idnits 2.17.1 

draft-ietf-netconf-notification-07.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** It looks like you're using RFC 3978 boilerplate.  You should update this
     to the boilerplate described in the IETF Trust License Policy document
     (see https://trustee.ietf.org/license-info), which is required now.

  -- Found old boilerplate from RFC 3978, Section 5.1 on line 15.

  -- Found old boilerplate from RFC 3978, Section 5.5, updated by RFC 4748 on
     line 1331.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 1 on line 1342.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 2 on line 1349.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 3 on line 1355.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

     No issues found here.

  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the IETF Trust Copyright Line does not match the
     current year

  == Line 1021 has weird spacing: '...    and  filte...'

  == The document doesn't use any RFC 2119 keywords, yet seems to have RFC
     2119 boilerplate text.

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (May 15, 2007) is 6191 days in the past.  Is this
     intentional?


  Checking references for intended status: Proposed Standard
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  -- Looks like a reference, but probably isn't: '7' on line 1244

  == Unused Reference: 'RFC2026' is defined on line 1276, but no explicit
     reference was found in the text

  == Unused Reference: 'RFC2223' is defined on line 1282, but no explicit
     reference was found in the text

  ** Obsolete normative reference: RFC 4741 (ref. 'NETCONF') (Obsoleted by
     RFC 6241)

  ** Obsolete normative reference: RFC 2223 (Obsoleted by RFC 7322)

  -- Possible downref: Non-RFC (?) normative reference: ref. 'XML'

  -- Possible downref: Non-RFC (?) normative reference: ref. 'XPATH'


     Summary: 3 errors (**), 0 flaws (~~), 5 warnings (==), 10 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------

1	Network Working Group                                        S. Chisholm
2	Internet-Draft                                                    Nortel
3	Intended status: Standards Track                              H. Trevino
4	Expires: November 16, 2007                                         Cisco
5	                                                            May 15, 2007

7	                      NETCONF Event Notifications
8	                 draft-ietf-netconf-notification-07.txt

10	Status of this Memo

12	   By submitting this Internet-Draft, each author represents that any
13	   applicable patent or other IPR claims of which he or she is aware
14	   have been or will be disclosed, and any of which he or she becomes
15	   aware will be disclosed, in accordance with Section 6 of BCP 79.

17	   Internet-Drafts are working documents of the Internet Engineering
18	   Task Force (IETF), its areas, and its working groups.  Note that
19	   other groups may also distribute working documents as Internet-
20	   Drafts.

22	   Internet-Drafts are draft documents valid for a maximum of six months
23	   and may be updated, replaced, or obsoleted by other documents at any
24	   time.  It is inappropriate to use Internet-Drafts as reference
25	   material or to cite them other than as "work in progress."

27	   The list of current Internet-Drafts can be accessed at
28	   http://www.ietf.org/ietf/1id-abstracts.txt.

30	   The list of Internet-Draft Shadow Directories can be accessed at
31	   http://www.ietf.org/shadow.html.

33	   This Internet-Draft will expire on November 16, 2007.

35	Copyright Notice

37	   Copyright (C) The IETF Trust (2007).

39	Abstract

41	   This document defines mechanisms which provide an asynchronous
42	   message notification delivery service for the NETCONF protocol.  This
43	   is an optional capability built on top of the base NETCONF
44	   definition.  This document defines the capabilities and operations
45	   necessary to support this service.

47	Table of Contents

49	   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  4
50	     1.1.  Definition of Terms  . . . . . . . . . . . . . . . . . . .  4
51	     1.2.  Motivation . . . . . . . . . . . . . . . . . . . . . . . .  5
52	     1.3.  Event Notifications in NETCONF . . . . . . . . . . . . . .  5
53	     1.4.  Requirements . . . . . . . . . . . . . . . . . . . . . . .  6
54	   2.  Notification-Related Operations  . . . . . . . . . . . . . . .  7
55	     2.1.  Subscribing to receive Event Notifications . . . . . . . .  7
56	       2.1.1.  <create-subscription>  . . . . . . . . . . . . . . . .  7
57	     2.2.  Sending Event Notifications  . . . . . . . . . . . . . . .  9
58	       2.2.1.  <notification> . . . . . . . . . . . . . . . . . . . .  9
59	     2.3.  Terminating the Subscription . . . . . . . . . . . . . . . 10
60	   3.  Supporting Concepts  . . . . . . . . . . . . . . . . . . . . . 11
61	     3.1.  Capabilities Exchange  . . . . . . . . . . . . . . . . . . 11
62	       3.1.1.  Capability Identifier  . . . . . . . . . . . . . . . . 11
63	       3.1.2.  Capability Example . . . . . . . . . . . . . . . . . . 11
64	     3.2.  Event Streams  . . . . . . . . . . . . . . . . . . . . . . 11
65	       3.2.1.  Event Stream Definition  . . . . . . . . . . . . . . . 12
66	       3.2.2.  Event Stream Content Format  . . . . . . . . . . . . . 13
67	       3.2.3.  Default Event Stream . . . . . . . . . . . . . . . . . 13
68	       3.2.4.  Event Stream Sources . . . . . . . . . . . . . . . . . 13
69	       3.2.5.  Event Stream Discovery . . . . . . . . . . . . . . . . 13
70	     3.3.  Notification Replay  . . . . . . . . . . . . . . . . . . . 15
71	       3.3.1.  Overview . . . . . . . . . . . . . . . . . . . . . . . 15
72	       3.3.2.  Creating a Subscription with Replay  . . . . . . . . . 16
73	       3.3.3.  Replay Complete Notification . . . . . . . . . . . . . 16
74	     3.4.  Notification Management Schema . . . . . . . . . . . . . . 16
75	     3.5.  Subscriptions Data . . . . . . . . . . . . . . . . . . . . 20
76	     3.6.  Filter Mechanics . . . . . . . . . . . . . . . . . . . . . 20
77	       3.6.1.  Named Profiles . . . . . . . . . . . . . . . . . . . . 21
78	       3.6.2.  Filtering  . . . . . . . . . . . . . . . . . . . . . . 21
79	     3.7.  Message Flow . . . . . . . . . . . . . . . . . . . . . . . 21
80	   4.  XML Schema for Event Notifications . . . . . . . . . . . . . . 23
81	   5.  Filtering Examples . . . . . . . . . . . . . . . . . . . . . . 27
82	     5.1.  Subtree Filtering  . . . . . . . . . . . . . . . . . . . . 27
83	     5.2.  XPATH filters  . . . . . . . . . . . . . . . . . . . . . . 30
84	   6.  Security Considerations  . . . . . . . . . . . . . . . . . . . 32
85	   7.  IANA Considerations  . . . . . . . . . . . . . . . . . . . . . 33
86	   8.  Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 34
87	   9.  Normative References . . . . . . . . . . . . . . . . . . . . . 35
88	   Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 36
89	   Intellectual Property and Copyright Statements . . . . . . . . . . 37

