IETF Logo Mail Archive

Re: [MBONED] mboned: UDP port conflict mtrace/traceroute

John Kristoff <jtk@depaul.edu> Mon, 29 July 2019 18:03 UTC

Return-Path: <jtk@depaul.edu>
X-Original-To: mboned@ietfa.amsl.com
Delivered-To: mboned@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91F2C12001A for <mboned@ietfa.amsl.com>; Mon, 29 Jul 2019 11:03:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MWn8__qweTbd for <mboned@ietfa.amsl.com>; Mon, 29 Jul 2019 11:03:06 -0700 (PDT)
Received: from aharp.iorc.depaul.edu (aharp.iorc.depaul.edu [140.192.218.132]) by ietfa.amsl.com (Postfix) with ESMTP id DF83C12001E for <mboned@ietf.org>; Mon, 29 Jul 2019 11:03:05 -0700 (PDT)
Received: from p50.localdomain (localhost [127.0.0.1]) by aharp.iorc.depaul.edu (Postfix) with ESMTP id 8DE5716BD for <mboned@ietf.org>; Mon, 29 Jul 2019 18:03:04 +0000 (UTC)
Date: Mon, 29 Jul 2019 13:03:04 -0500
From: John Kristoff <jtk@depaul.edu>
To: mboned@ietf.org
Message-ID: <20190729130304.3d9d48ff@p50.localdomain>
In-Reply-To: <9c395e5acc4e41329727c62fdb334e3d@ex16prd04a.dpu.depaul.edu>
References: <CAH8Jh6DSMMyjtzTn5yKqWdsio40nMjkreUMyMkc8mJGAFdYK4Q@mail.gmail.com> <BA0AA020-AE9D-441A-9AF2-DF847F1D9597@strayalpha.com> <9c395e5acc4e41329727c62fdb334e3d@ex16prd04a.dpu.depaul.edu>
X-Trump: Sucks
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/mboned/UpcHWYqs9iKvPMlXcO1V5z5Wmik>
Subject: Re: [MBONED] mboned: UDP port conflict mtrace/traceroute
X-BeenThere: mboned@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mail List for the Mboned Working Group <mboned.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mboned>, <mailto:mboned-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mboned/>
List-Post: <mailto:mboned@ietf.org>
List-Help: <mailto:mboned-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mboned>, <mailto:mboned-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Jul 2019 18:03:09 -0000

On Mon, 29 Jul 2019 17:09:22 +0000
Warren Kumari <warren@kumari.net> wrote:

> Just FYI, I sent email to IANA letting them know that ports 33435 -
> 33534 should probably be listed it as "Known Unauthorized Use".
> >From some archaeology, 33434 is apparently 2^15 + 666, and the  
> "standard" traceroutes use up to 100 ports.

The starting port may be 33434 now, but in my reading of history, it
wasn't always.  If you look at Van Jacobson's original code he has this:

  u_short port = 32768 + 666;

Which indeed does add to 33434.  However, when the probes start it
begins with this:

  send_probe(++seq, ttl, &t1);

and in that routine there is:

  outudp->uh_dport = htons(port + seq);

seq was initialized to zero, but it becomes one before the first probe
is sent, which means the first destination port in the original
traceroute was actually 32768 + 666 + 1 or 33435.

Now all modern traceroute implementations just seem to set the default
port to 33434 and start there.  I don't know that any of this really
matters a whit, but I guess it demonstrates bit errors can
happen.  :-)

The only explanation I've heard for the high numbered port is that it
was choosen as one that would likely, and hopefully not be in use.
I'm not sure if Van intended the 666 part as a joke or not.  Probably a
good question for Internet historians on the [ih] list.

Sorry for veering a bit off topic.

John

v2.23.0 | Report a Bug | By Email