IETF Logo Mail Archive

Re: [MBONED] mboned: UDP port conflict mtrace/traceroute

"Mcconnochie, William (Nokia - CA/Ottawa)" <william.mcconnochie@nokia.com> Tue, 17 September 2019 19:56 UTC

Return-Path: <william.mcconnochie@nokia.com>
X-Original-To: mboned@ietfa.amsl.com
Delivered-To: mboned@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B77DD1209C2 for <mboned@ietfa.amsl.com>; Tue, 17 Sep 2019 12:56:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nokia.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FoqFPay2yVJ5 for <mboned@ietfa.amsl.com>; Tue, 17 Sep 2019 12:56:04 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50098.outbound.protection.outlook.com [40.107.5.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A8461209D8 for <mboned@ietf.org>; Tue, 17 Sep 2019 12:56:03 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=KZtUofiqmKe1lmTz65AVkED/oCZoi1UD5vdV3Fxc2XDkQLBJ0Mp3i1+N6j8g9eZZZXY6AU7+3x2kp9Ei3Z1sNF4oqgv8e92s1XynTmOxTx4TyK7rLKek1OG3V1jHjEyyhT7U4A5oXKlFO+Wg8RidxvAH13/ghxJU0Qpaezljl8kNXqmHgOLJo0prkHEbjNX4J23HbvXVJgqzFn/zcw7/z3dLEMdV/vwslsH/IiFH4joZfzl6wNdWp1ozdxhnZJkzoEjQ4ClaJVENA4RCtgYEQ+6Im2aBX1s5wpN9cXv7UAFR1wZcuWYQinL8K04q2CXA3+vQwOmlaElkBKsVdoMzyw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=48/sWjv6AHN7AXGmvXQUkY+pRkl1P64tvKDAsiOqZzc=; b=dsKpHyjMORXOmembHIbGzp342Tpv88zViTDDlpzxP1dKQmDc3IO/Qb7OmAfxosgvVVX9YcGRzWKRV7cYJxPOMI2zvw8TMyKizXLiFWg6d7JSzo9lEtdu1ugR+BpMC6fceh3ecdwIPJkhRGbODjlHM3Mm31Rss6mkH/8id0OxNs/U2KL1txKAr3/pqqZnoCFmGw6P08f9bSUiUZh2ehnCqFUExnRLUrw2oJxZBUJQHi0gPcRMmCi4zUdqEGR5b/p8chSq1XpT9AOYu7+ctN4wapHKE9yTqp9sBBLKmRu9hHlBArHKjo0olmITqf4lmOxavIV261dbp45ipXvyv/BYpg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nokia.com; dmarc=pass action=none header.from=nokia.com; dkim=pass header.d=nokia.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nokia.onmicrosoft.com; s=selector1-nokia-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=48/sWjv6AHN7AXGmvXQUkY+pRkl1P64tvKDAsiOqZzc=; b=ywk4cJwuL9zP7cOt5nMdviw/l49ZhnDU1c9SQTtWEzJ209TyBAvMmMZ01IMpaz8NEBQ44yLfFSMn9fuAdrgXuhaRr+i39YM7k4c3pIduqMVkDJmUj9R8SmAgpP/TAqUr2r12ZIo/oM9GiXzlWOnpgjFshLdcUhJfQRnh5sjTnQk=
Received: from HE1PR0701MB3004.eurprd07.prod.outlook.com (10.168.93.138) by HE1PR0701MB2220.eurprd07.prod.outlook.com (10.168.29.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2284.13; Tue, 17 Sep 2019 19:55:59 +0000
Received: from HE1PR0701MB3004.eurprd07.prod.outlook.com ([fe80::b175:f9dc:9529:ccca]) by HE1PR0701MB3004.eurprd07.prod.outlook.com ([fe80::b175:f9dc:9529:ccca%6]) with mapi id 15.20.2284.009; Tue, 17 Sep 2019 19:55:59 +0000
From: "Mcconnochie, William (Nokia - CA/Ottawa)" <william.mcconnochie@nokia.com>
To: "Stojc, Stephane (Nokia - CA/Ottawa)" <stephane.stojc@nokia.com>, "Bidgoli, Hooman (Nokia - CA/Ottawa)" <hooman.bidgoli@nokia.com>, Hitoshi Asaeda <asaeda@ieee.org>, Warren Kumari <warren@kumari.net>, "Boone, Larry (Nokia - CA/Ottawa)" <larry.boone@nokia.com>
CC: Joe Touch <touch@strayalpha.com>, "James A. (Jim) Stevens" <james.a.stevens=40collins.com@dmarc.ietf.org>, MBONED WG <mboned@ietf.org>
Thread-Topic: [MBONED] mboned: UDP port conflict mtrace/traceroute
Thread-Index: AQHVQ+YHF6QhMAaUXEqS8koc6to52abdWPQAgAR/+wCAAAdpAIBFAraAgAARLYCAAc6DgIABlMWAgAUNwwCAAPEXsIAAMdIAgAAEYiyAAA9zgA==
Date: Tue, 17 Sep 2019 19:55:58 +0000
Message-ID: <16ac7967-d94f-cdf4-98cb-eaeb6c6a24e3@nokia.com>
References: <CAH8Jh6DSMMyjtzTn5yKqWdsio40nMjkreUMyMkc8mJGAFdYK4Q@mail.gmail.com> <BA0AA020-AE9D-441A-9AF2-DF847F1D9597@strayalpha.com> <CAHw9_iJCk6ym_CoXca8zgSsN7qCx-iAzsTg2-hV+SWHRz2D17g@mail.gmail.com> <2ba7bbf42e6d007b83d024ef11c24070@strayalpha.com> <CAHw9_iJsHGyttCw6UCQYzc2gEy4Rf+v=dTa9OyKOTaoZxEFtPQ@mail.gmail.com> <aec642641abccd91e5bd39deba049e39@strayalpha.com> <CAHw9_iKf25RTQuESdyW9a1U1n3EnR54yOo42+0nbW922Yxj8-g@mail.gmail.com> <CAHw9_i+oy36uDoBLSn5uF4UKkTpcZ9Up_ziDW6pfwwmkEG41jg@mail.gmail.com> <85BF58BB-3CAE-4B48-BD98-014FBEAFBCD5@ieee.org> <DB7PR07MB4745C1F40ADB032D985628EF918F0@DB7PR07MB4745.eurprd07.prod.outlook.com> <e45d5732-48ff-11df-e079-bf9fc26686a0@nokia.com> <AM6PR07MB5747206B0DD47E190183B58D888F0@AM6PR07MB5747.eurprd07.prod.outlook.com>
