IETF Logo Mail Archive

Re: New Version Notification for draft-herbert-6man-icmp-limits-01.txt

Mark Smith <markzzzsmith@gmail.com> Sun, 21 May 2017 04:29 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19C74127601 for <ipv6@ietfa.amsl.com>; Sat, 20 May 2017 21:29:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.498
X-Spam-Level:
X-Spam-Status: No, score=-1.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kwi6oXEBWeQR for <ipv6@ietfa.amsl.com>; Sat, 20 May 2017 21:29:36 -0700 (PDT)
Received: from mail-ua0-x22d.google.com (mail-ua0-x22d.google.com [IPv6:2607:f8b0:400c:c08::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 93315124D6C for <6man@ietf.org>; Sat, 20 May 2017 21:29:36 -0700 (PDT)
Received: by mail-ua0-x22d.google.com with SMTP id e28so43972179uah.0 for <6man@ietf.org>; Sat, 20 May 2017 21:29:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=JMlpHpd6yxj8tC9L+AHvJkdOfoAywjK5TMVXJGyiTrA=; b=Royx2/tcUu0OPhA1j1PYtc0qQk3317M4wxIgXeZ24lhWrYK9RPw8W1KNzI29oZI2UV Bu/4sXL7keMIKqlgW5dabgyxkuKNz7gksfpZJ7UrBxKy9Ih9JdoRwhMApdaqXTFZ6BfU 6k7yi8+qtNrEfn5Oc+mNYhZGV/L501bSvGc1+Gf3bm6HbGN8rlg5/WsMxV/DHAjAc46B dtV1MOdL9Q5TSymvGXk+nPzeFFNJxLiw24BW4fC2kxMP12suiI4Q8WO+u98RpbMAIiA/ LMGKQnmxg7gKX9yrE9RVek6/bM3D7rH2+n9M0f4n/sFaghkUuWY4XpMSt+h83SSOPu7C If7w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=JMlpHpd6yxj8tC9L+AHvJkdOfoAywjK5TMVXJGyiTrA=; b=KBwRXeJ/pFT5OntnOarBucCkonUYUlkQ09YZ+AUL/PTIN0+onENNmgTo1bcXRegXgT zrORbD30mH0HcxDno51vRTbEy/WQqalsHjMucWgq8/NhLbzTQJnCHEihwI9dHrrQFxhB 6qRv9LOcQXbyXKNqi3qPdgfDpvr9y6C5zt11XsKZdmsag35fj/g94R7t/EETEOQHDYGE Hs86vYx0tueB/BpVeFXzsR41puUJEJIX8liRnpuN7RVjgFSD/tluqdTP3FmwVUAqNB5a 15BtKHvtMnvXrZe8Nq5al+ckGGfm0EM/KtdOl3Ty9Vw/E+rr0wtoZ5R0ob8vzpN+TNXd 7hlw==
X-Gm-Message-State: AODbwcCOgqhPzk2nn2CSfwDLz8EJmDWNbrSp1VsWVTI7OMhGl9wvdIWq LmYSCVyWdmhUPPU8yu7Ivx/iSIC9W7Yo
X-Received: by 10.176.17.94 with SMTP id g30mr8696056uac.125.1495340975658; Sat, 20 May 2017 21:29:35 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.159.38.51 with HTTP; Sat, 20 May 2017 21:29:05 -0700 (PDT)
In-Reply-To: <BLUPR0501MB2051AE244DAAFC7160EC847EAEFA0@BLUPR0501MB2051.namprd05.prod.outlook.com>
References: <149445467475.16592.8251449526718380823.idtracker@ietfa.amsl.com> <CALx6S362u-h8sY2b75JNTM9Q79o4WtuMYjwb_6qCjoKRMT3TJA@mail.gmail.com> <BLUPR0501MB20516F352D73979BADF94CC1AEE10@BLUPR0501MB2051.namprd05.prod.outlook.com> <CALx6S37i6EmG=QLXemjGG=zeRSHRPE_WuFVNaP_w27PkYUUzMQ@mail.gmail.com> <BLUPR0501MB205123058A1945806A149F0AAEE10@BLUPR0501MB2051.namprd05.prod.outlook.com> <CALx6S36zo_aPRxN8ZheOy2JA-iOAhD-6m-SY-jxk5H0+2t_53Q@mail.gmail.com> <BLUPR0501MB205163C6A42CA608D5A9B616AEE60@BLUPR0501MB2051.namprd05.prod.outlook.com> <CALx6S35h-=5tuzA0x27rivKqYegeW=bSAXx9-g005Gb4U07fPg@mail.gmail.com> <BLUPR0501MB20510CD93958FB03CF9B2687AEE40@BLUPR0501MB2051.namprd05.prod.outlook.com> <CALx6S348t=8SFwP4UNi5rQcqeV=LboTo8757KXU0_f0R6-VouA@mail.gmail.com> <BLUPR0501MB2051AE244DAAFC7160EC847EAEFA0@BLUPR0501MB2051.namprd05.prod.outlook.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Sun, 21 May 2017 14:29:05 +1000
Message-ID: <CAO42Z2zZ9Vf53ovSW2BSEixAZeBQ8yAn9XzO4MSEPH6J8gcR9w@mail.gmail.com>
Subject: Re: New Version Notification for draft-herbert-6man-icmp-limits-01.txt
To: Ron Bonica <rbonica@juniper.net>
Cc: Tom Herbert <tom@herbertland.com>, "6man@ietf.org" <6man@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/4_NkqPe58z6VQtyaShzO5axWSTY>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 May 2017 04:29:38 -0000

