Re: [rtcweb] Proposal to break the ICE impasse

Iñaki Baz Castillo <ibc@aliax.net> Tue, 29 January 2019 17:51 UTC

Return-Path: <ibc@aliax.net>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2680130EAC for <rtcweb@ietfa.amsl.com>; Tue, 29 Jan 2019 09:51:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.043
X-Spam-Level:
X-Spam-Status: No, score=-2.043 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=aliax-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qQcrOCOzC7d1 for <rtcweb@ietfa.amsl.com>; Tue, 29 Jan 2019 09:51:01 -0800 (PST)
Received: from mail-vs1-xe2d.google.com (mail-vs1-xe2d.google.com [IPv6:2607:f8b0:4864:20::e2d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F03CE130E6E for <rtcweb@ietf.org>; Tue, 29 Jan 2019 09:51:00 -0800 (PST)
Received: by mail-vs1-xe2d.google.com with SMTP id n13so12509049vsk.4 for <rtcweb@ietf.org>; Tue, 29 Jan 2019 09:51:00 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aliax-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=HwInYInx7tTdOcd8enOnPDHPZ0G+IugjGUWvUwvgfOY=; b=VAFxqOoiz6VcOnMG/GTrg0GiNZDE+14p6LDtUFGdHJDBRcpo3opLyzY+NRrLs+RYYH S+Ht/zWed7CRxr6boVVuwHw2+nDr7z6GRyIP/nG0PIyOC0N9hPLidWXUCFN5ENkRv2F2 qH5lY9mLqvSui7YQQiRSYWRRT3Q3iDHJjlHxXEDR1Lbop/S8uFo7kxxcE0Rk9syCVZwB PxsnPyfxftha2m2U6G1XPnpDa1DjnxG8ci8TAqImYmFSiIXVCaYTfWNzIo8g9W0mknOW 8qqBj1afc82MdCj0qrbj8PD30kL55GLLXZ/bBiODq+8siAzVMk14fFsLg5ZrrjXQFYFx kpXw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=HwInYInx7tTdOcd8enOnPDHPZ0G+IugjGUWvUwvgfOY=; b=M0k8ZRnjWi0Gfhx3h7ZpxuemBxKdF2iO5YzpQ1MtCsbImUKrMjbnaUEbi2u7QMuK4k ZoDIWZsBFeKAL7NECtpS8sOo/Kat/A4AuYJpb1HHxs+PZmScfVF1hFw7qk/N6hUVodEz CnHIrQjvp2QGw04GKvHCCLTPxdjoEP0CAeFJSBIblAeByDym31o6KncyDdi8xrEr8HYY vP9decmqqclekUnC99l+OHSHlZuKT1J0/PQpCbH/t7IYIGK5MxzekLGqCMIq27+wgO9H XfSIYEjr1FSTYWEpQnnLeezq7E9LdSCSNvWmJgiHB1NgOs747URkRU/IU7vLFw9dyWTD jlKQ==
X-Gm-Message-State: AJcUukdqjVps5RSM2qoY+G78KxEH6vypI0+wVFsyjbWJjW1hD6lighRq nICTgHHo86VCPaD1ZLpeUJtjaxUzzZ3Ot1i+HW1TOQ==
X-Google-Smtp-Source: ALg8bN4JboIdqhoKnpOlaJIqTF+4TLLH8jZy/EqfN5RfGMUlJ7x1BFICYGfiZxYDQcg8nxZ2XQfToVfncU4ONvcub/Y=
X-Received: by 2002:a67:3edc:: with SMTP id a89mr10959467vsi.136.1548784259739; Tue, 29 Jan 2019 09:50:59 -0800 (PST)
MIME-Version: 1.0
References: <97ed2641-8a7e-19a9-be38-a3458ca9212e@nostrum.com> <CABcZeBP9t0SgsHAuENo99D6ffKd7Mw0Xs1vzUCOzSS=WJN5z8A@mail.gmail.com> <HE1PR07MB3161B0F1D2B5AC9DA72DDFAD93950@HE1PR07MB3161.eurprd07.prod.outlook.com> <CAOJ7v-3KHi0TUDsQvG6qq-qeNGBsqLxg+NC1c+Nxvgy0ks0d0g@mail.gmail.com> <CABcZeBNL=sWFfh=zwiuib80HPsno=GzF18gU+z3DrCZTK_PquA@mail.gmail.com> <CA+9kkMDh56CeXRGNSk_r-HrLkDNT5DnYc_FguXOdeccfq=LEMA@mail.gmail.com> <CABcZeBPboLf0bLUDTyJArxsPYSnUrULArmsZ9YshQCX+rEvexA@mail.gmail.com> <CA+9kkMCwCBHWEEADxVHT2ZbvWEi=bUBJ22icKHpA2p8Kg1fF9A@mail.gmail.com> <CALiegfnpj+Pu0Hg05iqHXCwhTefxn_Em7gTnzOXK897fzcyuwg@mail.gmail.com> <CAD5OKxvmQHT3TAt_=xCd_JKnPzXfnc=Mej-mr6KMsaKVoBkuSg@mail.gmail.com> <CALiegfm_jtv1bV3Ok6j20hkim8e6QxMYPrbbHejqoHnCHjMXpA@mail.gmail.com> <CAD5OKxsMWEE39O6hSc+UFjwTAa=z1A+XD5X2BY=Q7PEUdYE4UA@mail.gmail.com> <961E55AE-2072-4145-8BCF-62D67C6D150F@mozilla.com>
In-Reply-To: <961E55AE-2072-4145-8BCF-62D67C6D150F@mozilla.com>
From: =?UTF-8?Q?I=C3=B1aki_Baz_Castillo?= <ibc@aliax.net>
Date: Tue, 29 Jan 2019 18:50:48 +0100
Message-ID: <CALiegf=QaxTVjsQkspE2G9=EbMyGkSfuLf45tdGN0LY-mthB2g@mail.gmail.com>
To: Nils Ohlmeier <nohlmeier@mozilla.com>
Cc: Roman Shpount <roman@telurix.com>, RTCWeb IETF <rtcweb@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtcweb/LX-6kUM9ogFM3QUsZbf-AFlsASw>
Subject: Re: [rtcweb] Proposal to break the ICE impasse
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jan 2019 17:51:04 -0000

On Tue, 29 Jan 2019 at 18:46, Nils Ohlmeier <nohlmeier@mozilla.com> wrote:
>
> What I don’t quite understand here: 1-4 with the initial connection will use UDP in the protocol field. Only the subsequent re-offer from step 5 on would use TCP in the protocol field. How come that 1-4 works, but 5 does not?

The sysadmin realized about dangerous and suspicious UDP traffic so
changed the firewall rules. He also blocked ICMP (for security!!!) but
that's not a problem because static constexpr uint16_t MTU = 1200.

-- 
Iñaki Baz Castillo
<ibc@aliax.net>