In-Reply-To: <AM6PR07MB5747206B0DD47E190183B58D888F0@AM6PR07MB5747.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [135.245.20.23]
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.0
x-clientproxiedby: CH2PR08CA0024.namprd08.prod.outlook.com (2603:10b6:610:5a::34) To HE1PR0701MB3004.eurprd07.prod.outlook.com (2603:10a6:3:4d::10)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=william.mcconnochie@nokia.com;
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 776d6c07-2a49-454b-ea49-08d73ba90f1c
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600167)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:HE1PR0701MB2220;
x-ms-traffictypediagnostic: HE1PR0701MB2220:
x-ms-exchange-purlcount: 1
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <HE1PR0701MB2220D9308E76D760C91BF3C1E88F0@HE1PR0701MB2220.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 01630974C0
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(39860400002)(136003)(376002)(346002)(366004)(189003)(199004)(13464003)(486006)(6636002)(36756003)(54896002)(6306002)(6436002)(229853002)(6512007)(236005)(14444005)(256004)(2906002)(7736002)(6486002)(11346002)(105004)(186003)(76176011)(26005)(6116002)(6246003)(446003)(52116002)(386003)(6506007)(53546011)(102836004)(606006)(66946007)(66476007)(66556008)(476003)(64756008)(2616005)(66446008)(99286004)(66066001)(65956001)(65806001)(3846002)(31696002)(71190400001)(31686004)(71200400001)(8936002)(8676002)(81166006)(81156014)(316002)(54906003)(110136005)(58126008)(966005)(5660300002)(4326008)(14454004)(66574012)(86362001)(25786009)(478600001)(30864003)(19627405001); DIR:OUT; SFP:1102; SCL:1; SRVR:HE1PR0701MB2220; H:HE1PR0701MB3004.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: nokia.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: KenXVXF/p+oMtAYetOYjkZSJlQV10n9HeDjUNoZCRLp9trgcKVo7CJ3KfEWijizgaFJCDKTzJOF1+nqJFFPPpaFRc2GXAPzIeSXKfH6GYWX0wL3oHVkN5SuBDMqRHlpGGWMjSsX3oya5gO+cHwrqlIaGTpfHX7l9NqTvN6p7Feqm25BkzoUL6oUpy55Tzy5meniuegDXwGqk5yAJ29X+8ZIs3DXwy0CvxJZaoMzkUIa4Bw6euBPpE+pZ2SkRhvhUiNkGQTJOpmPH+0rTSaldHlLv+OkSZ84ElFqb7OU6hELw0uMKbkornCFQBbqvIi93N33qs/uKKCa/kpnBenXAmMfuR6gs95sAgjcJmY5OAq/YS+tKt38Tb0dj6Thf4hI7yyzu/jSWl0NnItHDFrzKTZoDCfefvsMtAak8rgihTZs=
Content-Type: multipart/alternative; boundary="_000_16ac7967d94fcdf498cbeaeb6c6a24e3nokiacom_"
MIME-Version: 1.0
X-OriginatorOrg: nokia.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 776d6c07-2a49-454b-ea49-08d73ba90f1c
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Sep 2019 19:55:58.8358 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5d471751-9675-428d-917b-70f44f9630b0
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zLGggk2zlO851KnS1zNFhRuIjZrlLd/8MfjYdTeU1ZrZZmpXPUmAfq6tGZbhCIJn2FiNbrvCM7h1ady8tOulSkARCehF2/b2Gi/4kAsM0R4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2220
Archived-At: <https://mailarchive.ietf.org/arch/msg/mboned/NKctcZojn2aYU_rSmx1l7RAKdSc>
X-Mailman-Approved-At: Tue, 17 Sep 2019 13:52:22 -0700
Subject: Re: [MBONED] mboned: UDP port conflict mtrace/traceroute
X-BeenThere: mboned@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mail List for the Mboned Working Group <mboned.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mboned>, <mailto:mboned-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mboned/>
List-Post: <mailto:mboned@ietf.org>
List-Help: <mailto:mboned-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mboned>, <mailto:mboned-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Sep 2019 19:56:09 -0000

