IETF Logo Mail Archive

Re: [MMUSIC] ICE-bis: pacing of ICE connectivity checks

Ari Keränen <ari.keranen@ericsson.com> Tue, 22 October 2013 08:01 UTC

Return-Path: <ari.keranen@ericsson.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FEC411E8177 for <mmusic@ietfa.amsl.com>; Tue, 22 Oct 2013 01:01:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.949
X-Spam-Level:
X-Spam-Status: No, score=-5.949 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_SE=0.35, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VhiUjn8zg+po for <mmusic@ietfa.amsl.com>; Tue, 22 Oct 2013 01:01:27 -0700 (PDT)
Received: from mailgw1.ericsson.se (mailgw1.ericsson.se [193.180.251.45]) by ietfa.amsl.com (Postfix) with ESMTP id A63B511E82FB for <mmusic@ietf.org>; Tue, 22 Oct 2013 01:01:24 -0700 (PDT)
X-AuditID: c1b4fb2d-b7f738e000003ee3-13-526630d3d890
Received: from ESESSHC011.ericsson.se (Unknown_Domain [153.88.253.124]) by mailgw1.ericsson.se (Symantec Mail Security) with SMTP id 47.A0.16099.3D036625; Tue, 22 Oct 2013 10:01:23 +0200 (CEST)
Received: from ESESSMB205.ericsson.se ([169.254.5.37]) by ESESSHC011.ericsson.se ([153.88.183.51]) with mapi id 14.02.0328.009; Tue, 22 Oct 2013 10:01:23 +0200
From: Ari Keränen <ari.keranen@ericsson.com>
To: Emil Ivov <emcho@jitsi.org>
Thread-Topic: [MMUSIC] ICE-bis: pacing of ICE connectivity checks
Thread-Index: Ac7MD6NfvGuI93GmRnipYmfd4J6njP//4E2AgAAueYCAAT86AIAAFkwAgAM3nwCAAEZjgIAAQsKAgAAHGICAAIzVAA==
Date: Tue, 22 Oct 2013 08:01:21 +0000
Message-ID: <861759C7815040489720E3CC184F51DD1C4791C6@ESESSMB205.ericsson.se>
References: <526147C3.9040204@ericsson.com> <CAPvvaa+8osKGTNCS6RJywS9Bmf+RdbnChN=XqA9d+gLnBBAGow@mail.gmail.com> <5261704B.9090307@nostrum.com> <52627C14.8080309@jitsi.org> <1373AC9C23D80E44856F5CF6F883ACAB115574BB@xmb-rcd-x06.cisco.com> <52651780.60108@ericsson.com> <CAPvvaaL2ToQ1dxkYJbYHrLtQCFsYH7r2C=E1eYHD8KhzHsJXSA@mail.gmail.com> <861759C7815040489720E3CC184F51DD1C477C0F@ESESSMB205.ericsson.se> <CAPvvaaJnRahHZTuoG7wiNxmr5eo_sYjE8OVczS42fvWcf6C27A@mail.gmail.com>
In-Reply-To: <CAPvvaaJnRahHZTuoG7wiNxmr5eo_sYjE8OVczS42fvWcf6C27A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.154]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <7C043CFE6AF7654695DC6C8AB16BC00C@ericsson.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrOLMWRmVeSWpSXmKPExsUyM+Jvje5lg7QggyuLjCz2/F3EbrFm5wQW i6nLH7NYvL++ksWBxWPK742sHkuW/GTy+P8m0GPWzicsASxRXDYpqTmZZalF+nYJXBnLe3Yz F/QqVqxYuZelgfGXZBcjJ4eEgInE/IM7WSFsMYkL99azdTFycQgJHGaU6Dy9mA0kISSwmFHi 7UFxEJtNwF5i8pqPjCC2iIC8RHfbIiYQm1kgT+Ljg8dg9cICDhLP36xjh6hxlLi/ZD0rhJ0l 0X5gF0sXIwcHi4CqxKVd8iBhXgFfib8/LrJA7H3KLHGi8w3YHE6BQIkbe+eD7WIEOu77qTVQ u8Qlbj2ZzwRxtIDEkj3nmSFsUYmXj/9BPaMksej2Z6h6PYkbU6ewQdjWEj9/PIGytSWWLXzN DHGEoMTJmU9YJjCKz0KyYhaS9llI2mchaZ+FpH0BI+sqRvbcxMyc9HLDTYzAyDu45bfuDsZT 50QOMUpzsCiJ83546xwkJJCeWJKanZpakFoUX1Sak1p8iJGJg1OqgbH/yW1+1p/uF28vmB2q uS/9/Zd2yd8mH2YXzZy0Iu7Ioyudz3R+7N594P11759BuzmDvW6z7TTm+m892VKjoNNNq1iv hb2xqnMmR43tXotb256H31HM9Nu8y/zJ3carE+x/qjxi+xufpp0/34vB92OTRrrcyoRGt1Le 4hM9xXd/W13m1JWqsVRiKc5INNRiLipOBADEN5miigIAAA==
Cc: mmusic <mmusic@ietf.org>
Subject: Re: [MMUSIC] ICE-bis: pacing of ICE connectivity checks
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Oct 2013 08:01:32 -0000

