IETF Logo Mail Archive

Re: [tram] Review of draft-ietf-tram-turnbis-13.txt (was Re: I-D Action: draft-ietf-tram-turnbis-12.txt)

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Thu, 22 February 2018 14:37 UTC

Return-Path: <TirumaleswarReddy_Konda@mcafee.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61B2C12711E; Thu, 22 Feb 2018 06:37:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.33
X-Spam-Level:
X-Spam-Status: No, score=-4.33 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t-80D24LloBH; Thu, 22 Feb 2018 06:37:50 -0800 (PST)
Received: from DNVWSMAILOUT1.mcafee.com (dnvwsmailout1.mcafee.com [161.69.31.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9E5B41270A3; Thu, 22 Feb 2018 06:37:49 -0800 (PST)
X-NAI-Header: Modified by McAfee Email Gateway (5500)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=s_mcafee; t=1519310262; h=From: To:CC:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:X-MS-Has-Attach:X-MS-TNEF-Correlator: dlp-product:dlp-version:dlp-reaction:authentication-results: x-originating-ip:x-ms-publictraffictype:x-microsoft-exchange-diagnostics: x-ms-exchange-antispam-srfa-diagnostics:x-ms-office365-filtering-correlation-id: x-microsoft-antispam:x-ms-traffictypediagnostic: x-microsoft-antispam-prvs:x-exchange-antispam-report-test: x-exchange-antispam-report-cfa-test:x-forefront-prvs: x-forefront-antispam-report:received-spf:x-microsoft-antispam-message-info: spamdiagnosticoutput:spamdiagnosticmetadata: Content-Type:Content-Transfer-Encoding:MIME-Version: X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-originalarrivaltime: X-MS-Exchange-CrossTenant-fromentityheader: X-MS-Exchange-CrossTenant-id:X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-OriginatorOrg:X-NAI-Spam-Flag:X-NAI-Spam-Threshold: X-NAI-Spam-Score:X-NAI-Spam-Version; bh=g 9VGHYgXdjiBGIYAtWwHEh+ISvk7QpwUXGvaBvyxi2 M=; b=RLbU58++Tg2n9C67PEjY9tTzwbXiu69z8lEpgn3Cc1OO hWX826lNKCjgBxJPCdmEhDDj3KY1Ps+05b+Ei5y96yPdfWYwiF 0gqcbkdNZQ0k8Geuxfo2ylUSHmlop47XnMQN4IqeJx2dI9nXPd didzjIG2qjz2boxgoWtGB8GoeAE=
Received: from DNVEXAPP1N05.corpzone.internalzone.com (unknown [10.44.48.89]) by DNVWSMAILOUT1.mcafee.com with smtp (TLS: TLSv1/SSLv3,256bits,ECDHE-RSA-AES256-SHA384) id 677d_63e5_8190c900_bec2_4671_9636_9f3cd34dc5de; Thu, 22 Feb 2018 08:37:41 -0600
Received: from DNVEXUSR1N13.corpzone.internalzone.com (10.44.48.86) by DNVEXAPP1N05.corpzone.internalzone.com (10.44.48.89) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Thu, 22 Feb 2018 07:37:40 -0700
Received: from DNVO365EDGE1.corpzone.internalzone.com (10.44.176.66) by DNVEXUSR1N13.corpzone.internalzone.com (10.44.48.86) with Microsoft SMTP Server (TLS) id 15.0.1347.2 via Frontend Transport; Thu, 22 Feb 2018 07:37:40 -0700
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (10.44.176.242) by edge.mcafee.com (10.44.176.66) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Thu, 22 Feb 2018 07:36:47 -0700
Received: from BN6PR16MB1425.namprd16.prod.outlook.com (10.172.207.19) by BN6PR16MB1619.namprd16.prod.outlook.com (10.172.27.137) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.527.15; Thu, 22 Feb 2018 14:37:38 +0000
Received: from BN6PR16MB1425.namprd16.prod.outlook.com ([10.172.207.19]) by BN6PR16MB1425.namprd16.prod.outlook.com ([10.172.207.19]) with mapi id 15.20.0527.017; Thu, 22 Feb 2018 14:37:38 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: Brandon Williams <brandon.williams@akamai.com>, "tram@ietf.org" <tram@ietf.org>
CC: "draft-ietf-tram-turnbis@ietf.org" <draft-ietf-tram-turnbis@ietf.org>
Thread-Topic: Review of draft-ietf-tram-turnbis-13.txt (was Re: [tram] I-D Action: draft-ietf-tram-turnbis-12.txt)
Thread-Index: AQHTq1GmEd8Qx8iKkk+jFYAOL3R5xKOwOfHg
