Re: [sipcore] RFC4028 : Very basic question in 8.1
Paul Kyzivat <pkyzivat@alum.mit.edu> Thu, 09 July 2020 15:36 UTC
Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BB773A0CDC for <sipcore@ietfa.amsl.com>; Thu, 9 Jul 2020 08:36:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=alum.mit.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dNxzIluqfmo6 for <sipcore@ietfa.amsl.com>; Thu, 9 Jul 2020 08:36:49 -0700 (PDT)
Received: from NAM04-CO1-obe.outbound.protection.outlook.com (mail-co1nam04on0615.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe4d::615]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 687A83A0CDA for <sipcore@ietf.org>; Thu, 9 Jul 2020 08:36:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Uqn//D4pEAcGekBfQKpumQUWg3SGQsumAjf5KVQOUcd/qHJF7jrShEziwalZAGmaf18ICS4f34trzVuUmkeKpGqvlvgN8h8PhUtWxRGFwZsDIqmNGX/PEmSetJ/tncINLyM1C6yk7UPw2LoUcdUj+V93pwy++sb+4Mdn0SsGARM09zz0PeDV1sDCMXAh1nKHwBh5BXad+aE7p2hbBt+D1OGKa3NldTQ1D/MwkRaE0036qwm2IpsiDBIdITs2Yro/BPkF2nhWTkFLMKE9DTTSddJESNLKQQu7mBDV/ZMYBDNexAmaAfQY8O8nbEbz5wj7oXu1NTUl7DIor3mqbRHhTw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NVW9FCk7WpU0aLiLjme0BR0bseD680/fwtHUcslcO7k=; b=UTZlcfNNDW23kQlcacsPgMcr4gyVG/CIeMBlXL/hTjHUW4YWJRKjApqgP0vGFfmlvY8wChARE/vBVHhf/0PdlMrg9OTuCubCCwgU/PTikqNhyvOfBiPhT+pmIOxEjAy35sEdwHfbWuTUxoAx9ZXRZDukEm7blOpdilQpYQ2Ba1ZYMLIqGtmufB56Ly1MCbf4AWNL/BAqccB/L7nHR30zji+BHlLV7eVrdRYQ2GC1Pc+i5ZLDsXG14wRhXJBpupNB5GTHDg9zTsfDZh8rRqCVYwKnnQAcM6uF65pgrM/XlT/REYvsnO0qwDrC2LiQHh2/iGFXMTog86QjFcWLZ55oVg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 18.7.68.33) smtp.rcpttodomain=ietf.org smtp.mailfrom=alum.mit.edu; dmarc=bestguesspass action=none header.from=alum.mit.edu; dkim=none (message not signed); arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alum.mit.edu; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NVW9FCk7WpU0aLiLjme0BR0bseD680/fwtHUcslcO7k=; b=gDImYR3pdpTitTpOefm0Tk9rvTHkll3IijnSiLQWOimxXZPdfdupknw5WhSniLoYG8MTszSiWH2AbB0jeJsJ1CrG2ihdbsMswQ7rtU0KdshfXIKsxWoKKUps9mGv0F54UKJ4nb25PqAgx1Q5F7zShvUCNwOJ8k8z1a4vudk3o5g=
Received: from SN1PR12CA0068.namprd12.prod.outlook.com (2603:10b6:802:20::39) by BN6PR12MB1843.namprd12.prod.outlook.com (2603:10b6:404:101::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.20; Thu, 9 Jul 2020 15:36:48 +0000
Received: from SN1NAM02FT018.eop-nam02.prod.protection.outlook.com (2603:10b6:802:20:cafe::ca) by SN1PR12CA0068.outlook.office365.com (2603:10b6:802:20::39) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.21 via Frontend Transport; Thu, 9 Jul 2020 15:36:47 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 18.7.68.33) smtp.mailfrom=alum.mit.edu; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=bestguesspass action=none header.from=alum.mit.edu;
Received-SPF: Pass (protection.outlook.com: domain of alum.mit.edu designates 18.7.68.33 as permitted sender) receiver=protection.outlook.com; client-ip=18.7.68.33; helo=outgoing-alum.mit.edu;
Received: from outgoing-alum.mit.edu (18.7.68.33) by SN1NAM02FT018.mail.protection.outlook.com (10.152.72.122) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.21 via Frontend Transport; Thu, 9 Jul 2020 15:36:46 +0000
Received: from Kokiri.localdomain (c-24-62-227-142.hsd1.ma.comcast.net [24.62.227.142]) (authenticated bits=0) (User authenticated as pkyzivat@ALUM.MIT.EDU) by outgoing-alum.mit.edu (8.14.7/8.12.4) with ESMTP id 069FajpF002861 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT) for <sipcore@ietf.org>; Thu, 9 Jul 2020 11:36:45 -0400
To: sipcore@ietf.org
References: <24d093f2-284f-a068-1cf1-8fb1b9310ff0@gmail.com> <CAD5OKxu1Ua79rEg-udgD-RxZjrfTmmyZMmDGvPQXp5xc1kzn1Q@mail.gmail.com>
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
Message-ID: <0f61d2bc-6af1-8e2b-c593-0c2862b90cd3@alum.mit.edu>
Date: Thu, 09 Jul 2020 11:36:45 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
MIME-Version: 1.0
In-Reply-To: <CAD5OKxu1Ua79rEg-udgD-RxZjrfTmmyZMmDGvPQXp5xc1kzn1Q@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:18.7.68.33; CTRY:US; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:outgoing-alum.mit.edu; PTR:outgoing-alum.mit.edu; CAT:NONE; SFTY:; SFS:(346002)(39860400002)(136003)(376002)(396003)(46966005)(47076004)(186003)(6916009)(82740400003)(956004)(2616005)(36906005)(5660300002)(75432002)(336012)(83380400001)(26005)(478600001)(2906002)(53546011)(70586007)(70206006)(786003)(316002)(82310400002)(7596003)(356005)(8936002)(31696002)(86362001)(31686004)(8676002)(43740500002); DIR:OUT; SFP:1101;
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 8d85b140-71fc-4035-64df-08d8241de413
X-MS-TrafficTypeDiagnostic: BN6PR12MB1843:
