From: Dirk-Willem van Gulik <dirkx@webweaving.org>
To: Juliusz Chroboczek <jch@irif.fr>
Cc: galene@lists.galene.org
Subject: [Galene] Re: udp-port range and subsequent "turn" use of ports outside that range
Date: Thu, 15 Feb 2024 19:12:21 +0100 [thread overview]
Message-ID: <352E304C-7CE2-4A84-A0A6-1C072B33E248@webweaving.org> (raw)
In-Reply-To: <87le7lzjjt.wl-jch@irif.fr>
> On 15 Feb 2024, at 19:09, Juliusz Chroboczek <jch@irif.fr> wrote:
>
>> The situation is slightly more odd. With galene ran as:
>>
>> /usr/local/bin/galene -static /usr/local/share/galene \
>> .... \
>> -turn OUTSIDEIP:SRCPORT \
>> -udp-range 18100-19100
>
>> I would expect to only see UDP traffic going out that originates from
>> OUTSIDEIP.
>
> I don't see why. The above configuration only specifies that the TURN
> server is advertised on OUTSIDEIP. It says nothing about the addresses
> that are advertised for direct (non-TURN) traffic.
>
> So in the above configuration, Galene will advertise:
>
> - all local addresses with ports 18100-19100 ;
> - arbitrary STUN-ed addresses ;
> - TURN addresses on OUTSIDEIP:SRCPORT.
>
>> 1) I had not expected to see OUTSIDEIP_2 in this list at all.
>
> That's a STUNed address.
>
>> 2) I had not expected source UDP ports such as 11247 in below list.
>
> If you seen port 11247 inside the NAT, then it's suprising. Seeing port
> 11247 outside the NAT might happen if the NAT remapped a port in udp-range
> to a different value.
>
>> With the attempts to reach 10.11.0.240 a case where perhaps some RFC1918
>> optimisation can be applied.
>
> That's normal behaviour, the first point in the enumeration above.
>
> Please be patient, I'm up to my ears in other stuff right now, but I'm
> really interested in understanding the behaviour you've pointed out.
No worries - feel free to ignore this completely - I'll see if I can get a more decent test case using some logging inside the sturn/ice code.
Dw.
next prev parent reply other threads:[~2024-02-15 18:16 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-02-11 14:39 [Galene] " Dirk-Willem van Gulik
2024-02-11 17:56 ` [Galene] " Juliusz Chroboczek
2024-02-11 20:53 ` Dirk-Willem van Gulik
2024-02-11 22:14 ` Juliusz Chroboczek
2024-02-15 15:02 ` Dirk-Willem van Gulik
2024-02-15 18:09 ` Juliusz Chroboczek
2024-02-15 18:12 ` Dirk-Willem van Gulik [this message]
2024-02-22 22:38 ` Juliusz Chroboczek
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://lists.galene.org/postorius/lists/galene.lists.galene.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=352E304C-7CE2-4A84-A0A6-1C072B33E248@webweaving.org \
--to=dirkx@webweaving.org \
--cc=galene@lists.galene.org \
--cc=jch@irif.fr \
--subject='[Galene] Re: udp-port range and subsequent "turn" use of ports outside that range' \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox