IETF Logo Mail Archive

Re: [Hipsec] Magnus Westerlund's Discuss on draft-ietf-hip-native-nat-traversal-30: (with DISCUSS and COMMENT)

Miika Komu <miika.komu@ericsson.com> Thu, 09 April 2020 08:13 UTC

Return-Path: <miika.komu@ericsson.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BC6DD3A0E52; Thu, 9 Apr 2020 01:13:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.258
X-Spam-Level:
X-Spam-Status: No, score=-2.258 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.168, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, T_SPF_HELO_TEMPERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BxpD8sLXChKM; Thu, 9 Apr 2020 01:13:36 -0700 (PDT)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-eopbgr70059.outbound.protection.outlook.com [40.107.7.59]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4AEF3A0E48; Thu, 9 Apr 2020 01:13:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=foMnC9AcsdVrAxdpzv3nZaL/SkGBde7mxE7VWhcj5wOFq88b6QRsBFCuwVmFOdAtlZuv4eW5l0GZCFsitrK47jlnL8VhGOy91fz2j/iup89flzdfNczgpQqvl+ycK9FC4jDSlf+/ZLBwck+ap+bPWSb4vaA055CayWPK3f6NHL+nBY2snE+kW/aQExak0KSB5LCr9a4v2rF9Pll+IGFyHKHwizVb5XzfgGgAvz605xTJ/IWhrKjAxo1FtzJckhXjlYZ5YxmPPzhYcVgAJ5nqL2fL0q6lSxN3dASR3pHCcLYF59zVrDYzIaCLDRialk8rlR4IQv5+Ww2LOqdjo5DOzQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4oLSlgZ3z+yqhg0qzGg+ncVXw1Z6mysU+/E88h07AWU=; b=mIJq0e1FyMb2FMl4Jdqo9oxuNSj0qWfGSbvlh7lRMGTp4//RV52pqJXOyM6u7ZpEZZtbiHK8fpQkD560kH+ViXWcoPoellAbK4haU0Coy+EZHrdrS+R7AVORgcGauzL1xK8F3C6oj3kyOSy2c4fJXJ6WvQ53HN/KcPrherPmJw2P0I5snLcsJkFpLg0dwfABnNH/Jn82t+AkajU5u2HepaX7H0swBlxEUG+QFq+lz6EmQwFDBRXKqSo8UXpMFp7JJ7wGICrS9RoYyx4L0OtITT1CLsmtEmbgCoDexZdCar8MakcxgmYPRNvigywSiT3ZvOd2bPquS09tKwZ8xY1WNg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4oLSlgZ3z+yqhg0qzGg+ncVXw1Z6mysU+/E88h07AWU=; b=PJsYH/6fVxFkF++hFL1hJhcpg/as0331kLldSg1GKAxg9TdoVRD8i7iFLMWKs/g4Qc8p3Mj0dyzOQMLxucRGkHrla/SifqSVJ7v+0wTve2811lIdTnjPNCO49T2Lj9roNkvCfEM9M8HLzt8WKnPLu05m3XyO5HzN6EztvO0Dt9M=
Received: from AM0PR07MB3876.eurprd07.prod.outlook.com (2603:10a6:208:44::16) by AM0PR07MB5361.eurprd07.prod.outlook.com (2603:10a6:208:10a::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2900.13; Thu, 9 Apr 2020 08:13:33 +0000
Received: from AM0PR07MB3876.eurprd07.prod.outlook.com ([fe80::5c87:eedc:6e84:fd4]) by AM0PR07MB3876.eurprd07.prod.outlook.com ([fe80::5c87:eedc:6e84:fd4%7]) with mapi id 15.20.2900.015; Thu, 9 Apr 2020 08:13:33 +0000
From: Miika Komu <miika.komu@ericsson.com>
To: "iesg@ietf.org" <iesg@ietf.org>, Magnus Westerlund <magnus.westerlund@ericsson.com>
CC: "draft-ietf-hip-native-nat-traversal@ietf.org" <draft-ietf-hip-native-nat-traversal@ietf.org>, "hip-chairs@ietf.org" <hip-chairs@ietf.org>, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>, "hipsec@ietf.org" <hipsec@ietf.org>
Thread-Topic: Magnus Westerlund's Discuss on draft-ietf-hip-native-nat-traversal-30: (with DISCUSS and COMMENT)
Thread-Index: AQHV8t5gg3Zvxq1PeEaWx2XZsfEZi6hma8SAgADf0gCACVw3gA==
Date: Thu, 09 Apr 2020 08:13:33 +0000
Message-ID: <8adf583d11435dc690a170da1f6a18d9c86273eb.camel@ericsson.com>
References: <158340648969.14566.11476213026719970345@ietfa.amsl.com> <ef83276e8b16e138f08b19747c54977989bcc1d8.camel@ericsson.com> <326b5dfa75824f82e990b4b990c51accbfbf4d72.camel@ericsson.com>
In-Reply-To: <326b5dfa75824f82e990b4b990c51accbfbf4d72.camel@ericsson.com>
Accept-Language: fi-FI, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Evolution 3.28.5-0ubuntu0.18.04.1
authentication-results: spf=none (sender IP is ) smtp.mailfrom=miika.komu@ericsson.com;
x-originating-ip: [88.148.205.35]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 672b9ed1-4e4a-434c-5d56-08d7dc5de574
x-ms-traffictypediagnostic: AM0PR07MB5361:|AM0PR07MB5361:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <AM0PR07MB536124C3E452F4D6B1E87A15FCC10@AM0PR07MB5361.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0368E78B5B
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR07MB3876.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10009020)(4636009)(376002)(396003)(366004)(346002)(136003)(39860400002)(6486002)(316002)(86362001)(8676002)(186003)(54906003)(110136005)(81156014)(450100002)(6636002)(2906002)(6506007)(4326008)(6512007)(91956017)(66556008)(64756008)(71200400001)(66476007)(66946007)(66446008)(478600001)(5660300002)(81166007)(26005)(8936002)(2616005)(966005)(36756003)(76116006)(44832011)(99106002); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: o0UAq7rM+cXmUqsl2ymbo2JMnujDrwj3z2tdNRn28ipaazkx+7duAUpo8K814Hl91Z/eVzmjaJFcTxoV9Cj2E3X+K6SuwrJGa/KlffOjlrvk95sWlgwHaFEP8Mw9hKqgQNVuppt4gN8zols8egWTEg==
Content-Type: text/plain; charset="utf-8"
Content-ID: <86A3FD095C9F6143AAF12B54B61DAD8D@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 672b9ed1-4e4a-434c-5d56-08d7dc5de574
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Apr 2020 08:13:33.4752 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: O/kx4ro+jF3l+N5IBiIgOQ8n+kK5XcssIQcOByvPmUd41OETbGGHe7n2K8phH14Ym6ZCgCqeJ9ftFcEUiqcSWw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB5361
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/vfYRDdPQQYowW0jUkc5T9zFCKI0>
Subject: Re: [Hipsec] Magnus Westerlund's Discuss on draft-ietf-hip-native-nat-traversal-30: (with DISCUSS and COMMENT)
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Apr 2020 08:13:41 -0000

