[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Confirmation of HTTPS use for the port 832

To: 'OKITA Hideki' <hideki.okita.pf@hitachi.com>, netconf@ops.ietf.org
Subject: RE: Confirmation of HTTPS use for the port 832
From: "McDonald, Ira" <imcdonald@sharplabs.com>
Date: Wed, 19 Jul 2006 09:35:23 -0700

Hi,

A suggestion - use HTTP TLS Upgrade (RFC 2817) to allow
both plain HTTP and HTTP w/ TLS use over the same port,
as is the case with IPP/1.1 (RFC 2910/2911).

Trying to use HTTPS (where the TLS/SSL session starts
_before_ the first application message) and HTTP on the
same port is going to be hard to make interoperable.

Cheers,
- Ira

Ira McDonald (Musician / Software Architect)
Blue Roof Music / High North Inc
PO Box 221  Grand Marais, MI  49839
phone: +1-906-494-2434
email: imcdonald@sharplabs.com

> -----Original Message-----
> From: owner-netconf@ops.ietf.org [mailto:owner-netconf@ops.ietf.org]On
> Behalf Of OKITA Hideki
> Sent: Wednesday, July 19, 2006 9:51 AM
> To: netconf@ops.ietf.org
> Subject: Confirmation of HTTPS use for the port 832
> 
> 
> Dear all,
> 
> 
> At the Montreal meeting, IANA-assigned ports are reported as 
> following.
> 
>     netconf-ssh     830/tcp    NETCONF over SSH
>     netconf-beep    831/tcp    NETCONF over BEEP 
>     netconfsoaphttp 832/tcp    NETCONF for SOAP over HTTP
>     netconfsoapbeep 833/tcp    NETCONF for SOAP over BEEP
> 
> I would like to confirm the following points.
> 
> - We use HTTPS rather than HTTP as the transport of NETCONF/SOAP/HTTP.
>   (In ML, the word "SOAP/HTTPS" is always used.)
> 
> - We use same port 832 for HTTP, when there is some reason to 
> use HTTP.
> 
> 
> I concern that proto-12 and soap-08 draft are ambiguous about 
> these points.
> It seems that there is no sentence definitely specifying the 
> use of HTTPS.
> # Section 2.4 of soap-08 says "Use HTTPS" only.
> 
> 
> 
> To clarify the use of HTTPS, I suggest
> 
> 1. to ask IANA to change the description of assigned port
>    of NETCONF/SOAP/HTTP as following, if possible.
> 
>     netconfsoaphttps 832/tcp    NETCONF for SOAP over HTTPS
>     netconfsoaphttps 832/udp    NETCONF for SOAP over HTTPS
> 
> 2. to add the following sentence in the last of section 2.4 
> "BCP56:..."
>    of soap-08 draft to avoid the anbiguity.
> 
>     "As these reasons, NETCONF system SHOULD use HTTPS
>      when it use SOAP and HTTP as the transport."
> 
>    And, how about the following sentence in the last of section 4?
> 
>     "If there is some reason to use HTTP rather than HTTPS,
>      the opeartor configures the NETCONF manager and devices
>      to use HTTP on the IANA-assined port (832) for theier session"
> 
> 
> Regards,
> 
> 
> Hideki Okita
> hideki.okita.pf@hitachi.com
> Central Research Laboratory, Hitachi Ltd.
> 
> --
> to unsubscribe send a message to netconf-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://ops.ietf.org/lists/netconf/>
> 

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.10.1/391 - Release Date: 7/18/2006
 

--
to unsubscribe send a message to netconf-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/netconf/>

Prev by Date: Confirmation of HTTPS use for the port 832
Next by Date: Notifications in opsec
Previous by thread: Confirmation of HTTPS use for the port 832
Next by thread: Open Call to NETCONF Data Modelling Design Teams
Index(es):
- Date
- Thread