Date: Thu, 22 Feb 2018 14:37:38 +0000
Message-ID: <BN6PR16MB142597C7349A67A97509DEBDEACD0@BN6PR16MB1425.namprd16.prod.outlook.com>
References: <150874106330.24567.10025213746592540332@ietfa.amsl.com> <DM5PR16MB178873F0D61A69D25617ADB6EA460@DM5PR16MB1788.namprd16.prod.outlook.com> <61866009-27d0-bdce-815f-7905d69cd661@akamai.com> <DM5PR16MB1788DADED96D6137E0F8B93DEAF20@DM5PR16MB1788.namprd16.prod.outlook.com> <e877e5aa-5b67-c10c-c51c-a5b6b40b6706@akamai.com>
In-Reply-To: <e877e5aa-5b67-c10c-c51c-a5b6b40b6706@akamai.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.0.200.100
dlp-reaction: no-action
authentication-results: spf=none (sender IP is ) smtp.mailfrom=TirumaleswarReddy_Konda@McAfee.com;
x-originating-ip: [171.61.123.199]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN6PR16MB1619; 7:z1mqj9wJjI5O3QM5wsr5SxKNWEqu2YxYS0wc1nxmXaeLwe8FWjTt82nat0Jwxm5d772yWQi2Z+rFQ4S+ncgibqrhgzoVSRyttG2pw2tAk2ouJV5OBvjLceYbxJG1l7/WLpObRUEBvDiUNhxwjJNMq7f6eCZiPeNZvuoNjQ+Y+5bM3r4rAhuC0rW6uBgA/0C9PiR2Kd1H9TwDwAm6XiqBP5WFkh1cplvN1XF/gODe1R3R7eaPDpXv9H/CFhLmMibG
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 6b40dd32-30a4-4027-4ba1-08d57a01d270
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(4534165)(4627221)(201703031133081)(201702281549075)(5600026)(4604075)(3008032)(2017052603307)(7153060)(7193020); SRVR:BN6PR16MB1619;
x-ms-traffictypediagnostic: BN6PR16MB1619:
x-microsoft-antispam-prvs: <BN6PR16MB16193480D8424A8ED2C35512EACD0@BN6PR16MB1619.namprd16.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(788757137089)(123452027830198);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001080)(6040501)(2401047)(5005006)(8121501046)(3002001)(3231101)(944501161)(10201501046)(93006095)(93001095)(6041288)(20161123560045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(20161123558120)(6072148)(201708071742011); SRVR:BN6PR16MB1619; BCL:0; PCL:0; RULEID:; SRVR:BN6PR16MB1619;
x-forefront-prvs: 059185FE08
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(376002)(366004)(39380400002)(39850400004)(396003)(32952001)(13464003)(377424004)(199004)(189003)(51914003)(52314003)(74316002)(99286004)(7736002)(305945005)(76176011)(7696005)(105586002)(66066001)(86362001)(33656002)(106356001)(4326008)(14454004)(72206003)(53936002)(478600001)(110136005)(81166006)(8676002)(8936002)(59450400001)(81156014)(5660300001)(53546011)(6506007)(68736007)(25786009)(316002)(186003)(77096007)(26005)(102836004)(80792005)(3660700001)(4001150100001)(5890100001)(2501003)(3846002)(93886005)(6116002)(97736004)(3280700002)(55016002)(2900100001)(2950100002)(6436002)(966005)(2906002)(9686003)(6306002)(6246003)(229853002)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:BN6PR16MB1619; H:BN6PR16MB1425.namprd16.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: McAfee.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: irj6LdA2ndAHBY2LVLH2pRIsI1hbijFSSB2rKGbB2Gk3JTx+wF8vGrKcyyBA7+fsUxY97a2Xe/vXQnUL3VQfRLrfPtZNQFGfl+d5TClmZoRyT4CEkLHAynzTmkX6Rs8n6Bbwi7+/2yye5bHhvslDqCv/ulxBmGlnphc3nqpN8Vc=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 6b40dd32-30a4-4027-4ba1-08d57a01d270
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Feb 2018 14:37:38.5048 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR16MB1619
X-OriginatorOrg: mcafee.com
X-NAI-Spam-Flag: NO
X-NAI-Spam-Threshold: 15
X-NAI-Spam-Score: 0
X-NAI-Spam-Version: 2.3.0.9418 : core <6228> : inlines <6424> : streams <1779723> : uri <2597423>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/r3TILQXqzhlj0VzTJffOTcfsANs>
Subject: Re: [tram] Review of draft-ietf-tram-turnbis-13.txt (was Re: I-D Action: draft-ietf-tram-turnbis-12.txt)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Feb 2018 14:37:52 -0000

