IETF Logo Mail Archive

Re: [rtcweb] Retry: DTLS carrying RTP/SAVPF over ICE: To UDP or not to UDP?

"Karl Stahl" <karl.stahl@intertex.se> Thu, 12 June 2014 09:58 UTC

Return-Path: <karl.stahl@intertex.se>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B0C8F1B2822 for <rtcweb@ietfa.amsl.com>; Thu, 12 Jun 2014 02:58:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.3
X-Spam-Level:
X-Spam-Status: No, score=-1.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, MIME_8BIT_HEADER=0.3, MSGID_MULTIPLE_AT=1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c6oMZLyo9_Jm for <rtcweb@ietfa.amsl.com>; Thu, 12 Jun 2014 02:58:22 -0700 (PDT)
Received: from smtp.it-norr.com (smtp.it-norr.com [80.244.64.161]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4819A1B27FD for <rtcweb@ietf.org>; Thu, 12 Jun 2014 02:58:20 -0700 (PDT)
Received: from ([90.229.134.75]) by smtp.it-norr.com (Telecom3 SMTP service) with ASMTP id 201406121158166296; Thu, 12 Jun 2014 11:58:16 +0200
From: Karl Stahl <karl.stahl@intertex.se>
To: 'Harald Alvestrand' <harald@alvestrand.no>, "'Makaraju, Maridi Raju (Raju)'" <Raju.Makaraju@alcatel-lucent.com>, 'Sergio Garcia Murillo' <sergio.garcia.murillo@gmail.com>, 'Javier Cerviño' <jcague@gmail.com>
References: <CAOJ7v-2FTAKGd2ZUNt9PZBW9pFu7c9v7Gx8Z8vFOQo4K3dyr5Q@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D35B4E7@ESESSMB209.ericsson.se> <CALiegfncVjR-cQV=coLdmO6OODgbuP-pZ2fxopcWfgGZm+jHyQ@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D35B859@ESESSMB209.ericsson.se> <CALiegfn7WuyA8qbKWGs4JrNutqF9teXiEN8eqd0UJk5vRrX4TQ@mail.gmail.com> <539786C7.8090806@gmail.com> <E1FE4C082A89A246A11D7F32A95A17828E406A88@US70UWXCHMBA02.zam.alcatel-lucent.com> <CAG=SL7mGHuP0KBuvPGQ8bG0+CxHB7WjemCxZ5WxCXB8XgpOhCQ@mail.gmail.com> <E1FE4C082A89A246A11D7F32A95A17828E407D35@US70UWXCHMBA02.zam.alcatel-lucent.com> <53984062.1090202@gmail.com> <E1FE4C082A89A246A11D7F32A95A17828E407F64@US70UWXCHMBA02.zam.alcatel-lucent.com> <53986129.4050209@gmail.com> <E1FE4C082A89A246A11D7F32A95A17828E40858D@US70UWXCHMBA02.zam.alcatel-lucent.com> <53987FC3.7060408@gmail.com> <6025bc75-db01-45d4-ac4a-50a39740f15a@email.android.com> <E1FE4C082A89A246A11D7F32A95A17828E408FC8@US70UWXCHMBA02.zam.alcatel-lucent.com> <539929C1.3070 205@alvestrand.no>
In-Reply-To: <539929C1.3070205@alvestrand.no>
Date: Thu, 12 Jun 2014 11:58:15 +0200
Message-ID: <017301cf8624$d4a68060$7df38120$@stahl>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Ac+F9TbOiJ01z9x+QjmQ/8tXYG8SnAAHiT/Q
Content-Language: sv
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/2hOrbfrIKTgE19fTAQzm0tyhiCA
Cc: rtcweb@ietf.org
Subject: Re: [rtcweb] Retry: DTLS carrying RTP/SAVPF over ICE: To UDP or not to UDP?
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Jun 2014 09:58:24 -0000

>>     F18     The browser must be able to send streams and
>>             data to a peer in the presence of NATs and
>>             Firewalls that block UDP traffic.

>Yes. Using TURN servers is the way in which it is possible to fulfil this
requirement.

Further in draft-ietf-rtcweb-use-cases-and-requirements-14: 
"the straddling TURN server ... It must be
   possible to configure the browsers used in the enterprise with
   network specific STUN and TURN servers.  This should be possible to
   achieve by auto-configuration methods."
F20     The browser must support the use of STUN and TURN
           servers that are supplied by entities other than
           the web application (i.e. the network provider).

This is a TURN server with one interface on the Enterprise LAN where the
browser 
simple shall place the WebRTC media. (The other interface should be public.)

The way for the browser to autodiscover such network provided (from the
enterprise and ISP) TURN server is being worked in
draft-patil-tram-turn-serv-disc-01.txt.

This resolves any firewall restriction not allowing WebRTC media (by
paralleling the firewall with the TURN server), and also allows the
enterprise or ISP to point out a better path for the WebRTC media (instead
of through the often data crowded firewall default gateway).
(This will also be needed with IPv6.)

/Karl

-----Ursprungligt meddelande-----
Från: rtcweb [mailto:rtcweb-bounces@ietf.org] För Harald Alvestrand
Skickat: den 12 juni 2014 06:17
Till: Makaraju, Maridi Raju (Raju); Sergio Garcia Murillo; Javier Cerviño
Kopia: rtcweb@ietf.org
Ämne: Re: [rtcweb] Retry: DTLS carrying RTP/SAVPF over ICE: To UDP or not to
UDP?

On 06/11/2014 08:38 PM, Makaraju, Maridi Raju (Raju) wrote:
>> The MUST was a consensus call in London. See the minutes for numbers. I
was one of >the ones who were surprised at the strength of the consensus.
> [Raju] I thought one of the implicit (may be explicit in
draft-ietf-rtcweb-use-cases-and-requirements-14) requirement for WebRTC is
"implementations should work right out of the box without extra boxes (e.g.
TURN) in between under UDP restrictive firewalls".
Unfortunately, nobody's found a way to make that true even for all common
NATs/firewalls that want to permit the communication.

TURN servers are the least obnoxious way to make sure apps can work in the
presence of symmetric NATs.
We could wish that this wasn't so, but we could also wish that NATs would go
away and everyone would run IPv6; neither is likely to happen this year.

Of course, in the presence of firewalls where the admin does *not* want to
permit the communication, we neither can nor should make communication work.


> Then I see the following requirement in
draft-ietf-rtcweb-use-cases-and-requirements-14. It did not mention use of
TURN in the text.
>
>     F18     The browser must be able to send streams and
>             data to a peer in the presence of NATs and
>             Firewalls that block UDP traffic.

Yes. Using TURN servers is the way in which it is possible to fulfil this
requirement.

>
> BR
> Raju
>

_______________________________________________
rtcweb mailing list
rtcweb@ietf.org
https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email