IETF Logo Mail Archive

Re: [tram] Chime in on attched redlined version-12 WAS: I-D Action: draft-ietf-tram-turn-server-discovery-12.txt

Karl Stahl <karl.stahl@ingate.com> Wed, 08 February 2017 06:58 UTC

Return-Path: <karl@ingate.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7405B1293F9 for <tram@ietfa.amsl.com>; Tue, 7 Feb 2017 22:58:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.01
X-Spam-Level:
X-Spam-Status: No, score=-1.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MSGID_MULTIPLE_AT=1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ingate.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FVVTbA7d7BES for <tram@ietfa.amsl.com>; Tue, 7 Feb 2017 22:58:15 -0800 (PST)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40061.outbound.protection.outlook.com [40.107.4.61]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A1D441294B6 for <tram@ietf.org>; Tue, 7 Feb 2017 22:58:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ingate.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=SS41qgAqUf+MeAttFqur+PwMGaHVGRWO7BOSAtfzFG8=; b=jxLjN+7KrU37L0mqdggcY3+ItAksoXGp7Bx9tx/7/oPxxo4oow1JReGJbgF+I5/lvot1jXcUsTeDBF6r++aCwOnTjNcJge34VaoX3GS15YcFqSz57zLAQHZDfIIzCyE2MHpQUaspEB/Hiewr3A1Ij4gWaml5eIReh0UESbY38Gk=
Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=karl@ingate.com;
Received: from Kallei7 (90.227.80.227) by AM4PR01MB1828.eurprd01.prod.exchangelabs.com (10.167.85.26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Wed, 8 Feb 2017 06:58:10 +0000
From: Karl Stahl <karl.stahl@ingate.com>
To: "'Tirumaleswar Reddy (tireddy)'" <tireddy@cisco.com>, 'Simon Perreault' <sperreault@jive.com>, 'Spencer Dawkins at IETF' <spencerdawkins.ietf@gmail.com>
References: <148427986357.3020.7793783112924549744.idtracker@ietfa.amsl.com> <a4aaffdefb794fb0a1b96f0252b862a9@XCH-RCD-017.cisco.com> <CAKKJt-fUzJJS9SXvbG2=T7PDz6nvHnhBqvHRtm-41BoGJsJC6Q@mail.gmail.com> <b139c913-a052-9397-c5df-7cd7c884cf71@jive.com> <CAKKJt-eh8ZZ=5J0KoY9zUpOhj=r9+ATSOk_hEF=G7qTt78_4-Q@mail.gmail.com> <5893bf99.0699370a.55c1f.0964SMTPIN_ADDED_BROKEN@mx.google.com> <bfd3ab0f-dbd5-2f95-1830-fc869a29d7c6@jive.com> <4547122c1f244f4db631dfda97404561@XCH-RCD-017.cisco.com> <028401d2812d$6b02c220$41084660$@stahl@ingate.com> <70420ebfeccb4c0086f946628cdc4daf@XCH-RCD-017.cisco.com>
In-Reply-To: <70420ebfeccb4c0086f946628cdc4daf@XCH-RCD-017.cisco.com>
Date: Wed, 08 Feb 2017 07:58:05 +0100
Message-ID: <03aa01d281d8$b4d5df80$1e819e80$@stahl>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_03AB_01D281E1.169A4780"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AQHSfiNgsYWH8ggx2UOfGdVJL7afyaFdF4UAgAAf2JCAACyPAIAAotvA
