IETF Logo Mail Archive

Re: [tram] STUNBIS: Retransmissions over TCP

"Gonzalo Salgueiro (gsalguei)" <gsalguei@cisco.com> Thu, 16 February 2017 23:41 UTC

Return-Path: <gsalguei@cisco.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DAEDA129421 for <tram@ietfa.amsl.com>; Thu, 16 Feb 2017 15:41:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.522
X-Spam-Level:
X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DgtCrhHC_jDU for <tram@ietfa.amsl.com>; Thu, 16 Feb 2017 15:41:36 -0800 (PST)
Received: from alln-iport-5.cisco.com (alln-iport-5.cisco.com [173.37.142.92]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CF6821293EE for <tram@ietf.org>; Thu, 16 Feb 2017 15:41:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14552; q=dns/txt; s=iport; t=1487288495; x=1488498095; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=iTNbeITwyo7ZtbGMdqKkrRRhppsq5hs3CJB47XluSvA=; b=IKdiQTIr7V/JNyZmXm7PpT5afQfYAW1OT7zPwZzgfONuTI9Tal37fpr9 yfwadue/Sou3jt5ZAwkKP8p7paJOo/wGZmP10NHqdJhfANKVlztv6AzHY uJTGRG72g120uZ6ueT0ahM83VXK+QotjRo0gf1o0QpV+g8Xy1XnPxLvJ2 4=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BwAQCmN6ZY/5pdJa1eGQEBAQEBAQEBAQEBBwEBAQEBg1FhgQkHg1KKCJIPiAuHfIUsggwfAQqFeAIagXY/GAECAQEBAQEBAWIohHEBAQMBAQEhBEcLBQsCAQg/AwICAh8GCxQRAgQOBYlUAw0IDrBGgWs6hzMNhBMBAQEBAQEBAQEBAQEBAQEBAQEBAQEYBYZMggWCaoJRghqCby6CMQWVXIVpOgGKEINshBqRBoo3hEaEGgEfOIEAURU9EQGGMnWJKoENAQEB
X-IronPort-AV: E=Sophos;i="5.35,169,1484006400"; d="scan'208,217";a="384808325"
Received: from rcdn-core-3.cisco.com ([173.37.93.154]) by alln-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 16 Feb 2017 23:41:34 +0000
Received: from XCH-RCD-006.cisco.com (xch-rcd-006.cisco.com [173.37.102.16]) by rcdn-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id v1GNfYQO003225 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 16 Feb 2017 23:41:34 GMT
Received: from xch-aln-009.cisco.com (173.36.7.19) by XCH-RCD-006.cisco.com (173.37.102.16) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 16 Feb 2017 17:41:33 -0600
Received: from xch-aln-009.cisco.com ([173.36.7.19]) by XCH-ALN-009.cisco.com ([173.36.7.19]) with mapi id 15.00.1210.000; Thu, 16 Feb 2017 17:41:34 -0600
From: "Gonzalo Salgueiro (gsalguei)" <gsalguei@cisco.com>
To: "Olle E. Johansson" <oej@edvina.net>
Thread-Topic: [tram] STUNBIS: Retransmissions over TCP
Thread-Index: AQHR5x96E5OizcqlBUyxOyz8Tq01jKAq8rIAgAALZACAATb4AIFBvbCA
Date: Thu, 16 Feb 2017 23:41:34 +0000
Message-ID: <7BC4EF87-256E-43BD-A21A-BE28EB954F0D@cisco.com>
References: <A088130D-4E99-4D04-9645-461BD40BCC54@edvina.net> <c5dae3ae-e661-f5df-9add-d8174248bd30@jive.com> <CAKz0y8wvRSLdxiTVs0_D5BqM3btcsD+bpvRjq9WjDW_3jTAu4w@mail.gmail.com> <C3B5A9EB-7297-400B-93B8-F8F7C5DDC50D@edvina.net>
In-Reply-To: <C3B5A9EB-7297-400B-93B8-F8F7C5DDC50D@edvina.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.24.51.16]
Content-Type: multipart/alternative; boundary="_000_7BC4EF87256E43BDA21ABE28EB954F0Dciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/pQQhANvii9zXNQ_oiX64w1QV8mA>
Cc: Simon Perreault <sperreault@jive.com>, Muthu Arul Mozhi Perumal <muthu.arul@gmail.com>, "tram@ietf.org" <tram@ietf.org>
Subject: Re: [tram] STUNBIS: Retransmissions over TCP
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Feb 2017 23:41:38 -0000

Hi Olle -

On Jul 27, 2016, at 12:23 AM, Olle E. Johansson <oej@edvina.net<mailto:oej@edvina.net>> wrote:


On 26 Jul 2016, at 14:50, Muthu Arul Mozhi Perumal <muthu.arul@gmail.com<mailto:muthu.arul@gmail.com>> wrote:

The use cases I've heard are:
1. A (broken) middle box doing TCP<->UDP inter-working: If the message get lost on the UDP side and the transmissions are handled by the TCP stack (in the kernel), the middle box may not retransmit the message over UDP causing problem for endpoints.
2. Mobility: If the IP address changes, TCP may not know whether the message was sent or not.

These are what I've overheard, though I haven't come across the problem myself..
THank you for your feedback!

I think there is something here to explore for STUN and the various usages, but we may not
be ready to open up StunBIS for it.

After some discussions we agree that there isn’t quite enough consensus to make such a profound change to the spec.  I think there is something interesting here to consider, but it feels premature for this version.

Cheers,

Gonzalo

It is a middlebox problem we need to handle, and I think
that STUN is a tool developed to discover middleboxes - NAT was the first one. The STUN RTT
measurement come in handy here, as the report I referred to clearly sees different latencies
depending on direction indicating that a TCP proxy was in the path. Maybe the RTT draft needs
to consider one-way too in order to assist detection?

/O

Muthu

On Tue, Jul 26, 2016 at 5:39 PM, Simon Perreault <sperreault@jive.com<mailto:sperreault@jive.com>> wrote:
Le 2016-07-26 à 05:23, Olle E. Johansson a écrit :
> Section 6.2.2:
>
> "Reliability of STUN over TCP and TLS-over-TCP is handled by TCP
>    itself, and there are no retransmissions at the STUN protocol level.”
>
> When using STUN over mobile networks, I think this is a bad assumption.
> We’ve seen many times that TCP proxys cause TCP to fail and they don’t follow
> the original intention of TCP. The SIP message fails, even though TCP confirmed
> delivery. I’ve got confirmation from a few developers that they started to send UDP-style
> retransmits over TCP to get around this.

I think this will be met with incredulity and responses along the lines
of "pcap or GTFO". :)

I admit I'd like to see a more detailed description of the problem
before we mandate such a profound change in the protocol. Would you be
able to get one of those developers to come talk to us?

> As a discovery protocol, I think we need STUN to discover situations like this.
> I know it’s not religiously correct, but retransmits over TCP unfortunately makes sense
> in today’s broken network, especially for a protocol designed to discover middle boxes.

To be clear: you actually mean sending a second Binding request on the
*same* TCP connection, right? Not opening a new one?

Simon

_______________________________________________
tram mailing list
tram@ietf.org<mailto:tram@ietf.org>
https://www.ietf.org/mailman/listinfo/tram

_______________________________________________
tram mailing list
tram@ietf.org<mailto:tram@ietf.org>
https://www.ietf.org/mailman/listinfo/tram

_______________________________________________
tram mailing list
tram@ietf.org<mailto:tram@ietf.org>
https://www.ietf.org/mailman/listinfo/tram

v2.23.0 | Report a Bug | By Email