91	1.  Introduction

93	   [NETCONF] can be conceptually partitioned into four layers:

95	   Layer                      Example
96	    +-------------+      +----------------------------------------+
97	    |   Content   |      |     Configuration data                 |
98	    +-------------+      +----------------------------------------+
99	              |                           |
100	    +-------------+      +-------------------------------------------+
101	    | Operations  |      | <get-config>, <edit-config> <notification>|
102	    +-------------+      +-------------------------------------------+
103	              |                           |                    |
104	    +-------------+      +-----------------------------+       |
105	    |     RPC     |      |    <rpc>, <rpc-reply>       |       |
106	    +-------------+      +-----------------------------+       |
107	             |                           |                     |
108	    +-------------+      +------------------------------------------+
109	    | Transport   |      |   BEEP, SSH, SSL, console                |
110	    |   Protocol  |      |                                          |
111	    +-------------+      +------------------------------------------+

113	                                 Figure 1

115	   This document defines mechanisms which provide an asynchronous
116	   message notification delivery service for the [NETCONF] protocol.
117	   This is an optional capability built on top of the base NETCONF
118	   definition.  This memo defines the capabilities and operations
119	   necessary to support this service.

121	1.1.  Definition of Terms

123	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
124	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
125	   document are to be interpreted as described in [RFC2119].

127	   Element:  An [XML] Element.

129	   Subscription:  A concept related to the delivery of notifications (if
130	      any to send) involving destination and selection of notifications.
131	      It is bound to the lifetime of a session.

133	   Operation:  This term is used to refer to NETCONF protocol
134	      operations.  Specifically within this document, operation refers
135	      to NETCONF protocol operations defined in support of NETCONF
136	      notifications.

138	   Event:  An event is something that happens which may be of interest -
139	      a configuration change, a fault, a change in status, crossing a
140	      threshold, or an external input to the system, for example.  Often
141	      this results in an asynchronous message, sometimes referred to as
142	      a notification or event notification, being sent to interested
143	      parties to notify them that this event has occurred.

145	   Replay:  The ability to send/re-send previously logged notifications
146	      upon request.  These notifications are sent asynchronously.  This
147	      feature is implemented by the NETCONF server and invoked by the
148	      NETCONF client.

150	   Stream:  An event stream is a set of event notifications matching
151	      some forwarding criteria and it is available to NETCONF clients
152	      for subscription.

154	   Named Profile:  A predefined set of filtering criteria residing in
155	      the Network Element which may be applied to a notification session
156	      at subscription creation time.

158	1.2.  Motivation

160	   The motivation for this work is to enable the sending of asynchronous
161	   messages that are consistent with the data model (content) and
162	   security model used within a NETCONF implementation.

164	1.3.  Event Notifications in NETCONF

166	   This memo defines a mechanism whereby the NETCONF client indicates
167	   interest in receiving event notifications from a NETCONF server by
168	   creating a subscription to receive event notifications.  The NETCONF
169	   server replies to indicate whether the subscription request was
170	   successful and, if it was successful, begins sending the event
171	   notifications to the NETCONF client as the events occur within the
172	   system.  These event notifications will continue to be sent until
173	   either the NETCONF session is terminated or the subscription
174	   terminates for some other reason.  The event notification
175	   subscription allows a number of options to enable the NETCONF client
176	   to specify which events are of interest.  These are specified when
177	   the subscription is created.

179	   A NETCONF server is not required to process RPC requests on the
180	   session associated with the subscription until the notification
181	   subscription is done and may silently discard these requests.  A
182	   capability may be advertised to announce that a server is able to
183	   process RPCs while a notification stream is active on a session.  The
184	   behaviour of such a capability is outside the scope of this document.

186	1.4.  Requirements

188	   The following requirements have been addressed by the solution:

190	   o  Initial release should ensure it supports notification in support
191	      of configuration operations

193	   o  Data content must not preclude the use of the same data model as
194	      used in configuration

196	   o  solution should support a reasonable message size limit (syslog
197	      and SNMP are rather constrained in terms of message sizes)

199	   o  solution should provide reliable delivery of notifications

201	   o  solution should provide a subscription mechanism (A NETCONF server
202	      does not send notifications before being asked to do so and the
203	      NETCONF client initiates the flow of notifications)

205	   o  solution should provide a filtering mechanism within the NETCONF
206	      server

208	   o  solution should send sufficient information in a notification so
209	      that it can be analyzed independent of the transport mechanism
210	      (data content fully describes a notification; protocol information
211	      is not needed to understand a notification)

213	   o  solution should support replay of locally logged notifications

215	2.  Notification-Related Operations

217	2.1.  Subscribing to receive Event Notifications

219	   The event notification subscription is initiated by the NETCONF
220	   client and responded to by the NETCONF server.  When the event
221	   notification subscription is created, the events of interest are
222	   specified.

224	   Content for an event notification subscription can be selected by
225	   applying user-specified filters.

227	2.1.1.  <create-subscription>

229	   Description:

231	      This operation initiates an event notification subscription which
232	      will send asynchronous event notifications to the initiator of the
233	      command until the subscription terminates.

235	   Parameters:

237	      Stream:

239	         An optional parameter that indicates which stream of events is
240	         of interest.  If not present, then events in the default
241	         NETCONF stream will be sent.

243	      Filter:

245	         An optional parameter that indicates which subset of all
246	         possible events are of interest.  The format of this parameter
247	         is the same as that of the filter parameter in the NETCONF
248	         protocol operations.  If not present, all events not precluded
249	         by other parameters will be sent.  This is mutually exclusive
250	         with the named profile parameter.  See section 3.6 for more
251	         information on filters.

253	      Named Profile:

255	         An optional parameter that refers to a separately defined
256	         filter profile.  If not present, no additional filtering will
257	         be applied.  Note that changes to the profile after the
258	         subscription has been created will have no effect.  This is
259	         mutually exclusive with the filter parameter.  For more
260	         information on named profiles, see section 3.6.1.

