IETF Logo Mail Archive

Re: [tram] [Tsv-art] Tsvart last call review of draft-ietf-tram-turnbis-25

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Thu, 20 June 2019 10:46 UTC

Return-Path: <TirumaleswarReddy_Konda@mcafee.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99EBC1200FA; Thu, 20 Jun 2019 03:46:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.309
X-Spam-Level:
X-Spam-Status: No, score=-4.309 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b6L9qyf9En6S; Thu, 20 Jun 2019 03:46:45 -0700 (PDT)
Received: from DNVWSMAILOUT1.mcafee.com (dnvwsmailout1.mcafee.com [161.69.31.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 25068120122; Thu, 20 Jun 2019 03:46:43 -0700 (PDT)
X-NAI-Header: Modified by McAfee Email Gateway (5500)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=s_mcafee; t=1561027025; h=From: To:CC:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:X-MS-Has-Attach:X-MS-TNEF-Correlator: dlp-product:dlp-version:dlp-reaction:authentication-results: x-originating-ip:x-ms-publictraffictype:x-ms-office365-filtering-correlation-id: x-microsoft-antispam:x-ms-traffictypediagnostic: x-ms-exchange-purlcount:x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers:x-forefront-prvs: x-forefront-antispam-report:received-spf:x-ms-exchange-senderadcheck: x-microsoft-antispam-message-info:Content-Type: MIME-Version:X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-originalarrivaltime: X-MS-Exchange-CrossTenant-fromentityheader: X-MS-Exchange-CrossTenant-id:X-MS-Exchange-CrossTenant-mailboxtype: X-MS-Exchange-CrossTenant-userprincipalname: X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-OriginatorOrg:X-NAI-Spam-Flag:X-NAI-Spam-Threshold: X-NAI-Spam-Score:X-NAI-Spam-Version; bh=H Upw59DnKJye3iLoQbNxIct/xZxbCCy1wsb3zMFS2k M=; b=fNLORia2W7gEt0Ec3IzfojFBKPn7nYBe1KBjnul66tf7 Itzoa8k+97cMcPYCE4boiKM3dfBw/RTkMeyyIaoLW6XHGS1qGk h2zfkv8DyXM3YXMa32Xet0SLXpGnQPbAXJarcZCjKM4xNgyoy8 cjIKrqM+Elnf+Zop3yRD8sPA0cI=
Received: from DNVEXAPP1N05.corpzone.internalzone.com (unknown [10.44.48.89]) by DNVWSMAILOUT1.mcafee.com with smtp (TLS: TLSv1/SSLv3,256bits,ECDHE-RSA-AES256-SHA384) id 6c23_5c60_bb9929ec_0406_4819_9e65_b8cc4d44a3f5; Thu, 20 Jun 2019 04:37:04 -0600
Received: from DNVEXAPP1N06.corpzone.internalzone.com (10.44.48.90) by DNVEXAPP1N05.corpzone.internalzone.com (10.44.48.89) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Thu, 20 Jun 2019 04:46:10 -0600
Received: from DNVO365EDGE1.corpzone.internalzone.com (10.44.176.66) by DNVEXAPP1N06.corpzone.internalzone.com (10.44.48.90) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Thu, 20 Jun 2019 04:46:10 -0600
Received: from NAM04-SN1-obe.outbound.protection.outlook.com (10.44.176.242) by edge.mcafee.com (10.44.176.66) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Thu, 20 Jun 2019 04:46:09 -0600