On Oct 22, 2013, at 2:37 AM, Emil Ivov wrote:
> On Tue, Oct 22, 2013 at 1:11 AM, Ari Keränen <ari.keranen@ericsson.com> wrote:
>> 
>> On Oct 21, 2013, at 10:12 PM, Emil Ivov wrote:
>> 
>>> I still don't get it. Why would we recommend values for different applications? We already tell applications to pace checks in accordance with expected traffic, which they supposedly can gauge better than the text in our RFC.
>>> 
>>> A minimum value does make sense because it would basically say: "don't go below this value or you might brake the network or otherwise cause harm". That's actually useful advice.
>> 
>> Exactly. We're not proposing (different) values for different application. The proposal is to pace checks according to the expected traffic. For RTP there is a formula, for other traffic you're on your own (come up with formula, or what ever). The "second" value is only for the cases where you don't know better and should use something conservative.
> 
> If you don't know better why wouldn't you just use RTP's 20 ms pacing
> given that we've already blessed it as safe and harmless and NAT
> friendly?
> 

20 ms pacing has been blessed NAT friendly but not necessarily safe and harmless for the rest of the network. Also, if you start sending connectivity checks faster than your uplink can handle, you'll end up with false negatives due to dropped connectivity check packets. Hence I do see value in being a bit conservative if you don't know better.

But would you like to see only a single value, 20 ms, which should be used always for pacing and no other recommended values whatsoever?


Cheers,
Ari


>> 
>>> Now, having two such values starts being weird again, unless we have data that shoes that networks break differently depending on the UDP payload or port number or whatever.
>>> 
>>> --sent from my mobile
>>> 
>>> On 21 Oct 2013 14:01, "Ari Keränen" <ari.keranen@ericsson.com> wrote:
>>> On 10/19/13 4:53 PM, Pal Martinsen (palmarti) wrote:
>>> On Oct 19, 2013, at 05:33 AM, Emil Ivov <emcho@jitsi.org> wrote:
>>> On 18.10.13, 19:30, Adam Roach wrote:
>>> On 10/18/13 09:44, Emil Ivov wrote:
>>> It might be worth reminding exactly what these 50ms would be
>>> protecting us against
>>> 
>>> They're protecting us against RTP arriving at a rate of 20ms per
>>> packet.
>>> 
>>> That would indeed be one of the reasons to pace checks (in addition
>>> to fragile NAT boxes IIRC), however in either case, I fail to
>>> realise why we need a different pacing strategy for non-RTP. This
>>> is what I was asking about.
>>> 
>>> Connectivity check hammers can still resort to RTP if the pacing
>>> timer is their only problem and I don't see why shaky NATs would
>>> tolerate a 20ms rate for RTP but only a 50ms for anything else.
>>> 
>>> This entire separation sounds quite arbitrary right now. I see why
>>> we would pick a value that we consider somewhat safe and secure but
>>> I don't understand why we would need two!?
>>> 
>>> I agree. No need to add more complexity. ICE should be ignorant of
>>> what traffic goes through the pinholes.
>>> 
>>> The idea would be to have one recommended value (or set of) for all kinds of traffic but with RTP you would have this "additional piece of information" (due to the knowledge of your traffic pattern and the formula to relate that to pacing) that would allow you to go below the conservative recommended value. If you would have something similar with non-RTP traffic, you could use that.
>>> 
>>> But then for both endpoints agreeing on the value in order to have connectivity checks happening simultaneously for the same pairs, we'd probably need to do some negotiation, similar to what was done with ICE on HIP (http://tools.ietf.org/html/rfc5770#section-4.4)
>>> 
>>> 
>>> Cheers,
>>> Ari
>> 
> 
> 
> 
> -- 
> Emil Ivov, Ph.D.                       67000 Strasbourg,
> Project Lead                           France
> Jitsi
> emcho@jitsi.org                        PHONE: +33.1.77.62.43.30
> https://jitsi.org                       FAX:   +33.1.77.62.47.31

v2.41.0 | Report a Bug | By Email | System Status