Content-Language: sv
X-Originating-IP: [90.227.80.227]
X-ClientProxiedBy: VI1PR0901CA0058.eurprd09.prod.outlook.com (10.167.203.154) To AM4PR01MB1828.eurprd01.prod.exchangelabs.com (10.167.85.26)
X-MS-Office365-Filtering-Correlation-Id: 60a25fd2-92a0-407d-2efc-08d44fefd815
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001);SRVR:AM4PR01MB1828;
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 3:Xoy7fQuQf4wdEQ6hTHM6E8zwghFdhjThHAb6KvXIHjGmHCGTJAnKmA39DGdb1rD/11XtkTuz0nrpqxuhGQmaJDg8vWS6QxaKObWVHi3wq/GMyt0TgPRQkIQ8xDXjygqpfPCzWKS+dVq64BiZ+gG6vhx9VqkjJ/cQWkMwBnSWqeSgSYihv/CfCtiWbxysG95w46Kdq2s+McmCd5588iojo5zP9Zd9tLLpzlgCI7NomkonlE3zC2UfiP1n9Iv6bnp6wJh26+Pvb3E0A3kLjLnt1g==; 25:HOozSpjsb5aEbahtFKTtkfTxrmG2OyUNs42Wf1tBQy8wjdY/NncPbGAMGRc2hi5aHhuygBYvx3RonsvZqxYUysVwOXFXSYSK8VvP/I7zUQivBHaxEjJAgFx5MBGmV5NI0uyaX4sqxOlELqo0Q05ZuRLxz/9BUkss1p31RUTvEfDb47e+AjbBfkNomuZeBbVgTt6pr5FrIgOD2TI81688mkgcuToHIKhWKjJr9N0WD6D55RwqE9xcCuk8nuov8Sqt84JjOwdvxP4PNc3Q3z37bt9bjbjz0LVpClohntAT+HdpuCIlZ6zudgSp7paMJTFaTRmlJn6roregL+csewfxkigtgRyFX/b/QUCGMp1zh3967wFO/8bkftyimr5qREBo3uSJdJzf7Qrp6s3HxTmK8o9rXYW1nH5a5vU3vgJaSOVxhFZZzfWytfP7TGabcOGGjEiZLmHZYVqdgUh4Z/cOTA==
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 31:DzilIzufmaEDdPfgT/Glrb0820nT2G6ra6Yq2pJjAaCXgFb1V7dLZGu9DMMxAB85zzgqV7Dq+zACjKAWAdMMYVAqeyE+P4muE8yjNZ4743HdBfXjLMYNzvPnOd0qzsKOiwTFTzzvOjAXE7kuUZG/DvMLVYEobfZEDkU1vLRKVycasGwhLTGu/QZfXYKhmPRQLIH9h4lbYxs5mBtpGoTyqph/WJaAFvGBaf5wuV7KMqdvb24j62B9/4gdEOAM8NVLz0zqKKM68Zs1GwZUnEYbW6u5kXjQw+gZTfWB4kFAlUE=
X-Microsoft-Antispam-PRVS: <AM4PR01MB1828FDBB21A9AEA0362F1926B1420@AM4PR01MB1828.eurprd01.prod.exchangelabs.com>
X-Exchange-Antispam-Report-Test: UriScan:(158342451672863)(192374486261705)(100405760836317)(95692535739014)(21748063052155);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(2017020702029)(5005006)(20170203043)(10201501046)(3002001)(6041248)(20161123555025)(20161123560025)(20161123558025)(20161123562025)(20161123564025)(6072148); SRVR:AM4PR01MB1828; BCL:0; PCL:0; RULEID:; SRVR:AM4PR01MB1828;
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 4: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
X-Forefront-PRVS: 0212BDE3BE