Received: from DM5PR16MB1705.namprd16.prod.outlook.com (10.172.44.147) by DM5PR16MB1723.namprd16.prod.outlook.com (10.172.47.140) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1987.11; Thu, 20 Jun 2019 10:46:08 +0000
Received: from DM5PR16MB1705.namprd16.prod.outlook.com ([fe80::3d0a:95ec:9842:68f7]) by DM5PR16MB1705.namprd16.prod.outlook.com ([fe80::3d0a:95ec:9842:68f7%9]) with mapi id 15.20.1987.014; Thu, 20 Jun 2019 10:46:08 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: Joe Touch <touch@strayalpha.com>
CC: Magnus Westerlund <magnus.westerlund@ericsson.com>, "ietf@ietf.org" <ietf@ietf.org>, Brandon Williams <brandon.williams@akamai.com>, "draft-ietf-tram-turnbis.all@ietf.org" <draft-ietf-tram-turnbis.all@ietf.org>, "tsv-art@ietf.org" <tsv-art@ietf.org>, "tram@ietf.org" <tram@ietf.org>
Thread-Topic: [Tsv-art] [tram] Tsvart last call review of draft-ietf-tram-turnbis-25
Thread-Index: AQHVJeLARC6n0ucJHkeMQsIbR9Bl76ai+JZQgAAP9QCAAAGloIAABJ0AgAAAh9CAAAQQAIAAAWEwgACd7QCAACe0kA==
Date: Thu, 20 Jun 2019 10:46:08 +0000
Message-ID: <DM5PR16MB17054AE0DA33AE71D7B44AB3EAE40@DM5PR16MB1705.namprd16.prod.outlook.com>
References: <155971464360.28104.6837263931145163343@ietfa.amsl.com> <F306B122-79F3-4C7A-8CE2-1C094D9F0FCC@strayalpha.com> <DM5PR16MB1705A4C370C4405AFFD63546EA100@DM5PR16MB1705.namprd16.prod.outlook.com> <5F2F8A3B-2887-4107-81E2-B4E222A4044E@strayalpha.com> <DM5PR16MB1705BD4E31370D2F5A179F17EA130@DM5PR16MB1705.namprd16.prod.outlook.com> <2C6B5776-CB95-4607-8D0C-07FDE2F6D515@strayalpha.com> <DM5PR16MB1705638AD29F3288E4AC0952EAED0@DM5PR16MB1705.namprd16.prod.outlook.com> <HE1PR0701MB252250AE4E7C158F985B0CC895ED0@HE1PR0701MB2522.eurprd07.prod.outlook.com> <D9A01E28-F9FB-4C86-AFD3-A2BA8D89C340@strayalpha.com> <a3bbeb17-e768-9ab2-9f34-3d179fa8fe38@akamai.com> <E41C125D-F3B4-475E-8AD0-124F531F1DC9@strayalpha.com> <DM5PR16MB170564C0438321CC3FDD0ACFEAEF0@DM5PR16MB1705.namprd16.prod.outlook.com> <4C41A2BC-0CBC-42D5-B313-22F9A9D51F6E@strayalpha.com> <DM5PR16MB1705874C023145D26DCB58E6EAEE0@DM5PR16MB1705.namprd16.prod.outlook.com> <edcd66c2-0dfb-8f89-d6a3-53482c433d4e@strayalpha.com> <DM5PR16MB17057CCD4D2543D84254EFD1EAEB0@DM5PR16MB1705.namprd16.prod.outlook.com> <HE1PR0701MB2522DCB2459055A6319C439B95EA0@HE1PR0701MB2522.eurprd07.prod.outlook.com> <DM5PR16MB1705E3EF8260B456A9B02C10EAEA0@DM5PR16MB1705.namprd16.prod.outlook.com> <HE1PR0701MB2522C0A1063877D45985619795EA0@HE1PR0701MB2522.eurprd07.prod.outlook.com> <BD41AC2D-3925-4E11-B1EC-AD24680376AE@strayalpha.com> <DM5PR16MB1705F636477B6234FEA35A04EAE50@DM5PR16MB1705.namprd16.prod.outlook.com> <A47BFD15-B787-484D-A678-698B2C7D77A6@strayalpha.com> <DM5PR16MB1705339D00B060CC7D8366FAEAE50@DM5PR16MB1705.namprd16.prod.outlook.com> <F7645044-C75D-4C52-87A1-514B576A41B6@strayalpha.com> <DM5PR16MB1705CFF84A31E550EB0415C9EAE50@DM5PR16MB1705.namprd16.prod.outlook.com> <125E7AE0-97D6-4BFD-BE1F-F1FB2B74BFB1@strayalpha.com> <DM5PR16MB1705D7AB3DB31338F0905D87EAE50@DM5PR16MB1705.namprd16.prod.outlook.com> <6C2A2BBA-801B-4B17-BFD3-A8235BE2C10C@strayalpha.com>
