Re: [Dime] [RFC3588bis-34] - Host-IP-Address AVP

Glen Zorn <> Fri, 21 September 2012 06:54 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id F3F6921F8692 for <>; Thu, 20 Sep 2012 23:54:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -3.299
X-Spam-Status: No, score=-3.299 tagged_above=-999 required=5 tests=[AWL=0.300, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id uXl5I00jNuF0 for <>; Thu, 20 Sep 2012 23:54:14 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 98A8621F8661 for <>; Thu, 20 Sep 2012 23:54:13 -0700 (PDT)
Received: by pbbjt11 with SMTP id jt11so4530639pbb.31 for <>; Thu, 20 Sep 2012 23:54:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=Km3FrFPCG6efEvH0j3yOYAArZnrbwbW7mOL6LgLX1ys=; b=D6r5FZSGJNjeHz3izuYoYsywcUbVgSxVQElcehAFxXWI+kRdpFXpTVElOHgwoetyRy trq8IpxibCzskr8ZcnTAiP+ti4AtL6uaMuMgfdlhh3eazxOw3c5gUtgQsrgcw69CWf0u AeJSroKBKYcTfh3Z3bnv/oZoVkDuv9gOIgXC5mjR+kruDju3rvNMaD7kMKS4SVoKvkLe PLrMCDnVJ9Lp8siL5Cwpp516CwKjL3Qog77hUV+vtu8CwSjvKbNm8yShxqW4kRn/68+f yienBX9PqHEVdPEftn1LN1j9hOCokvjahVHshyc7dPn6Zf2AzlCeDlKvG9GMWB9E4OgN L2Ew==
Received: by with SMTP id ss9mr12915837pbc.80.1348210452898; Thu, 20 Sep 2012 23:54:12 -0700 (PDT)
Received: from [] ( []) by with ESMTPS id nt7sm4700699pbb.33.2012. (version=SSLv3 cipher=OTHER); Thu, 20 Sep 2012 23:54:12 -0700 (PDT)
Message-ID: <>
Date: Fri, 21 Sep 2012 13:54:08 +0700
From: Glen Zorn <>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:15.0) Gecko/20120830 Thunderbird/15.0
MIME-Version: 1.0
To: Ben Campbell <>
References: <> <> <> <> <> <> <> <> <>
In-Reply-To: <>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: "" <>
Subject: Re: [Dime] [RFC3588bis-34] - Host-IP-Address AVP
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 21 Sep 2012 06:54:15 -0000

On 09/21/2012 01:24 AM, Ben Campbell wrote:

> This doesn't really make sense  to me: I was under the impression that
 > a TCP connection was between two unique addresses. Yes, a box might
 > ___have_ a whole bunch of addresses it _could_ use, but that seems
 > irrelevant in the case of TCP (but not SCTP).
 >>>> Sure TCP is between just two IPs. I never claimed otherwise.
 >>>> What I mean that say a Diameter node has IP1 to IP5. Only IP1
 >>>> has a A/AAAA record or given out to other parties for static
 >>>> configuration. During the CER/CEA (and the TCP connection
 >>>> established to IP1) it tell in CEA that "I btw also have IP2 to
 >>>> IP5". A clever implementation can make use of this e.g. for the
 >>>> transport failure case I described.
 >>> This actually leads me to agree with the original poster that the
 >>> behavior surrounding Host-IP-Address is underspecified. The
 >>> problem is, "clever implementations" are bad for
 >>> interoperability. If that (or other) behavior is desired, it
 >>> should be documented. Otherwise any behavior beyond "use it for
 >>> informational purposes only" is not likely to work across
 >>> implementations.
 >> First, we all agree that having more than one Host-IP-Address in
 >> case of TCP is unnecessary. However, I am interested what possible
 >> (error) case you have in mind that could cause interoperability
 >> issue?

The draft says:

    The Host-IP-Address AVP (AVP Code 257) is of type Address and is used
    to inform a Diameter peer of the sender's IP address.

Suppose that I send, instead of one address, three (assuming the use of 
TCP).  Which one do you use?  What if the list doesn't contain the 
address from which the CEr/CEA command was sent?  If my solution to 
transport failure is to send you three addresses assuming that you'll 
try them sequentially and you don't understand that, my scheme fails and 
since you only have one registered address for me, this could cause a 
much longer outage than if my network admins just did their job and 
registered all the available addresses in the DNS.

 > I don't have a specific error in mind. My intent was to point out
 > that while there may be interesting things you can do with
 > Host-IP-Address (like the example you gave), anything that requires a
 > mutual understanding between the client and server aren't going to
 > work unless the understanding exists. In you example, using
 > Host-IP-Address to tell the peer about other available addresses to
 > be used for load balancing and/or failover won't work across
 > implementations unless it's documented somewhere.
 > The original poster pointed out that they were seeing real IOT issues
 > because different implementors interpreted the spec differently in
 > regards to Host-IP-Address. Assuming that these differences were due
 > to reasonable interpretations of the spec, rather than simple
 > misunderstandings, that's a pretty big indicator that there's a
 > problem.

I would be inclined to write a short draft clarifying that, in the case 
of TCP, exactly one instance of the Host-IP-Address MUST be included in 
the CER/CEA messages.