Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization
Joe Touch <touch@ISI.EDU> Thu, 26 July 2007 18:58 UTC
Return-path: <tcpm-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IE8Xd-0005jR-Kp; Thu, 26 Jul 2007 14:58:29 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IE8XZ-0005iX-71; Thu, 26 Jul 2007 14:58:25 -0400
Received: from vapor.isi.edu ([128.9.64.64]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1IE8XY-0005GP-Kp; Thu, 26 Jul 2007 14:58:25 -0400
Received: from [130.129.37.253] (dhcp-25fd.ietf69.org [130.129.37.253]) by vapor.isi.edu (8.13.8/8.13.8) with ESMTP id l6QIw7rU003696; Thu, 26 Jul 2007 11:58:07 -0700 (PDT)
Message-ID: <46A8EEB8.2000304@isi.edu>
Date: Thu, 26 Jul 2007 11:58:00 -0700
From: Joe Touch <touch@ISI.EDU>
User-Agent: Thunderbird 2.0.0.5 (Windows/20070716)
MIME-Version: 1.0
To: Murari Sridharan <muraris@microsoft.com>
Subject: Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-tsvwg-port-randomization
References: <200702111621.l1BGL6mw029875@venus.xmundo.net> <0E46EBE9-1C13-44B6-9C04-476D418F5A6D@nokia.com> <A6CE6259-646E-4C35-9DA3-8911A8CB2B54@nokia.com> <FCA794787FDE0D4DBE9FFA11053ECEB60C26A1618E@NA-EXMSG-C110.redmond.corp.microsoft.com>
In-Reply-To: <FCA794787FDE0D4DBE9FFA11053ECEB60C26A1618E@NA-EXMSG-C110.redmond.corp.microsoft.com>
X-Enigmail-Version: 0.95.2
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 4b800b1eab964a31702fa68f1ff0e955
Cc: TSV Dir <tsv-dir@ietf.org>, "tcpm@ietf.org" <tcpm@ietf.org>, DCCP mailing list <dccp@ietf.org>, tsvwg WG <tsvwg@ietf.org>, Fernando Gont <fernando@gont.com.ar>
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============0387152500=="
Errors-To: tcpm-bounces@ietf.org
Murari Sridharan wrote: > In this context I wanted to bring up a related issue that might also strengthen this sort of a port randomization proposal. > > Today the 64k port limitation is starting to become a huge problem > and > most often admins add ip addresses to increase the scalability. Given > that most often the destination port (and sometimes the destination > address) is well known, the only scalability left is the source address. > Increasing ip addresses to improve scalability seems a fairly round > about approach and frankly doesn't scale well. Given that the 64k limit > is not fundamental why not provide a scaling factor similar to the > receive window to scale the number of usable ports. This also makes > randomization much more meaningful because in certain proxy scenarios > the number of connections quickly exhausts the available ports and at > that point the attacker can simply use any port assuming he can guess > the source address. Scale works for windows because of two things: 1) the scale increases the granularity of the window info 2) the scale factor can be negotiated during SYN exchange Neither is true for ports. 1-p) ports are specific numbers; extended fields could be provided in options, but that's equivalent to having the port number itself in an option anyway 2-p) we can negotiate the use of these extended port ranges with endpoints, but it will break NATs Portnames is a step in these directions, but is currently experimental at best. See http://www.isi.edu/touch/pubs/draft-touch-tcp-portnames-00.txt (to be updated shortly). Joe -- ---------------------------------------------------------------------- Joe Touch Sr. Network Engineer, USAF TSAT Space Segment Postel Center Director & Research Assoc. Prof., USC/ISI
_______________________________________________ tcpm mailing list tcpm@ietf.org https://www1.ietf.org/mailman/listinfo/tcpm
- [tcpm] Revision of draft-larsen-tsvwg-port-random… Fernando Gont
- Re: [tcpm] Revision of draft-larsen-tsvwg-port-ra… Lars Eggert
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Lars Eggert
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Murari Sridharan
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Anantha Ramaiah (ananth)
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Murari Sridharan
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Joe Touch
- Re: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Murari Sridharan
- Re: [Tsvwg] Re: [tcpm]Revision ofdraft-larsen-tsv… Wesley Eddy
- Re: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Joe Touch
- Re: [Tsvwg] Re: [tcpm]Revision ofdraft-larsen-tsv… Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Anantha Ramaiah (ananth)
- [tcpm] discussion of TCP option space Joe Touch
- RE: [Tsvwg] Re: [tcpm] Revision of draft-larsen-t… Fernando Gont
- Re: [Tsvwg] Re: [tcpm] Revision ofdraft-larsen-ts… Joe Touch