IETF Logo Mail Archive

Re: [MMUSIC] WGLC for draft-ietf-mmusic-rtsp-nat-evaluation-05

Magnus Westerlund <magnus.westerlund@ericsson.com> Fri, 16 November 2012 10:19 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA87C21F8C31 for <mmusic@ietfa.amsl.com>; Fri, 16 Nov 2012 02:19:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.163
X-Spam-Level:
X-Spam-Status: No, score=-106.163 tagged_above=-999 required=5 tests=[AWL=0.086, BAYES_00=-2.599, HELO_EQ_SE=0.35, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QuwyAM2DL6NP for <mmusic@ietfa.amsl.com>; Fri, 16 Nov 2012 02:19:55 -0800 (PST)
Received: from mailgw7.ericsson.se (mailgw7.ericsson.se [193.180.251.48]) by ietfa.amsl.com (Postfix) with ESMTP id A455921F8B89 for <mmusic@ietf.org>; Fri, 16 Nov 2012 02:19:54 -0800 (PST)
X-AuditID: c1b4fb30-b7f936d0000018b3-45-50a613496f97
Received: from esessmw0237.eemea.ericsson.se (Unknown_Domain [153.88.253.124]) by mailgw7.ericsson.se (Symantec Mail Security) with SMTP id A6.05.06323.94316A05; Fri, 16 Nov 2012 11:19:53 +0100 (CET)
Received: from [127.0.0.1] (153.88.115.8) by esessmw0237.eemea.ericsson.se (153.88.115.91) with Microsoft SMTP Server id 8.3.279.1; Fri, 16 Nov 2012 11:19:52 +0100
Message-ID: <50A61348.7080600@ericsson.com>
Date: Fri, 16 Nov 2012 11:19:52 +0100
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:16.0) Gecko/20121026 Thunderbird/16.0.2
MIME-Version: 1.0
To: Flemming Andreasen <fandreas@cisco.com>
References: <505FD907.9070800@cisco.com> <50771F8D.8040004@cisco.com> <50A50563.2000802@ericsson.com> <50A51150.7070409@cisco.com>
In-Reply-To: <50A51150.7070409@cisco.com>
X-Enigmail-Version: 1.4.5
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprJLMWRmVeSWpSXmKPExsUyM+Jvja6n8LIAgx2TRC3u9r5gsnh/Qddi 6vLHLA7MHlN+b2T1WLLkJ5PHl8uf2QKYo7hsUlJzMstSi/TtErgyFq1ewlywS6Xi0cxe1gbG FbJdjJwcEgImEneOPWeHsMUkLtxbz9bFyMUhJHCSUeLkmZ/MEM5yRondzadYQap4BbQlpn3Y DmazCKhKzDl6jQXEZhOwkLj5o5ENxBYVCJbYc2wtI0S9oMTJmU+Aajg4RIB6py6wAAkzC4RK 3Ht7AaxEWMBdon/dVjBbSKCJUeLd7AoQm1NAU6L9/SFmiOMkJd6+f8UM0asnMeVqCyOELS/R vHU2M0SvtkRDUwfrBEahWUg2z0LSMgtJywJG5lWM7LmJmTnp5eabGIHBe3DLb4MdjJvuix1i lOZgURLn1VPd7y8kkJ5YkpqdmlqQWhRfVJqTWnyIkYmDU6qBcVKEYFHH5ZvbH05K42EMyt67 NOKmjn7Ft5b4CU+Wv45LfGv37KpK/PVw83dO24VZv4oJBx8U26heJ/b295YWByerAIWKc0nM sQv2LtaTYEplqXvewlr0TtSuQ/Ol5uSpMfeFpt5MEt7+b9G94ual/U2SB7g4smp07GbOiG2e 6mp+k2vHrxecSizFGYmGWsxFxYkALhsCtCwCAAA=
Cc: mmusic <mmusic@ietf.org>, draft-ietf-mmusic-rtsp-nat-evaluation@tools.ietf.org
Subject: Re: [MMUSIC] WGLC for draft-ietf-mmusic-rtsp-nat-evaluation-05
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Nov 2012 10:19:56 -0000

