[VoiceOps] Phone auth for incoming calls?

Carlos Alvarez caalvarez at gmail.com
Wed Aug 8 15:39:17 EDT 2018


So those of you using TCP, are you also using TLS?


On Wed, Aug 8, 2018 at 12:36 PM Alex Balashov <abalashov at evaristesys.com>
wrote:

> On Wed, Aug 08, 2018 at 12:21:09PM -0700, Carlos Alvarez wrote:
>
> > So...who else on the list uses TCP and has any comments about it?
>
> We are not an ITSP and are Polycom-only with a trivial number of
> endpoints, but we do use it and it works just fine.
>
> However, we have numerous customers, some of whom use TCP predominantly
> for thousands of endpoints. It works just fine.
>
> In terms of downsides:
>
> In addition to a historical lack of (RFC 3261-mandated) support, there
> are of course theoretical trade-offs involved in using TCP. There's
> more overhead, and connection state to be maintained on the server side,
> which of course consumes resources — resources considered trivial
> nowadays, but once upon a time, when RFC 3261 was ratified (2002),
> perhaps not. As with all things TCP, it can also present a DoS vector if
> you don't limit the number of connections somewhere.
>
> The congestion control/end-to-end delay aspects of TCP are certainly not
> as important now as they were at a time when the public IP backbone and
> was in an entirely different place in its evolution. Also, nowadays the
> congestion/windowing algorithms used in TCP can be tweaked to something
> more efficient.
>
> I think the most damning thing about using TCP is perceived to be the
> relative difficulty of failing over TCP session state to a different
> host. UDP does not require connection state, so as long as you have some
> means of handling requests in a relatively stateless fashion, things can
> just carry on as they did before in the event of an IP takeover without
> anyone having to "reconnect". This is one area where the big enterprise
> boxes certainly trump the open-source ecosystem, where transparent TCP
> failover *for SIP* doesn't really exist, although in my opinion the
> whole issue is getting a bit moot with the way cloud infrastructure and
> virtualisation networking is evolving.
>
> -- Alex
>
> --
> Alex Balashov | Principal | Evariste Systems LLC
>
> Tel: +1-706-510-6800 / +1-800-250-5920 (toll-free)
> Web: http://www.evaristesys.com/, http://www.csrpswitch.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/voiceops/attachments/20180808/5e5ad108/attachment.html>


More information about the VoiceOps mailing list