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10009020)(4630300001)(7916002)(39450400003)(13464003)(24454002)(189002)(199003)(38534002)(377454003)(51914003)(377424004)(76176999)(81156014)(81166006)(102836003)(71636004)(18717965001)(50986999)(33646002)(36756003)(101416001)(53936002)(50226002)(53946003)(4326007)(38730400002)(42186005)(8676002)(61296003)(6496005)(6666003)(6116002)(3846002)(93886004)(790700001)(92566002)(7906003)(5660300001)(6486002)(39060400001)(84116002)(2950100002)(230783001)(68736007)(96836002)(25786008)(606005)(44736005)(5890100001)(66066001)(106356001)(105586002)(106116001)(7826002)(1420700001)(2906002)(512934002)(7736002)(84326002)(236005)(97736004)(14726001)(9686003)(189998001)(54896002)(6306002)(61793004)(579004)(559001); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR01MB1828; H:Kallei7; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
Received-SPF: None (protection.outlook.com: ingate.com does not designate permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 23: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
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 6:WiSKHRpmve4r5ohldg1Xb2ZxoSM7CzQ55h1eqO0bYqYX141bAMsWSQVZqxXSDgXszf3HZk73TEiy+xvWvyyoA6vSQqR1ZHnymxmSEBjGGerMWIJvwP/ALeZAQzoWMbc3buzrjpt01ABg59WY3pn91+YTZtVjfhAYjvP19R9L3//fFvfYh/fJezXgFA5ZpFVBcBsC5EpOnXfdFSxkw+vAvvU7HPPDpYw9lxeNgKrlCVybNfgj0mx3SDo23p10XODaNK+ailjU/ZIXSoUWrUb875A0RBP1lTq1HyZTJGEJ28L8MESZaNZI4xPA3CHiB6V1rftFigFPCcxqkjV8P3zDQPmorTZxzOMZBxdl1mhVl2ohTSUGNr8N3tZWq1GrYHEKuZksmdWbpF+mOwmrhLTrFA==; 5:kFI4oB9XYBa7sqMqKCKfp2S3QYBgwpOLjr/j+rtCNTyNiPyXDyffLlb9Iktuc4gBtuvkL1hJI/WRLE+K2sXlFsASvvXqZHq3JORmVPQBwjDBMPqjreExw+A/Vrwl7SmlfXRgN47v2OJO+0n6toLwEDZMERNehpqzCDJRLsG/9/M=; 24:P9susvt61DA5167oLwAyXe3bAs8oNKSs9kIVHq6zUhXaEvTahe2McgNb/FdHzQHTPu0Q0QOiZuEmY4otpl3O92sdBgvOpCU6iO3soBZbS9w=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; AM4PR01MB1828; 7:wBbkC3tiRxgRziGL1JQZdd7n3B2LBXaUKUsf9qaR+2EJhQJSAhg90cXm3UivZiruWnjE6o7PDWK6/ZkXSVF/j/GAvqp1k4+Hyq1KlvMxyFG9UImCPuetSJUFDXDl9W86Ki5/G7rRVEgW1vaoQZM9XZpmzoPZu1cvP3kRex9M5tiT0ouEbXJf7CpIZ7l+JXYmIWo/80xooTXzUiDOfwqi/ncOedsfRhk0jn4uBw2y9rh+G9Cl5UPbKx59Z5Z4TSGWX3zrwpTxJEJw4qLGg0u8iA3RXaA8Jeh0rzyYV7IzyZn5vn6OpGQgKlbE6RK2XFyiOMO7Xrk7SZtaD+GXyf+uMn5x8Of1JCY4CGraHmGhuUusZRttNLoCkzmNIGOe5Axs1Ea+hLj1PyNkPlC2DiPO/VcCnjXJSEiY0kwWA+8BIpG+OhxCxwg3MfMxNIPJdKuJuuHaHEcqJ6URxNj81dExP+QGMjJyZstU/1v0MH2POTJb7TcjfLsz6rVr9bR5Ha2AoC6LOEgpess7g8nKL2hWDw==
X-OriginatorOrg: ingate.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 08 Feb 2017 06:58:10.2083 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR01MB1828
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/wElR1GhsfbbMEdiZhYNAaGWgjs8>
Cc: tram@ietf.org
Subject: Re: [tram] Chime in on attched redlined version-12 WAS: I-D Action: draft-ietf-tram-turn-server-discovery-12.txt
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Feb 2017 06:58:18 -0000