Ignoring our internal processing :-)...you are correct.

Bottom line is that if you reach the destination then a destination unreachable message is generated with the icmp type set to 'port unreachable' but this will not occur if another application is listening on that port as the port is now reachable, i.e. in use.

William

On 09/17/2019 03:23 PM, Stojc, Stephane (Nokia - CA/Ottawa) wrote:
I think there might be a typo here:

If the ttl expires and the destination address is for the router the ttl expires on then that is when a destination unreachable message is generated, however, if something else is listening on that port then you have an application conflict which is the problem at have with mtrace/traceroute and port 33435.

Packets don't age out on the nodes they're destined to. The CPM code only decrements TTL when attempting to forward a packet. The final packet of a traceroute probe is expected to generate a "port unreachable", not a TTL expiry, since the packet is extracted under a generic "PKT_COPY_CODE_IP_EXP_CANT_HANDLE" copy code due to having a local IP. As the error type implies, the port must be unreachable on that final node (i.e. not in use) for this error to be generated.

Stephane



________________________________
From: Mcconnochie, William (Nokia - CA/Ottawa) <william.mcconnochie@nokia.com><mailto:william.mcconnochie@nokia.com>
Sent: Tuesday, September 17, 2019 2:45 PM
To: Bidgoli, Hooman (Nokia - CA/Ottawa) <hooman.bidgoli@nokia.com><mailto:hooman.bidgoli@nokia.com>; Hitoshi Asaeda <asaeda@ieee.org><mailto:asaeda@ieee.org>; Warren Kumari <warren@kumari.net><mailto:warren@kumari.net>; Boone, Larry (Nokia - CA/Ottawa) <larry.boone@nokia.com><mailto:larry.boone@nokia.com>
Cc: Joe Touch <touch@strayalpha.com><mailto:touch@strayalpha.com>; James A. (Jim) Stevens <james.a.stevens=40collins.com@dmarc.ietf.org><mailto:james.a.stevens=40collins.com@dmarc.ietf.org>; MBONED WG <mboned@ietf.org><mailto:mboned@ietf.org>; Stojc, Stephane (Nokia - CA/Ottawa) <stephane.stojc@nokia.com><mailto:stephane.stojc@nokia.com>
Subject: Re: [MBONED] mboned: UDP port conflict mtrace/traceroute


As per "It was reported that enabling this protocol on routers where the traffic ransites (e.g router1) breaks traceroute, but I've sufficiently managed to confuse myself that I'm having a hard time understanding *why* -- the packet isn't destined to the router, it is destined for the target of the traceroute..."

When the ttl expires but the destination address is not for the router the ttl expired on, then a time exceeded message is generated.
If the ttl expires and the destination address is for the router the ttl expires on then that is when a destination unreachable message is generated, however, if something else is listening on that port then you have an application conflict which is the problem at have with mtrace/traceroute and port 33435.

William




On 09/17/2019 12:48 PM, Bidgoli, Hooman (Nokia - CA/Ottawa) wrote:

Hi Hitoshi

Sorry for delay. Adding two of the Nokia engineers.

