IETF Logo Mail Archive

Re: [martini] draft-kaplan-martini-vermouth-00: reg-event handling for draft-gin and draft-olive

Hadriel Kaplan <HKaplan@acmepacket.com> Fri, 07 May 2010 04:25 UTC

Return-Path: <HKaplan@acmepacket.com>
X-Original-To: martini@core3.amsl.com
Delivered-To: martini@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3242F3A6830 for <martini@core3.amsl.com>; Thu, 6 May 2010 21:25:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.025
X-Spam-Level:
X-Spam-Status: No, score=-1.025 tagged_above=-999 required=5 tests=[AWL=-1.026, BAYES_50=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LRJo9LpUOl2d for <martini@core3.amsl.com>; Thu, 6 May 2010 21:25:28 -0700 (PDT)
Received: from etmail.acmepacket.com (etmail.acmepacket.com [216.41.24.6]) by core3.amsl.com (Postfix) with ESMTP id CD3203A691C for <martini@ietf.org>; Thu, 6 May 2010 21:25:23 -0700 (PDT)
Received: from mail.acmepacket.com (216.41.24.7) by etmail.acmepacket.com (216.41.24.6) with Microsoft SMTP Server (TLS) id 8.1.375.2; Fri, 7 May 2010 00:25:10 -0400
Received: from mail.acmepacket.com ([127.0.0.1]) by mail ([127.0.0.1]) with mapi; Fri, 7 May 2010 00:25:10 -0400
From: Hadriel Kaplan <HKaplan@acmepacket.com>
To: Hans Erik van Elburg <ietf.hanserik@gmail.com>
Date: Fri, 07 May 2010 00:25:09 -0400
Thread-Topic: [martini] draft-kaplan-martini-vermouth-00: reg-event handling for draft-gin and draft-olive
Thread-Index: AcrrCaVH7jcOUgcZRF2tKcDmy53I9ACkAdQA
Message-ID: <430FC6BDED356B4C8498F634416644A91A8A7D74A6@mail>
References: <430FC6BDED356B4C8498F634416644A91A8A5F1BD4@mail> <j2t9ae56b1e1005031443r92b2b703m378750742bfdc206@mail.gmail.com>
In-Reply-To: <j2t9ae56b1e1005031443r92b2b703m378750742bfdc206@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "martini@ietf.org" <martini@ietf.org>
Subject: Re: [martini] draft-kaplan-martini-vermouth-00: reg-event handling for draft-gin and draft-olive
X-BeenThere: martini@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of en-mass SIP PBX registration mechanisms <martini.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/martini>, <mailto:martini-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/martini>
List-Post: <mailto:martini@ietf.org>
List-Help: <mailto:martini-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/martini>, <mailto:martini-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 May 2010 04:25:31 -0000

> -----Original Message-----
> From: Hans Erik van Elburg [mailto:ietf.hanserik@gmail.com]
> Sent: Monday, May 03, 2010 5:43 PM
> To: Hadriel Kaplan
>
> - Appendix A: While I have no problem with simplifying the pattern, to
> enable less configuration errors and complaince with RFC3261. You
> bring back here the issue of automatically detecting provisioning
> mismatches by the PBX. Is this based on something you have seen in
> practice? Why would this be an issue at all? Even in the simplified
> case I don not think that an IP-PBX can conclude anything when it has
> knowledge about the full generated set of AOR's. It suffices to match
> each configured AOR with the patterns returned.

Yes, unfortunately it's been a real issue.  For example, there was a service outage just a couple weeks ago in a big carrier which impacted service for a bunch of Enterprise trunks.  Several things were configured incorrectly to make it become an actual outage of service for a bunch of Enterprise trunks, but the initial trigger which brought it down was the SSP thought the PBX owned a number and the PBX did not.  It caused an infinite loop, and due to poor configuration (and no throttles) several systems went to max utilization until humans stopped it.

So having a PBX just run a regex against the numbers it knows about is not enough - because that doesn't tell it what *additional* numbers the SSP thinks the PBX has which the PBX doesn't.  One could design a PBX to also use the regex against SIP Requests themselves, and decide that if the regex matches the Request's URI then it does own the username, and then return a 404 if it doesn't really have provisioning for that username.  But even that would get complicated fast.  These regex's are provisioned by people, and in my experience most people are really bad at creating _good_ regex patterns.  Unless we really need the complete flexibility of a regex pattern, I would recommend we avoid it.

-hadriel

v2.23.0 | Report a Bug | By Email