Re: [MMUSIC] Continued WG interest inSDPoffer/answerwithmiddleboxes?

"Muthu ArulMozhi Perumal (mperumal)" <mperumal@cisco.com> Wed, 06 April 2011 10:29 UTC

Return-Path: <mperumal@cisco.com>
X-Original-To: mmusic@core3.amsl.com
Delivered-To: mmusic@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8DA843A6902 for <mmusic@core3.amsl.com>; Wed, 6 Apr 2011 03:29:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.299
X-Spam-Level:
X-Spam-Status: No, score=-10.299 tagged_above=-999 required=5 tests=[AWL=-0.300, BAYES_00=-2.599, J_CHICKENPOX_39=0.6, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id owrAYkJZc0V4 for <mmusic@core3.amsl.com>; Wed, 6 Apr 2011 03:29:26 -0700 (PDT)
Received: from ams-iport-1.cisco.com (ams-iport-1.cisco.com [144.254.224.140]) by core3.amsl.com (Postfix) with ESMTP id 2A75C3A68FE for <mmusic@ietf.org>; Wed, 6 Apr 2011 03:29:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=mperumal@cisco.com; l=3670; q=dns/txt; s=iport; t=1302085870; x=1303295470; h=mime-version:content-transfer-encoding:subject:date: message-id:in-reply-to:references:from:to:cc; bh=H0viAq1qr5Nmf1jW1He2Md2bAxLnq5Ni4Cz46TCc4HA=; b=IMzi1UYKHLSa/TYMDrdKSXG7h5H71MxmstWb1brpJkCUBB/VRnjzKEw7 0Ihc65zk6x1uv4Njr7D/0qNA1LkGlSFh/kJPMlt2hUYWQdwsgtg25T0mg +e9mDEIB2aClJVPz0xJ54Sa6mwGKsSIXLlh4yjMT2aYX7fSdfOZ0I0GWk A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: As0AAIdAnE2Q/khLgWdsb2JhbACYLI1LFAEBFiYlpH+cH4VsBIVMi1k
X-IronPort-AV: E=Sophos;i="4.63,309,1299456000"; d="scan'208";a="82398661"
Received: from ams-core-2.cisco.com ([144.254.72.75]) by ams-iport-1.cisco.com with ESMTP; 06 Apr 2011 10:31:09 +0000
Received: from xbh-bgl-412.cisco.com (xbh-bgl-412.cisco.com [72.163.129.202]) by ams-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p36AV7II006467; Wed, 6 Apr 2011 10:31:08 GMT
Received: from xmb-bgl-414.cisco.com ([72.163.129.210]) by xbh-bgl-412.cisco.com with Microsoft SMTPSVC(6.0.3790.4675); Wed, 6 Apr 2011 16:01:07 +0530
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Wed, 06 Apr 2011 16:01:03 +0530
Message-ID: <1D062974A4845E4D8A343C65380492020523BA1A@XMB-BGL-414.cisco.com>
In-Reply-To: <BDDFB3FD-ABBF-4E6E-A0D8-9DF0D6D692E5@acmepacket.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [MMUSIC] Continued WG interest inSDPoffer/answerwithmiddleboxes?
Thread-Index: AcvwZpf2DAHHvwOGRNGc8htfEXoaqQD2t3mQ
References: <4D798594.4000406@cisco.com><0ed601cbe2ba$1bdfd740$539f85c0$@com><7F2072F1E0DE894DA4B517B93C6A05851948F0B315@ESESSCMS0356.eemea.ericsson.se><A11921905DA1564D9BCF64A6430A623904BE34FA@XMB-BGL-411.cisco.com><EDC0A1AE77C57744B664A310A0B23AE21EA682B2@FRMRSSXCHMBSC3.dc-m.alcatel-lucent.com><A11921905DA1564D9BCF64A6430A623904BE39B1@XMB-BGL-411.cisco.com><1D062974A4845E4D8A343C65380492020513F33C@XMB-BGL-414.cisco.com><0e4201cbeebb$f527ea80$df77bf80$@com><1D062974A4845E4D8A343C65380492020513F8B0@XMB-BGL-414.cisco.com><00e001cbefad$c21e2fd0$465a8f70$@com> <0DE1F6C1-D2B1-4F6A-A0EF-B66281AF2BB0@acmepacket.com> <1D062974A4845E4D8A343C65380492020513FA08@XMB-BGL-414.cisco.com> <BDDFB3FD-ABBF-4E6E-A0D8-9DF0D6D692E5@acmepacket.com>
From: "Muthu ArulMozhi Perumal (mperumal)" <mperumal@cisco.com>
To: Hadriel Kaplan <HKaplan@acmepacket.com>
X-OriginalArrivalTime: 06 Apr 2011 10:31:07.0022 (UTC) FILETIME=[BCF402E0:01CBF445]
Cc: mmusic <mmusic@ietf.org>
Subject: Re: [MMUSIC] Continued WG interest inSDPoffer/answerwithmiddleboxes?
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Apr 2011 10:29:27 -0000

