[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [MMUSIC] media source ip/port in SDP

To: mmusic@ietf.org
Subject: RE: [MMUSIC] media source ip/port in SDP
From: "Mark Watson" <mwatson@nortelnetworks.com>
Date: Wed, 12 Jun 2002 17:17:45 +0100
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
Sender: mmusic-admin@ietf.org

Title: RE: [MMUSIC] media source ip/port in SDP

Does anyone think there is a security risk associated with the fact that the source address/port of the sender is unknown to the receiver ?

I understand that there are various ways that the receiver could distinguish RTP packets from the genuine correspondant from those of an attacker, but even so, if the receiver is on a low-bandwidth link, these packets could constitute a DoS attack.

A firewall could be used to control admission of packets to the low-bandwidth link based on destination address/port (assuming the client can open an appropriate pinhole), but you would have to wildcard the source address. If the source address of the packets was known, the pinhole could be made more specific, and so prevent attacks from an attacker who knew the destination address/port.

Or can we assume that any attacker who knew the destination address/port is probably in a position to spoof the correct source address anyway ?

As an aside, should RTCP reports be sent to the address received as source address in incoming RTP packets, or should they be sent to the same address as outgoing RTP packets ? If the latter (and the addresses are different), why is the media sink device of my correspondant interested in RTCP reports for packets generated by the media source device, which has a separate network interface ?

Regards,

Mark Watson

> -----Original Message-----
> From: Jonathan Rosenberg [mailto:jdrosen@dynamicsoft.com]
> Sent: 30 May 2002 21:18
> To: Medhavi Bhatia
> Cc: mmusic@ietf.org
> Subject: Re: [MMUSIC] media source ip/port in SDP
>
>
> From
> http://www.ietf.org/internet-drafts/draft-ietf-mmusic-sdp-offe
> r-answer-02.txt:
>
> The IP address
>    and port present in the offer indicate nothing about the source IP
>    address and source port of RTP and RTCP packets that will
> be sent by
>    the offerer.
>
> -Jonathan R.
>
> Medhavi Bhatia wrote:
> >
> > Hi,
> >
> > I remember there was a discussion some while back about
> specifying the
> > source ip/port for the media in the SDP. Is that
> standardized yet ? I am
> > still
> > seeing some vendors using the RFC 2327 format, and assuming that the
> > source ip or port for media will be the same as the receive
> ip or port
> > specified in the
> > SDP.
> > Is that correct or standardized somewhere ?
> >
> > Medhavi.
>
> --
> Jonathan D. Rosenberg, Ph.D.            72 Eagle Rock Avenue
> Chief Scientist                         First Floor
> dynamicsoft                             East Hanover, NJ 07936
> jdrosen@dynamicsoft.com                 FAX: (973) 952-5050
> http://www.jdrosen.net                  PH: (973) 952-5000
> http://www.dynamicsoft.com
>
> _______________________________________________
> mmusic mailing list
> mmusic@ietf.org
> https://www1.ietf.org/mailman/listinfo/mmusic
>

Follow-Ups:
- Re: [MMUSIC] media source ip/port in SDP
  - From: Jonathan Rosenberg

Prev by Date: [MMUSIC] RTSP Feature table, Section 1 review.
Next by Date: [MMUSIC] Question on draft-ietf-mmusic-sdp-new-10.txt
Previous by thread: [MMUSIC] media source ip/port in SDP
Next by thread: Re: [MMUSIC] media source ip/port in SDP
Index(es):
- Date
- Thread