IETF Logo Mail Archive

RE: [SAFE] FW: [OPS-AREA] FW: [tsv-area] BOF request underconsideration: SAFE

"Dan Wing" <dwing@cisco.com> Thu, 11 October 2007 16:45 UTC

Return-path: <safe-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ig19v-0003tU-9y; Thu, 11 Oct 2007 12:45:15 -0400
Received: from safe by megatron.ietf.org with local (Exim 4.43) id 1Ig19t-0003tC-Ue for safe-confirm+ok@megatron.ietf.org; Thu, 11 Oct 2007 12:45:13 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Ig19t-0003sd-6b; Thu, 11 Oct 2007 12:45:13 -0400
Received: from sj-iport-1-in.cisco.com ([171.71.176.70] helo=sj-iport-1.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Ig19r-0002H7-Vr; Thu, 11 Oct 2007 12:45:13 -0400
X-IronPort-AV: E=Sophos;i="4.21,260,1188802800"; d="scan'208";a="22753639"
Received: from sj-dkim-3.cisco.com ([171.71.179.195]) by sj-iport-1.cisco.com with ESMTP; 11 Oct 2007 09:45:11 -0700
Received: from sj-core-5.cisco.com (sj-core-5.cisco.com [171.71.177.238]) by sj-dkim-3.cisco.com (8.12.11/8.12.11) with ESMTP id l9BGjBTn025706; Thu, 11 Oct 2007 09:45:11 -0700
Received: from dwingwxp01 ([10.32.240.195]) by sj-core-5.cisco.com (8.12.10/8.12.6) with ESMTP id l9BGjAZo012650; Thu, 11 Oct 2007 16:45:10 GMT
From: Dan Wing <dwing@cisco.com>
To: pekkas@netcore.fi
References: <470E262B.1080505@ericsson.com>
Subject: RE: [SAFE] FW: [OPS-AREA] FW: [tsv-area] BOF request underconsideration: SAFE
Date: Thu, 11 Oct 2007 09:45:10 -0700
Message-ID: <024901c80c26$16fd9ff0$c3f0200a@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <470E262B.1080505@ericsson.com>
X-Mimeole: Produced By Microsoft MimeOLE V6.00.2900.3138
Thread-Index: AcgMC1y7oKPEPD1MQzOxYj1HsGSnpQAGinFQ
DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2719; t=1192121111; x=1192985111; c=relaxed/simple; s=sjdkim3002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@cisco.com; z=From:=20=22Dan=20Wing=22=20<dwing@cisco.com> |Subject:=20RE=3A=20[SAFE]=20FW=3A=20[OPS-AREA]=20FW=3A=20[tsv-area]=20BO F=20request=20underconsideration=3A=20SAFE |Sender:=20; bh=fN91Xlu01F9jgzX1uvyvnPE1QyTibggKJUQFFSN3+ak=; b=j9bNTWfeDOavy4uLzE49RUhidlOWZVH+zt4WPP9UfOt3bGaTp9gI3AuMaqyPdlEYRuO2wRHb 1Y1LLCc/uXzDOFqD7DlVHx4rTrvgHYEgKrUHxxxJtuG2auH1uYb2Zvs5;
Authentication-Results: sj-dkim-3; header.From=dwing@cisco.com; dkim=pass (s ig from cisco.com/sjdkim3002 verified; );
X-Spam-Score: -4.0 (----)
X-Scan-Signature: d8ae4fd88fcaf47c1a71c804d04f413d
Cc: safe@ietf.org, ops-area@ietf.org
X-BeenThere: safe@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Self-Address Fixing Evolution <safe.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/safe>, <mailto:safe-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/safe>
List-Post: <mailto:safe@ietf.org>
List-Help: <mailto:safe-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/safe>, <mailto:safe-request@ietf.org?subject=subscribe>
Errors-To: safe-bounces@ietf.org

Pekka,

The SAFE BoF isn't about comparing Teredo to STUN/ICE.

Rather, it is about querying and controlling binding lifetimes of 
NATs in order to reduce the frequency of keepalive messages across 
those NATs.  This would benefit any UDP-based protocol that 
traverses NATs and, today, needs to send keepalives every 20-30 
seconds; such a protocol could reduce its keepalive traffic 
substantially.  Teredo and IPsec-over-UDP would benefit from 
such a reduction in keepalive traffic.

-d


> -----Original Message-----
> From: Magnus Westerlund [mailto:magnus.westerlund@ericsson.com] 
> Sent: Thursday, October 11, 2007 6:34 AM
> To: safe@ietf.org
> Subject: [SAFE] FW: [OPS-AREA] FW: [tsv-area] BOF request 
> underconsideration: SAFE
> 
> Hi,
> 
> This was sent to the V6OPS list by Pekka Savola. I forward it to the
> SAFE list with his permission for commenting.
> 
> Magnus Westerlund
> 
> 
> -----Original Message-----
> From: Pekka Savola [mailto:pekkas@netcore.fi]
> Sent: Monday, October 08, 2007 7:07 PM
> To: Romascanu, Dan (Dan)
> Cc: ops-area@ietf.org
> Subject: Re: [OPS-AREA] FW: [tsv-area] BOF request under 
> consideration:
> SAFE
> 
> On Mon, 8 Oct 2007, Romascanu, Dan (Dan) wrote:
> > ICE and its companion protocol STUN have been successfully 
> deployed on
> 
> > the Internet for NAT traversal.  ICE and STUN have several 
> > characteristics which contribute to their success:
> >
> >  1. incremental deployment.  ICE and STUN are functional without any
> >     modifications to existing NATs.
> >  2. nested NATs.  ICE and STUN work when there are multiple NATs
> >     between a host and the Internet.
> >  3. topology unaware.  ICE and STUN are not configured with
> >     information about NATs, firewalls, or their locations -- only
> >     with the IP address of a server on the Internet.
> >  4. simple security model.  If a host behind a NAT is 
> allowed to send
> >     a packet across the NAT, it is allowed to receive a response.
> >  5. works on routed networks, which allows operation in both
> >     enterprise networks and home networks.
> 
> Teredo also fulfills these characteristics (and has none of the
> drawbacks listed later).
> 
> I'm confident that the BOF proposers will be able to invent new
> drawbacks to exclude Teredo from consideration, though.
> 
> -- 
> Pekka Savola                 "You each name yourselves king, yet the
> Netcore Oy                    kingdom bleeds."
> Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
> 
> 
> _______________________________________________
> SAFE mailing list
> SAFE@ietf.org
> https://www1.ietf.org/mailman/listinfo/safe


_______________________________________________
SAFE mailing list
SAFE@ietf.org
https://www1.ietf.org/mailman/listinfo/safe

v2.23.0 | Report a Bug | By Email