On 21 May 2017 at 01:49, Ron Bonica <rbonica@juniper.net> wrote:
> Hi Tom,
>
> Destination Unreachable isn't appropriate because the destination *is* reachable. The problem is that the header is too long.

It seems a DU is appropriate, going by what RFC4443 says, because the
cause of the failure isn't congestion:


"A Destination Unreachable message SHOULD be generated by a router, or
   by the IPv6 layer in the originating node, in response to a packet
   that cannot be delivered to its destination address for reasons other
   than congestion.  (An ICMPv6 message MUST NOT be generated if a
   packet is dropped due to congestion.)"


(I looked it up because this discussion made me curious if a DA -
Admin prohibited was making a positive confirmation of the
destination's existence, and the prohibition was on being able to
reach it. It seems not, which is better for security.)

Regards,
Mark.



>
> It seems like we are identifying an new constraint, the Path Maximum Header Length (PMHL). In some respects, PMHL is similar to PMTU. When PMTU is violated, we send an ICMP PTB to the source IP stack. The source IP modifies its estimate of the PMTU, informs upper layers (if appropriate) and fragments subsequent packets (if appropriate).
>
> What should happen when PMHL is violated? Does the source IP stack need to be informed? If so, what will the source IP stack do with the information? Or is really an upper layer application that needs to be informed?
>
>                                                                                     Ron
>
>
>
>
>> -----Original Message-----
>> From: Tom Herbert [mailto:tom@herbertland.com]
>> Sent: Thursday, May 18, 2017 4:51 PM
>> To: Ron Bonica <rbonica@juniper.net>
>> Cc: 6man@ietf.org
>> Subject: Re: New Version Notification for draft-herbert-6man-icmp-limits-
>> 01.txt
>>
>> On Wed, May 17, 2017 at 6:03 PM, Ron Bonica <rbonica@juniper.net> wrote:
>> > Tom,
>> >
>> > The ICMP Parameter Problem message normally indicates that there is a
>> problem with an IP Parameter. In the example below, you use it to indicate
>> that a middle box has a problem with the IP payload. This seems to be
>> overloading the Parameter Problem message.
>> >
>> Hi Ron,
>>
>> Would Destination Unreachable message be appropriate then?
>>
>> Tom
>>
>> >
>> > Ron
>> >
>> >
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email