1) The A)+B) method (that Simon and I discussed) is not specified in the
draft -12 text and further referencing: 

[Tiru below]> " <https://tools.ietf.org/html/rfc7094#section-3.4>
https://tools.ietf.org/html/rfc7094#section-3.4 also discusses similar
mechanism" does not help:

- It rather states issues coming from not knowing whether a server reached
by anycast addressing, actually is at a unicast address or really is
deployed at a anycast address (which I believe is rare).

 

2) Further, there are no deployment considerations for the A)+B) method in
the –12 draft (compare the redlined version)

It does not even discuss or list  RFC7478 (Web Real-Time Communication Use
Cases and Requirements) that it is supposed to meet, but which the A)+B)
method is in conflict with. 

 <https://www.ietf.org/mail-archive/web/tram/current/msg02314.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02314.html and
https://www.ietf.org/mail-archive/web/tram/current/msg02254.html. 

 

 

3) And if the (more complex) A)+B) method would be properly defined and
described in some future revision, then remains (from
https://www.ietf.org/mail-archive/web/tram/current/msg02254.html):

“(trying to) exemplify/clarify the high level (important) points why we

need/want anycast discovery by saying Binding instead of Allocate. These

points are:

 

(A) We need an anycast discovery method for auto-discovering "a TURN server"

(not some special TURN server or arrangement of TURN servers "invented" for

being discoverable by a certain method)

 

(B) We need an anycast discovery method for a TURN server that is

setup/installed/configured for its USAGE (which is relaying traffic) - not

requiring a special network configuration just for being discoverable. (And

more widely, it must be the goal of this specification to provide at least

one discovery method that works for ALL network types and configurations,

where a network provided TURN server may be useful - I see only anycast

using Binding for querying *the TURN server's* unicast address fulfilling

this.)  

 

(C) Robust (tolerant) deployment is highly preferable.

 

(D) Ease of deployment is highly preferable.

 

Saying Binding instead Allocate, is necessary to achieve (A) and (B), and

improves (C) and (D).”

 

4) The (D)TLS text in version -12 does not have consensus either. 

https://www.ietf.org/mail-archive/web/tram/current/msg02296.html and 

https://www.ietf.org/mail-archive/web/tram/current/msg02297.html 

Against my red lined (D)TLS changes, I have heard no objections (just as
with the red lined anycast method).

 

/Karl

 

 

-----Ursprungligt meddelande-----
Från: Tirumaleswar Reddy (tireddy) [mailto:tireddy@cisco.com] 
Skickat: den 7 februari 2017 12:02
Till: Karl Stahl; 'Simon Perreault'; 'Spencer Dawkins at IETF'
Kopia: tram@ietf.org
Ämne: RE: [tram] Chime in on attched redlined version-12 WAS: I-D Action:
draft-ietf-tram-turn-server-discovery-12.txt

 

> -----Original Message-----

> From: tram [ <mailto:tram-bounces@ietf.org> mailto:tram-bounces@ietf.org]
On Behalf Of Karl Stahl

> Sent: Tuesday, February 7, 2017 4:02 PM

> To: Tirumaleswar Reddy (tireddy) < <mailto:tireddy@cisco.com>
tireddy@cisco.com>; 'Simon Perreault'

> < <mailto:sperreault@jive.com> sperreault@jive.com>; 'Spencer Dawkins at
IETF'

> < <mailto:spencerdawkins.ietf@gmail.com> spencerdawkins.ietf@gmail.com>

> Cc:  <mailto:tram@ietf.org> tram@ietf.org

> Subject: Re: [tram] Chime in on attched redlined version-12 WAS: I-D
Action:

> draft-ietf-tram-turn-server-discovery-12.txt

> 

> Tiru,

> 

> That does not make the version -12 text in the draft any clearer about
what

> the draft's anycast method actually is. I am asking you the same question
as I

> asked Simon before (and only he answered):

 

I agree with the responses Simon has already provided to all the below
questions. Further, I also don't see the need to discuss the below questions
in the draft because they are only operational considerations (and have no
impact on the actual protocol).

 

-Tiru

 

> 

> Does the draft assume:

> 

> (A) a TURN server listening to TWO IP addresses (that are at different

> subnets) that can respond error 300 or make an allocation, distinguished
by

> whether the request was received on its anycast address or its unicast

> address, OR

> 

> (B) we really have TWO TURN servers to play with (the one at the anycast

> address being configured to respond with the error 300, OR

> 

> (C) the FIRST Allocate is responded to with error 300 and SUBSEQUENT

> Allocates actually are making TURN allocations.

