Re: [tram] Transport of ICMP errors in TURN
Simon Perreault <sperreault@jive.com> Wed, 26 August 2015 12:29 UTC
Return-Path: <sperreault@jive.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB9631A88C3 for <tram@ietfa.amsl.com>; Wed, 26 Aug 2015 05:29:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rYJe36PEgIGf for <tram@ietfa.amsl.com>; Wed, 26 Aug 2015 05:29:43 -0700 (PDT)
Received: from mail-oi0-f53.google.com (mail-oi0-f53.google.com [209.85.218.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 61C861A87D7 for <tram@ietf.org>; Wed, 26 Aug 2015 05:29:43 -0700 (PDT)
Received: by oiey141 with SMTP id y141so120103212oie.1 for <tram@ietf.org>; Wed, 26 Aug 2015 05:29:42 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-type :content-transfer-encoding; bh=alUZVbBro3oSlJ4unuxRHqBmsEqaE4Q4AkNOHRAqdL0=; b=EBnXpdlSF1+IWD6rdRoCfy6JtEMV0AOv0MNMZ/JwiOHd9FNsnqJhR+niorigfxEI0q Ol45ukXfpFlW4M1INopKMjD9KK2p12WWhtFp9eTTQbodYDiteYir0DuDZGHrTaU7lJcC IUWO+xGQXpMrSTUV6PV/y/jL4gi+5vQa2zY4ETPSV8EuTJjZ9DFsQNuXSBlaKnK4ZH1t v4h8yLn7pLVIElAlATHpJzyastHV4R9792sZk5UQjafXvClo/alvlgEttEKAbjkn/aQm qtF8o3s3/CazCuzU0ENt8a280k9AfkrqQAFq9KrwnsOebrENLPpou6NIJcOST/IMKCl+ wxaA==
X-Gm-Message-State: ALoCoQlFY9A2SnqoaWuwLhvOkWad3EqTbFT50UDdfBs00YJSm5uUMyoVJvg9N1UJXgw3Q5F7TjZE
X-Received: by 10.202.176.136 with SMTP id z130mr7170598oie.42.1440592182700; Wed, 26 Aug 2015 05:29:42 -0700 (PDT)
Received: from [192.168.1.44] (modemcable164.157-22-96.mc.videotron.ca. [96.22.157.164]) by smtp.googlemail.com with ESMTPSA id l128sm14275045oig.12.2015.08.26.05.29.41 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 26 Aug 2015 05:29:41 -0700 (PDT)
To: Marc Petit-Huguenin <petithug@acm.org>, "tram@ietf.org" <tram@ietf.org>
References: <55DD94FF.7080400@acm.org>
From: Simon Perreault <sperreault@jive.com>
X-Enigmail-Draft-Status: N1010
Message-ID: <55DDB133.6090608@jive.com>
Date: Wed, 26 Aug 2015 08:29:39 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:38.0) Gecko/20100101 Thunderbird/38.2.0
MIME-Version: 1.0
In-Reply-To: <55DD94FF.7080400@acm.org>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/tram/GdE3v3iak1YNLg_Q8kh78wTpa3Y>
Subject: Re: [tram] Transport of ICMP errors in TURN
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Aug 2015 12:29:45 -0000
Le 2015-08-26 06:29, Marc Petit-Huguenin a écrit : > During the presentation of the Path MTU Discovery Using STUN draft in Prague, there was some discussion on how ICMP can be received by the client when the PMTUD probes are sent through a TURN server. Which reminded me that I worked on that problem when I proposed PMTUD over STUN, back in 2008. That was the case, according to my notes, but in fact the idea of tunneling the ICMP packets through the TURN server was proposed the year before, but for a different reason: > > https://mailarchive.ietf.org/arch/msg/behave/76pAtymXlAtF5SoD0rgoFECf2Fg > > So my proposal is to add this into turnbis. I can provide text. RFC 5766 section 2.6 <https://tools.ietf.org/html/rfc5766#section-2.6> explains that ICMP not being relayed was a design decision to make it possible to run a TURN server as an unprivileged user. That conclusion is wrong for two reasons: - With the BSD sockets API, some ICMP errors are translated into recv() error codes. This means that it is always possible to relay at least some subset of ICMP errors. (Not sure for TCP or IPv6, I'd need to check.) - On Linux, which dominates the market of TURN server, one can receive all ICMP errors as an unprivileged user with the IP(V6)_RECVERR socket option. So my conclusion is: yes, please. :) Simon
- [tram] Transport of ICMP errors in TURN Marc Petit-Huguenin
- Re: [tram] Transport of ICMP errors in TURN Simon Perreault
- Re: [tram] Transport of ICMP errors in TURN Pal Martinsen (palmarti)
- Re: [tram] Transport of ICMP errors in TURN Marc Petit-Huguenin
- Re: [tram] Transport of ICMP errors in TURN Tirumaleswar Reddy (tireddy)
- Re: [tram] Transport of ICMP errors in TURN Tirumaleswar Reddy (tireddy)
- Re: [tram] Transport of ICMP errors in TURN Pal Martinsen (palmarti)
- Re: [tram] Transport of ICMP errors in TURN Cullen Jennings (fluffy)
- Re: [tram] Transport of ICMP errors in TURN Simon Perreault
- Re: [tram] Transport of ICMP errors in TURN Cullen Jennings (fluffy)
- Re: [tram] Transport of ICMP errors in TURN Marc Petit-Huguenin
- Re: [tram] Transport of ICMP errors in TURN Marc Petit-Huguenin
- Re: [tram] Transport of ICMP errors in TURN Marc Petit-Huguenin