IETF Logo Mail Archive

RE: Thinking differently about the site local problem (was: RE: site local addresses (was Re: Fw: Welcome to the InterNAT...))

"Christian Huitema" <huitema@windows.microsoft.com> Mon, 31 March 2003 17:27 UTC

Received: from ran.ietf.org (ran.ietf.org [10.27.6.60]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA15360; Mon, 31 Mar 2003 12:27:59 -0500 (EST)
Received: from majordomo by ran.ietf.org with local (Exim 4.10) id 1903Gu-00087H-00 for ietf-list@ran.ietf.org; Mon, 31 Mar 2003 12:40:36 -0500
Received: from odin.ietf.org ([10.27.2.28] helo=ietf.org) by ran.ietf.org with esmtp (Exim 4.10) id 1903G9-00085a-00 for ietf@ran.ietf.org; Mon, 31 Mar 2003 12:39:49 -0500
Received: from mail1.microsoft.com (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA15239 for <ietf@ietf.org>; Mon, 31 Mar 2003 12:23:27 -0500 (EST)
Received: from inet-vrs-01.redmond.corp.microsoft.com ([157.54.8.27]) by mail1.microsoft.com with Microsoft SMTPSVC(5.0.2195.6659); Mon, 31 Mar 2003 09:25:52 -0800
Received: from 157.54.5.25 by inet-vrs-01.redmond.corp.microsoft.com (InterScan E-Mail VirusWall NT); Mon, 31 Mar 2003 09:25:51 -0800
Received: from red-imc-01.redmond.corp.microsoft.com ([157.54.9.102]) by inet-hub-03.redmond.corp.microsoft.com with Microsoft SMTPSVC(6.0.3788.0); Mon, 31 Mar 2003 09:25:38 -0800
Received: from win-imc-02.wingroup.windeploy.ntdev.microsoft.com ([157.54.0.84]) by red-imc-01.redmond.corp.microsoft.com with Microsoft SMTPSVC(5.0.2195.5600); Mon, 31 Mar 2003 09:25:50 -0800
Received: from WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com ([157.54.12.82]) by win-imc-02.wingroup.windeploy.ntdev.microsoft.com with Microsoft SMTPSVC(6.0.3788.0); Mon, 31 Mar 2003 09:25:46 -0800
X-MimeOLE: Produced By Microsoft Exchange V6.5.6851.8
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Subject: RE: Thinking differently about the site local problem (was: RE: site local addresses (was Re: Fw: Welcome to the InterNAT...))
Date: Mon, 31 Mar 2003 09:25:48 -0800
Message-ID: <DAC3FCB50E31C54987CD10797DA511BA027E0E26@WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com>
Thread-Topic: Thinking differently about the site local problem (was: RE: site local addresses (was Re: Fw: Welcome to the InterNAT...))
Thread-Index: AcL3p5hNqgF3HrK/R6SolaiaoaZl0AAATBHQ
From: Christian Huitema <huitema@windows.microsoft.com>
To: Keith Moore <moore@cs.utk.edu>, alh-ietf@tndh.net
Cc: john-ietf@jck.com, ietf@ietf.org
X-OriginalArrivalTime: 31 Mar 2003 17:25:46.0194 (UTC) FILETIME=[90946320:01C2F7AA]
Sender: owner-ietf@ietf.org
Precedence: bulk
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by ietf.org id MAA15360

> > Applications will have to deal with that, yet there is no hint
> > unless we provide a well-known flag.
> 
> applications cannot be expected to deal with filters in any way other
than
> to report that the communication is prohibited.  the "well known" flag
> exists and is called ICMP.

Well, that is emphatically *NOT* what application developers do. They do
not just observe that it does not work, they try to work around, e.g.
routing messages to a different address, at a different time, through a
third party, or through a different protocol. 

Silently dropping packets is certainly not the right way to get an
application to stop trying. ICMP messages won't achieve that either:
since ICMP is insecure, it is routinely ignored.

Which actually poses an interesting question: when should an application
just give up? IMHO, there is only one clear-cut case, i.e. when the
application actually contacted the peer and obtained an explicit
statement that the planned exchange should not take place -- the
equivalent of a 4XX or 5XX error in SMTP or HTTP. 

-- Christian Huitema

v2.23.0 | Report a Bug | By Email