Question about COPS-PR model

[Riccardo Scandariato <riccardo.scandariato@polito.it>]

If I well understood COPS and COPS-PR, the first bases on a "bottom-up"
model where events arrive from the network (e.g. a RSVP req.), while the
second bases on a "top-down" model where events arrive from a control
system (e.g. a user interacting with a Web interface, or net-admin
operations).

The question is:
how can I arrange a scenario where events arrive from both the control
system and the network (e.g. a user dialing in an access router)?

FOR EXAMPLE, let us think to an hypothetical "Security Client-Type". Let
us suppose a router that must forward incoming traffic to many outgoing
tunnels. The router is placed at the border of a network cloud and
traffic arrives from statically attached sites. In my opinion, this is a
typical COPS-PR scenario:
- first I assign different labels (i.e. Roles) to incoming interfaces
(i.e. the attachment points)
- second, the router install a request-state (after having opened a COPS
session)
- third PDP asynchronously pushes the right PRIs (creation of outgoing
tunnels, forwarding rules relative to existent roles).
But what about a user that dials in the router? In this case user
traffic must be directed to the correct tunnel on per-user basis. I
guess the PEP should ask the PDP for a decision (which in turn can
interrogate e.g. a radius server). How can I manage this issue in
COPS-PR? Can the PEP install a new request state?

I would like WG opinion on this point.

Regards,
Riccardo Scandariato