Hi Magnus,

pe, 2020-04-03 kello 09:17 +0000, Magnus Westerlund kirjoitti:
> > 
> > > 2. Secondly, as this solution is different from the RFC 5770
> should
> > > this
> > > solution have a different service name? The reason I am asking is
> > > that it
> > > depends on how for example how an initiator determine which of
> the
> > > NAT
> > > traversal solution. If there is any intention to use DNS SRV for
> > > example
> > > different service name would make sense. This is primarily to
> verify
> > > that this
> > > has been considered.
> > 
> > I am not an expert on the topic but based on some discussions with
> some
> > colleagues, the SRV records seem to more suitable for
> infrastructure
> > discovery, not really for end-host discovery. Since you asked for
> this,
> > I wrote a new section in the appendix:
> 
> So the main reason for my question was to ensure that you have not
> forgoetten
> that you actually have some dependnecy on the service name that would
> in fact be
> incompatible. That could include some supporting document, for
> example usage of
> SRV records. However, with the below text written, I do find it
> informative. And
> the statement at the end that you don't use SRV records currently is
> also good
> and part to answer one aspect of my question. To conclude, it appears
> to be no
> issues with having the two mechanisms share service name and port. 
> 
> From my perspective it appears to be some benefit in including the
> below
> appendix in the specificaiton, but you should seek consensus on it in
> the WG
> before the document is approved in my opinion.

I noticed that the new proposed text on DNS is handling things
differently than this part in RFC5770:

https://tools.ietf.org/html/rfc5770#appendix-B

So I would suggest that we would update RFC5770 appendix B in the
native NAT traversal draft and replace it with the new DNS text.

(I can ask WG consensus for this also)

v2.23.0 | Report a Bug | By Email