Re: [MMUSIC] FQDN Support Final Vote
Flemming Andreasen <fandreas@cisco.com> Fri, 24 May 2019 16:03 UTC
Return-Path: <fandreas@cisco.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 311AD1202E4 for <mmusic@ietfa.amsl.com>; Fri, 24 May 2019 09:03:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.509
X-Spam-Level:
X-Spam-Status: No, score=-14.509 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mdL9FzoCP9uK for <mmusic@ietfa.amsl.com>; Fri, 24 May 2019 09:03:54 -0700 (PDT)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC83812010C for <mmusic@ietf.org>; Fri, 24 May 2019 09:03:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=37147; q=dns/txt; s=iport; t=1558713834; x=1559923434; h=subject:to:cc:references:from:message-id:date: mime-version:in-reply-to; bh=IVWBkEwMd3gk7HOaBWWXPN0RyQ1h8jbPIg5qhO4MQ7g=; b=CRpgVu9lDMZkJIljfwuw0VIM6/gNEtwMrNcScs3NVFIVeoNnerN5Jv/u 3iGS1sHnaVpq+lHDWSnPspPInAXDmWvZqgUkhRK9koUhKxrmOXIX4Va8W y/YERAwsY5vLCWlOT5kupnzUZNnKGDNl9n9NhevqAv8AgosVMsa3Z0De/ Y=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AjAAD2FOhc/5hdJa1lGwEBAQEDAQEBBwMBAQGBUQYBAQELAYEOAYEBaVEBMiiML4pvgWglfohCDoU4iVKBdwQJAQEBDhgBCgwBAYN6RgIXgigjNAkOAQMBAQQBAQIBBG0cDIVKAQEBAQMBAWwLEAsRBAEBASABBgcCHwYfCQgGAQwGAgEBgx4BgWoDCRQPpzgfhSiCQw1dgUaBNAGLLCYXgUA/gREnDIIqNT6CGkcBAQOBdR+FLASLQYUliiKNAj0Jgg+GM4h8g10GG4IfZ4V8g1mJZoxohwCBWIlWg2eBTzgpgRkNCE0jFTuCbAmEFYQ3gj6FWyMDMI8NAQE
X-IronPort-AV: E=Sophos;i="5.60,507,1549929600"; d="scan'208,217";a="277989315"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 May 2019 16:03:50 +0000
Received: from [10.118.10.19] (rtp-fandreas-2-8812.cisco.com [10.118.10.19]) by rcdn-core-1.cisco.com (8.15.2/8.15.2) with ESMTP id x4OG3mks014159; Fri, 24 May 2019 16:03:48 GMT
To: Christer Holmberg <christer.holmberg@ericsson.com>, Bernard Aboba <bernard.aboba@gmail.com>, Suhas Nandakumar <suhasietf@gmail.com>
Cc: mmusic WG <mmusic@ietf.org>
References: <CAMRcRGRnKRNL9t+c6AQ7L+vszaPrJvAuwVG6BhUuJovBRuc=NA@mail.gmail.com> <CAOW+2dtgBASYp7hbrj8rcC+bUWjmxQLxLfdYr0sMtdkTSsXo+w@mail.gmail.com> <5c44aa14-523d-a797-0002-7bf828585788@cisco.com> <B2BA676E-19D7-4C99-9059-0D0BAA256171@ericsson.com> <20e7ae31-4633-4851-1ae2-d755dfb66acc@cisco.com> <HE1PR07MB31613305D6274FD9526F2A9B93020@HE1PR07MB3161.eurprd07.prod.outlook.com>
From: Flemming Andreasen <fandreas@cisco.com>
Message-ID: <d8abb288-0289-ea69-9709-72252fc8b10a@cisco.com>
Date: Fri, 24 May 2019 12:03:48 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.7.0
MIME-Version: 1.0
In-Reply-To: <HE1PR07MB31613305D6274FD9526F2A9B93020@HE1PR07MB3161.eurprd07.prod.outlook.com>
Content-Type: multipart/alternative; boundary="------------78D26E1E1475A3BDB73E7B26"
Content-Language: en-US
X-Outbound-SMTP-Client: 10.118.10.19, rtp-fandreas-2-8812.cisco.com
X-Outbound-Node: rcdn-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/m1-qX7Uk9ut8a5Xdit8JIajDR2I>
Subject: Re: [MMUSIC] FQDN Support Final Vote
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 May 2019 16:03:57 -0000
On 5/24/19 11:22 AM, Christer Holmberg wrote: > Hi, > > As far as not allowing FQDN candidates is concerned, I think we have > text. I have not seen any objection. I'm not clear on exactly what text you are agreeing to here. > > Now, in addition to that, Roman wants to cover FQDNs in c= lines. for > “verification of ICE support”. If that is needed, could it be in a > separate section and/or paragraph? > Can you please provide a concrete text suggestion that satisfies your concerns. Thanks -- Flemming > Regards, > > Christer > ------------------------------------------------------------------------ > *From:* Flemming