> 

> 

> We cannot have an RFC, not even being clear about the method specified.

> 

> /Karl

> 

> 

> -----Ursprungligt meddelande-----

> Från: Tirumaleswar Reddy (tireddy) [ <mailto:tireddy@cisco.com>
mailto:tireddy@cisco.com]

> Skickat: den 7 februari 2017 07:18

> Till: Simon Perreault; Karl Stahl; 'Spencer Dawkins at IETF'

> Kopia:  <mailto:tram@ietf.org> tram@ietf.org

> Ämne: RE: [tram] Chime in on attched redlined version-12 WAS: I-D Action:

> draft-ietf-tram-turn-server-discovery-12.txt

> 

> > -----Original Message-----

> > From: Simon Perreault [ <mailto:sperreault@jive.com>
mailto:sperreault@jive.com]

> > Sent: Friday, February 3, 2017 7:13 PM

> > To: Karl Stahl < <mailto:karl.stahl@ingate.com> karl.stahl@ingate.com>;
'Spencer Dawkins at IETF'

> > < <mailto:spencerdawkins.ietf@gmail.com> spencerdawkins.ietf@gmail.com>

> > Cc:  <mailto:tram@ietf.org> tram@ietf.org; Tirumaleswar Reddy (tireddy)
< <mailto:tireddy@cisco.com> tireddy@cisco.com>

> > Subject: Re: [tram] Chime in on attched redlined version-12 WAS: I-D

> Action:

> > draft-ietf-tram-turn-server-discovery-12.txt

> >

> > Karl,

> >

> > There is no consensus in the working group behind this new anycast

> > mechanism. Therefore it can not be added to the draft, and the

> > mechanism defined in RFC 5766 remains.

> 

> Yup,  <https://tools.ietf.org/html/rfc7094#section-3.4>
https://tools.ietf.org/html/rfc7094#section-3.4 also discusses similar

> mechanism.

> I don't see the need for a new anycast mechanism.

> 

> -Tiru

> 

> >

> > Thanks,

> > Simon

> >

> > Le 2017-02-02 à 18:23, Karl Stahl a écrit :

> > > The -12 version of the draft does not include major remedies of

> > > flaws that were un-addressed long before the DISCUSS, nor the latest

> > > regarding the possible use of (D)TLS for auto discovered turn

> > > servers provided the local or access network administrator, see

> > >

> > >  <https://www.ietf.org/mail-archive/web/tram/current/msg02216.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02216.html

> > >

> > >

> > >

> > > For the latest discussed, see

> > >

> > >

> > >

> > >  <https://www.ietf.org/mail-archive/web/tram/current/msg02279.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02279.html

> > >

> > >>> However, I think we need agreement on the justification for such a

> > >

> > >> change.

> > >

> > >> [Karl] Justification is in the (A), (B), (C) and (D) of

> > >

> > >>  <https://www.ietf.org/mail-archive/web/tram/current/msg02254.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02254.html

> > >

> > >> where saying Binding instead Allocate, is necessary to achieve (A)

> > >> and

> > > (B), and improves (C) and (D).

> > >

> > >

> > >

> > > Brandon> It is true that you have provided a justification for the

> change.

> > >

> > >

> > >

> > >  <https://www.ietf.org/mail-archive/web/tram/current/msg02296.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02296.html

> > >

> > > The (D)TLS mandating was Author's idea to throw into version -10

> > > during the discuss and remains in this version -11, breaking the

> > > consensus text since version -7.

> > >

> > >

> > >

> > >  <https://www.ietf.org/mail-archive/web/tram/current/msg02297.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02297.html

> > >

> > > STUN dummy authentication instead of (D)TLS as suggested by Oleg

> > > Moskalenko

> > >

> > >

> > >

> > >

> > >

> > > I have inserted my (now edited and adopted to the latest) redlining,

> > > removal of blue options etc. into the -12 draft text as attached,

> > > for the author to copy from and paste.

