IETF Logo Mail Archive

Re: [tram] AD Evaluation of draft-ietf-tram-turnbis-23

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Sat, 11 May 2019 15:13 UTC

Return-Path: <TirumaleswarReddy_Konda@mcafee.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52B4E12002E; Sat, 11 May 2019 08:13:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.3
X-Spam-Level:
X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, T_KAM_HTML_FONT_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 27mXMqc-pGhn; Sat, 11 May 2019 08:13:55 -0700 (PDT)
Received: from DNVWSMAILOUT1.mcafee.com (dnvwsmailout1.mcafee.com [161.69.31.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC58412001E; Sat, 11 May 2019 08:13:54 -0700 (PDT)
X-NAI-Header: Modified by McAfee Email Gateway (5500)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=s_mcafee; t=1557587216; h=From: To:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:X-MS-Has-Attach:X-MS-TNEF-Correlator: dlp-product:dlp-version:dlp-reaction:authentication-results: x-originating-ip:x-ms-publictraffictype:x-ms-office365-filtering-correlation-id: x-microsoft-antispam:x-ms-traffictypediagnostic: x-ms-exchange-purlcount:x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers:x-forefront-prvs: x-forefront-antispam-report:received-spf:x-ms-exchange-senderadcheck: x-microsoft-antispam-message-info:Content-Type: MIME-Version:X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-originalarrivaltime: X-MS-Exchange-CrossTenant-fromentityheader: X-MS-Exchange-CrossTenant-id:X-MS-Exchange-CrossTenant-mailboxtype: X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-OriginatorOrg:X-NAI-Spam-Flag:X-NAI-Spam-Threshold: X-NAI-Spam-Score:X-NAI-Spam-Version; bh=D DXst0iZ7I73KtpMwf+0bFAPpx4dE9MyNWbmOmMtHk w=; b=HWWQa8aHyos1SN6dqtFBUVBHpZuADrIZj5BRAdZ4if2f o59TV6tS/k7C3v9XkaSmVdDAMBrRn+qB+s0pNVWosho4VLd5ha CVqkRpu8V4pp3hiEIMYJRVKAJU6newPm3v7xUdKhksLDp8feoW /Mhza9r3yQkyP3WkdGJwu9q9mxU=
Received: from DNVEXAPP1N06.corpzone.internalzone.com (unknown [10.44.48.90]) by DNVWSMAILOUT1.mcafee.com with smtp (TLS: TLSv1/SSLv3,256bits,ECDHE-RSA-AES256-SHA384) id 56fa_1980_1b73c530_5eb7_43ac_a681_b17b8181910a; Sat, 11 May 2019 09:06:56 -0600
Received: from DNVEXAPP1N04.corpzone.internalzone.com (10.44.48.88) by DNVEXAPP1N06.corpzone.internalzone.com (10.44.48.90) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Sat, 11 May 2019 09:13:45 -0600
Received: from DNVO365EDGE2.corpzone.internalzone.com (10.44.176.74) by DNVEXAPP1N04.corpzone.internalzone.com (10.44.48.88) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Sat, 11 May 2019 09:13:45 -0600
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (10.44.176.243) by edge.mcafee.com (10.44.176.74) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Sat, 11 May 2019 09:13:44 -0600
Received: from DM6PR16MB2794.namprd16.prod.outlook.com (20.178.225.219) by DM6PR16MB3467.namprd16.prod.outlook.com (10.255.175.152) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1878.22; Sat, 11 May 2019 15:13:42 +0000
Received: from DM6PR16MB2794.namprd16.prod.outlook.com ([fe80::dd96:548c:65c0:5072]) by DM6PR16MB2794.namprd16.prod.outlook.com ([fe80::dd96:548c:65c0:5072%4]) with mapi id 15.20.1878.022; Sat, 11 May 2019 15:13:42 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: Magnus Westerlund <magnus.westerlund@ericsson.com>, "tram@ietf.org" <tram@ietf.org>, "draft-ietf-tram-turnbis@ietf.org" <draft-ietf-tram-turnbis@ietf.org>
Thread-Topic: [tram] AD Evaluation of draft-ietf-tram-turnbis-23
Thread-Index: AQHU6u6miufFCL2QUEG5nrdQuPpiP6ZmNwmw