262	      Start Time:

264	         A parameter used to trigger the replay feature and indicates
265	         that the replay should start at the time specified.  If
266	         startTime is not present, this is not a replay subscription.
267	         It is valid to specify start times that are later than the
268	         current time.  If the startTime specified is earlier then the
269	         log can support, the replay will begin with the earliest
270	         available notification.  This parameter is of type dateTime.

272	      Stop Time:

274	         An optional parameter used with the optional replay feature to
275	         indicate the newest notifications of interest.  If stop time is
276	         not present, the notifications will continue until the
277	         subscription is terminated.  Must be used with 'startTime'.  It
278	         is valid to specify stop times that are later than the current
279	         time.  This parameter is of type dateTime.

281	   Positive Response:

283	      If the NETCONF server can satisfy the request, the server sends an
284	      <ok> element.

286	   Negative Response:

288	      An <rpc-error> element is included within the <rpc-reply> if the
289	      request cannot be completed for any reason.  Subscription requests
290	      will fail if a filter with invalid syntax is provided or if the
291	      name of a non-existent profile or stream is provided.

293	      If a stopTime is specified in a request without having specified a
294	      startTime the following error is returned:

296	         Tag: missing-element

298	         Error-type: protocol

300	         Severity: error

302	         Error-info: <startTime Description: An expected element is
303	         missing.

305	      If the optional replay feature is requested but it is not
306	      supported by the NETCONF server, the following error is returned:

308	         Tag: operation-failed

310	         Error-type: protocol

312	         Severity: error

314	         Error-info: none

316	         Description: Request could not be completed because the
317	         requested operation failed for some reason not covered by any
318	         other error condition

320	2.1.1.1.  Usage Example

322	              <netconf:rpc message-id="101"
323	                xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0">
324	                <create-subscription>
325	                </create-subscription>
326	              </netconf:rpc>

328	2.2.  Sending Event Notifications

330	   Once the subscription has been set up, the NETCONF server sends the
331	   event notifications asynchronously over the connection.

333	2.2.1.  <notification>

335	   Description:

337	      An event notification is sent to the client who initiated a
338	      <create-subscription> command asynchronously when an event of
339	      interest (i.e., meeting the specified filtering criteria) to them
340	      has occurred.  An event notification is a complete and well-formed
341	      XML document.  Note that <notification> is not an RPC method but
342	      rather the top level element identifying the one way message as a
343	      notification.

345	   Parameters:

347	      Data:

349	         Contains notification-specific tagged content.  The content of
350	         the data tag is beyond the scope of this document.

352	   Response:

354	      No response.  Not applicable.

356	2.3.  Terminating the Subscription

358	   Closing of the event notification subscription can be done by
359	   terminating the NETCONF session ( <kill-session> ) or the underlying
360	   transport session.  If a stop time is provided when the subscription
361	   is created, then the subscription will terminate after the stop time
362	   is reached.  In this case, the NETCONF session will still be an
363	   active session.

365	3.  Supporting Concepts

367	3.1.  Capabilities Exchange

369	   The ability to process and send event notifications is advertised
370	   during the capability exchange between the NETCONF client and server.

372	3.1.1.  Capability Identifier

374	   "urn:ietf:params:netconf:capability:notification:1.0"

376	3.1.2.  Capability Example

378	   <hello xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
379	     <capabilities>
380	        <capability>
381	            urn:ietf:params:xml:ns:netconf:base:1.0
382	          </capability>
383	          <capability>
384	            urn:ietf:params:netconf:capability:startup:1.0
385	          </capability>
386	          <capability>
387	            urn:ietf:params:netconf:capability:notification:1.0
388	          </capability>
389	       </capabilities>
390	     <session-id>4</session-id>
391	   </hello>

393	3.2.  Event Streams

395	   An event stream is defined as a set of event notifications matching
396	   some forwarding criteria.

398	   The diagram depicted in Figure 2 illustrates the notification flow
399	   and concepts identified in this document.  The following is observed
400	   from the diagram below: System components (c1..cn) generate event
401	   notifications which are passed to a central component for
402	   classification and distribution.  The central component inspects each
403	   event notification and matches the event notification against the set
404	   of stream definitions.  When a match occurs, the event notification
405	   is considered to be a member of that event stream (stream 1..stream
406	   n).  An event notification may be part of multiple event streams.

408	   When a NETCONF client subscribes to a given event stream, user-
409	   defined filters, if applicable, are applied to the event stream and
410	   matching event notifications are forwarded to the NETCONF server for
411	   distribution to subscribed NETCONF clients.  For more information on
412	   filters, see section 3.6.

414	   A notification logging service may also be available, in which case,
415	   the central component logs notifications.  The NETCONF server may
416	   later retrieve logged notifications via the optional replay feature.
417	   For more information on replay, see section 3.3.

419	   +----+
420	   | c1 |---+             available streams
421	   +----+   |    +---------+
422	   +----+   |    |central  |-> stream 1
423	   | c2 |   +--->|event    |-> stream 2     filter  +-------+
424	   +----+   |    |processor|-> NETCONF stream ----->|netconf|
425	    ...     |    |         |-> stream n             |server |
426	   System   |    +---------+                        +-------+
427	   Components|       |                                 /\
428	    ...     |        |                                 ||
429	   +----+   |        |       (------------)            ||
430	   | cn |---+        |       (notification)            ||
431	   +----+            +-----> (  logging   )            ||
432	                             (  service   )            ||
433	                             (------------)            ||
434	                                                       ||
435	                                                       ||
436	                                                       \/
437	                                                    +-------+
438	                                                    |netconf|
439	                                                    |client |
440	                                                    +-------+

442	                                 Figure 4

444	3.2.1.  Event Stream Definition

446	   Event streams are predefined on the managed device.  The
447	   configuration of event streams is outside the scope of this document.
448	   However, it is envisioned that event streams are either pre-
449	   established by the vendor (pre-configured) or user configurable
450	   (e.g., part of the device's configuration) or both.  Device vendors
451	   may allow event stream configuration via NETCONF protocol (i.e.,
452	   edit-config operation).

454	3.2.2.  Event Stream Content Format

456	   The contents of all event streams made available to a NETCONF client
457	   (i.e., the notification sent by the NETCONF server) must be encoded
458	   in XML.

460	3.2.3.  Default Event Stream

462	   A NETCONF server implementation supporting the notification
463	   capability must support the "NETCONF" notification event stream.
464	   This stream contains all NETCONF XML event notifications supported by
465	   the NETCONF server.  The definition of the event notifications and
466	   their contents for this event stream is outside the scope of this
467	   document.

