IETF Logo Mail Archive

Re: [BEHAVE] [AVT] Working Group LastCall: draft-ietf-avt-app-rtp-keepalive-03.txt

"Dan Wing" <dwing@cisco.com> Sat, 26 April 2008 01:22 UTC

Return-Path: <behave-bounces@ietf.org>
X-Original-To: behave-archive@optimus.ietf.org
Delivered-To: ietfarch-behave-archive@core3.amsl.com
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 519D43A6D2C; Fri, 25 Apr 2008 18:22:03 -0700 (PDT)
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 708113A6BE1; Fri, 25 Apr 2008 18:22:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zKZ1+pkw7+jX; Fri, 25 Apr 2008 18:22:00 -0700 (PDT)
Received: from sj-iport-3.cisco.com (sj-iport-3.cisco.com [171.71.176.72]) by core3.amsl.com (Postfix) with ESMTP id 634023A6AC8; Fri, 25 Apr 2008 18:22:00 -0700 (PDT)
Received: from sj-dkim-4.cisco.com ([171.71.179.196]) by sj-iport-3.cisco.com with ESMTP; 25 Apr 2008 18:22:05 -0700
Received: from sj-core-3.cisco.com (sj-core-3.cisco.com [171.68.223.137]) by sj-dkim-4.cisco.com (8.12.11/8.12.11) with ESMTP id m3Q1M5X0016834; Fri, 25 Apr 2008 18:22:05 -0700
Received: from dwingwxp01 ([10.32.240.194]) by sj-core-3.cisco.com (8.13.8/8.13.8) with ESMTP id m3Q1M4eQ005953; Sat, 26 Apr 2008 01:22:04 GMT
From: Dan Wing <dwing@cisco.com>
To: 'Hadriel Kaplan' <HKaplan@acmepacket.com>, 'Tom Taylor' <tom.taylor@rogers.com>, 'IETF AVT WG' <avt@ietf.org>, behave@ietf.org
References: <480F8629.8080202@rogers.com> <E6C2E8958BA59A4FB960963D475F7AC30BD05E899F@mail.acmepacket.com>
Date: Fri, 25 Apr 2008 18:22:04 -0700
Message-ID: <097c01c8a73b$efe6f9a0$c2f0200a@cisco.com>
MIME-Version: 1.0
X-Mailer: Microsoft Office Outlook 11
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
In-Reply-To: <E6C2E8958BA59A4FB960963D475F7AC30BD05E899F@mail.acmepacket.com>
Thread-Index: Acilc5CY4IIjoR3jTRKh0H3OXBO5CQBkyupwAA0KnAA=
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=5613; t=1209172925; x=1210036925; c=relaxed/simple; s=sjdkim4002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@cisco.com; z=From:=20=22Dan=20Wing=22=20<dwing@cisco.com> |Subject:=20RE=3A=20[AVT]=20Working=20Group=20LastCall=3A=0 9draft-ietf-avt-app-rtp-keepalive-03.txt |Sender:=20; bh=ug5IOUU0xyLDOj6vihRheKYshIdCUoTI7K9UyYqTdcE=; b=Z0MFNW8My5RmLFJtbfWMpkXPbjeRXvU58eoLT/apzby2PdH+UEMViNwX41 rE8FC6qDPnSOOPK+XNOgTXQG89DGH0Rv1QS3nACcZNK/is13OS6xxeuHIPYI JHOeZ5aLR/;
Authentication-Results: sj-dkim-4; header.From=dwing@cisco.com; dkim=pass ( sig from cisco.com/sjdkim4002 verified; );
Cc: 'MARJOU Xavier RD-MAPS-LAN' <xavier.marjou@orange-ftgroup.com>
Subject: Re: [BEHAVE] [AVT] Working Group LastCall: draft-ietf-avt-app-rtp-keepalive-03.txt
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: behave-bounces@ietf.org
Errors-To: behave-bounces@ietf.org

 

> -----Original Message-----
> From: avt-bounces@ietf.org [mailto:avt-bounces@ietf.org] On 
> Behalf Of Hadriel Kaplan
> Sent: Friday, April 25, 2008 1:01 PM
> To: Tom Taylor; IETF AVT WG; behave@ietf.org
> Cc: Cullen Jennings; MARJOU Xavier RD-MAPS-LAN
> Subject: Re: [AVT] Working Group LastCall: 
> draft-ietf-avt-app-rtp-keepalive-03.txt
> 
> 
> Howdy,
> In general I like the draft - it's short and to the point. :)
> I have the following comments:
> 
> 1) The recommended "fallback" mechanism of using an RTP 
> packet with an unknown payload format has issues.  I *know* 
> there are devices which can't handle it.  I know this because 
> SBC's have been specifically requested by operators to block 
> such packets, because they were causing issues for some RTP 
> devices.  We can argue that RFC 3550 said a receiver MUST 
> ignore such packets, but there is a big difference between 
> handling error cases, and *testing* for such compliance by 
> using it actively for a "feature".  For example on some 
> devices it causes error logs to be generated. (on others, worse)
> 
> I recognize that this is probably unavoidable for any 
> mechanism we pick, because the requirements are that it not 
> be negotiated in SDP (right?).  But I think it warrants 
> certain changes in the text of the draft, which I note here:
>         a) Section 4.7 Recommendation section currently 
> implies this is the recommendation, but that's not really 
> true.  It should say "This method is recommended as a 
> fallback, only if explicitly signaled methods such as 
> [DRAFT-RTP-RTCP] or STUN through [DRAFT-ICE] are not possible."
>         b) Section 5, page 8, last sentence should be changed 
> from "...as it will always work." to "...as it will usually work."

