Re: [pntaw] TURN over websockets or just TURN.
"Hutton, Andrew" <andrew.hutton@siemens-enterprise.com> Wed, 25 September 2013 11:00 UTC
Return-Path: <andrew.hutton@siemens-enterprise.com>
X-Original-To: pntaw@ietfa.amsl.com
Delivered-To: pntaw@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D23B121F9FF0 for <pntaw@ietfa.amsl.com>; Wed, 25 Sep 2013 04:00:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.564
X-Spam-Level:
X-Spam-Status: No, score=-2.564 tagged_above=-999 required=5 tests=[AWL=0.035, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sw8ZD7MaBuYt for <pntaw@ietfa.amsl.com>; Wed, 25 Sep 2013 04:00:36 -0700 (PDT)
Received: from senmx12-mx.siemens-enterprise.com (senmx12-mx.siemens-enterprise.com [62.134.46.10]) by ietfa.amsl.com (Postfix) with ESMTP id DB62121F9FE7 for <pntaw@ietf.org>; Wed, 25 Sep 2013 04:00:32 -0700 (PDT)
Received: from MCHP02HTC.global-ad.net (unknown [172.29.42.235]) by senmx12-mx.siemens-enterprise.com (Server) with ESMTP id DFDDA23F0653; Wed, 25 Sep 2013 13:00:29 +0200 (CEST)
Received: from MCHP04MSX.global-ad.net ([169.254.1.31]) by MCHP02HTC.global-ad.net ([172.29.42.235]) with mapi id 14.03.0123.003; Wed, 25 Sep 2013 13:00:10 +0200
From: "Hutton, Andrew" <andrew.hutton@siemens-enterprise.com>
To: "Markus.Isomaki@nokia.com" <Markus.Isomaki@nokia.com>
Thread-Topic: [pntaw] TURN over websockets or just TURN.
Thread-Index: Ac651aqKgci54WbeToGdcCETWYgQigAAvTwAAAANf1AAAWRD2Q==
Date: Wed, 25 Sep 2013 11:00:08 +0000
Message-ID: <86E1F066-5AF5-47B2-B6E5-10869E09A651@siemens-enterprise.com>
References: <9F33F40F6F2CD847824537F3C4E37DDF17BD44F6@MCHP04MSX.global-ad.net> <5242B888.6010000@gmail.com>, <E44893DD4E290745BB608EB23FDDB7620A0CB1CD@008-AM1MPN1-042.mgdnok.nokia.com>
In-Reply-To: <E44893DD4E290745BB608EB23FDDB7620A0CB1CD@008-AM1MPN1-042.mgdnok.nokia.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "pntaw@ietf.org" <pntaw@ietf.org>, "sergio.garcia.murillo@gmail.com" <sergio.garcia.murillo@gmail.com>
Subject: Re: [pntaw] TURN over websockets or just TURN.
X-BeenThere: pntaw@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion list for practices related to proxies, NATs, TURN, and WebRTC" <pntaw.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pntaw>, <mailto:pntaw-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pntaw>
List-Post: <mailto:pntaw@ietf.org>
List-Help: <mailto:pntaw-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pntaw>, <mailto:pntaw-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Sep 2013 11:00:41 -0000
At least according to RFC 6455 the use of HTTP CONNECT for websockets is independent of whether the connection is secure or not. Andy On 25 Sep 2013, at 11:43, "Markus.Isomaki@nokia.com" <Markus.Isomaki@nokia.com> wrote: > Hi Sergio, > > Sergio Garcia Murillo wrote: >> >> El 25/09/2013 11:59, Hutton, Andrew escribió: >>> In the presence of an explicit proxy the websockets approach is to use >>> HTTP CONNECT to traverse the proxy (RFC 6455) so the question is >>> whether there are any advantages or disadvantages to wrapping TURN >>> with the websockets layer as this cannot be about the use of HTTP >>> CONNECT which is used by in both solutions >> From my understanding if you use secure websockets it will use HTTP >> CONNECT as any other HTTPS connection, but if non-secure websockets are >> used over port 80, HTTP CONNECT won't be done. Before anyone jumps in >> regarding using a non-secure websockets, let's remind that this would be as >> secure as TURN over TCP and that data will be already secured by DTLS. > > I believe this is the really crucial question. My recollection from test results posted to IETF HYBI WG mailing list is that these unsecure websockets connections actually fail quite regularly with proxies rendering them almost unusable. This is not about proxies deliberately blocking websockets, but deployed proxies that are totally unaware of websockets but expect only HTTP. > > Anyone has up-to-date data about this? > > Markus > _______________________________________________ > pntaw mailing list > pntaw@ietf.org > https://www.ietf.org/mailman/listinfo/pntaw
- Re: [pntaw] TURN over websockets or just TURN. Sergio Garcia Murillo
- [pntaw] TURN over websockets or just TURN. Hutton, Andrew
- Re: [pntaw] TURN over websockets or just TURN. Markus.Isomaki
- Re: [pntaw] TURN over websockets or just TURN. Markus.Isomaki
- Re: [pntaw] TURN over websockets or just TURN. Hutton, Andrew
- Re: [pntaw] TURN over websockets or just TURN. Sergio Garcia Murillo
- Re: [pntaw] TURN over websockets or just TURN. Oleg Moskalenko
- Re: [pntaw] TURN over websockets or just TURN. Hutton, Andrew
- Re: [pntaw] TURN over websockets or just TURN. Hutton, Andrew
- Re: [pntaw] TURN over websockets or just TURN. Oleg Moskalenko
- Re: [pntaw] TURN over websockets or just TURN. Hutton, Andrew
- Re: [pntaw] TURN over websockets or just TURN. Oleg Moskalenko
- Re: [pntaw] TURN over websockets or just TURN. Sergio Garcia Murillo
- Re: [pntaw] TURN over websockets or just TURN. Tirumaleswar Reddy (tireddy)
- Re: [pntaw] TURN over websockets or just TURN. Oleg Moskalenko
- Re: [pntaw] TURN over websockets or just TURN. Tirumaleswar Reddy (tireddy)