469	3.2.4.  Event Stream Sources

471	   With the exception of the default event stream (NETCONF
472	   notifications) specification of additional event stream sources
473	   (e.g., SNMP, syslog, etc.) is outside the scope of this document.
474	   NETCONF server implementations may leverage any desired event stream
475	   source in the creation of supported event streams.

477	3.2.5.  Event Stream Discovery

479	   A NETCONF client retrieves the list of supported event streams from a
480	   NETCONF server using the <get> RPC request.

482	3.2.5.1.  Name Retrieval using <get> operation

484	   The list of available event streams is retrieved by requesting the
485	   <eventStreams> subtree via a <get> operation.  Available event
486	   streams for the requesting session are returned in the reply
487	   containing the <name> and <description> elements, where <name>
488	   element is mandatory and its value is unique.  The returned list must
489	   only include the names of those event streams for which the NETCONF
490	   session has sufficient privileges.  The NETCONF session privileges
491	   are determined via access control mechanisms which are beyond the
492	   scope of this document.  An empty reply is returned if there are no
493	   available event streams.  The information is retrieved by requesting
494	   the <eventStreams> subtree via a <get> operation.

496	   Example: Retrieving available event stream list using <get>
497	   operation:

499	 <rpc message-id="101"
500	    xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">

502	   <get>
503	    <filter type="subtree">
504	      <eventStreams xmlns="urn:ietf:params:xml:ns:netmod:notification"/>
505	    </filter>
506	   </get>
507	 </rpc>

509	   The NETCONF server returns a list of event streams available for
510	   subscription: NETCONF, snmp, and syslog-critical in this example.

512	  <rpc-reply message-id="101"
513	                   xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
514	    <data>
515	       <eventStreams xmlns="urn:ietf:params:xml:ns:netmod:notification">
516	            <stream>
517	               <name>NETCONF</name>
518	               <description>Default netconf event stream
519	               </description>
520	               <replaySupport>true</replaySupport>
521	            </stream>
522	            <stream>
523	              <name>snmp</name>
524	                <description>SNMP notifications</description>
525	                <replaySupport>false</replaySupport>
526	            </stream>
527	            <stream>
528	              <name>syslog-critical</name>
529	              <description>Critical and higher severity
530	              </description>
531	              <replaySupport>true</replaySupport>
532	            </stream>
533	          </eventStreams>
534	    </data>
535	  </rpc-reply>

537	3.2.5.2.  Event Stream Subscription

539	   A NETCONF client may request from the NETCONF server the list of
540	   available event streams to this session and then issue a <create-
541	   subscription> request with the desired event stream name.  Omitting
542	   the event stream name from the <create-subscription> request results
543	   in subscription to the default NETCONF event stream.

545	3.2.5.2.1.  Filtering Event Stream Contents

547	   The set of event notifications delivered in an event stream may be
548	   further refined by applying a user-specified filter at subscription
549	   creation time ( <create-subscription> ).  This is a transient filter
550	   associated with the event notification subscription and does not
551	   modify the event stream configuration.

553	   XPATH support for the Notification capability is advertised as part
554	   of the normal XPATH capability advertisement.  If XPATH support is
555	   advertised via the XPATH capability then XPATH is supported for
556	   notification filtering and if this capability is not advertised, then
557	   XPATH is not supported for notification filtering.

559	3.3.   Notification Replay

561	3.3.1.  Overview

563	   Replay is the ability to create an event subscription that will
564	   resend recently generated notifications.  These notifications are
565	   sent the same way as normal notifications.

567	   A replay of notifications is specified by including an optional
568	   parameter to the subscription command that indicates the start time
569	   of the replay.  The end time is specified using the optional stopTime
570	   parameter.  If not present, notifications will continue to be sent
571	   until the subscription is terminated.

573	   A notification stream that supports replay is not expected to have an
574	   unlimited supply of saved notifications available to accommodate any
575	   replay request.

577	   The actual number of stored notifications available for retrieval at
578	   any given time is a NETCONF server implementation specific matter.
579	   Control parameters for this aspect of the feature are outside the
580	   scope of the current document.

582	   Replay is dependent on a notification stream supporting some form of
583	   notification logging, although it puts no restrictions on the size or
584	   form of the log, nor where it resides within the device.

586	3.3.2.  Creating a Subscription with Replay

588	   This feature uses optional parameters to the <create-subscription>
589	   command called 'startTime' and 'stopTime'. 'startTime' identifies the
590	   earliest date and time of interest for event notifications being
591	   replayed and also indicates that a subscription will be providing
592	   replay of notifications.  Events generated before this time are not
593	   matched. 'stopTime' specifies the latest date and time of interest
594	   for event notifications being replayed.  If it is not present, then
595	   notifications will continue to be sent until the subscription is
596	   terminated.

598	   Note that startTime and stopTime are associated with the time an
599	   event was generated by the system.

601	   A replay complete notification is sent to indicate that all of the
602	   replay notifications have been sent.  If this subscription has a stop
603	   time, then this session becomes a normal NETCONF session again.  In
604	   the case of a subscription without a stop time, after the replay
605	   complete notification has been sent, it can be expected that any
606	   notifications generated since the start of the subscription creation
607	   will be sent followed by notifications as they arise naturally within
608	   the system.

610	3.3.3.  Replay Complete Notification

612	   The replay complete notification is the last notification sent over a
613	   replay subscription.  It indicates that replay is complete.  This
614	   notification will only be sent if a 'stopTime' was specified when the
615	   replay subscription was created.  After this notification is received
616	   the subscription is terminated and the session becomes a normal
617	   NETCONF session.

619	   The replayComplete can not be filtered out.  It will always be sent
620	   on a relay subscription that specified a stop time.

622	3.4.  Notification Management Schema

624	   This Schema is used to learn about the event streams supported on the
625	   system and the query and modify named profiles.  It also contains the
626	   definition of the replayComplete, which is sent to indicate that an
627	   event replay has sent all applicable notifications."

