point to the row in ifXTable that pertains to the entry. | |||
| Otherwise, this object MUST be set to zeroDotZero. | Otherwise, the value of this object will be zeroDotZero. | |||
| " | " | |||
| REFERENCE | REFERENCE | |||
| "RFC2863, Section 6" | "RFC2863, Section 6" | |||
| DEFVAL { zeroDotZero } | DEFVAL { zeroDotZero } | |||
| ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 6 } | ::= { l2L3VpnMcastPmsiTunnelAttributeEntry 6 } | |||
| -- Conformance Information | -- Conformance Information | |||
| l2L3VpnMcastCompliances OBJECT IDENTIFIER | l2L3VpnMcastCompliances OBJECT IDENTIFIER | |||
| ::= { l2L3VpnMcastConformance 1 } | ::= { l2L3VpnMcastConformance 1 } | |||
| l2L3VpnMcastGroups OBJECT IDENTIFIER | l2L3VpnMcastGroups OBJECT IDENTIFIER | |||
| ::= { l2L3VpnMcastConformance 2 } | ::= { l2L3VpnMcastConformance 2 } | |||
| -- Compliance Statements | -- Compliance Statements | |||
| l2L3VpnMcastCoreCompliance MODULE-COMPLIANCE | l2L3VpnMcastCoreCompliance MODULE-COMPLIANCE | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The core compliance statement for SNMP entities | "The core compliance statement for SNMP entities | |||
| which implement this L2L3-VPN-MCAST-MIB Module." | which implement the L2L3-VPN-MCAST-MIB Module." | |||
| MODULE -- this module | MODULE -- this module | |||
| MANDATORY-GROUPS { | MANDATORY-GROUPS { | |||
| l2L3VpnMcastCoreGroup | l2L3VpnMcastCoreGroup | |||
| } | } | |||
| ::= { l2L3VpnMcastCompliances 1 } | ::= { l2L3VpnMcastCompliances 1 } | |||
| l2L3VpnMcastFullCompliance MODULE-COMPLIANCE | l2L3VpnMcastFullCompliance MODULE-COMPLIANCE | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The full compliance statement for SNMP entities | "The full compliance statement for SNMP entities | |||
| which implement this L2L3-VPN-MCAST-MIB Module." | which implement the L2L3-VPN-MCAST-MIB Module." | |||
| MODULE -- this module | MODULE -- this module | |||
| MANDATORY-GROUPS { | MANDATORY-GROUPS { | |||
| l2L3VpnMcastCoreGroup, | l2L3VpnMcastCoreGroup, | |||
| l2L3VpnMcastOptionalGroup | l2L3VpnMcastOptionalGroup | |||
| } | } | |||
| ::= { l2L3VpnMcastCompliances 2 } | ::= { l2L3VpnMcastCompliances 2 } | |||
| -- units of conformance | -- units of conformance | |||
| skipping to change at page 16, line 12 ¶ | skipping to change at page 16, line 12 ¶ | |||
| a MAX-ACCESS other than not-accessible) may be considered sensitive | a MAX-ACCESS other than not-accessible) may be considered sensitive | |||
| or vulnerable in some network environments. It is thus important to | or vulnerable in some network environments. It is thus important to | |||
| control even GET and/or NOTIFY access to these objects and possibly | control even GET and/or NOTIFY access to these objects and possibly | |||
| to even encrypt the values of these objects when sending them over | to even encrypt the values of these objects when sending them over | |||
| the network via SNMP. These are the tables and objects and their | the network via SNMP. These are the tables and objects and their | |||
| sensitivity/vulnerability: | sensitivity/vulnerability: | |||
| o the l2L3VpnMcastPmsiTunnelAttributeTable collectively shows the | o the l2L3VpnMcastPmsiTunnelAttributeTable collectively shows the | |||
| P-tunnel network topology and its performance characteristics. | P-tunnel network topology and its performance characteristics. | |||
| For instance, l2L3VpnMcastPmsiTunnelAttributeId in this table will | For instance, l2L3VpnMcastPmsiTunnelAttributeId in this table will | |||
| contain the identifier that uniquely identifies a created | contain the identifier that uniquely identifies a P-tunnel. This | |||
| P-tunnel. This identifier may be composed of source and multicast | identifier may be composed of source and multicast group IP | |||
| group IP addresses. l2L3VpnMcastPmsiTunnelPointer and | addresses. l2L3VpnMcastPmsiTunnelPointer and | |||
| l2L3VpnMcastPmsiTunnelIf will point to the corresponding entries | l2L3VpnMcastPmsiTunnelIf will point to the corresponding entries | |||
| in other tables containing configuration and/or performance | in other tables containing configuration and/or performance | |||
| information of a P-tunnel and its interface. If an Administrator | information of a P-tunnel and its interface. If an Administrator | |||
| does not want to reveal this information, then these objects | does not want to reveal this information, then these objects | |||
| should be considered sensitive/vulnerable. | should be considered sensitive/vulnerable. | |||
| SNMP versions prior to SNMPv3 did not include adequate security. | SNMP versions prior to SNMPv3 did not include adequate security. | |||
| Even if the network itself is secure (for example by using IPsec), | Even if the network itself is secure (for example by using IPsec), | |||
| there is no control as to who on the secure network is allowed to | there is no control as to who on the secure network is allowed to | |||
| access and GET/SET (read/change/create/delete) the objects in this | access and GET/SET (read/change/create/delete) the objects in this | |||
| End of changes. 14 change blocks. | ||||
| 24 lines changed or deleted | 24 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||