Date: Sat, 11 May 2019 15:13:42 +0000
Message-ID: <DM6PR16MB27940E6AC8EE75D64E12FD27EA0D0@DM6PR16MB2794.namprd16.prod.outlook.com>
References: <BYAPR16MB27902B12B7004D5CF4616BC1EA2F0@BYAPR16MB2790.namprd16.prod.outlook.com> <HE1PR0701MB252245E3AB13FD1AB4217A8595240@HE1PR0701MB2522.eurprd07.prod.outlook.com> <BYAPR16MB2790BD024872817923F0892CEA260@BYAPR16MB2790.namprd16.prod.outlook.com> <HE1PR0701MB2522C1819EA5B98774BA0869953E0@HE1PR0701MB2522.eurprd07.prod.outlook.com> <BYAPR16MB2790F74A7D46937AD59A0363EA380@BYAPR16MB2790.namprd16.prod.outlook.com> <HE1PR0701MB2522AFA283923B03CF3E97A295350@HE1PR0701MB2522.eurprd07.prod.outlook.com> <BYAPR16MB27905EBA3D101996A86CE695EA370@BYAPR16MB2790.namprd16.prod.outlook.com> <HE1PR0701MB2522028B3089185658EDEE43950C0@HE1PR0701MB2522.eurprd07.prod.outlook.com>
In-Reply-To: <HE1PR0701MB2522028B3089185658EDEE43950C0@HE1PR0701MB2522.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.2.0.6
dlp-reaction: no-action
authentication-results: spf=none (sender IP is ) smtp.mailfrom=TirumaleswarReddy_Konda@McAfee.com;
x-originating-ip: [185.221.69.46]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1712cd37-df94-458c-6c64-08d6d6234147
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(2017052603328)(7193020); SRVR:DM6PR16MB3467;
x-ms-traffictypediagnostic: DM6PR16MB3467:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <DM6PR16MB34676FBE4E7135E875D08D54EA0D0@DM6PR16MB3467.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 00342DD5BC
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(136003)(366004)(376002)(346002)(39850400004)(32952001)(189003)(199004)(66476007)(66446008)(64756008)(6246003)(7696005)(76116006)(53936002)(86362001)(81156014)(478600001)(25786009)(66556008)(73956011)(2201001)(66946007)(72206003)(76176011)(53546011)(14454004)(102836004)(99286004)(966005)(6506007)(52536014)(229853002)(26005)(3846002)(5660300002)(33656002)(8936002)(186003)(2906002)(6116002)(790700001)(71190400001)(6306002)(54896002)(7736002)(74316002)(486006)(80792005)(2501003)(236005)(81166006)(11346002)(6436002)(316002)(8676002)(71200400001)(55016002)(9686003)(446003)(256004)(5024004)(110136005)(68736007)(606006)(14444005)(476003)(66066001)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM6PR16MB3467; H:DM6PR16MB2794.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: McAfee.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: Vj31AsSdSAqmDNFy8J2TaFXXZXO+cO5jfNAZFmvtnsrESmJvwHCz7vs3XCfOedMoqIddMZRDZxIGz6+iRbeC203yLpG+a6huUEtt3YosqCGWjjiQtUXjGolybzJSq5ddsWo2jQGEtShceVhuFJXPEejAU3f/Ev1SYgxjYcJY9OJktH5klvnwNrWO7b0eRzYBIDP8iCtDlLIQUcwH+QSVq8uxHTuN4xtKWv/Qj3ZSUYdxdAkX0RIiYvKYDczg/SyrCjEVKP+oWR/PTLpvBE0Qsqf3WAuRXrVyyn9UPRokxhGDW/4jamkP1hzapokpegdgvE5bsznqFeAgozC2/FQ+uda701v6hmEC7qa8gq4V4PqgxKvhPZ8s8rA3uxU9wPIoc4oF4yBU12BhRYRhEg+rdRsp3+V9cKQZq1AKdpjr+z0=
Content-Type: multipart/alternative; boundary="_000_DM6PR16MB27940E6AC8EE75D64E12FD27EA0D0DM6PR16MB2794namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 1712cd37-df94-458c-6c64-08d6d6234147
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 May 2019 15:13:42.6022 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR16MB3467
X-OriginatorOrg: mcafee.com
X-NAI-Spam-Flag: NO
X-NAI-Spam-Threshold: 15
X-NAI-Spam-Score: 0
X-NAI-Spam-Version: 2.3.0.9418 : core <6544> : inlines <7074> : streams <1821224> : uri <2843185>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/KzrHVXXgCfBVWSdO9HKmBx2VY84>
Subject: Re: [tram] AD Evaluation of draft-ietf-tram-turnbis-23
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 11 May 2019 15:13:59 -0000

