-----Original Message-----
From: Paul Kyzivat [mailto:[EMAIL PROTECTED]
Sent: Monday, December 20, 2004 11:56 AM
To: Uttam Kumar Sarkar
Cc: 'Cullen Jennings'; Todd Huang; [EMAIL PROTECTED]
Subject: Re: [Sip-implementors] SIP TLS
Uttam Kumar Sarkar wrote:
>
> Keeping connetion forever is probably not the best options according to my
> opinion. Consider a case where a UA register and never makes a call. That
UA
> will occupy the resources. Remember proxy will have max of 65,536 port
> (aprox. initial 2000 ports are reserved for system). It can't have more
than
> that many UA to register.
> I think keeping TLS connetion per call is a better option. You make a
> connetion when you need it. Once you are doen then release it.
Couple of problems (at least) with this:
- time to establish a TLS connection may not provide good user experience
- what about outbound calls *to* the device? This would require the
server to establish the TLS connection to the device.
Yes.
> NATs and Firewalls can make this impossible.
I don't understand why? You mean UA's network will prevent proxy to make a
TLS connection?
- when network problems interfere with connectivity between a device and
its proxy, nobody realizes until there is a call attempt. You would like
to know sooner so efforts can be taken to fix the problem.
That's true for any connection.
Pual
NOTE: This message, including any attachments, may include privileged,
confidential and/or inside information. Any distribution or use of this
communication by anyone other than the intended recipient(s) is strictly
prohibited and may be unlawful. If you are not the intended recipient,
please notify the sender by replying to this message and then delete it from
your system. Thank you.
_______________________________________________
Sip-implementors mailing list
[EMAIL PROTECTED]
http://lists.cs.columbia.edu/mailman/listinfo/sip-implementors