Andreasen <fandreas@cisco.com> > *Sent:* Friday, May 24, 2019 4:23:43 PM > *To:* Christer Holmberg; Bernard Aboba; Suhas Nandakumar > *Cc:* mmusic WG > *Subject:* Re: [MMUSIC] FQDN Support Final Vote > > > On 5/24/19 9:08 AM, Christer Holmberg wrote: >> >> Hi, >> >> >I support that as well. >> > >> >Christer: I'm not clear on what your vote is right now. >> >> My vote is to **not** support FQDN candidates, and add whatever text >> needed to explicitly indicate that. >> > If none of the 4 proposals work for you, can you please provide a > concrete text suggestion we can take a look at. > > Thanks > > -- Flemming > >> Regards, >> >> Christer >> >> On 5/21/19 1:59 PM, Bernard Aboba wrote: >> >> Personally, I like the suggested text from Christer and Roman >> because it explicitly states that if FQDNs are not supported then >> the candidates must be ignored. >> >> On Tue, May 21, 2019 at 8:26 AM Suhas Nandakumar >> <suhasietf@gmail.com <mailto:suhasietf@gmail.com>> wrote: >> >> Hi All >> >> Below i have included 4 flavors of suggested text for FQDN >> support in ice-sip-sdp. Let's agree on one and go with it >> (even it doesn't make us entirely happy).. >> >> *RFC5245 Version * >> >> "<connection-address>: is taken from RFC 4566 >> <https://tools.ietf.org/html/rfc4566>[RFC4566 >> <https://tools.ietf.org/html/rfc4566>]. It is the >> >> IP address of the candidate, allowing for IPv4 >> addresses, IPv6 addresses, and fully qualified domain names >> (FQDNs). When parsing this field, an agent can differentiate >> an IPv4 address and an IPv6 address by presence of a colon in >> its value - the presence of a colon indicates IPv6. An agent >> MUST ignore candidate lines that include candidates with IP >> address versions that are not supported or recognized. An IP >> address SHOULD be used, but an FQDN MAY be used in place of >> an IP address. In that case, when receiving an offer or >> answer containing an FQDN in an a=candidate attribute, the >> FQDN is looked up in the DNS first using an AAAA record >> (assuming the agent supports IPv6), and if no result is found >> or the agent only supports IPv4, using an A. If the DNS >> query returns more than one IP address, one is chosen, and >> then used for the remainder of ICE processing. >> >> *ice-sip-sdp pre-22 version1* >> >> ** >> >> <connection-address>:is taken from RFC 4566 [RFC4566].It is >> the IP address of the candidate.When parsing this field, an >> agent can differentiate an IPv4 address and an IPv6 address >> by presence of a colon in its value -- the presence of a >> colon indicates IPv6. An agent MUST ignore candidate lines >> that include candidates withIP address versions that are not >> supported or recognized.An IP address SHOULD be used, but an >> FQDN MAY be used in place of an IP address.In that case, when >> receiving an offer or answer containing an FQDN in an >> a=candidate attribute, the FQDN is lookedup in the DNS first >> using an AAAA record (assuming the agent supports IPv6), and >> if no result is found or the agent only supports IPv4, using >> an A record.The rules from section 6 of [RFC6724] is followed >> by fixing the source address to be one from the candidate >> pair to be matched against destination addresses >> >> reported by FQDN, in cases where the DNS query returns more >> than one IP address. >> >> *ice-sip-sdp current version* >> >> <connection-address>: is taken from RFC 4566 [RFC4566]. It >> is the >> >> IP address of the candidate. When parsing this field, >> an agent >> >> can differentiate an IPv4 address and an IPv6 address >> by presence >> >> of a colon in its value -- the