Thanks Magnus for the clarification, I will update the new section and publish revised draft.

Cheers,
-Tiru

From: Magnus Westerlund <magnus.westerlund@ericsson.com>
Sent: Friday, May 10, 2019 9:16 PM
To: Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com>; tram@ietf.org; draft-ietf-tram-turnbis@ietf.org
Subject: Re: [tram] AD Evaluation of draft-ietf-tram-turnbis-23


CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe.


________________________________
Hi,

Regarding the two questions.


On 2019-05-05 08:08, Konda, Tirumaleswar Reddy wrote:


 IPv4 Options



      Preferred Behavior: The outgoing packet is sent without any IPv4

      options.



 [TR] I will add IPv4 options.



IPv6 Extensions Headers:



      Set per default for originated IPv6 packets.



[TR] The behavior is already discussed in IPv6-to-IPv6 translations, https://tools.ietf.org/html/draft-ietf-tram-turnbis-24#section-14 (IP header fields)section does not discuss extension headers.

Like before this is section 14 text, and not a translation scenario.

[TR2] I meant section 14 (IP Header Fields) for UDP-to-UDP translation does not discuss IPv6 extension header, any specific reason the new section (IP Headers fields for TCP-to-UDP translation) should discuss IPv6 Extension headers (it is already covered in Sections 13.1 and 13.2) ?

So my reasoning is that Section 14 covers packets that are considered sourced by the TURN server, while 13.2 only covers translation scenarios where there are a one-to-one correspondence and there are possible to do a information transfer. As that isn't possible in the TCP <-> UDP context we are discussing I think you can either include it in Section 14. Alternatively expand section 13.1 and 13.2 to include this case also. But I think the later requires more text to clarify which cases where there are no one-to-one correspondence?



Fragmentation:



Any fragmented packets are reassembled in server and then forwarded to the client over the TCP connection.

ICMP messages resulting from sent UDP packets, MUST be forward to client using TURN's mechanism for relevant ICMP types.



IPv4 Options are processed by server if possible, else ignored



[TR] Let’s use the same behavior as UDP-to-UDP translation for IPv4 options.

I can't find that there are anything at all written about this, and that is likely fine. Or did you have any particular text in mind? In that case please quote.

[TR2] I will add the following lines:
   IPv4 Options

      Preferred Behavior: The outgoing packet is sent without any IPv4
      options.

      Alternate Behavior: Same as preferred.


If the peer avoids UDP fragmentation, I don’t get the use of the proposed line “Any fragmented packets are reassembled in server and then forwarded to the client over the TCP connection.”

I don't think the peer are mandated to set the DF bit, and thus fragmented packets could arrive at the TURN server from the peer. In that case re-assembly do need to happen at the TURN server. It is fairly obvious that this is what should be happening. But this description is already at the level of details that enables a IP packet level implementation  to not forget things, so why leave this out?



Cheers



Magnus Westerlund



----------------------------------------------------------------------

Network Architecture & Protocols, Ericsson Research

----------------------------------------------------------------------

Ericsson AB                 | Phone  +46 10 7148287

Torshamnsgatan 23           | Mobile +46 73 0949079

SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com<mailto:magnus.westerlund@ericsson.com>

----------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email