Re: [rtcweb] NAT/Firewall considerations (RE: I-D Action: draft-ietf-rtcweb-transports-00.txt)
"Avasarala, Ranjit (NSN - IN/Bangalore)" <ranjit.avasarala@nsn.com> Tue, 27 August 2013 16:04 UTC
Return-Path: <ranjit.avasarala@nsn.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 33F3211E82DF for <rtcweb@ietfa.amsl.com>; Tue, 27 Aug 2013 09:04:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.598
X-Spam-Level:
X-Spam-Status: No, score=-6.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AuQgQQnLKY5y for <rtcweb@ietfa.amsl.com>; Tue, 27 Aug 2013 09:04:35 -0700 (PDT)
Received: from demumfd001.nsn-inter.net (demumfd001.nsn-inter.net [93.183.12.32]) by ietfa.amsl.com (Postfix) with ESMTP id E03EA11E81A3 for <rtcweb@ietf.org>; Tue, 27 Aug 2013 09:04:34 -0700 (PDT)
Received: from demuprx016.emea.nsn-intra.net ([10.150.129.55]) by demumfd001.nsn-inter.net (8.12.11.20060308/8.12.11) with ESMTP id r7RG4Vbj032092 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 27 Aug 2013 18:04:31 +0200
Received: from SGSIHTC002.nsn-intra.net ([10.159.225.19]) by demuprx016.emea.nsn-intra.net (8.12.11.20060308/8.12.11) with ESMTP id r7RG2xKT006980 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 27 Aug 2013 18:04:29 +0200
Received: from SGSIMBX001.nsn-intra.net ([169.254.1.185]) by SGSIHTC002.nsn-intra.net ([10.159.225.19]) with mapi id 14.03.0123.003; Wed, 28 Aug 2013 00:03:39 +0800
From: "Avasarala, Ranjit (NSN - IN/Bangalore)" <ranjit.avasarala@nsn.com>
To: "ext Markus.Isomaki@nokia.com" <Markus.Isomaki@nokia.com>, "bernard_aboba@hotmail.com" <bernard_aboba@hotmail.com>, "andrew.hutton@siemens-enterprise.com" <andrew.hutton@siemens-enterprise.com>, "rtcweb@ietf.org" <rtcweb@ietf.org>, "harald@alvestrand.no" <harald@alvestrand.no>
Thread-Topic: [rtcweb] NAT/Firewall considerations (RE: I-D Action: draft-ietf-rtcweb-transports-00.txt)
Thread-Index: Ac6jIXGoaQBlwJOrRoChsqyg1FpKEwAHYxAT
Date: Tue, 27 Aug 2013 16:03:38 +0000
Message-ID: <E54AEADE791D51469F45E7FBB96439150B1139@SGSIMBX001.nsn-intra.net>
References: <E44893DD4E290745BB608EB23FDDB7620A0906A4@008-AM1MPN1-041.mgdnok.nokia.com>
In-Reply-To: <E44893DD4E290745BB608EB23FDDB7620A0906A4@008-AM1MPN1-041.mgdnok.nokia.com>
Accept-Language: en-US
Content-Language: en-IN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: multipart/alternative; boundary="_000_E54AEADE791D51469F45E7FBB96439150B1139SGSIMBX001nsnintr_"
MIME-Version: 1.0
X-purgate-type: clean
X-purgate-Ad: Categorized by eleven eXpurgate (R) http://www.eleven.de
X-purgate: clean
X-purgate: This mail is considered clean (visit http://www.eleven.de for further information)
X-purgate-size: 13799
X-purgate-ID: 151667::1377619471-00003561-C6E905C5/0-0/0-0
Subject: Re: [rtcweb] NAT/Firewall considerations (RE: I-D Action: draft-ietf-rtcweb-transports-00.txt)
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Aug 2013 16:04:40 -0000
I too agree that this functionality is required for enterprises where devices could be behind NAT. But in IMS we may not need as UEs are globally reachable. Regards Ranjit Sent from Nokia Lumia ________________________________ From: ext Markus.Isomaki@nokia.com<mailto:Markus.Isomaki@nokia.com> Sent: 27-08-2013 18:23 To: bernard_aboba@hotmail.com<mailto:bernard_aboba@hotmail.com>; andrew.hutton@siemens-enterprise.com<mailto:andrew.hutton@siemens-enterprise.com>; rtcweb@ietf.org<mailto:rtcweb@ietf.org>; harald@alvestrand.no<mailto:harald@alvestrand.no> Subject: [rtcweb] NAT/Firewall considerations (RE: I-D Action: draft-ietf-rtcweb-transports-00.txt) Hi, I would support the adoption of the NAT and Firewall considerations (http://tools.ietf.org/html/draft-hutton-rtcweb-nat-firewall-considerations-01) as a WG document. Or to be more precise, I very much agree with the requirements summarized in Section 5. Especially this one seems important to me: o connect to a TURN server via a HTTP proxy using the HTTP connect method, If