> > >

> > >

> > >

> > > Without my red lining, current version -12 is in conflict with

> > > RFC7478 (Web Real-Time Communication Use Cases and Requirements)

> > > and does

> > not

> > > meet the need of [I-D.ietf-rtcweb-return] (Recursively Encapsulated

> > > TURN) (see under redlined 7.2)

> > >

> > > and it does not do what was set out in the Charter and "Milestone 3:

> > > TURN server auto-discovery mechanism for enterprise and ISPs"

> > >

> > >

> > >

> > > Further, the authors have in version -12 (compared to from before

> > > DISCUSS)  changed the text "  6.  Discovery using Anycast " to:

> > >

> > >
<https://tools.ietf.org/rfcdiff?url1=draft-ietf-tram-turn-server-disc>
https://tools.ietf.org/rfcdiff?url1=draft-ietf-tram-turn-server-disc

> > > ov ery-09.txt&url2=draft-ietf-tram-turn-server-discovery-12.txt

> > >

> > > "IP anycast can also be used for TURN service discovery.  A packet

> > >

> > >    sent to an anycast address is delivered to the "topologically

> > >

> > >    nearest" network interface with the anycast address.  Using the

> > > TURN

> > >

> > >    anycast address, the only two things that need to be deployed in

> > > the

> > >

> > >    network for discovery are the two things that actually use TURN.

> > >

> > >

> > >

> > >    When a client requires TURN services, it sends a TURN allocate

> > >

> > >    request to the assigned anycast address.  A TURN anycast server

> > >

> > >    performs checks 1 to 7 discussed in Section 6.2 of [RFC5766].  If

> > > all

> > >

> > >    checks pass, the TURN anycast server MUST respond with a 300 (Try

> > >

> > >    Alternate) error as described in Section 2.9 of [RFC5766]; The

> > >

> > >    response contains the TURN unicast address in the

> > > ALTERNATE-SERVER

> > >

> > >    attribute.  For subsequent communication with the TURN server,

> > > the

> > >

> > >    client uses the responding server's unicast address.  This has to

> > > be

> > >

> > >    done because two packets addressed to an anycast address may

> > > reach

> > >

> > >    two different anycast servers.  The client, thus, also needs to

> > >

> > >    ensure that the initial request fits in a single packet.  An

> > >

> > >    implementation may choose to send out every new TURN Allocation

> > >

> > >    request to the anycast address to discover the closest and the

> > > most

> > >

> > >    optimal unicast address for the TURN server."

> > >

> > >

> > >

> > > The highlighted "A TURN anycast server"  isnothing known nor

> > > described (in fact there would have to be TWO TURN servers, one

> > > deployed at the anycast address and another TURN server deployed at

> > > the unicast address, reacting differently to the Allocation request)

> > > for this to work as clarified in WG discussions with Simon).

> > >

> > >

> > >

> > > The last sentence "An  implementation may choose to send out every

> > > new TURN Allocation request to the anycast address to discover the

> > > closest and the most optimal unicast address for the TURN server."

> > > violates security and deployment considerations (see red lined

> > > considerations in attached).

> > >

> > >

> > >

> > > Further, the authors have in version -12 (compared to from before

> > > DISCUSS)  changed the text "7.2.  Recursively Encapsulated TURN " to:

> > >

> > >
<https://tools.ietf.org/rfcdiff?url1=draft-ietf-tram-turn-server-disc>
https://tools.ietf.org/rfcdiff?url1=draft-ietf-tram-turn-server-disc

> > > ov ery-09.txt&url2=draft-ietf-tram-turn-server-discovery-12.txt

> > >

> > > "WebRTC endpoints SHOULD treat any TURN server discovered through

> > the

> > >

> > >    mechanisms described in this specification as an

> > > enterprise/gateway

> > >

> > >    or access network server, in accordance with Recursively

> > > Encapsulated

> > >

> > >    TURN [I-D.ietf-rtcweb-return]."