> -----Original Message-----
> From: Brandon Williams [mailto:brandon.williams@akamai.com]
> Sent: Thursday, February 22, 2018 1:51 AM
> To: Konda, Tirumaleswar Reddy
> <TirumaleswarReddy_Konda@McAfee.com>; tram@ietf.org
> Cc: draft-ietf-tram-turnbis@ietf.org
> Subject: Review of draft-ietf-tram-turnbis-13.txt (was Re: [tram] I-D Action:
> draft-ietf-tram-turnbis-12.txt)
> 
> Hi Tiru,
> 
> Most of my comments have been addressed with this update.
> 
> There are still a few issues raised by idnits, two of which are errors.
> 
> == start idnits ===
> 
>    Checking nits according to https://www.ietf.org/id-info/checklist :
> 
> ----------------------------------------------------------------------------
> 
>    ** The abstract seems to contain references ([RFC6156], [RFC5766]),
>       which it shouldn't.  Please replace those with straight textual
>       mentions of the documents in question.
> 
>    -- The document has examples using IPv4 documentation addresses
>       according to RFC6890, but does not use any IPv6 documentation
>       addresses.  Maybe there should be IPv6 examples, too?
> 
>    -- The draft header indicates that this document obsoletes RFC6156,
>       but th abstract doesn't seem to directly say this.  It does mention
>       RFC6156 though, so this could be OK.
> 
>    Checking references for intended status: Proposed Standard
> 
> ----------------------------------------------------------------------------
> 
>       (See RFCs 3967 and 4897 for information about using normative
>       references to lower-maturity documents in RFCs)
> 
>    == Missing Reference: '0x4001' is mentioned on line 662, but not
>       defined
> 
>    ** Obsolete normative reference: RFC 6555 (Obsoleted by RFC 8305)
> 
> == end idnits ===
> 
> Based on the above.
> 
> * The RFC mentions in the abstract should not be links. Please remove
>    the xref tags and replace with simple textual references. From the
>    look of stunbis, which doesn't use xref tags, the HTML doc system
>    appears to turn them into hyperlinks anyway, which is weird.
>    Nevertheless, doing it the way you did generates an error from idnits
>    and errors should really be corrected.

Fixed. 

> 
> * I think the point about IPv6 documentation addresses is just because
>    something about the formatting is causing it not to matching against
>    the small number of them in section 19.4. That said, IPv6
>    documentation addresses are in the range 2001:DB8::/32, you have a
>    couple 2001:DB9::/32 addresses that should be changed I think.

Updated 2001:DB9::1 to 2001:DB8:1::1


> 
> * There is still one instance of [0x4001] which can be replaced with
>    (0x4001).

Fixed. 

> 
> * Replace the informative reference to RFC6555 with a reference to
>    RFC8305.

Done. 

