IETF Logo Mail Archive

Re: [BEHAVE] WGLC: draft-ietf-behave-turn-tcp-04

Ari Keranen <ari.keranen@nomadiclab.com> Mon, 24 August 2009 07:56 UTC

Return-Path: <ari.keranen@nomadiclab.com>
X-Original-To: behave@core3.amsl.com
Delivered-To: behave@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 776343A6DCA for <behave@core3.amsl.com>; Mon, 24 Aug 2009 00:56:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.215
X-Spam-Level:
X-Spam-Status: No, score=-3.215 tagged_above=-999 required=5 tests=[AWL=-0.966, BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hzqzm9ys2d+j for <behave@core3.amsl.com>; Mon, 24 Aug 2009 00:56:44 -0700 (PDT)
Received: from mailgw5.ericsson.se (mailgw5.ericsson.se [193.180.251.36]) by core3.amsl.com (Postfix) with ESMTP id 2E0E23A6CAB for <behave@ietf.org>; Mon, 24 Aug 2009 00:56:44 -0700 (PDT)
X-AuditID: c1b4fb24-b7c01ae00000498b-ef-4a9247c0485e
Received: from esealmw127.eemea.ericsson.se (Unknown_Domain [153.88.253.125]) by mailgw5.ericsson.se (Symantec Brightmail Gateway) with SMTP id A7.E7.18827.0C7429A4; Mon, 24 Aug 2009 09:56:48 +0200 (CEST)
Received: from esealmw129.eemea.ericsson.se ([153.88.254.177]) by esealmw127.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.3959); Mon, 24 Aug 2009 09:56:43 +0200
Received: from mail.lmf.ericsson.se ([131.160.11.50]) by esealmw129.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.3959); Mon, 24 Aug 2009 09:55:54 +0200
Received: from [127.0.0.1] (nomadiclab.lmf.ericsson.se [131.160.33.3]) by mail.lmf.ericsson.se (Postfix) with ESMTP id A56632522; Mon, 24 Aug 2009 10:55:54 +0300 (EEST)
Message-ID: <4A924786.5060208@nomadiclab.com>
Date: Mon, 24 Aug 2009 10:55:50 +0300
From: Ari Keranen <ari.keranen@nomadiclab.com>
User-Agent: Thunderbird 2.0.0.22 (X11/20090608)
MIME-Version: 1.0
To: Dan Wing <dwing@cisco.com>
References: <0a9901ca10f2$93cdab60$5f7d150a@cisco.com> <4A8BD224.1070508@nomadiclab.com> <05fd01ca22bd$7534ac30$c5f0200a@cisco.com>
In-Reply-To: <05fd01ca22bd$7534ac30$c5f0200a@cisco.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 24 Aug 2009 07:55:54.0994 (UTC) FILETIME=[4ED4CD20:01CA2490]
X-Brightmail-Tracker: AAAAAA==
Cc: draft-ietf-behave-turn-tcp@tools.ietf.org, draft-ietf-behave-turn@tools.ietf.org, behave@ietf.org
Subject: Re: [BEHAVE] WGLC: draft-ietf-behave-turn-tcp-04
X-BeenThere: behave@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/behave>
List-Post: <mailto:behave@ietf.org>
List-Help: <mailto:behave-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>, <mailto:behave-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Aug 2009 07:56:45 -0000

Dan Wing wrote:
>> -----Original Message-----
>> From: behave-bounces@ietf.org 
>> [mailto:behave-bounces@ietf.org] On Behalf Of Ari Keranen
>> Sent: Wednesday, August 19, 2009 3:21 AM
>> To: draft-ietf-behave-turn-tcp@tools.ietf.org
>> Cc: behave@ietf.org
>> Subject: Re: [BEHAVE] WGLC: draft-ietf-behave-turn-tcp-04
>>
>> Hi,
>>
>> One technical issue in draft-ietf-behave-turn-tcp-04 caught 
>> my attention:
>>
>> In section 4.5., "Sending and Receiving Data" is says:
>>
>>     [...] Data on a data connection MUST NOT
>>     be interpreted as STUN messages.
>>
>> I think this is too heavy restriction. What about if the peer 
>> wants to 
>> send some STUN messages on the path via the TURN server and 
>> would need 
>> the TURN client to parse them as STUN?
> 
> How would the TURN server identify such traffic that it should
> respond to?  Thinking aloud, one solution is for the local TURN
> client to tell the TURN server which STUN username(s) indicate 
> the STUN message is intended for the TURN server.

Actually, my point was about TURN clients (section 4, and the 
subsections, I assume, are about "client processing"). That is, a TURN 
client should be able to interpret relayed data as STUN messages. I do 
understand why this same restriction was in the section 5.4, since 
section 5 is about the server part.

I think the TURN-TCP server can, and should, always just blindly relay 
the data on the data connection. If there's need for STUN signaling with 
the server, the control connection should be used for that.

>> I would rather make this "SHOULD NOT" to be future proof. Or even 
>> removing the whole restriction should not do much harm, right?
> 
> The reason for this passage is so that ICE connectivity checks
> can be performed, through the TURN server, between the endpoints.
> If the TURN server 'eats' (processes) the incoming messages
> from the remote peer, the connectivity checks will fail.

Yes, that's why section 5.4 is OK with the restriction. Probably this 
text was supposed to be only in section 5.4 but accidentally slipped to 
section 4.5 too?

> This is really something that belongs in the TURN specification
> because I believe it is not unique to TURN-TCP.  If anything, the 
> TURN specification should say something like: 
> 
>   In the absence of an standards-track enhancement to identify 
>   STUN traffic intended for the TURN server, data on a data
>   connection MUST NOT be interpreted as a STUN message.
> 
> Thoughts?

In the TURN-UDP case you don't have a "data connection" in the same 
sense as with TURN-TCP, so I think this is actually TURN-TCP specific. 
Although data sent by a peer should never be interpreted as STUN by the 
server, but I think this is somewhat clear from the current TURN-UDP draft.


Cheers,
Ari

v2.23.0 | Report a Bug | By Email