On 2012-11-15 16:59, Flemming Andreasen wrote:
> 
> On 11/15/12 10:08 AM, Magnus Westerlund wrote:
>> Hi Flemming,
>>
>> Thanks for the comments.
>>
>> On 2012-10-11 21:35, Flemming Andreasen wrote:

>>> - STUN based on either RFC 3489 or RFC 5389 (or both). The draft
>>> discusses use of STUN as a NAT traversal mechanism (with some RTSP
>>> operational "extensions"), and in so doing it references both RFC 3489
>>> (which is obsolete) and RFC 5389 (the replacement). Furthermore, in
>>> several places, it bases and describes operation on now defunct
>>> (obsolete) RFC 3489 logic and messages instead of RFC 5389. This either
>>> needs to be rectified, or we should have a very good explanation in the
>>> document as to why we are using RFC 3489 (and then be clear which parts
>>> are based on RFC 3489 and which are based on RFC 5389).
>> I intended to go with an background explanation. This document was
>> evaluating RTSP NAT proposals at a time and in a context which is
>> significantly before RFC 5389. Yes, the limits to the classification
>> techniques exist and should be correctly described. But the fact that
>> they was considered can not be undone in a document intended to document
>> the considerations done at that time of picking ICE as a solution. Which
>> is now 7+ year into history.

> Perhaps this is a more general question since we have at least other
> document in the WG with a similar issue:
> 
> - For documents that have been underway for a long time, and the
> technology/references they describe has since evolved, should we base
> this on the original technology and knowledge at the time or should it
> reflect the state of affairs at time of publication ?
> 
> I tend to think it should be the latter, although I don't see anything
> with also including references to older technology, as long as the
> limitations are noted, the new technology is called out, and we don't
> make any normative recommendations around use of the old technology
> unless there is a very good reason to do so.

I would tend to agree with you. At the same time I am feeling the
authors pain with having to make substantial changes to the document
which likely was correct, but which requires more work due to the slow
publication of the document. And in retrospect we probably should have
published this document a long time ago. It isn't really dependent on
the technical specifications.

> 
> In the specific case, is there any particular reason (apart from this
> obviously being more/new work again) why we wouldn't reference RFC 5389
> at this point and possibly note the limitations of the RFC 3489 approach
> as well (for background) ?

Not for the functionality that is present in RFC 5389 I don't see any
issues. But for this document, I will clearly be required to reference both.


>>>
>>> Other significant comments
>>>
>>> - The draft intends to investigate and outline different RTSP NAT
>>> traversal proposals with the goal of picking one for further detailed
>>> specification (which can be found in the draft-ietf-mmusic-rtsp-nat
>>> spec). There is a mixture of RFC 2119 language and more informal
>>> language in several of these descriptions. Given that these are
>>> high-level descriptions and have not been specified in detail, I do not
>>> think we should give any other impression and hence I think RFC 2119
>>> language should be avoided.
>> Fully agreed. There should be no RFC 2119 language in this doc.
>>
>>> - The draft suggests that the RTSP server needs to enforce that
>>> signaling and media come from the same IP-address as a security remedy
>>> in several places, however this may not work with larger scale NATs
>>> (e.g. carrier-grade NATs) where the NAT may be using more than one
>>> external IP-address.
>> It is more than a suggestion. It is an fact that servers implements this
>> protection. If a CGN fails to give a host the same IP address then
>> unfortunately that client will not get any content. I will claim it is
>> the CGN that is more broken than the security mechanism.
>>
> Ok - I think it's worth calling out explicitly.

Sure.

Cheers

Magnus Westerlund

----------------------------------------------------------------------
Multimedia Technologies, Ericsson Research EAB/TVM
----------------------------------------------------------------------
Ericsson AB                | Phone  +46 10 7148287
Färögatan 6                | Mobile +46 73 0949079
SE-164 80 Stockholm, Sweden| mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------

v2.40.3 | Report a Bug | By Email | System Status