IETF Logo Mail Archive

Re: [babel] minor DTLS comment

David Schinazi <dschinazi.ietf@gmail.com> Mon, 07 January 2019 20:56 UTC

Return-Path: <dschinazi.ietf@gmail.com>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B119126DBF for <babel@ietfa.amsl.com>; Mon, 7 Jan 2019 12:56:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xWoz1B9ymxwA for <babel@ietfa.amsl.com>; Mon, 7 Jan 2019 12:56:14 -0800 (PST)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8545D124D68 for <babel@ietf.org>; Mon, 7 Jan 2019 12:56:14 -0800 (PST)
Received: by mail-pl1-x62f.google.com with SMTP id t13so697717ply.13 for <babel@ietf.org>; Mon, 07 Jan 2019 12:56:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=fPl/rZQw9w6jMfT13Wzu8fN10sV57RBNNY7xXrEfK5s=; b=oBS1Dz1MNa/1NCOyerfCTRwJTBjq/LlrCJ6oZ+pD1kjH8O7BBPw4eHy+fT3P6KYJkO EgiMDEQRCM0eAQ+IONoiC1Nn1eXRAqS92WG+aS+NFdWpPpor5QzItdyY6M3JKhPpD+Ui gF61XFWcWjeMCJ9eexcDV3ckecpvfaoXmu3tFZAtWidEOFKeX6GGv5Kf44SmS0NWH8A6 8T9kq5OtJgvjEp3pxRsn6Uc060g2hPnLMsB3C1R7MOjYqjGFtvdO8kri+TlL05whu3Bs /BrXMsBsNJnkXGccitbSKWFtxII84Oxfycj7zgdikbbdCmWzBk89UBOx+/qSX9kK2YU+ U4KQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=fPl/rZQw9w6jMfT13Wzu8fN10sV57RBNNY7xXrEfK5s=; b=j0GjmABsY8h3pUfabTYiev/QG1iW3dDesWO+8jDPAKV5VxGbkcJngoU/hoDMQBbFjN j/KffM27qNGgAKrw4nbyOXrzynm7Mb1vJJqjyOqcM/hY8CBrBJM2/JTNDgsodZ0guZ0r 3nshlsDGs6AKPrCtbFUrXG1R0JxkKtMfs5jc/+wn3FqsalD/yawxvFjoHn8cPrpZ+rOr wVX6RRw0OLBX2el6fKCTED5qL0uDxx4gOA6rlsmqPalCaYbSNiCeyhk+TNMAQC4Xfxl0 njIicAhnOpQ9x2hiFTLLIwRQsBdi2VylvatMFuSKDUlga/30D/Ydr9+3YW8rQwGyo4YJ rJkQ==
X-Gm-Message-State: AJcUukefRaZ2vTAlGKT56upzEl0BjBk/NdfnRbtv17Zd5L5ZWk75ur/c BbGd3I9mFWb8TcGF7XkYLCQhtDijlSMkJbHdQ+U=
X-Google-Smtp-Source: ALg8bN6zgotdKIeI1QNyPHhVKgJcLukqiCQuNggHhHxCbWQtyTvAgWmzqhx7osVsWN6ZMgIGKV+Qd4Zre7ufPQajDdM=
X-Received: by 2002:a17:902:d01:: with SMTP id 1mr63548971plu.127.1546894573936; Mon, 07 Jan 2019 12:56:13 -0800 (PST)
MIME-Version: 1.0
References: <2D09D61DDFA73D4C884805CC7865E6114DF82DC1@GAALPA1MSGUSRBF.ITServices.sbc.com> <CAPDSy+4jxWmQ611mfQiiPrFfG3P1m7w8RNA4HNuTrJU6NQ0y_Q@mail.gmail.com> <2D09D61DDFA73D4C884805CC7865E6114DF8360C@GAALPA1MSGUSRBF.ITServices.sbc.com> <CAA93jw7f+yG88CqoiN1UvSRs1AEtOVU_bonQGAa6gmGQjuwKYg@mail.gmail.com>
In-Reply-To: <CAA93jw7f+yG88CqoiN1UvSRs1AEtOVU_bonQGAa6gmGQjuwKYg@mail.gmail.com>
From: David Schinazi <dschinazi.ietf@gmail.com>
Date: Mon, 07 Jan 2019 12:56:02 -0800
Message-ID: <CAPDSy+766Gxpu0=B6NVVoO=dSCY-9m-Cq2A7+FkZ4pP=0=J_iw@mail.gmail.com>
To: Dave Taht <dave.taht@gmail.com>
Cc: "STARK, BARBARA H" <bs7652@att.com>, Babel at IETF <babel@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000095a397057ee4758a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/sQEzuVtTgkSiWuPLNjFIZOKsl2Q>
Subject: Re: [babel] minor DTLS comment
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Jan 2019 20:56:17 -0000

Thanks Barbara, how about this slightly more pedantic option?

