draft-ietf-behave-nat-behavior-discovery-01

Slides:



Advertisements
Similar presentations
STUN Open Issues Jonathan Rosenberg dynamicsoft. Changes since -00 Answered UNSAF considerations –Still awaiting response from Leslie on whether they.
Advertisements

MPTCP Application Considerations draft-scharf-mptcp-api-01 Michael Scharf Alan Ford IETF 77, March 2010.
RFC 3489bis Jonathan Rosenberg Cisco Systems. Technical Changes Needed Allow STUN over TCP –Driver: draft-ietf-sip-outbound Allow response to omit CHANGED-
STUN bis draft-ietf-behave-rfc3489bis Jonathan Rosenberg Cisco Systems.
Request History – Solution Mary Barnes SIP WG Meeting IETF-57 draft-ietf-sip-history-info-00.txt.
Update of RTSP draft-ietf-mmusic-rfc2326bis-03.txt Authors: Henning Schulzrinne / Columbia University Robert Lanphier / Real Networks Magnus Westerlund.
July 27, 2009IETF NEA Meeting1 NEA Working Group IETF 75 Co-chairs: Steve Hanna
IETF #91 OAuth Meeting Derek Atkins Hannes Tschofenig.
1 STUN Changes draft-ietf-behave-rfc3489bis-03 Jonathan Rosenberg Dan Wing Cisco Systems.
TURN -01 Changes and Issues Rohan Mahy BEHAVE at IETF66 - Montreal.
Magnus Westerlund 1 The RTSP Core specification draft-ietf-mmusic-rfc2326bis-06.txt Magnus Westerlund Aravind Narasimhan Rob Lanphier Anup Rao Henning.
Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-01.txt Magnus Westerlund.
TURN Jonathan Rosenberg Cisco Systems. Changes since last version Moved to behave terminology Many things moved into STUN –Basic request/response formation.
Session Traversal Utilities for NAT (STUN) IETF-92 Dallas, March 26, 2015 draft-ietf-tram-stunbis Marc Petit-Huguenin, Gonzalo Salgueiro.
Slide title In CAPITALS 50 pt Slide subtitle 32 pt RTSP draft-ietf-mmusic-rfc2396bis-10 Magnus Westerlund Co-auhtors: Henning Schulzrinne, Rob Lanphier,
NEMO Basic Support update IETF 61. Status IANA assignments done Very close to AUTH48 call Some issues raised recently We need to figure out if we want.
Click to edit Master title style Click to add subtitle © 2008 Wichorus Inc. All rights reserved. CONFIDENTIAL - DO NOT DISTRIBUTE rfc3775bis Issues November.
History-Info header and Support of target-uri Solution Requirements Mary Barnes Francois Audet SIPCORE.
Draft-ietf-p2psip-base-08 Cullen Jennings Bruce Lowekamp Eric Rescorla Salman Baset Henning Schulzrinne March 25, 2010.
HIP-Based NAT Traversal in P2P-Environments
EAP Applicability IETF-86 Joe Salowey. Open Issues Open Issues with Retransmission and re- authentication Remove text about lack of differentiation in.
ALTO Requirements draft-ietf-alto-reqs-04
draft-jounay-pwe3-dynamic-pw-update-00.txt IETF 70 PWE3 Working Group
47th IETF - Adelaide Chris Lonvick
Open issues with PANA Protocol
Phil Hunt, Hannes Tschofenig
DNS Security Issues SeongHo Cho DPNM Lab., POSTECH
NATIONAL DOSE REGISTER Steering Committee Meeting 28 August 2015
TeRI and the MODERN Framework
Kumiko Ono End-to-middle Security in SIP draft-ietf-sipping-e2m-sec-reqs-04 draft-ono-sipping-end2middle-security-03 Kumiko Ono.
ALTO Protocol draft-ietf-alto-protocol-14
draft-ietf-simple-message-sessions-00 Ben Campbell
MQTT Technical Committee at OASIS
Voluntary and non-voluntary euthanasia
AAA and AAAS URI Miguel A. Garcia draft-garcia-dime-aaa-uri-00.txt
Request History Capability – Requirements & Solution
NAT State Synchronization using SCSP draft-xu-behave-nat-state-sync-01
Lionel Morand DHCP options for PAA Lionel Morand
draft-ietf-simple-message-session-09
Note Well Any submission to the IETF intended by the Contributor for publication as all or part of an IETF Internet-Draft or RFC and any statement made.
ERP extension for EAP Early-authentication Protocol (EEP)
OAuth2 SCIM Client Registration & Software Statement Exchange
Bob Briscoe, BT IETF-72 tsvwg Jul 2008
Extending Option Space Discussion Overview and its requirements
Troubleshooting IP Communications
NAT Behavioral Requirements for Unicast UDP
IKEv2 Mobility and Multihoming Protocol (MOBIKE)
Handover Keys Using AAA (draft-vidya-mipshop-handover-keys-aaa-03.txt)
draft-ietf-ecrit-rough-loc
CARD Designteam A. Singh, D. Funato, H. Chaskar, M. Liebsch
TCP Extended Option Space in the Payload of a Supplementary Segment
Joe Clarke (presenting)
Migration-Issues-xx Where it’s been and might be going
Working Group Draft for TCPCLv4
Digital Certificates and X.509
IESBA Meeting New York September 17-20, 2018
STIR WG IETF-100 PASSPorT Extension for Resource-Priority Authorization (draft-ietf-stir-rph-01) November, 2017 Ray P. Singh, Martin Dolly, Subir Das,
ECN Experimentation draft-black-ecn-experimentation
Multi-server Namespace in NFSv4.x Previous and Pending Updates
Change Proposals for SHAKEN Documents
Network Assigned Upstream-label
draft-ietf-p2psip-base-03
Binary Floor Control Protocol BIS (BFCPBIS)
TG1 Draft Topics Date: Authors: September 2012 Month Year
Murray S. Kucherawy REPUTE Extra Topics Murray S. Kucherawy
TG1 Draft Topics Date: Authors: September 2012 Month Year
Handling YANG Revisions – Discussion Kickoff
Sheng Jiang(Speaker) Bing Liu
Authentication and Authorization for Constrained Environments (ACE)
TCP Maintenance and Minor Extensions (TCPM) Working Group Status
Presentation transcript:

draft-ietf-behave-nat-behavior-discovery-01 Derek MacDonald Bruce Lowekamp

Changes from IETF-68 Clarified that only stun servers with two IP addresses should use SRV entry Removed backward compatibility with 3489 clients (SHOULD NOT) PADDING mandatory Use MAPPED-ADDRESS to detect generic ALG

Feedback from List Non-normative Detecting linux NATs hairpinning parallelization Detecting linux NATs slippery slope timing sensitive action: include mention of timing sensitivity action: examples of detecting specific NATs out of scope

Intended Status Current draft is PS. Given that we are all concerned about potential uses of these techniques, there may be concerns about this draft. BUT, there are legitimate uses of these techniques, and it is very important to document what they can and can’t do. Applications might be able to use it legitimately. Question: Change to experimental?

Open Issue: 3489bis-07 Needs revisions mostly straightforward can be SRV or pre-provisioned backward compatibility not required update IAB and Security considerations

Open Issue: Cache-Timeout Response code 430 originally proposed for when server has lost state/secret allowing it to honor RESPONSE-ADDRESS Propose new error code to indicate must redo original Binding Request with CACHE-TIMEOUT Options: 412 Conditional Request Failed something new?

Open Issue: Shared Secret Currently says MUST use shared secret for RESPONSE-ADDRESS. No longer a clear way of acquiring secret. Proposal: change to SHOULD use authentication servers MUST rate-limit if not authenticating

Open Issue: Compatibility Previous conclusion was that 3489bis clients would ignore OTHER-ADDRESS and SOURCE-ADDRESS Backward compatibility now dropped. Options Request tag, change 3489bis, make responses optional, different ports. Proposal: Make OTHER-ADDRESS and SOURCE-ADDRESS optional, change names

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.