X-Microsoft-Antispam-PRVS: <BN6PR12MB18435F91BF7BEC141769E2C2F9640@BN6PR12MB1843.namprd12.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:9508;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 9zrg7hOZFxOu91Eee7xPdOeT1m7FTCo5Mshlxqyv65lcutr+G7jhH2lBI/7ZyQHnea5QvHLprrcfMfDV2EXbcsDNWegs5OuYJtDmqY48F/pAWVeVNBKFdBo3SXBs4zbQdF3c1t6KRS1SGdeBgiYDBsM/WyTuCqjNm0jLaXNTmgn2GuJoDrGwMjDcwD1HnptPjbuzk68zgwxj/ZABz/b78Hx6wcrzbetZI/R21zAd+reSfpFakdn8YMlaxqlwhOGt0J/wRkTwmmnaYkMxRnfQZHfEQcvAF25cc+hxRxCtzGo1rCsB7JCbNxcUGoPWuZAMKh0HrEYKU8EVOxof1c8AX+0PqJpEThTNs+JYco/+gLMvsk5uZxoq2iiB2K+/qJPe/m8oPz8GI+zrb8ZCRE0y1wLsCax9RxAsDv1w5DI3ZDOw+0ndwfTOXRxvlRqobLmK
X-OriginatorOrg: alum.mit.edu
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 09 Jul 2020 15:36:46.9394 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 8d85b140-71fc-4035-64df-08d8241de413
X-MS-Exchange-CrossTenant-Id: 3326b102-c043-408b-a990-b89e477d582f
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=3326b102-c043-408b-a990-b89e477d582f; Ip=[18.7.68.33]; Helo=[outgoing-alum.mit.edu]
X-MS-Exchange-CrossTenant-AuthSource: SN1NAM02FT018.eop-nam02.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR12MB1843
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/1DD-YZnX6Bvzu63etqGadd83tXo>
Subject: Re: [sipcore] RFC4028 : Very basic question in 8.1
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Jul 2020 15:36:51 -0000
On 7/9/20 9:17 AM, Roman Shpount wrote: > Shinji, > > This is a negotiation where all parties (UAC, UAS and proxies on path) > must agree on the session timer value. Min-SE is the minimum allowed > value. SE is the maximum allowed value. If Proxy needs a higher SE > interval, it needs to renegotiate maximum allowed session timer value > with all the parties upstream. This is why it rejects the request with > 422 and a higher Min-SE value. What is the point of session timer? It is to use traffic on the session to verify liveness of the session and of the parties on the path. This pertains to both UAs and proxies, but their needs differ in some respects: 1) proxies can't initiate traffic; they must depend on observing traffic generated by the UAs. So they have an interest in requesting that the UAs send traffic with some minimum frequency. 2) UAs can test liveness any time they want by sending a request, without need of session timers. But if both ends do this independently then there may be more traffic than necessary, and possibly glare. ST negotiations allow them to find a mutually agreeable keep-alive interval and refresher, minimizing overhead. The negotiation process allows all the parties to express an opinion. It works by ratcheting up the minimum value and ratcheting down the maximum value to find a mutually agreeable value between. No party is allowed to increase the max or decrease the min. The purpose of Min-SE is to limit the overhead caused by ST refreshes when there otherwise would be no traffic. (Aside from this there would be no need for Min-SE.) The benefit of ST falls mostly to the proxies, while the cost is typically heavier on the UAs. So the Min-SE is primarily for the purpose of protecting the UAs from excessive demands by proxies. > BTW, there is no guarantee that session timer negotiation will succeed. > In general case it is possible that session timer requirements for all > the proxies UAC and UAS cannot be satisfied at the same time. Yes. If, at the end of the negotiation, Min-SE and SE are higher than one of the UAs desires, it is still free to send extra traffic to test liveness more often than the ST refreshes do. If the Min-SE and SE are higher than one of the proxies desires, then it is pretty much out of luck. In some sense this is futile for it to complain because the timer refreshes are only part of the traffic. The UAs may send other traffic at a rate the proxy doesn't like, and there is little it can do about that. It can try the 422 route, but only if it would prefer no session over a session with more traffic. Thanks, Paul
- [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Roman Shpount
- Re: [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Roman Shpount
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Paul Kyzivat
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Paul Kyzivat
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Roman Shpount
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Paul Kyzivat
- Re: [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Paul Kyzivat
- Re: [sipcore] RFC4028 : Very basic question in 8.1 OKUMURA Shinji
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Paul Kyzivat
- Re: [sipcore] RFC4028 : Very basic question in 8.1 Roman Shpount