we want WebRTC to work from many corporate networks I’m aware of, it would not be possible without this as a fallback capability. Markus From: rtcweb-bounces@ietf.org [mailto:rtcweb-bounces@ietf.org] On Behalf Of ext Bernard Aboba Sent: 21 August, 2013 00:44 To: Hutton, Andrew; rtcweb@ietf.org; Harald Alvestrand Subject: Re: [rtcweb] I-D Action: draft-ietf-rtcweb-transports-00.txt The NAT/Firewall considerations document does go into detail on the various traversal scenarios, which helps inform the discussion of what should or should not be supported in terms of transport. Section 5 summarizes the recommendations as follows: 5<http://tools.ietf.org/html/draft-hutton-rtcweb-nat-firewall-considerations-01#section-5>. Requirements for RTCWEB-enabled browsers For the purpose of relaying RTCWEB media streams or data channels a browser needs to be able to o connect to a TURN server via UDP, TCP and TLS, o connect to a TURN server via a HTTP proxy using the HTTP connect method, o connect to a TURN server via the HTTP(s) ports 80/443 instead of the default STUN ports 3478/5349, o upgrade the HTTP proxy-relayed connection to the TURN server to use TLS, o use the same proxy selection procedure for TURN as currently done for HTTP, o switch the usage of the HTTP proxy-relayed connection with the TURN server from HTTP to STUN/TURN, o use a preconfigured or standardized port range for UDP-based media streams or data channels, o learn from the proxy configuration script about the presence of a local TURN server and use it for sending UDP traffic to the internet, o support ICE-TCP for TCP-based direct media connection to the RTCWEB peer. > From: andrew.hutton@siemens-enterprise.com<mailto:andrew.hutton@siemens-enterprise.com> > To: rtcweb@ietf.org<mailto:rtcweb@ietf.org>; harald@alvestrand.no<mailto:harald@alvestrand.no> > Date: Tue, 20 Aug 2013 16:31:28 +0000 > Subject: Re: [rtcweb] I-D Action: draft-ietf-rtcweb-transports-00.txt > > Section 2.2 "Middle Box Related Functions" should also I assume cover the case of using a HTTP Proxy or an enterprise TURN server and reference http://tools.ietf.org/html/draft-hutton-rtcweb-nat-firewall-considerations-01 assuming we can get this adopted. > > Regards > Andy
- [rtcweb] NAT/Firewall considerations (RE: I-D Act… Markus.Isomaki
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Emil Ivov
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Victor Pascual
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Mary Barnes
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Sergio Garcia Murillo
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Salvatore Loreto
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Alan Johnston
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Avasarala, Ranjit (NSN - IN/Bangalore)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… cb.list6
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Cullen Jennings (fluffy)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Mary Barnes
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Cullen Jennings (fluffy)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Mary Barnes
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Martin Thomson
- Re: [rtcweb] NAT/Firewall considerations and draf… Cullen Jennings (fluffy)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Tirumaleswar Reddy (tireddy)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Hutton, Andrew
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Cullen Jennings (fluffy)
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Hutton, Andrew
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Mary Barnes
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Hutton, Andrew
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Mary Barnes
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Bernard Aboba
- Re: [rtcweb] NAT/Firewall considerations (RE: I-D… Magnus Westerlund