[BEHAVE] Resend : 2nd WGLC draft-ietf-behave-nat-behavior-discovery-04
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[BEHAVE] Resend : 2nd WGLC draft-ietf-behave-nat-behavior-discovery-04
Some email to ietf lists seem to be having a problems so here is a resend of this for folks that never got it. 

Begin forwarded message:


From: MAILER-DAEMON at core3.amsl.com (Mail Delivery System)
Date: August 28, 2008 7:42:05 PM MDT (CA)
ToFrom behave-bounces at ietf.org  Tue Sep  2 12:48:34 2008

Return-Path: <behave-bounces at ietf.org>
X-Original-To: behave-archive at optimus.ietf.org
Delivered-To: ietfarch-behave-archive at core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1])
	by core3.amsl.com (Postfix) with ESMTP id F2BFD28C163;
	Tue,  2 Sep 2008 12:48:33 -0700 (PDT)
X-Original-To: behave at core3.amsl.com
Delivered-To: behave at core3.amsl.com
Received: from localhost (localhost [127.0.0.1])
	by core3.amsl.com (Postfix) with ESMTP id B9E473A6B08
	for <behave at core3.amsl.com>; Tue,  2 Sep 2008 12:48:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.598
X-Spam-Level: X-Spam-Status: No, score=-106.598 tagged_above=-999 required=5 
	tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4,
	USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32])
	by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 8bXDTqVr4Dvk for <behave at core3.amsl.com>;
	Tue,  2 Sep 2008 12:48:31 -0700 (PDT)
Received: from sj-iport-6.cisco.com (sj-iport-6.cisco.com [171.71.176.117])
	by core3.amsl.com (Postfix) with ESMTP id 740DA3A6860
	for <behave at ietf.org>; Tue,  2 Sep 2008 12:48:30 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.32,317,1217808000"; d="scan'208,217";a="151264790" 
Received: from sj-dkim-4.cisco.com ([171.71.179.196])
	by sj-iport-6.cisco.com with ESMTP; 02 Sep 2008 19:48:37 +0000
Received: from sj-core-5.cisco.com (sj-core-5.cisco.com [171.71.177.238])
	by sj-dkim-4.cisco.com (8.12.11/8.12.11) with ESMTP id m82JmbXf017099
	for <behave at ietf.org>; Tue, 2 Sep 2008 12:48:37 -0700
Received: from [192.168.4.177] (sjc-fluffy-vpn1.cisco.com [10.25.236.82])
	by sj-core-5.cisco.com (8.13.8/8.13.8) with SMTP id m82JmZxA014679
	for <behave at ietf.org>; Tue, 2 Sep 2008 19:48:35 GMT
Message-Id: <A0DA8162-F680-49A1-991D-86743B566AEC at cisco.com>
From: Cullen Jennings <fluffy at cisco.com>
To: Behave WG <behave at ietf.org>
Impp: xmpp:cullenfluffyjennings at jabber.org
Mime-Version: 1.0 (Apple Message framework v928.1)
Date: Tue, 2 Sep 2008 13:48:21 -0600
References: <20080829014205.06D3C28C35D at core3.amsl.com>
X-Mailer: Apple Mail (2.928.1)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=12413; t=1220384917;
	x=1221248917; c=relaxed/simple; s=sjdkim4002;
	h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version;
	d=cisco.com; i=fluffy at cisco.com;
	z=From:=20Cullen=20Jennings=20<fluffy at cisco.com>
	|Subject:=20Resend=20=3A=20[BEHAVE]=202nd=20WGLC=20draft-ie
	tf-behave-nat-behavior-discovery-04 |Sender:=20;
	bh=5JZyG6sP2OT1d2rx+aTHYmFkeO2Cof6nDuydOFzXkm0=;
	b=ooAImnfvoZhATikqCjPXWoTDZEQmeE9KT5TMIWk/+21rGhaFx6pi6No949
	ExF+7M8RZvP3PCpV+pxe6Euc1enKrwO8dXkd3mDvzYLQn/5zjvRsLXSu5tbi
	6sJzYYalPP;
Authentication-Results: sj-dkim-4; header.From=fluffy at cisco.com; dkim=pass (
sig from cisco.com/sjdkim4002 verified; ); Subject: [BEHAVE] Resend : 2nd WGLC 
	draft-ietf-behave-nat-behavior-discovery-04
X-BeenThere: behave at ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: mailing list of BEHAVE IETF WG <behave.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/behave>,
	<mailto:behave-request at ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/behave>
List-Post: <mailto:behave at ietf.org>
List-Help: <mailto:behave-request at ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/behave>,
	<mailto:behave-request at ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1013338836=="
Sender: behave-bounces at ietf.org
Errors-To: behave-bounces at ietf.org

Some email to ietf lists seem to be having a problems so here is a resend of this for folks that never got it. 