|When you say "to aid in firewall/NAT traversal", I assume 
|you mean when the SIP+middlebox device *is* the firewall/NAT, 
|right?  You do NOT mean when a SIP+middlebox device is out in 
|the network, helping the UA traverse a Firewall/NAT in-between 
|it and the UA? (what is normally called "Hosted NAT Traversal" 
|or "Far-end NAT traversal" by vendors)

Yes, primarily the former use-case. However, the draft also described
the later (see section 5).

|I ask because the former case of being the NAT is not the same
|as the latter case.  Latching and most of the policies described
|in this draft do not typically apply to the former case, but do 
|to the latter.

The draft does make this clear in section 5.1:

<snip>
If the middlebox supports the traversal of residential NATs, it applies
a technique called "media latching": The destination IP address of
packets forwarded by the middlebox in the outbound direction is derived
from the source IP address of packets received in the inbound direction.
This overrides a destination address possibly configured by the MIDCOM
agent.
</snip>

Overall, IMHO the recommendations in the draft seem useful to the kind
of architecture/problems it describes. However, whether it applies to
current deployments is something I am not sure. The draft claims such
middleboxes are for instance the TISPAN A-BGF/C-BGF/I-BGF and the 3GPP
IMS Access Gateway..perhaps this was long ago?

Muthu

|-----Original Message-----
|From: Hadriel Kaplan [mailto:HKaplan@acmepacket.com]
|Sent: Friday, April 01, 2011 5:46 PM
|To: Muthu ArulMozhi Perumal (mperumal)
|Cc: mmusic
|Subject: Re: [MMUSIC] Continued WG interest
inSDPoffer/answerwithmiddleboxes?
|
|
|On Mar 31, 2011, at 10:48 PM, Muthu ArulMozhi Perumal (mperumal) wrote:
|
|> The main goal of the draft as it seems to claim is to describe the
|> desirable behaviors of middleboxes and signaling protocols that
operate
|> on the media path, to aid in firewall/NAT traversal. It looks like an
|> extension of RFC 3303 whose focus is also firewall and NAT traversal
|> use-cases. The draft claims that the architecture/functions it
describes
|> is used in IMS and specified in 3GPP, TISPAN and PacketCable specs --
if
|> it true, then this is where the recommendations in the draft would be
|> useful I think.
|
|When you say "to aid in firewall/NAT traversal", I assume you mean when
the SIP+middlebox device *is*
|the firewall/NAT, right?  You do NOT mean when a SIP+middlebox device
is out in the network, helping
|the UA traverse a Firewall/NAT in-between it and the UA? (what is
normally called "Hosted NAT
|Traversal" or "Far-end NAT traversal" by vendors)
|
|I ask because the former case of being the NAT is not the same as the
latter case.  Latching and most
|of the policies described in this draft do not typically apply to the
former case, but do to the
|latter.  ICE behaves differently for the two cases.  SBCs, as well as
the 3GPP and TISPAN variants,
|are of the latter variety, not the former.  And they don't need an RFC
to tell them anything, because
|it's not something they don't already know.  What's worse, it's
actually wrong or misleading in some
|of its recommendations.
|
|The draft conflates the two cases, probably because RFC 3303 did as
well because it is a really old
|RFC from back when the whole SIP middlebox market began.  And the draft
is wrong about ICE because it
|was written before ICE was published.  "Extending" 3303 with this draft
is useless at best, or harmful
|at worst, unless it gets a serious re-write.  My 2 cents anyway.
|
|-hadriel