RFC 5245 ICE
1, Offer/answer model
2, ICE Step:1) Generate candidate address (1. Public network 2.NAT Reflection 3.Relay forwarding address) Generate candidates 2) The local peer-to-peer exchange candidate address, complete the connectivity check. (with RTP packets, a four-time handshake process, such as:)
3) Sort by priority sorting candidates 4) Freeze candidate address Frozen Candida TES 5) Safety Check security for Checks 6) End Ice procedure C Oncluding ICE
3. STUN (Request/response model)1) binding Message Format 2) binding request/binding Response 3) currently defines three stun uses: Interactive Connectivity Establis Hment (ICE) [Mmusic-ice], interactive connection established client-initiated connections for SIP [Sip-outbound], client-initiated connection for SIP NAT Behavior D iscovery [Behave-nat],nat Behavior Discovery
4. TURN 1) relayed Transport Address:turn The transport address on the server for client and peer relay data. turn Server Transport Address:turn The transport address on the server for the client to send stun messages to the server. peer Transport address: The server sees the peer-to-end transport addresses, and when the peer is behind a NAT, the server reflects the transport address to the end. allocation: The relay transport address is provided to the client through the allocate request, in addition to the relay state, there are licensing and timeout timers. 5-tuple: Five tuples, including a combination of client IP address and port, server IP address and port and transport protocol (including UDP, TCP, TLS). channel: The channel number is associated with the peer transport address, and once a channel number is bound to a peer-to-end transport address, the client and server can exchange data using a channel data message with a greater bandwidth effect. permission: One peer allows the use of its IP address and transport protocol to send data to the turn server, and the server is relayed to the appropriate client only for traffic that is sent from the peer and matches an already existing license. realm: A string within the server that describes a server or content that tells the client which combination of user names and passwords can be used for authentication requests. nonce: A string randomly selected by the server, included in the digest to be quoted. To prevent relay attacks, the server should regularly change the nonce. 2) method: 0x003 Allocate 0x004 & nbsp refresh 0x006 Send 0x007 Data 0x008 &N Bsp createpermission 0x009 channelbind
RFC 5245 Ice Learning notes