In-Reply-To: <6C2A2BBA-801B-4B17-BFD3-A8235BE2C10C@strayalpha.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.3.0.8
dlp-reaction: no-action
authentication-results: spf=none (sender IP is ) smtp.mailfrom=TirumaleswarReddy_Konda@McAfee.com;
x-originating-ip: [103.245.47.20]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6daa5d1d-7325-4d2e-88ae-08d6f56c80e2
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:DM5PR16MB1723;
x-ms-traffictypediagnostic: DM5PR16MB1723:
x-ms-exchange-purlcount: 4
x-microsoft-antispam-prvs: <DM5PR16MB172306E873850A3750F9B130EAE40@DM5PR16MB1723.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0074BBE012
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(346002)(376002)(366004)(136003)(396003)(189003)(199004)(32952001)(229853002)(7736002)(4326008)(25786009)(3846002)(53936002)(478600001)(9686003)(102836004)(68736007)(6246003)(236005)(54906003)(5660300002)(26005)(55016002)(76116006)(66066001)(8676002)(81156014)(52536014)(6306002)(6436002)(66476007)(74316002)(66946007)(9326002)(81166006)(86362001)(99286004)(54896002)(33656002)(606006)(11346002)(66556008)(71200400001)(71190400001)(6506007)(8936002)(2906002)(73956011)(5024004)(256004)(53546011)(66446008)(486006)(14454004)(76176011)(476003)(72206003)(64756008)(186003)(6916009)(316002)(80792005)(7696005)(966005)(446003)(6116002)(790700001)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR16MB1723; H:DM5PR16MB1705.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: McAfee.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: nx59K5IQjMtvqyeJ98xUqLtrsHQKAL28DZ0DiVZskrf7VK3sKiWmi3MmIq1ecueRGmh+p2H309p9hIm2AUgaFybFrydwli0R2Jr8D65JM7giZKUhuH2JoEaOQy7FgsBxtly7y/twFfw+dLMN0DiLuloUusYUgwtOVW1lTUPF7vqPRgtQUyKzBthO1IiFk48yQY88KUpu2IVrK+2wF4sN6hML2+gpqJpQvWyUJbWW/AwRO4IsvZzfuR+KaAuqAtXHgQzMRpPm27D/bGvFGJ01LplDvvQMyTT6IN42zjN+HUbFYmQ5s1UTL+S+0wd1jxzAlon9L7r809DcTZOX3E+E3AqGNnYAOTp5iNbeu7UcOlKFLkwnZISf8cbdPmhsXL8+TsjxIsUVuMMZn4O4ZmcpTYV+ksYG2VTLBG97Hw38xRQ=
Content-Type: multipart/alternative; boundary="_000_DM5PR16MB17054AE0DA33AE71D7B44AB3EAE40DM5PR16MB1705namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 6daa5d1d-7325-4d2e-88ae-08d6f56c80e2
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jun 2019 10:46:08.4334 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: TirumaleswarReddy_Konda@McAfee.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR16MB1723
X-OriginatorOrg: mcafee.com
X-NAI-Spam-Flag: NO
X-NAI-Spam-Threshold: 15
X-NAI-Spam-Score: 0
X-NAI-Spam-Version: 2.3.0.9418 : core <6572> : inlines <7107> : streams <1825029> : uri <2858149>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/sglddUpu4agJ_6-CPNBw4wlAvyA>
Subject: Re: [tram] [Tsv-art] Tsvart last call review of draft-ietf-tram-turnbis-25
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jun 2019 10:46:49 -0000