So I think you are seeing what we are pointing out, a packet to the port 33435 is lost. Even that this is a single packet still it would create confusion.

Larry and William from Nokia can comment in more details

Regards

Hooman



-----Original Message-----
From: Hitoshi Asaeda <asaeda@ieee.org><mailto:asaeda@ieee.org>
Sent: Monday, September 16, 2019 9:24 PM
To: Warren Kumari <warren@kumari.net><mailto:warren@kumari.net>; Bidgoli, Hooman (Nokia - CA/Ottawa) <hooman.bidgoli@nokia.com><mailto:hooman.bidgoli@nokia.com>
Cc: Joe Touch <touch@strayalpha.com><mailto:touch@strayalpha.com>; James A. (Jim) Stevens <james.a.stevens=40collins.com@dmarc.ietf.org><mailto:james.a.stevens=40collins.com@dmarc.ietf.org>; MBONED WG <mboned@ietf.org><mailto:mboned@ietf.org>
Subject: Re: [MBONED] mboned: UDP port conflict mtrace/traceroute

Hooman,

Could you follow up this Warren's discussion?
Thanks.

Regards,

Hitoshi





On Sep 14, 2019, at 5:13, Warren Kumari <warren@kumari.net><mailto:warren@kumari.net> wrote:

[ TOP-POST]


Aaaaarggh! As Leonard pointed out (offlist, to save me the
embarrassment of being an idiot) I have a typo throughout this -- the
Dst is 10.0.4.1, not 10.0.5.1 (I'd initially had 2 and hosts, and 4
routers, but that was overly verbose, and so I removed the last
router, and forgot to renumber). Also, in Step 4, the TTL should
clearly be 4, not 43.
That'll larn me to try type long emails on a phone...

w

On Thu, Sep 12, 2019 at 4:04 PM Warren Kumari <warren@kumari.net><mailto:warren@kumari.net> wrote:


Hitoshi / MBONED,

Can you please explain in baby words (small enough that even I can
understand!) how the failures actually occur.

I keep going through it step by step, and it all makes sense... and
then suddenly I confuse myself and it all escapes... <insert confused
baby meme here>

Let's use this as the scenario (I'm using RFC1918 space because the
documentation prefix isn't really big enough for this).

I'm 10.0.0.1, and I'm running traceroute (from Linux / BSD box) to a
destination machine of 10.0.4.1. There are routers numbered 10.0.1.1,
10.0.2.1 and 10.0.3.1

Step 1: I send 3 packets with TTL=1, Dst 10.0.5.1, ports 33435,33436,33437.
The first hop router, 10.0.1.1 decrements the TTL, realizes that the
packet has now expired, and sends me back (Src 10.0.1.1, Dst
10.0.0.1)
3 ICMP TTL expired messages.
Traceroute draws:
traceroute to 10.0.4.1, 64 hops max, 52 byte packets
1  10.0.1.1 (10.0.1.1)  2 ms  1 ms  0.8 ms

2: I now send 3 packets, with TTL=2,  Dst 10.0.5.1, ports 33438,33439,33440.
Router1 decrements the TTL and forwards it to Router2, which
decrements the TTL and sends back  (Src 10.0.2.1, Dst 10.0.0.1) 3
ICMP TTL expired messages.
I see:
traceroute to 10.0.4.1, 64 hops max, 52 byte packets
1  10.0.1.1 (10.0.1.1)  2 ms  1 ms  0.8 ms
2  10.0.2.1 (10.0.2.1)  3ms  2 ms 5ms

3: I send 3 packets with TTL3, Dst 10.0.5.1, ports 33441,33442,33443
Router1 and router2 forward the packet, router3 expires it, I get a
TTL expired from 10.0.3.1, and now I see:
traceroute to 10.0.4.1, 64 hops max, 52 byte packets
1  10.0.1.1 (10.0.1.1)  2 ms  1 ms  0.8 ms
2  10.0.2.1 (10.0.2.1)  3ms  2 ms 5ms
3  10.0.3.1 (10.0.3.1)  4 ms 5ms 3ms.