629	 <?xml version="1.0" encoding="UTF-8"?>
630	 <xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema"
631	     xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0"
632	     xmlns:ncEvent="urn:ietf:params:netconf:capability:notification:1.0"
633	     xmlns:manageEvent="urn:ietf:params:xml:ns:netmod:notification"
634	     targetNamespace="urn:ietf:params:xml:ns:netmod:notification"
635	     elementFormDefault="qualified"
636	     attributeFormDefault="unqualified">
637	     <xs:annotation>
638	         <xs:documentation xml:lang="en">
639	             A schema that can be used to learn about current
640	             event streams and to manage named profiles. It also
641	             contains the replayComplete notification.
642	         </xs:documentation>
643	     </xs:annotation>

645	 <xs:import namespace="http://www.w3.org/XML/1998/namespace"
646	         schemaLocation="http://www.w3.org/2001/xml.xsd"/>
647	 <xs:import namespace="urn:ietf:params:xml:ns:netconf:base:1.0"
648	         schemaLocation="urn:ietf:params:xml:ns:netconf:base:1.0"/>
649	 <xs:import namespace=
650	       "urn:ietf:params:netconf:capability:notification:1.0"
651	         schemaLocation=
652	            "urn:ietf:params:netconf:capability:notification:1.0"/>

654	 <xs:element name="netconf" type="manageEvent:Netconf"/>

656	 <xs:complexType name="Netconf">
657	   <xs:sequence>
658	       <xs:element name="eventStreams" >
659	         <xs:annotation>
660	            <xs:documentation>
661	              The list of event streams supported by the
662	              system. When a query is issued, the returned
663	              set of streams is determined based on user
664	              privileges.
665	            </xs:documentation>
666	          </xs:annotation>
667	          <xs:complexType>
668	            <xs:sequence minOccurs="0" maxOccurs="unbounded">
669	              <xs:element name="stream">
670	                 <xs:annotation>
671	                   <xs:documentation>
672	                     Stream name and description.
673	                   </xs:documentation>
674	                 </xs:annotation>
675	                 <xs:complexType>
676	                   <xs:sequence>
677	                     <xs:element name="name" type="xs:string"/>
678	                     <xs:element name="description"
679	                                         type="xs:string"/>

681	                     <xs:element name="replaySupport"
682	                                         type="xs:boolean"/>
683	                     <xs:element name="replayLogStartTime"
684	                                         type="xs:dateTime">
685	                       <xs:annotation>
686	                         <xs:documentation>
687	                            The start time of the log used to
688	                            support the replay function. If
689	                            replay is not supported, this will
690	                            return the current time.
691	                          </xs:documentation>
692	                        </xs:annotation>
693	                      </xs:element>
694	                    </xs:sequence>
695	                  </xs:complexType>
696	                </xs:element>
697	              </xs:sequence>
698	            </xs:complexType>
699	          </xs:element>

701	          <xs:element name="namedProfiles" minOccurs="0">
702	            <xs:complexType>
703	              <xs:sequence>
704	                <xs:element name="namedProfile"
705	                        type="manageEvent:NamedProfile" minOccurs="0"
706	                             maxOccurs="unbounded" />
707	              </xs:sequence>
708	            </xs:complexType>
709	          </xs:element>

711	         <xs:element name="replayComplete"
712	                     type="manageEvent:ReplayCompleteNotificationType"
713	                     minOccurs="0">
714	           <xs:annotation>
715	             <xs:documentation>
716	               This notification is sent to signal the end of a replay
717	               portion of a subscription.
718	             </xs:documentation>
719	           </xs:annotation>
720	         </xs:element>
721	       </xs:sequence>
722	     </xs:complexType>

724	     <xs:complexType name="ReplayCompleteNotificationType" >
725	         <xs:complexContent>
726	             <xs:extension base="ncEvent:NotificationType">
727	                 <xs:sequence>
728	                     <xs:element name="eventClass"/>
729	                 </xs:sequence>
730	             </xs:extension>
731	         </xs:complexContent>
732	     </xs:complexType>

734	     <xs:complexType name="NamedProfile">
735	         <xs:annotation>
736	             <xs:documentation>
737	                 A named profile, which is a saved set of parameters
738	                 that may be associated with zero or more
739	                 active subscriptions.

741	                 This object can be created, read, deleted and its
742	                 individual components can be modified.
743	             </xs:documentation>
744	         </xs:annotation>
745	         <xs:sequence>

747	             <xs:element name="name">
748	                 <xs:annotation>
749	                     <xs:documentation>
750	                         The name associated with the profile.
751	                         This object is readable and modifiable.
752	                     </xs:documentation>
753	                 </xs:annotation>
754	             </xs:element>

756	             <xs:element name="stream"  minOccurs="0">
757	                 <xs:annotation>
758	                     <xs:documentation xml:lang="en">
759	                         The event stream associated with this named
760	                         profile.

762	                         This object is readable and modifiable.
763	                     </xs:documentation>
764	                 </xs:annotation>
765	             </xs:element>

767	             <xs:element name="filter"
768	                 type="netconf:filterInlineType"  minOccurs="0">
769	                 <xs:annotation>
770	                     <xs:documentation xml:lang="en">
771	                         The filters associated with this named
772	                         profile.

774	                         This object is readable and modifiable.
775	                     </xs:documentation>
776	                 </xs:annotation>
777	             </xs:element>

779	             <xs:element name="lastModified" type="xs:dateTime">
780	                 <xs:annotation>
781	                     <xs:documentation>
782	                         The timestamp of the last modification to this
783	                         named Profile. Note that modification of the
784	                         profile does not cause an immediate update
785	                         to all applicable subscription. Therefore,
786	                         this time should be compared with the last
787	                         modified time associated with the
788	                         subscription. If this time is earlier, then
789	                         the subscription is using the exact set of
790	                         parameters associated with this named profile.
791	                         If this time is later, then the subscription
792	                         is using an earlier version of this named
793	                         profile and the exact parameters may not
794	                         match. Note there is no guarantee that the
795	                         profile named in the subscription will be
796	                         found at all."

798	                         This object is read-only.
799	                     </xs:documentation>
800	                 </xs:annotation>
801	             </xs:element>
802	         </xs:sequence>
803	     </xs:complexType>
804	 </xs:schema>

806	3.5.  Subscriptions Data

808	   While it may be possible to retrieve information about subscriptions
809	   via a get operation, subscriptions are not stored configuration.
810	   They are non-persistent state information and their lifetime is
811	   defined by their session.

813	   Named profiles, if used, are considered configuration data.

815	3.6.  Filter Mechanics

817	   Note that when multiple filter elements are specified, they are
818	   applied collectively, so event notifications need to pass all
819	   specified filters in order to be sent to the subscriber.  If a filter
820	   element is specified to look for data of a particular value, and the
821	   data item is not present within a particular event notification for
822	   its value to be checked against, it will be filtered out.  For
823	   example, if one were to check for 'severity=critical' in a
824	   configuration event notification where this field was not supported,
825	   then the notification would be filtered out.