This draft is all about mechanisms to keep NAT mapping alive,
which is what this draft means by "work".  And sending a packet
will keep that binding alive -- always.

I do agree the existing wording is a bit awkward.  I would 
suggest:

  ... as it will always keep the NAT's mapping alive, but
  may cause undesirable behavior on the remote peer.

>         c) Security section 8 is wrong - it *does* imply 
> security issues, clearly.  So I recommend you add "Using the 
> mechanism in Section 4.7 could be perceived as an attack by 
> the peer.  [RFC3550] explicitly stated devices MUST ignore 
> unknown payload formats, however security devices may block 
> such packets."  Or something like that I guess.

I agree some text should be added to address you point, but
(going back to my point above that this draft describes how
to keep your NAT mapping alive), we don't care if a device
on the remote network drops the packet; the packet will have
already traversed our NAT and kept our NAT's mapping alive.

> 2) In some ways, the recommended fallback of RTP with an 
> unknown payload type is simply the draft-ietf-avt-rtp-no-op 
> packet, just without SDP negotiation, and no 4-byte payload - 
> right?  One of the things I liked about that draft was it 
> negotiated it in SDP. :)  I realize you're trying to not make 
> that necessary, so can we at least give this a fixed defined 
> payload type number??  I think giving up one of the few left 
> (are there any?) is worth it for this, because we're not 
> negotiating it in SDP.

I recall we asked for a fixed payload number for no-op a few
years ago, but were told 'no'.  Maybe that has changed; I
do think it would be useful for this situation, but it only
reduces the risk of a no-op packet being mis-identified as
some sort of attack packet.

> 3) I also still think there should be optional SDP for the 
> empty RTP keeaplive, just so that "evil" middleboxes trying 
> to protect devices can know they can let these things past.  
>
> I realize that can't be done in a BCP, so I think 
> draft-ietf-avt-rtp-no-op-04 should *become* the empty RTP 
> keepalive, and define the SDP. (I'm not sure why it expired)

Nobody seemed to need it.

-d

> 4) This is basically a nit: like Remi, I'm not quite clear 
> why Sections 4.1 and 4.2 UDP and DCCP transports are separate 
> from each other or others, for zero-byte "packets".  With 
> TCP, obviously a 0-byte segment is not exactly the same as a 
> TCP keepalive, and for SCTP it has a native heartbeat, so 
> maybe those differences explain it. (and I'm not sure how one 
> forces a TCP stack to send a 0 byte segment from above the 
> socket)  But as far as I know, all of them can handle 
> receiving a 0-byte payload.  A nit, anyway.
> 
> -hadriel
> 
> 
> > -----Original Message-----
> > From: avt-bounces@ietf.org [mailto:avt-bounces@ietf.org] On 
> Behalf Of Tom
> > Taylor
> > Sent: Wednesday, April 23, 2008 2:56 PM
> > To: IETF AVT WG; behave@ietf.org
> > Cc: Cullen Jennings; MARJOU Xavier RD-MAPS-LAN
> > Subject: [AVT] Working Group Last Call: 
> draft-ietf-avt-app-rtp-keepalive-
> > 03.txt
> >
> > This is to announce Working Group Last Call for
> > draft-ietf-avt-app-rtp-keepalive-03.txt. Assuming all goes 
> well, the Last
> > Call
> > period will end on May 7.
> >
> > Given the subject matter, the BEHAVE list is also copied on 
> this message.
> >
> > Tom Taylor for the Chairs.
> > _______________________________________________
> > Audio/Video Transport Working Group
> > avt@ietf.org
> > https://www.ietf.org/mailman/listinfo/avt
> _______________________________________________
> Audio/Video Transport Working Group
> avt@ietf.org
> https://www.ietf.org/mailman/listinfo/avt

_______________________________________________
Behave mailing list
Behave@ietf.org
https://www.ietf.org/mailman/listinfo/behave

v2.23.0 | Report a Bug | By Email