-
Type: Story
-
Status: Open (View Workflow)
-
Priority: Minor
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: Platform
-
Labels:
-
Epic Link:
The NETCONF provider in ONOS does not support NETCONF Call-Home as per RFC8071.
Call-Home allows a managed device (running a NETCONF server) to autonomously "call-home" (e.g. on device start-up) to a pre-configured management station/controller (running a NETCONF client). It is also intended to facilitate NAT traversal if one exists between the management station/controller and the managed devices.
This proposal is to add a minimal implementation of support for NETCONF Call-Home including a minimal "security" element in which devices (NETCONF servers) calling home are optionally authenticated by checking their SSH keys against an SSH known_hosts file hosted on the management station/controller.
The basic implementation has already been done and tested and can be uploaded for review very quickly.