827	   Note that the order that filter elements are applied does not matter
828	   since the resulting set of notifications is the intersection of the
829	   set of notifications that pass each filtering criteria.

831	3.6.1.  Named Profiles

833	   A named profile is a filter that is created ahead of time and applied
834	   at the time an event notification subscription is created.  Note that
835	   changes to the profile after the subscription has been created will
836	   have no effect on the subscription.  Since named profiles exist
837	   outside of the subscription, they persist after the subscription has
838	   been torn down.

840	3.6.2.  Filtering

842	   Inline filtering is explicitly stated when the event notification
843	   subscription is created.  This is specified via the 'filter'
844	   parameter.  Filters only exist as parameters to the subscription.

846	3.7.  Message Flow
847	   The following figure depicts message flow between a NETCONF client
848	   (C) and NETCONF server (S) in order create a subscription and begin
849	   the flow of notifications.  It is possible that many rpc/rpc-reply
850	   sequences occur before the subscription is created or after a
851	   stopTime in a replay subscription, but this is not depicted in the
852	   figure.

854	                             C                           S
855	                             |                           |
856	                             |  capability exchange      |
857	                             |-------------------------->|
858	                             |<------------------------->|
859	                             |                           |
860	                             |  <create-subscription>    |
861	                             |-------------------------->|
862	                             |<--------------------------|
863	                             |     <rpc-reply>           |
864	                             |                           |
865	                             |     <notification>        |
866	                             |<--------------------------|
867	                             |                           |
868	                             |     <notification>        |
869	                             |<--------------------------|
870	                             |                           |
871	                             |                           |
872	                             |                           |
873	                             |     <notification>        |
874	                             |<--------------------------|
875	                             |                           |
876	                             |                           |

878	                                 Figure 8

880	4.  XML Schema for Event Notifications

882	   The following [XML Schema] defines NETCONF Event Notifications.

884	<?xml version="1.0" encoding="UTF-8"?>
885	  <xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema"
886	        xmlns="urn:ietf:params:netconf:capability:notification:1.0"
887	        xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0"
888	        targetNamespace=
889	          "urn:ietf:params:netconf:capability:notification:1.0"
890	        elementFormDefault="qualified"
891	        attributeFormDefault="unqualified"
892	            xml:lang="en">

894	    <!-- import standard XML definitions -->

896	     <xs:import namespace="http://www.w3.org/XML/1998/namespace"
897	                schemaLocation="http://www.w3.org/2001/xml.xsd">
898	       <xs:annotation>
899	         <xs:documentation>
900	           This import accesses the xml: attribute groups for the
901	           xml:lang as declared on the error-message element.
902	         </xs:documentation>
903	       </xs:annotation>
904	     </xs:import>

906	     <!-- import base netconf definitions -->
907	     <xs:import namespace="urn:ietf:params:xml:ns:netconf:base:1.0"
908	       schemaLocation="urn:ietf:params:xml:ns:netconf:base:1.0" />

910	<!-- ************** Symmetrical Operations  ********************-->

912	     <!-- <create-subscription> operation -->

914	    <xs:complexType name="createSubscriptionType">
915	        <xs:complexContent>
916	            <xs:extension base="netconf:rpcOperationType">
917	                <xs:sequence>
918	                    <xs:element name="stream"
919	                        type="streamNameType" minOccurs="0">
920	                        <xs:annotation>
921	                            <xs:documentation>
922	                               An optional parameter that indicates
923	                               which stream of events is of interest. If
924	                               not present, then events in the default
925	                               NETCONF stream will be sent.
926	                            </xs:documentation>
927	                        </xs:annotation>
928	                    </xs:element>
929	                    <xs:choice>
930	                        <xs:element name="filter"
931	                            type="netconf:filterInlineType"
932	                            minOccurs="0">
933	                            <xs:annotation>
934	                                <xs:documentation>
935	                                    An optional parameter that indicates
936	                                    which subset of all possible events
937	                                    are of interest. The format of this
938	                                    parameter is the same as that of the
939	                                    filter parameter in the NETCONF
940	                                    protocol operations. If not present,
941	                                    all events not precluded by other
942	                                    parameters will be sent. This is
943	                                    mutually exclusive with the named
944	                                    profile parameter.
945	                                </xs:documentation>
946	                            </xs:annotation>
947	                        </xs:element>
948	                        <xs:element name="named-profile"
949	                            type="namedProfileType" minOccurs="0">
950	                            <xs:annotation>
951	                                <xs:documentation>
952	                                    An optional parameter that points to
953	                                    a separately defined filter profile.
954	                                    If not present, no additional
955	                                    filtering will be applied. Note that
956	                                    changes to the profile after the
957	                                    subscription has been created will
958	                                    have no effect. This is mutually
959	                                    exclusive with the filter parameter.
960	                                </xs:documentation>
961	                            </xs:annotation>
962	                        </xs:element>
963	                    </xs:choice>
964	                    <xs:element name="startTime" type="xs:dateTime"
965	                        minOccurs="0" >
966	                        <xs:annotation>
967	                            <xs:documentation>
968	                                A parameter used to trigger the replay
969	                                feature and indicates that the replay
970	                                should start at the time specified. If
971	                                start time is not present, this is not a
972	                                replay subscription.
973	                            </xs:documentation>
974	                        </xs:annotation>
975	                    </xs:element>
976	                    <xs:element name="stopTime" type="xs:dateTime"
977	                        minOccurs="0" >
978	                        <xs:annotation>
979	                            <xs:documentation>
980	                                An optional parameter used with the
981	                                optional replay feature to indicate the
982	                                newest notifications of interest. If
983	                                stop time is not present, the
984	                                notifications will continue until the
985	                                subscription is terminated. Must be used
986	                                with 'startTime'.
987	                            </xs:documentation>
988	                        </xs:annotation>
989	                    </xs:element>
990	                </xs:sequence>
991	            </xs:extension>
992	        </xs:complexContent>
993	    </xs:complexType>

995	    <xs:simpleType name="namedProfileType">
996	        <xs:annotation>
997	            <xs:documentation>
998	                The name of a saved profile containing filtering
999	                elements.
1000	            </xs:documentation>
1001	        </xs:annotation>
1002	        <xs:restriction base="xs:string"/>
1003	    </xs:simpleType>

1005	    <xs:simpleType name="streamNameType">
1006	        <xs:annotation>
1007	            <xs:documentation>
1008	                The name of an event stream.
1009	            </xs:documentation>
1010	        </xs:annotation>
1011	        <xs:restriction base="xs:string"/>
1012	    </xs:simpleType>