Hi Joe,

Please see inline [TR]

From: Joe Touch <touch@strayalpha.com>
Sent: Thursday, June 20, 2019 6:00 AM
To: Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com>
Cc: Magnus Westerlund <magnus.westerlund@ericsson.com>; ietf@ietf.org; Brandon Williams <brandon.williams@akamai.com>; draft-ietf-tram-turnbis.all@ietf.org; tsv-art@ietf.org; tram@ietf.org
Subject: Re: [Tsv-art] [tram] Tsvart last call review of draft-ietf-tram-turnbis-25


CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe.

________________________________
Tiru,

This sort of patch isn’t sufficient. It doesn’t address the confusion throughout section 15 as to what’s actually happening.

Sec 15 shouldn’t talk about “setting” IP header values at all; it should refer to “configuring transport sessions” in the desired ways. Otherwise you’re implying direct packet-level conversion. Even the title of that section is a problem in this regard.

[TR] What title do you want me to use for Section 15 ?

Tthe sections themselves should be revised to similarly refer to transport-level actions, not packet level, e.g.:
15.1 TCP to UDP
              - because DSCP should not vary within a TCP session, there is no packet-level tracking of copying DSCP from TCP to UDP; instead, DSCP would be a property of the TCP session that would be used to configure the UDP socket pair.

[TR] Agreed, but the text looks correct to me. It says “Note, the TCP connection can only use a single DSCP code point so inter flow differentiation is not possible”.

              - IP fragmentation control needs to be explained in terms of UDP interactions

[TR] Yes, DONT-FRAGMENT attribute in the TURN message is used to set the DF bit in the outgoing IP header to 1. What specific change are you expecting ?

              - IPv6 fragmentation has nothing to do with the received packet (which is TCP

[TR] Same as above,  DONT-FRAGMENT attribute in the TURN message is used to set the DF bit in the outgoing IP header to 1.

              - IP options are *as default*; it’ isn’t correct that you never use IP options (or are you actively disabling them?)
                              NOTE: that goes for the direct IPv4 to IPv6 translation in section 4 (which is similarly problematic)

[TR]   I am not aware of default IPv4 options and extension headers, and I don’t see any default IPv4 options discussed in https://tools.ietf.org/html/rfc6274. What IP4 options and IPv6 extension headers are default ?
          RTP/RTCP do not use any IPv4 options and IPv6 extension headers. What is the loss of functionality if IP options and extension headers are not set by the TURN server for outgoing UDP packets to the peer ?


15.2 UDP to TCP
              - the last sentence of the second paragraph seems at odds with the first; the first says “set these once per connection”, it is sufficient IMO.

[TR] Okay, removed the last sentence of the second paragraph.

              -TCP DSCP should be based on the *first* UDP value seen (it could vary)

[TR] No, the client first establishes TCP connection with the server and exchanges TURN messages for allocation and permission, UDP packets can only be sent by the peer after permission is created. Please see https://tools.ietf.org/html/rfc7657#section-5.3

Cheers,
-Tiru

              - same issue with IP extension headers and options (presumably you use the default

Joe


On Jun 19, 2019, at 8:14 AM, Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com<mailto:TirumaleswarReddy_Konda@McAfee.com>> wrote:

Hi Joe,

The IPv4 and IPv6 fragmentation description is specific to TCP-to-UDP relaying between the client and the peer (only for TCP-to-UDP relay, the DF attribute in the TURN message will be used to set the DF bit in the outgoing UDP packet to the peer). To avoid confusion, I have added two new sub-sections:
15.1.  IP Header Fields for TCP-to-UDP relaying and 15.2 IP Header Fields for UDP-to-TCP relaying

Please see the attached updated draft.

Cheers,
-Tiru

v2.23.0 | Report a Bug | By Email