Re: [MMUSIC] ICE and RTCP host components

Harald Alvestrand <harald@alvestrand.no> Sat, 24 October 2015 12:01 UTC

Return-Path: <harald@alvestrand.no>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37AD41B33BC for <mmusic@ietfa.amsl.com>; Sat, 24 Oct 2015 05:01:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6AcaDLSmyuhI for <mmusic@ietfa.amsl.com>; Sat, 24 Oct 2015 05:01:00 -0700 (PDT)
Received: from mork.alvestrand.no (mork.alvestrand.no [158.38.152.117]) by ietfa.amsl.com (Postfix) with ESMTP id 9C49C1B33BA for <mmusic@ietf.org>; Sat, 24 Oct 2015 05:01:00 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mork.alvestrand.no (Postfix) with ESMTP id 195DE7C0BCF for <mmusic@ietf.org>; Sat, 24 Oct 2015 14:00:59 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at alvestrand.no
Received: from mork.alvestrand.no ([127.0.0.1]) by localhost (mork.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S90wF5BJASCI for <mmusic@ietf.org>; Sat, 24 Oct 2015 14:00:58 +0200 (CEST)
Received: from [IPv6:2001:470:de0a:1:bcbf:15b1:a4c0:94d3] (unknown [IPv6:2001:470:de0a:1:bcbf:15b1:a4c0:94d3]) by mork.alvestrand.no (Postfix) with ESMTPSA id 2959B7C04D5 for <mmusic@ietf.org>; Sat, 24 Oct 2015 14:00:58 +0200 (CEST)
To: mmusic@ietf.org
References: <7594FB04B1934943A5C02806D1A2204B37B7AC27@ESESSMB209.ericsson.se> <56266954.3080206@alum.mit.edu> <CAD5OKxtxHwjdaDnmK9LORM9M0YqQQb+-h66dV8C8Lgy8a6WYiA@mail.gmail.com> <56271989.5010509@alum.mit.edu> <CAD5OKxtW_3Ucq4X=wjhkT17tsxedc1JjEC2KYCchQF=_3uDX7g@mail.gmail.com> <562A64CF.200@alvestrand.no> <CAD5OKxvVDRFOSHB1S3Qodtqvm1Y4nSAMo41JmmsBTWw5CP=FpA@mail.gmail.com> <562A72E2.7090400@alum.mit.edu> <CAD5OKxuitU1paSGPn=wFmYG7+rWoY_tnG=u8hN7OjGnQEaVemg@mail.gmail.com> <562A83DE.4040602@alum.mit.edu>
From: Harald Alvestrand <harald@alvestrand.no>
Message-ID: <562B72F8.2000909@alvestrand.no>
Date: Sat, 24 Oct 2015 14:00:56 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
In-Reply-To: <562A83DE.4040602@alum.mit.edu>
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/mmusic/i3pcvseGSkeIrB-RnvNUt__3a-0>
Subject: Re: [MMUSIC] ICE and RTCP host components
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Oct 2015 12:01:03 -0000

On 10/23/2015 09:00 PM, Paul Kyzivat wrote:
> On 10/23/15 2:25 PM, Roman Shpount wrote:
>> The normal use case for ICE are large numbers of end points deployed
>> behind NAT sending media directly to each other.
>
> "Normal" changes over time. I think what you mean here is "current".
>
> As ICE becomes more mature and people understand it better, it will be
> used more broadly, for things that have legacy components.
>
> In any case, I think there will be much use of webrtc as one end of a
> session with the other end being a legacy sip device.
>
>> Deploying a lot of end
>> points without some sort of consent to send media mechanism creates a
>> perfect platform for denial of service attacks. ICE solves this issue if
>> legacy support is disabled. Furthermore, legacy end points without SDP
>> rtcp attribute support end up sending RTCP to completely wrong place.
>> Best solution for anything ICE enabled is to set c= line address to IP4
>> 0.0.0.0 and provide real RTP and RTCP in ICE candidates. Legacy will not
>> work, but no traffic to unexpected destinations will be generated.
>
> Don't break interworking. Certainly this will require at least a
> signaling gateway. In general that will require a media gateway too.
> But anything that can be done to reduce the load on such a media
> gateway is good. It may need to do ICE. It may need to do the consent
> on behalf of the ultimate device. 
If "legacy" = "does not support ICE": Not "may". "will".

RTCWEB is designed to not start working unless ICE is present, and to
stop working if consent (which also requires ICE) isn't performed.

If the problem is "interwork with WebRTC devices", there's a class of
legacy devices that is "someone else's problem".