> > >

> > >

> > >

> > > The text is a contradiction, since the return draft deals with TURN

> > > servers provided by the local or access network, not other TURN

> > > servers discovered by this draft.

> > >

> > >

> > >

> > > *Current -12 draft cannot be considered to be an RFC!*

> > >

> > >

> > >

> > > I suggest the redline version of draft -12 attached is chimed into

> > > now and quickly merged into a version -13, so we can avoid the

> > > "Conflict Resolution and Appeals"process hinted about in

> > >

> > >  <https://www.ietf.org/mail-archive/web/tram/current/msg02202.html>
https://www.ietf.org/mail-archive/web/tram/current/msg02202.html,

> > > further delaying what is needed for Internet real-time communication

> > > and especially for WebRTC.

> > >

> > >

> > >

> > > /Karl

> > >

> > >

> > >

> > > *Från:*tram [ <mailto:tram-bounces@ietf.org>
mailto:tram-bounces@ietf.org] *För *Spencer Dawkins at

> > > IETF

> > > *Skickat:* den 1 februari 2017 22:12

> > > *Till:* Simon Perreault

> > > *Kopia:*  <mailto:tram@ietf.org> tram@ietf.org <
<mailto:tram@ietf.org> mailto:tram@ietf.org>; Tirumaleswar Reddy

> > > (tireddy)

> > > *Ämne:* Re: [tram] I-D Action:

> > > draft-ietf-tram-turn-server-discovery-12.txt

> > >

> > >

> > >

> > > Hi, Simon,

> > >

> > >

> > >

> > > On Thu, Feb 2, 2017 at 6:00 AM, Simon Perreault <sperreault@jive.com

> > > < <mailto:sperreault@jive.com> mailto:sperreault@jive.com>> wrote:

> > >

> > > Le 2017-02-01 à 15:37, Spencer Dawkins at IETF a écrit :

> > >> Dear TRAMsters,

> > >>

> > >> On Fri, Jan 13, 2017 at 12:59 PM, Tirumaleswar Reddy (tireddy)

> > >> <tireddy@cisco.com

> > >> < <mailto:tireddy@cisco.com>
mailto:tireddy@cisco.com><mailto:tireddy@cisco.com

> > > < <mailto:tireddy@cisco.com> mailto:tireddy@cisco.com>>> wrote:

> > >>

> > >>     This revision addresses comments from Brandon.

> > >>

> > >>     -Tiru

> > >>

> > >>

> > >> How close are we to asking Terry to clear the (last remaining)
DISCUSS?

> > >

> > > Thanks for the reminder.

> > >

> > > If my co-chair and the authors have no objection, I think we're ready.

> > >

> > >

> > >

> > > I'll give this 24 hours for people to chime in, but I do want to

> > > ping Terry.

> > >

> > >

> > >

> > > It's a little-appreciated thing, but AD ballot positions go away

> > > when ADs go away; this document has 12 yes/no objections now, and

> > > you need

> > > 10 for approval, and three are from ADs who are stepping down in

> > > March

> > > ;-)

> > >

> > >

> > >

> > > Spencer

> > >

> > >

> > >

> > > _______________________________________________

> > > tram mailing list

> > >  <mailto:tram@ietf.org> tram@ietf.org

> > >  <https://www.ietf.org/mailman/listinfo/tram>
https://www.ietf.org/mailman/listinfo/tram

> > >

> >

> >

> > --

> > Simon Perreault

> > Director of Engineering, Platform | Jive Communications, Inc.

> >  <https://jive.com> https://jive.com | +1 418 478 0989 ext. 1241 |
<mailto:sperreault@jive.com> sperreault@jive.com

> 

> _______________________________________________

> tram mailing list

>  <mailto:tram@ietf.org> tram@ietf.org

>  <https://www.ietf.org/mailman/listinfo/tram>
https://www.ietf.org/mailman/listinfo/tram

v2.23.0 | Report a Bug | By Email