> 
> The rest of my comments are just a small number of follow-ups on other
> items that weren't fixed from my previous comments.
> 
> * My earlier comment suggested added an explanation of why EVEN-PORT is
>    not allowed with ADDITIONAL-ADDRESS-FAMILY to section 4. Your
> response
>    was that this should not be moved to section 4. My primary point was
>    that the related section (now 7.1) doesn't explain the reason for this
>    restriction. Whether in section 4 or section 7.1, I do still think it
>    would be good to state why EVEN-PORT MUST NOT be combined with
>    ADDITIONAL-ADDRESS-FAMILY.

If EVEN-PORT with R bit set to 1 is allowed, the handling of RESERVATION-TOKEN needs to be changed (two tokens have to 
be returned in the success response). 

> 
> * I'm still confused about the 5-tuple uniqueness requirement. The old
>    text stated that "... the 5-tuple MUST be unique across all
>    allocations, ..." In your response, you state "With the dual
>    allocation, the 5-tuple no longer unqiuely identifies an allocation."
>    and also "5-tuple will either identify a single or dual allocation."
>    These two statements appear to contradict each other. I believe that a
>    5-tuple MUST be unique across all allocations, where an allocation in
>    this context could be either a single or dual allocation.

Agreed, updated text.
NEW:
Both the relayed transport address and the 5-tuple MUST be unique across all allocations, so either one can be used to uniquely identify the allocation, 
and an allocation in this context can either be a single or dual allocation.

> 
> * Regarding this text in section 16.6: "The REQUESTED-ADDRESS-TYPE
>    attribute MAY only be present in Allocate requests." Although this
>    text was copied directly from RFC6156, it was already incorrect there
>    (it's REQUESTED-ADDRESS-FAMILY and I think it intends "SHALL" or
>    "MUST", not "MAY"). That said, this I-D changes the usage such that
>    this attribute is now allowed in a Refresh request. Considering that
>    the only usages for this attribute are clearly described above, I
>    think it's OK to just remove the sentence altogether. 

Agreed, removed line.

>    Perhaps the
>    first sentence in this section could be changed to further clarify:
> 
>      This attribute is used in Allocate and Refresh requests to specify
>      the address type requested by the client.

Updated the first line.

> 
> * Regarding this text in section 16.12: "The ADDRESS-ERROR-CODE
>    attribute MAY only be present in Allocate responses." See my previous
>    comment about "MAY" vs "SHALL"/"MUST". I still don't think this
>    normative text is required in an attribute description. Most of the
>    others don't have it.

Removed line.

