IETF Logo Mail Archive

Re: Re: HBH Option Header Configuration (draft-hinden-6man-hbh-processing)

Fernando Gont <fernando.gont@edgeuno.com> Thu, 10 June 2021 06:49 UTC

Return-Path: <fernando.gont@edgeuno.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4281D3A3722 for <ipv6@ietfa.amsl.com>; