IETF Logo Mail Archive

Re: [pntaw] New version of draft-hutton-rtcweb-nat-firewall-considerations

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Sat, 21 September 2013 07:47 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: pntaw@ietfa.amsl.com
Delivered-To: pntaw@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52BE021F9EAD for <pntaw@ietfa.amsl.com>; Sat, 21 Sep 2013 00:47:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.489
X-Spam-Level:
X-Spam-Status: No, score=-2.489 tagged_above=-999 required=5 tests=[AWL=-0.046, BAYES_00=-2.599, SUBJECT_FUZZY_TION=0.156]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p5NKiX8dsETO for <pntaw@ietfa.amsl.com>; Sat, 21 Sep 2013 00:47:34 -0700 (PDT)
Received: from mail-wg0-x233.google.com (mail-wg0-x233.google.com [IPv6:2a00:1450:400c:c00::233]) by ietfa.amsl.com (Postfix) with ESMTP id 7F1D521F9E9F for <pntaw@ietf.org>; Sat, 21 Sep 2013 00:47:34 -0700 (PDT)
Received: by mail-wg0-f51.google.com with SMTP id c11so1310862wgh.6 for <pntaw@ietf.org>; Sat, 21 Sep 2013 00:47:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=2v7hqnhepJY51xqK/Y/ueMmBwQJ7GyEZFafGPsd7dJo=; b=zz8KMNnSB5ilbrtHurGvbXzJRUpHwKqEIN/KeSGXbqTRdJ5nT8V1St4RvREHrTE9nF J80HJwl5ENgaoVfsn/kCxMLUfRrMYpRwdooG27qZqFTaAAKQMc8Q/MuPpG5AzAsP1j2b lqBkIHejItGBAsZqK6lqIxd2g5DBh6/z1kSNYwh1eh347BlfaChihkicNPeyo+B8NCzC rCLF2NFSkIZ+HnoYU0Xgk+IVzSwVlycEgB7V4R1trUzCoDFBtgF+6Glat6nfxctWgXAb qXxBhFwFaqWVGlpcKqeHGeCepBygr0ICZk0qeqTBrklPhyKX6NUM7AOAbSfCSqowIURH B4kQ==
X-Received: by 10.194.89.233 with SMTP id br9mr8979698wjb.15.1379749653596; Sat, 21 Sep 2013 00:47:33 -0700 (PDT)
Received: from [192.168.1.2] (171.pool85-51-25.dynamic.orange.es. [85.51.25.171]) by mx.google.com with ESMTPSA id e5sm9705595wiy.2.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 21 Sep 2013 00:47:32 -0700 (PDT)
Message-ID: <523D4F17.2040202@gmail.com>
Date: Sat, 21 Sep 2013 09:47:35 +0200
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: Bernard Aboba <bernard_aboba@hotmail.com>
References: <9F33F40F6F2CD847824537F3C4E37DDF17BCF3A5@MCHP04MSX.global-ad.net>, , <523CCD06.3030902@gmail.com>, <BLU169-W136A55AC013DA147313576D93220@phx.gbl>, <523CD42E.8070102@gmail.com> <BLU169-W82036280852F26ED26283C93230@phx.gbl>
In-Reply-To: <BLU169-W82036280852F26ED26283C93230@phx.gbl>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: "pntaw@ietf.org" <pntaw@ietf.org>
Subject: Re: [pntaw] New version of draft-hutton-rtcweb-nat-firewall-considerations
X-BeenThere: pntaw@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion list for practices related to proxies, NATs, TURN, and WebRTC" <pntaw.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pntaw>, <mailto:pntaw-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pntaw>
List-Post: <mailto:pntaw@ietf.org>
List-Help: <mailto:pntaw-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pntaw>, <mailto:pntaw-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 21 Sep 2013 07:47:35 -0000

>
> "So in 100% cases that TURN over TLS works, TURN over (secure) 
> websockets works too."
>
> [BA] Agree they would both traverse that firewall equally well, but 
> TURN over (secure) websockets only works if the TURN server supports 
> it, which most won't.   This makes mandating TURN over Webosckets 
> support in the browser a hard sell.

We are already working on providing a working prototype of TURN over 
websocket that will show how easy would be to add it to both browser and 
server. In fact, on first phase, we will not change the TURN server at 
all but use a websockify proxy https://github.com/kanaka/websockify to 
the WS to TCP conversion.

Best regards
Sergio

v2.23.0 | Report a Bug | By Email