presence of a colon >> indicates IPv6. >> >> An agent MUST ignore candidate lines that include >> candidates with >> >> IP address versions that are not supported or >> recognized. An IP >> >> address SHOULD be used, but an FQDN MAY be used in >> place of an IP >> >> address. In that case, when receiving an offer or answer >> >> containing an FQDN in an a=candidate attribute, the >> FQDN is looked >> >> up in the DNS first using an AAAA record (assuming the >> agent >> >> supports IPv6), and if no result is found or the agent only >> >> supports IPv4, using an A record. If a FQDN returns >> multiple IP >> >> addresses an agent MUST only use one of them throughout the >> >> duration of the ICE session. Since an agent does not >> know whether >> >> the peer listens to the chosen IP address and port, it is >> >> RECOMMENDED to not use FQDNs that will resolve into >> multiple IP >> >> addresses. >> >> *Roman-Christer Version * >> >> <connection-address>: :: is taken from RFC 4566 <<RFC4566>>.. >> It is the IP address of the candidate, allowing for IPv4 >> addresses, IPv6 addresses, >> >> and fully qualified domain names (FQDNs). When parsing this >> field, an agent can differentiate an IPv4 address and an >> IPv6 address by presence >> >> of a colon in its value - the presence of a colon indicates >> IPv6. *An agent processing remote candidates MUST ignore >> candidate lines that include* >> >> *candidates with FQDN or IP address versions that are not >> supported or recognized.. The procedures for handling FQDN >> candidates, and for agents* >> >> *to indicate support of such procedures, need to be specified >> in an extension specification.* If candidate with FQDN >> <connection-address> is the >> >> default destination/candidate, the "c=" address type MUST be >> set the IP address family for the FQDN DNS resolution result >> and the "c=" connection >> >> address MUST be set to FQDN. Differences in the "c=" line >> address family and type with FQDN resolution result MUST not >> cause ICE support verification failure. >> >> *My vote is on current version since it is backward >> compatible with a warning that using FQDN is not recommended >> since it MAY lead to failure.* >> >> _______________________________________________ >> mmusic mailing list >> mmusic@ietf.org <mailto:mmusic@ietf.org> >> https://www.ietf.org/mailman/listinfo/mmusic >> >> >> >> _______________________________________________ >> >> mmusic mailing list >> >> mmusic@ietf.org <mailto:mmusic@ietf.org> >> >> https://www.ietf.org/mailman/listinfo/mmusic >> >> >> >> >> _______________________________________________ >> mmusic mailing list >> mmusic@ietf.org <mailto:mmusic@ietf.org> >> https://www.ietf.org/mailman/listinfo/mmusic >
- [MMUSIC] FQDN Support Final Vote Suhas Nandakumar
- Re: [MMUSIC] FQDN Support Final Vote Bernard Aboba
- Re: [MMUSIC] FQDN Support Final Vote Roman Shpount
- Re: [MMUSIC] FQDN Support Final Vote Christer Holmberg
- Re: [MMUSIC] FQDN Support Final Vote Roman Shpount
- Re: [MMUSIC] FQDN Support Final Vote Christer Holmberg
- Re: [MMUSIC] FQDN Support Final Vote Roman Shpount
- Re: [MMUSIC] FQDN Support Final Vote Flemming Andreasen
- Re: [MMUSIC] FQDN Support Final Vote Christer Holmberg
- Re: [MMUSIC] FQDN Support Final Vote Flemming Andreasen
- Re: [MMUSIC] FQDN Support Final Vote Christer Holmberg
- Re: [MMUSIC] FQDN Support Final Vote Flemming Andreasen
- Re: [MMUSIC] FQDN Support Final Vote Christer Holmberg
- Re: [MMUSIC] FQDN Support Final Vote Roman Shpount
- Re: [MMUSIC] FQDN Support Final Vote Suhas Nandakumar
- Re: [MMUSIC] FQDN Support Final Vote Roman Shpount