1014	    <xs:element name="create-subscription"
1015	        type="createSubscriptionType"
1016	        substitutionGroup="netconf:rpcOperation">
1017	        <xs:annotation>
1018	            <xs:documentation>
1019	                The command to create a notification subscription. It
1020	                takes as argument the name of the notification stream
1021	                and  filter or profile information. All of those options
1022	                limit the content of the subscription. In addition,
1023	                there are two time-related parameters startTime and
1024	                stopTime which can be used to select the time interval
1025	                of interest.
1026	            </xs:documentation>
1027	        </xs:annotation>
1028	    </xs:element>

1030	<!-- ************** One-way Operations  ******************-->

1032	     <!-- <Notification> operation -->
1033	     <xs:complexType name="NotificationType">
1034	        <xs:sequence>
1035	          <xs:element name="data" type="netconf:dataInlineType" />
1036	        </xs:sequence>
1037	     </xs:complexType>

1039	     <xs:element name="notification" type="NotificationType"/>

1041	  </xs:schema>

1043	5.  Filtering Examples

1045	   The following section provides examples to illustrate the various
1046	   methods of filtering content on an event notification subscription.

1048	5.1.  Subtree Filtering

1050	   XML subtree filtering is not well suited for creating elaborate
1051	   filter definitions given that it only supports equality comparisons
1052	   and logical OR operations (e.g., in an event subtree give me all
1053	   event notifications which have severity=critical or severity=major or
1054	   severity=minor).  Nevertheless, it may be used for defining simple
1055	   event notification forwarding filters as shown below.

1057	   In order to illustrate the use of filter expressions it is necessary
1058	   to assume some of the event notification content.  The examples
1059	   herein assume that the event notification schema definition has an
1060	   <events> element at the top level that contains one or more child
1061	   elements <eventEntry> consisting of the event class (e.g., fault,
1062	   state, config, etc.) reporting entity and either severity or
1063	   operational state.

1065	   Sample event list

1067	               <events>
1068	                 <eventEntry>
1069	                   <eventClass>fault</eventClass>
1070	                   <reportingEntity>
1071	                     <card>Ethernet0</card>
1072	                   </reportingEntity>
1073	                   <severity>major</severity>
1074	                 </eventEntry>
1075	                 <eventEntry>
1076	                   <eventClass>fault</eventClass>
1077	                   <reportingEntity>
1078	                     <card>Ethernet2</card>
1079	                   </reportingEntity>
1080	                   <severity>critical</severity>
1081	                 </eventEntry>
1082	                 <eventEntry>
1083	                   <eventClass>fault</eventClass>
1084	                   <reportingEntity>
1085	                     <card>ATM1</card>
1086	                   </reportingEntity>
1087	                   <severity>minor</severity>
1088	                 </eventEntry>
1089	                 <eventEntry>
1090	                   <eventClass>state</eventClass>
1091	                   <reportingEntity>
1092	                     <card>Ethernet0</card>
1093	                   </reportingEntity>
1094	                   <operState>enabled</operState>
1095	                 </eventEntry>
1096	               </events>

1098	   The following example illustrates selecting events which have
1099	   severities of critical, major, or minor (presumably fault events).
1100	   The filtering criteria evaluation is as follows:

1102	   ((severity=critical) | (severity=major) | (severity=minor))

1104	 <netconf:rpc message-id="101"
1105	              xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0">
1106	       <create-subscription
1107	                xmlns="urn:ietf:params:xml:ns:netconf:notification:1.0">
1108	         <filter netconf:type="subtree">
1109	            <event xmlns="http://example.com/event/1.0">
1110	              <events>
1111	               <eventEntry>
1112	                 <eventClass>fault</eventClass>
1113	                    <severity>critical</severity>
1114	               </eventEntry>
1115	               <eventEntry>
1116	                   <eventClass>fault</eventClass>
1117	                   <severity>major</severity>
1118	                </eventEntry>
1119	                <eventEntry>
1120	                   <eventClass>fault</eventClass>
1121	                   <severity>minor</severity>
1122	                </eventEntry>
1123	               </events>
1124	            </event>
1125	        </filter>
1126	      </create-subscription>
1127	    </netconf:rpc>

1129	   The following example illustrates selecting state or config
1130	   EventClasses or fault events that are related to card Ethernet0.  The
1131	   filtering criteria evaluation is as follows:

1133	   ( state | config | fault & card=Ethernet0)

1135	 <netconf:rpc message-id="101"
1136	           xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0">
1137	    <create-subscription>
1138	       <filter netconf:type="subtree">
1139	            xmlns="urn:ietf:params:netconf:capability:notification:1.0">
1140	            <event xmlns="http://example.com/event/1.0">
1141	                 <events>
1142	                    <eventEntry>
1143	                       <eventClass>fault</eventClass>
1144	                    </eventEntry>
1145	                    <eventEntry>
1146	                       <eventClass>state</eventClass>
1147	                    </eventEntry>
1148	                    <eventEntry>
1149	                       <eventClass>config</eventClass>
1150	                    </eventEntry>
1151	                    <eventEntry>
1152	                      <eventClass>fault</eventClass>
1153	                        <reportingElement>
1154	                           <card>Ethernet0</card>
1155	                        </reportingElement>
1156	                    </eventEntry>
1157	                 </events>
1158	            </event>
1159	       </filter>
1160	    </create-subscription>
1161	 </netconf:rpc>

1163	5.2.  XPATH filters

1165	   The following [XPATH] example illustrates selecting fault EventClass
1166	   notifications that have severities of critical, major, or minor.  The
1167	   filtering criteria evaluation is as follows:

1169	   ((fault) & ((severity=critical) | (severity=major) | (severity =
1170	   minor)))

1172	   <netconf:rpc message-id="101"
1173	                xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0">
1174	         <create-subscription>
1175	            <filter netconf:type="xpath"
1176	              select="//eventEntry[(eventClass='fault' and
1177	                    (severity='minor' or severity='major'
1178	                     or severity='critical'))]"/>
1179	        </create-subscription>
1180	      </netconf:rpc>

1182	   The following example illustrates selecting state and config
1183	   EventClasses or fault events that have severities of critical, major,
1184	   or minor or come from card Ethernet0.  The filtering criteria
1185	   evaluation is as follows:

1187	   (( state | config) & ((fault & severity=critical) | (fault &
1188	   severity=major) | (fault & severity = minor) | (fault &
1189	   card=Ethernet0)))

1191	<netconf:rpc message-id="101"
1192	                xmlns:netconf="urn:ietf:params:xml:ns:netconf:base:1.0">
1193	      <create-subscription>
1194	         <filter netconf:type="xpath"
1195	                     select="//eventEntry[(eventClass='fault' and
1196	                     severity='minor') or
1197	                     (eventClass='fault' and severity='major') or
1198	                     (eventClass='fault' and severity='critical') or
1199	                     (eventClass='fault' and card='Ethernet0') or
1200	                      eventClass='state' or eventClass='config']"/>
1201	     </create-subscription>
1202	   </netconf:rpc>

1204	6.  Security Considerations

1206	   The security considerations from the base [NETCONF] document apply
1207	   also to the Notification capability.

1209	   The access control framework and the choice of transport will have a
1210	   major impact on the security of the solution.

