[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SOAP/HTTP over SSH

To: netconf@ops.ietf.org
Subject: SOAP/HTTP over SSH
From: Pooja Malhotra <pooja.malhotra@masconit.com>
Date: Thu, 1 Jun 2006 18:07:48 +0530

Hi...

We are planning to implement NetConf.And I am very new to this standard.
In this effort I went thro' the initial draft
"NETCONF Configuration Protocol draft-ietf-netconf-prot-12" proposed by
IETF.
After going through it , I understood the architecture
as shown below in the figure:


      Layer                      Example
         +-------------+      +-----------------------------+
     (4) |   Content   |      |     Configuration data      |
         +-------------+      +-----------------------------+
                |                           |
         +-------------+      +-----------------------------+
     (3) | Operations  |      | NETCONF operation		|
         +-------------+      +-----------------------------+
                |                           |
         +-------------+      +-----------------------------+
     (2) |     RPC     |      |   SOAP over HTTP    		|
         +-------------+      +-----------------------------+
                |                           |
         +-------------+      +-----------------------------+
     (1) |  Transport  |      |  SSH                        |
         |   Protocol  |      |                             |
         +-------------+  	+-----------------------------+

As you can see, our proposed solution indicated that the SSH would
be used as Transport Protocol.This choice was made because it
is mentioned in section 2.4.(Mandatory Transport Protocol )
that SSH is  mandatory  for NetConf. Now we
are stuck with the RPC layer protocol. Intially we thought of
SOAP over HTTP (as RPC layer implementation), But if this the case,
we fail to understand how the SSH layer will communicate with
the RPC layer.
How the SSH layer will interact with the RPC layer over HTTP as it is not
secure.

Also,once the SSH session is opened between the remote machine,
how can we ensure that the data transfer is secured through SOAP/HTTP?

What is the nature of the SSH connection?Is it socket connection like SSL?

We tried implementing SSH using opensource Library from JSch
(for client)and OpenSSH (for SSH Server).
Other tool we tried was Corkscrew(tool for tunneling SSH
through HTTP proxies.)

Also Is it mandatory to implement SSH.Instead can we use SOAP
over HTTPS.

I would be highly obliged if you could please throw some light on
the queries I have and tell us some tools which can help us in
implementation.


Thanks,

Pooja Malhotra
Senior Software Engineer,
MASCON Global ltd.
Bangalore
Karnatka (India)





--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

Follow-Ups:
- Re: SOAP/HTTP over SSH
  - From: Andy Bierman <ietf@andybierman.com>
- Re: SOAP/HTTP over SSH
  - From: Juergen Schoenwaelder <j.schoenwaelder@iu-bremen.de>

Prev by Date: <create-subscription> and filter conditions
Next by Date: Re: SOAP/HTTP over SSH
Previous by thread: <create-subscription> and filter conditions
Next by thread: Re: SOAP/HTTP over SSH
Index(es):
- Date
- Thread