Begin forwarded message:


From: MAILER-DAEMON at core3.amsl.com (Mail Delivery System)
Date: August 28, 2008 7:42:05 PM MDT (CA)
Subject: Undelivered Mail Returned to Sender

This is the mail system at host core3.amsl.com.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                  The mail system

<behave at core3.amsl.com>: Command time limit exceeded: "/a/postconfirm/mailman
   post behave ietf.org"
Reporting-MTA: dns; core3.amsl.com
X-Postfix-Queue-ID: 29F9A28C2FF
X-Postfix-Sender: rfc822; fluffy at cisco.com
Arrival-Date: Thu, 28 Aug 2008 18:25:24 -0700 (PDT)

Final-Recipient: rfc822; behave at core3.amsl.com
Original-Recipient: rfc822;behave at ietf.org
Action: failed
Status: 5.3.0
Diagnostic-Code: x-unix; internal software error

From: Cullen Jennings <fluffy at cisco.com>
Date: August 28, 2008 7:25:37 PM MDT (CA)
To: Behave WG <behave at ietf.org>, Bruce Lowekamp <lowekamp at sipeerior.com>, Derek MacDonald <derek at xten.com>
From: MAILER-DAEMON at core3.amsl.com (Mail Delivery System)
Date: August 28, 2008 7:42:05 PM MDT (CA)
Subject: Undelivered Mail Returned to Sender

This is the mail system at host core3.amsl.com.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                  The mail system

<behave at core3.amsl.com>: Command time limit exceeded: "/a/postconfirm/mailman
   post behave ietf.org"
Reporting-MTA: dns; core3.amsl.com
X-Postfix-Queue-ID: 29F9A28C2FF
X-Postfix-Sender: rfc822; fluffy at cisco.com
Arrival-Date: Thu, 28 Aug 2008 18:25:24 -0700 (PDT)

Final-Recipient: rfc822; behave at core3.amsl.com
Original-Recipient: rfc822;behave at ietf.org
Action: failed
Status: 5.3.0
Diagnostic-Code: x-unix; internal software error

From: Cullen Jennings <fluffy at cisco.com>
Date: August 28, 2008 7:25:37 PM MDT (CA)
To: Behave WG <behave at ietf.org>, Bruce Lowekamp <lowekamp at sipeerior.com>, Derek MacDonald <derek at xten.com>
Subject: Re: [BEHAVE] 2nd WGLC draft-ietf-behave-nat-behavior-discovery-04



Few comments

Test 1: The first test defined in section 4.1 You have to have a good way to distinguish not UDP connectivity from the case where the STUN server is down or someone put in the wrong address.

Test 2: In test 4.2, I think it is important to identity that this test has to be done for every single port the application wants to use because we know that the results for different ports are often not the same

Test 3: This would be better if it mandated using a random source port and highlight that if any device had recently done test 2 on the same port, this test will fail to get the correct result and it fails in a way that suggests things will work that don't. It may sound odd to think one might get the same port but often when an embedded system reboots, it might run the same tests again at the same IP address and with ports like this.

Section 4.4 - given the rate limiting of NATs, I would give some advice that was more implementable than "care must be given". I'd specifically rate limit to something like no more than X stun packets per second. It would be nice to discuss here how long these tests can take even when they are done in parallel.

Section 4.5 - the XOR-RESPONSE-TARGET just sort comes out of nowhere and is a bit hard to understand when reading the draft from front to back

The whole XOR-RESPONSE-TARGET has all the same security problems and issues as TURN. Instead of reinventing it all here, why not just use TURN to be able to send the packets to where you want them?

In section 6.1 where you have "the server must verity that it has previously..." I think this must needs to be a MUST

I will note the RESPONSE-TARGET design forces the server to remember for some time some state about every binding request.

Section 5.1 - the SRV service name needs to be in the IANA registry


Cullen <as an individual contributor>



On Aug 7, 2008, at 18:26 , Dan Wing wrote:

I'd like to do a quick one week 2nd WGLC on "NAT Behavior Discovery Using
STUN",
<http://tools.ietf.org/html/draft-ietf-behave-nat-behavior-discovery-04>.
This will end on August 14th.

Please send comments to the authors (CC'd) and the list.

-d

_______________________________________________
Behave mailing list
Behave at ietf.org
https://www.ietf.org/mailman/listinfo/behave




_______________________________________________
Behave mailing list
Behave at ietf.org
https://www.ietf.org/mailman/listinfo/behave

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.