4: I send 3 packets with TTL=43, Dst 10.0.5.1, ports 33444,33445,33446.
The TTL is now high enough that it makes it to the end host. There is
nothing listening on the end host on ports 33444, 33445, 33446, and
so I get back (from 10.0.4.1) ICMP port unreachables for 33444,
33445, 33446. I know I've reached my destination, and I'm happy.
traceroute to 10.0.4.1, 64 hops max, 52 byte packets
1  10.0.1.1 (10.0.1.1)  2 ms  1 ms  0.8 ms
2  10.0.2.1 (10.0.2.1)  3ms  2 ms 5ms
3  10.0.3.1 (10.0.3.1)  4 ms 5ms 3ms
4  10.0.4.1 (10.0.4.1) 5ms 3ms 4ms



In all of the above steps the destination address of the traceroute
packet is the target of the traceroute.
A transit router decrements the TTL, and if is cannot forward the
packet it generates an ICMP unreachable -- but it doesn't care about
the destination port or IP. When the TTL is high enough that it
reaches the end host, the port number *is* important, because we
don't want the end host to actually accept the packet, we want it to
instead return an ICMP Port Unreachable (or admin prohibited, or
something else useful).

As far as I can see then, the only case where there might be an issue is:
1: the router running mtrace2 is the target of the traceroute (so it
is actually listening on the port) and
2: the router is the very first hop (that's the only case where the
port number will be 33435).

In this case, we would get an output showing:
traceroute to 10.0.1.1, 64 hops max, 52 byte packets
1  10.0.1.1 (10.0.1.1)  *  1 ms  0.8 ms

(the first packet (port 33435) gets eaten by the mtrace2 process, but
the 2nd and 3rd packets will have ports 33436, 33437).

It was reported that enabling this protocol on routers where the
traffic ransites (e.g router1) breaks traceroute, but I've
sufficiently managed to confuse myself that I'm having a hard time
understanding *why* -- the packet isn't destined to the router, it is
destined for the target of the traceroute...

I'm sure I'm missing something obvious here, so, again, slowly and in
baby words please...

W


On Wed, Sep 11, 2019 at 12:29 PM Joe Touch <touch@strayalpha.com><mailto:touch@strayalpha.com> wrote:


Hi, Warren,

On 2019-09-11 08:27, Warren Kumari wrote:

On Mon, Jul 29, 2019 at 1:36 PM Joe Touch <touch@strayalpha.com><mailto:touch@strayalpha.com> wrote:


On 2019-07-29 10:09, Warren Kumari wrote:

...

Just FYI, I sent email to IANA letting them know that ports 33435 -
33534 should probably be listed it as "Known Unauthorized Use".
From some archaeology, 33434 is apparently 2^15 + 666, and the
"standard" traceroutes use up to 100 ports.
I based this on the Van Jacobson (van@ee.lbl.gov<mailto:van@ee.lbl.gov>) - 1988 which he
"stole" (credited) from Steve Deering -- easiest location of code is:
https://github.com/freebsd/freebsd/blob/master/contrib/traceroute/tr
aceroute.c

I don't much like referring to it as "Known Unauthorized Use" but
that's technically what it is -- the important bit to me seems to be
that we make in some way so they don't get handed out, exactly what
they should be called is a less pressing problem.


Although that's helpful to those seeing traffic on those ports, it does not prevent IANA from assigning those values when requested.

The only way to do that would be to make them ASSIGNED. That happens by the process indicated in RFCs 6335 and 7605 and notably is not driven by this sort of "squatting".

NOTE: at the time that code was originally developed (1988), that range was OK for such uses without registration, but times changed in 1992.

That code ought to be fixed.


Yes, that is true -- that code ought to be fixed; however, it
doesn't change the fact that mtrace cannot realistically be deployed
using this port -- enabling it on a router breaks traceroutes
through that router, leading to asterisks (I'd thought that we'd
agreed on that, but while looking back through my mail on this
topic, it's possible I'd misunderstood, and you don't actually agree
that this port isn't fit *for this particular purpose*).



No, I don't. I don't understand the issue. On machines where traceroute is deployed, I would assume it is already possible to acquire those ports (bind to them) as needed, at which point the only components that don't play nice are those where mtrace isn't deployed yet.

Now if you are saying you don't WANT to do that because you WANT to support traceroute's use of squatted ports, that's not IANA's business IMO - and, more importantly, it's not justification for changing a port. IANA's policies on this are that squatter's use of ports are simply not a factor at all. They can't be, otherwise there's no point in having an assignment process.


Just wanting to make sure we are all on the same page, and they
MBONED will be publishing a -bis, deprecating this RFC and
publishing a new one with a different port...


At best, that would requires releasing the current assignment, which requires a statement as to the extent of the current deployment using that assignment since 2012 and a plan for changing that codebase - all this is described in RFC 6335.

Joe




--
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later
expressing regret at having chosen those particular rabid weasels and
that pair of pants.
  ---maf




--
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
  ---maf

v2.23.0 | Report a Bug | By Email