Babel over DTLS operates on a different port than unencrypted Babel.
All Babel over DTLS nodes MUST act as DTLS servers on a DTLS port, and MUST
listen for unencrypted Babel traffic on an unencrypted port, which MUST be
distinct from the DTLS port.  The default port for Babel over DTLS is
registered with IANA as the "babel-dtls" port (UDP port TBD), and the
unencrypted port is registered as the "babel" port (UDP port 6696).
Nodes SHOULD use these default ports.

https://github.com/jech/babel-drafts/commit/c90cc8204691254e7051405acf6a10088d42cdfd

(Dave, running Babel over alternate transport protocols sounds like
interesting future work outside the scope of this draft)

Thanks,
David

On Fri, Jan 4, 2019 at 12:26 PM Dave Taht <dave.taht@gmail.com> wrote:

> On Fri, Jan 4, 2019 at 12:07 PM STARK, BARBARA H <bs7652@att.com> wrote:
> >
> > Hmm.
> >
> > " Babel over DTLS operates on a different port than unencrypted Babel.
> >
> > All Babel over DTLS nodes MUST act as DTLS servers on a configured port,
> and
> >
> > MUST listen for unencrypted Babel traffic on a distinct configured port.”
> >
> >
> >
> > An implementation doesn’t have to allow for configuration of ports. They
> could just be hard-coded.
> >
> > I don’t like that I need the context of the first sentence to understand
> unambiguously what the second port is “distinct” from (i.e., distinct from
> the unencrypted Babel port).
> >
> >
> >
> > How about just “ Babel over DTLS MUST operate on a different port than
> unencrypted Babel.” ?
> >
>
> Sure.
>
> (I had proposed at one point that the dtls version operate over
> udp_lite or even dccp, on the same port number, but have since
> discovered osx doesn't support either)
> >
> > Barbara
> >
> >
> >
> > From: David Schinazi <dschinazi.ietf@gmail.com>
> > Sent: Friday, January 04, 2019 2:41 PM
> > To: STARK, BARBARA H <bs7652@att.com>
> > Cc: Babel at IETF <babel@ietf.org>
> > Subject: Re: [babel] minor DTLS comment
> >
> >
> >
> > Thanks for your comment, Barbara. I agree with you, and have added the
> following text:
> >
> >
> https://github.com/jech/babel-drafts/commit/a5a372a942ebc7951b2847d88123d75ab8169f2f
> >
> >
> >
> > Please let us know if you feel it addresses your comment.
> >
> >
> >
> > Thanks,
> >
> > David
> >
> >
> >
> > On Fri, Jan 4, 2019 at 5:35 AM STARK, BARBARA H <bs7652@att.com> wrote:
> >
> > Since the DTLS draft is still open for comments, I do have a small one
> about how the UDP ports are characterized.
> > The IANA assigned ports are default values, and need to be portrayed as
> such. It's allowed (or should be) for deployed instances to use other
> values. This is pretty much true of all protocols. Certainly the base babel
> protocol allows other values to be used (which is why the homenet babel
> profile mandated use of 6696).
> >
> > Maybe instead of
> >    All Babel over DTLS nodes MUST act as DTLS servers on the "babel-
> >    dtls" port (UDP port TBD), and MUST listen for traffic on the
> >    unencrypted "babel" port (UDP port 6696).
> >
> > say
> >    All Babel over DTLS nodes MUST act as DTLS servers on the "babel-
> >    dtls" port, and MUST listen for traffic on the
> >    unencrypted "babel" port.
> >    The IANA-assigned values of 6696 for the "babel" port and
> >    TBD for the "babel-dtls" port SHOULD be used.
> >
> > Barbara
> >
> >
> > _______________________________________________
> > babel mailing list
> > babel@ietf.org
> > https://www.ietf.org/mailman/listinfo/babel
> >
> > _______________________________________________
> > babel mailing list
> > babel@ietf.org
> > https://www.ietf.org/mailman/listinfo/babel
>
>
>
> --
>
> Dave Täht
> CTO, TekLibre, LLC
> http://www.teklibre.com
> Tel: 1-831-205-9740
>

v2.23.0 | Report a Bug | By Email