Cheers,
-Tiru

> 
> 
> Pleae let me know if you have any questions about the above, and also when
> you will be able to target addressing the remaining open items.
> 
> Thanks,
> --Brandon
> 
> On 02/09/2018 02:44 AM, Konda, Tirumaleswar Reddy wrote:
> > Hi Brandon,
> >
> > Thanks for the detailed review. I have updated the draft to address most of
> the comments, please see the attached doc for responses to some of
> comments and nits.
> >
> > Cheers,
> > -Tiru
> >
> >> -----Original Message-----
> >> From: Brandon Williams [mailto:brandon.williams@akamai.com]
> >> Sent: Sunday, November 12, 2017 11:34 PM
> >> To: Konda, Tirumaleswar Reddy
> >> <TirumaleswarReddy_Konda@McAfee.com>; tram@ietf.org
> >> Cc: draft-ietf-tram-turnbis@ietf.org
> >> Subject: Re: [tram] I-D Action: draft-ietf-tram-turnbis-12.txt
> >>
> >> Hi Tiru,
> >>
> >> I just finished a comprehensive review of the cumulative diffs
> >> against RFC5766. See attached (let me know if you prefer me to resend
> >> as e-mail body for list purposes).
> >>
> >> You indicate that you addressed Marc's dual allocation related
> >> comments, but this draft doesn't address his comprehensive review
> comments, right?
> >>
> >> Please let me know a target for addressing the rest of his comments
> >> and mine so I can try to stay on top of the shepherding work for the draft.
> >>
> >> Thanks,
> >> --Brandon
> >> ________________________________________
> >> From: Konda, Tirumaleswar Reddy
> >> <TirumaleswarReddy_Konda@McAfee.com>
> >> Sent: Monday, October 23, 2017 2:48 AM
> >> To: tram@ietf.org
> >> Subject: Re: [tram] I-D Action: draft-ietf-tram-turnbis-12.txt
> >>
> >> This revision addresses comments from Brandon and dual allocation
> >> related comments from Mark.
> >>
> >> -Tiru
> >>
> >>> -----Original Message-----
> >>> From: tram [mailto:tram-bounces@ietf.org] On Behalf Of internet-
> >>> drafts@ietf.org
> >>> Sent: Monday, October 23, 2017 12:14 PM
> >>> To: i-d-announce@ietf.org
> >>> Cc: tram@ietf.org
> >>> Subject: [tram] I-D Action: draft-ietf-tram-turnbis-12.txt
> >>>
> >>>
> >>> A New Internet-Draft is available from the on-line Internet-Drafts
> >> directories.
> >>> This draft is a work item of the TURN Revised and Modernized WG of
> >>> the IETF.
> >>>
> >>>          Title           : Traversal Using Relays around NAT (TURN): Relay
> Extensions
> >>> to Session Traversal Utilities for NAT (STUN)
> >>>          Authors         : Tirumaleswar Reddy
> >>>                            Alan Johnston
> >>>                            Philip Matthews
> >>>                            Jonathan Rosenberg
> >>>        Filename        : draft-ietf-tram-turnbis-12.txt
> >>>        Pages           : 83
> >>>        Date            : 2017-10-22
> >>>
> >>> Abstract:
> >>>     If a host is located behind a NAT, then in certain situations it can
> >>>     be impossible for that host to communicate directly with other hosts
> >>>     (peers).  In these situations, it is necessary for the host to use
> >>>     the services of an intermediate node that acts as a communication
> >>>     relay.  This specification defines a protocol, called TURN (Traversal
> >>>     Using Relays around NAT), that allows the host to control the
> >>>     operation of the relay and to exchange packets with its peers using
> >>>     the relay.  TURN differs from some other relay control protocols in
> >>>     that it allows a client to communicate with multiple peers using a
> >>>     single relay address.
> >>>
> >>>     The TURN protocol was designed to be used as part of the ICE
> >>>     (Interactive Connectivity Establishment) approach to NAT traversal,
> >>>     though it also can be used without ICE.
> >>>
> >>>     This document obsoletes [RFC5766] and [RFC6156].
> >>>
> >>>
> >>> The IETF datatracker status page for this draft is:
> >>> https://datatracker.ietf.org/doc/draft-ietf-tram-turnbis/
> >>>
> >>> There are also htmlized versions available at:
> >>> https://tools.ietf.org/html/draft-ietf-tram-turnbis-12
> >>> https://datatracker.ietf.org/doc/html/draft-ietf-tram-turnbis-12
> >>>
> >>> A diff from the previous version is available at:
> >>> https://www.ietf.org/rfcdiff?url2=draft-ietf-tram-turnbis-12
> >>>
> >>>
> >>> Please note that it may take a couple of minutes from the time of
> >>> submission until the htmlized version and diff are available at
> tools.ietf.org.
> >>>
> >>> Internet-Drafts are also available by anonymous FTP at:
> >>> ftp://ftp.ietf.org/internet-drafts/
> >>>
> >>> _______________________________________________
> >>> tram mailing list
> >>> tram@ietf.org
> >>> https://www.ietf.org/mailman/listinfo/tram
> >>
> >> _______________________________________________
> >> tram mailing list
> >> tram@ietf.org
> >> https://www.ietf.org/mailman/listinfo/tram
> >>
> >>
> >> --
> >> Brandon Williams; Chief Architect
> >> Cloud Networking; Akamai Technologies Inc.
> >>
> >>
> >> _______________________________________________
> >> tram mailing list
> >> tram@ietf.org
> >> https://www.ietf.org/mailman/listinfo/tram

v2.23.0 | Report a Bug | By Email