1212	   Note that the <notification> elements are never sent before the
1213	   transport layer and the netconf layer (capabilities exchange) have
1214	   been established, and the manager has been identified and
1215	   authenticated.

1217	   It is recommended that care be taken to ensure the secure operation
1218	   of the following commands:

1220	   o  <create-subscription> invocation

1222	   o  read-only data models

1224	   o  read-write data models

1226	   o  notification content

1228	   One issue related to the notifications draft is the transport of data
1229	   from non-netconf streams, such as syslog and SNMP.  Note that this
1230	   data may be more vulnerable (or is not more vulnerable) when being
1231	   transported over netconf than when being transported using the
1232	   protocol normally used for transporting it, depending on the security
1233	   credentials of the two subsystems.

1235	   If a user does not have permission to view content via other NETCONF
1236	   operations it does not have permission to access that content via
1237	   Notifications.  If a user is not permitted to view one element in the
1238	   content of the notification, the notification is not sent to that
1239	   user.

1241	7.  IANA Considerations

1243	   This document registers two URIs for the NETCONF XML namespace in the
1244	   IETF XML registry [7].

1246	   Following the format in RFC 3688, IANA has made the following
1247	   registration.

1249	   URI: urn:ietf:params:netconf:capability:notification:1.0

1251	   URI: urn:ietf:params:xml:ns:netmod:notification

1253	   Registrant Contact: The IESG.

1255	   XML: N/A, the requested URI is an XML namespace.

1257	8.  Acknowledgements

1259	   Thanks to Gilbert Gagnon, Greg Wilbur and Kim Curran for providing
1260	   their input into the early work on this document.  In addition, the
1261	   editors would like to acknowledge input at the Vancouver editing
1262	   session from the following people: Orly Nicklass, James Balestriere,
1263	   Yoshifumi Atarashi, Glenn Waters, Alexander Clemm, Dave Harrington,
1264	   Dave Partain, Ray Atarashi and Dave Perkins and the following
1265	   additional people from the Montreal editing session: Balazs Lengyel,
1266	   Phil Shafer, Rob Enns, Andy Bierman, Dan Romascanu, Bert Wijnen,
1267	   Simon Leinen, Juergen Schoenwaelder, Hideki Okita, Vincent Cridlig,
1268	   Martin Bjorklund, Olivier Festor, Radu State, Brian Trammell, William
1269	   Chow.

1271	9.  Normative References

1273	   [NETCONF]  Enns, R., "NETCONF Configuration Protocol", RFC 4741,
1274	              December 2006.

1276	   [RFC2026]  Bradner, S., "The Internet Standards Process -- Revision
1277	              3", RFC 2026, BCP 9, October 1996.

1279	   [RFC2119]  Bradner, s., "Key words for RFCs to Indicate Requirements
1280	              Levels", RFC 2119, March 1997.

1282	   [RFC2223]  Postel, J. and J. Reynolds, "Instructions to RFC Authors",
1283	              RFC 2223, October 1997.

1285	   [XML]      World Wide Web Consortium, "Extensible Markup Language
1286	              (XML) 1.0", W3C XML, February 1998,
1287	              <http://www.w3.org/TR/1998/REC-xml-19980210>.

1289	   [XML Schema]
1290	              Fallside, D. and P. Walmsley, "XML Schema Part 0: Primer
1291	              Second Edition", W3C XML Schema, October 2004.

1293	   [XPATH]    Clark, J. and S. DeRose, "XML Path Language (XPath)
1294	              Version 1.0",
1295	              W3C http://www.w3.org/TR/1999/REC-xpath-19991116,
1296	              November 1999.

1298	Authors' Addresses

1300	   Sharon Chisholm
1301	   Nortel
1302	   3500 Carling Ave
1303	   Nepean, Ontario  K2H 8E9
1304	   Canada

1306	   Email: schishol@nortel.com

1308	   Hector Trevino
1309	   Cisco
1310	   Suite 400
1311	   9155 E. Nichols Ave
1312	   Englewood, CO  80112
1313	   USA

1315	   Email: htrevino@cisco.com

1317	Full Copyright Statement

1319	   Copyright (C) The IETF Trust (2007).

1321	   This document is subject to the rights, licenses and restrictions
1322	   contained in BCP 78, and except as set forth therein, the authors
1323	   retain all their rights.

1325	   This document and the information contained herein are provided on an
1326	   "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
1327	   OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY, THE IETF TRUST AND
1328	   THE INTERNET ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS
1329	   OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF
1330	   THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
1331	   WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.

1333	Intellectual Property

1335	   The IETF takes no position regarding the validity or scope of any
1336	   Intellectual Property Rights or other rights that might be claimed to
1337	   pertain to the implementation or use of the technology described in
1338	   this document or the extent to which any license under such rights
1339	   might or might not be available; nor does it represent that it has
1340	   made any independent effort to identify any such rights.  Information
1341	   on the procedures with respect to rights in RFC documents can be
1342	   found in BCP 78 and BCP 79.

1344	   Copies of IPR disclosures made to the IETF Secretariat and any
1345	   assurances of licenses to be made available, or the result of an
1346	   attempt made to obtain a general license or permission for the use of
1347	   such proprietary rights by implementers or users of this
1348	   specification can be obtained from the IETF on-line IPR repository at
1349	   http://www.ietf.org/ipr.

1351	   The IETF invites any interested party to bring to its attention any
1352	   copyrights, patents or patent applications, or other proprietary
1353	   rights that may cover technology that may be required to implement
1354	   this standard.  Please address the information to the IETF at
1355	   ietf-ipr@ietf.org.

1357	Acknowledgment

1359	   Funding for the RFC Editor function is provided by the IETF
1360	   Administrative Support Activity (IASA).