IETF Logo Mail Archive

Re: [Int-area] Kathleen Moriarty's Discuss on draft-ietf-intarea-gre-mtu-04: (with DISCUSS)

"Templin, Fred L" <Fred.L.Templin@boeing.com> Wed, 20 May 2015 16:07 UTC

Return-Path: <Fred.L.Templin@boeing.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C4DA91A893F; Wed, 20 May 2015 09:07:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xn6Xg6PoNqzD; Wed, 20 May 2015 09:07:29 -0700 (PDT)
Received: from phx-mbsout-02.mbs.boeing.net (phx-mbsout-02.mbs.boeing.net [130.76.184.179]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EBFD31A88EC; Wed, 20 May 2015 09:07:28 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by phx-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with SMTP id t4KG7S9V057485; Wed, 20 May 2015 09:07:28 -0700
Received: from XCH-PHX-512.sw.nos.boeing.com (xch-phx-512.sw.nos.boeing.com [10.57.37.29]) by phx-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id t4KG7IHh056625 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=OK); Wed, 20 May 2015 09:07:19 -0700
Received: from XCH-BLV-504.nw.nos.boeing.com ([169.254.4.238]) by XCH-PHX-512.sw.nos.boeing.com ([169.254.12.101]) with mapi id 14.03.0235.001; Wed, 20 May 2015 09:07:18 -0700
From: "Templin, Fred L" <Fred.L.Templin@boeing.com>
To: Suresh Krishnan <suresh.krishnan@ericsson.com>
Thread-Topic: Kathleen Moriarty's Discuss on draft-ietf-intarea-gre-mtu-04: (with DISCUSS)
Thread-Index: AQHQjeuraQWLl4q6nUqMr+wRYH60Tp2FEB1Q
Date: Wed, 20 May 2015 16:07:17 +0000
Message-ID: <2134F8430051B64F815C691A62D9831832E7142D@XCH-BLV-504.nw.nos.boeing.com>
References: <20150514021405.29892.21704.idtracker@ietfa.amsl.com> <CAHbuEH5NEopFBPeATmhhLJ=iLom+2DvtTZUUobax2r3KbW=JcQ@mail.gmail.com> <BLUPR05MB19859D4F490C1744BC9B50F7AED80@BLUPR05MB1985.namprd05.prod.outlook.com> <BLUPR05MB19854E65D511F14253556DF3AED80@BLUPR05MB1985.namprd05.prod.outlook.com> <2134F8430051B64F815C691A62D9831832E621B4@XCH-BLV-504.nw.nos.boeing.com> <32221A4D-CD1B-4678-94BE-F49C0499F483@gmail.com> <BLUPR05MB19854B35DFE0D3774756E6B7AEC70@BLUPR05MB1985.namprd05.prod.outlook.com> <5555DF49.2090906@innovationslab.net> <2134F8430051B64F815C691A62D9831832E6BCF6@XCH-BLV-504.nw.nos.boeing.com> <06D9795C-D11F-4C4B-921B-D38D25BE4893@cisco.com> <2134F8430051B64F815C691A62D9831832E706EE@XCH-BLV-504.nw.nos.boeing.com> <E87B771635882B4BA20096B589152EF628C59FAD@eusaamb107.ericsson.se> <2134F8430051B64F815C691A62D9831832E71202@XCH-BLV-504.nw.nos.boeing.com> <BLUPR05MB19859502AB5AC5CA8D2463C4AEC20@BLUPR05MB1985.namprd05.prod.outlook.com> <555CA110.4010202@innovationslab.net> <2134F8430051B64F815C691A62D9831832E712F8@XCH-BLV-504.nw.nos.boeing.com> <E87B771635882B4BA20096B589152EF628C5C7C3@eusaamb107.ericsson.se>
In-Reply-To: <E87B771635882B4BA20096B589152EF628C5C7C3@eusaamb107.ericsson.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.247.104.6]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: disable
Archived-At: <http://mailarchive.ietf.org/arch/msg/int-area/JtlWEJl1miaHr9FiTPZ-BR45QWo>
Cc: "draft-ietf-intarea-gre-mtu@ietf.org" <draft-ietf-intarea-gre-mtu@ietf.org>, "int-area@ietf.org" <int-area@ietf.org>, The IESG <iesg@ietf.org>
Subject: Re: [Int-area] Kathleen Moriarty's Discuss on draft-ietf-intarea-gre-mtu-04: (with DISCUSS)
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 May 2015 16:07:30 -0000

Hi Suresh,

> -----Original Message-----
> From: Suresh Krishnan [mailto:suresh.krishnan@ericsson.com]
> Sent: Wednesday, May 20, 2015 8:46 AM
> To: Templin, Fred L
> Cc: draft-ietf-intarea-gre-mtu@ietf.org; int-area@ietf.org; Brian Haberman; The IESG
> Subject: Re: Kathleen Moriarty's Discuss on draft-ietf-intarea-gre-mtu-04: (with DISCUSS)
> 
> Hi Fred,
> 
> <Trimmed excessive recipient list that keeps tripping the moderation filter>
> 
> On 05/20/2015 11:13 AM, Templin, Fred L wrote:
> > Hi,
> >
> >> -----Original Message-----
> >> From: Brian Haberman [mailto:brian@innovationslab.net]
> >> Sent: Wednesday, May 20, 2015 7:58 AM
> >> To: Ronald Bonica; Templin, Fred L; Suresh Krishnan; Carlos Pignataro (cpignata)
> >> Cc: Kathleen Moriarty; draft-ietf-intarea-gre-mtu@ietf.org; int-area@ietf.org; draft-ietf-intarea-gre-mtu.ad@ietf.org; draft-ietf-
> >> intarea-gre-mtu.shepherd@ietf.org; The IESG; intarea-chairs@ietf.org
> >> Subject: Re: Kathleen Moriarty's Discuss on draft-ietf-intarea-gre-mtu-04: (with DISCUSS)
> >>
> >> Hi Ron,
> >>
> >> On 5/20/15 10:52 AM, Ronald Bonica wrote:
> >>> Fred,
> >>>
> >>> Are we all talking about the same draft? The paragraph that you quote
> >>> is not in Section 3.2 of  draft-ietf-intarea-gre-mtu-04.
> >>
> >> No, he is referencing a completely different draft...
> >>
> >> https://tools.ietf.org/html/draft-ietf-intarea-gre-ipv6-07#section-3.2
> >
> > Yes, the comments on MTU probing were intended for the GRE IPv6 draft; was
> > out of the office for several days and away from email, so lost context and got
> > off track. Sorry.
> 
> No problem. It happens to the best of us.

Many thanks for extending the grace. 

> > However, in *this* draft I suggest adding the following trailing sentence to the
> > final paragraph of the Security Considerations section:
> >
> >     "These attacks can be mitigated when the ingress and egress are within the
> >     same well-managed administrative domain, where ingress filtering is employed
> >     to prevent source address spoofing."
> 
> The draft has already been approved by the IESG. There needs to be a
> high bar to add such text into the draft at this point. If the IESG
> feels strongly about adding such text we can call for WG consensus to do so.

It has only just recently occurred to me that standard PMTUD provides the
best tunnel MTU determination mechanism *in environments where it is
reliable and trustworthy*.  Which is to say, a "well-managed administrative
domain, where ingress filtering is employed to prevent source address
spoofing.". Having gotten off track, I am not going to push hard for this
but it is offered as something the IESG may wish to consider.

Thanks - Fred
fred.l.templin@boeing.com

> Thanks
> Suresh

v2.23.0 | Report a Bug | By Email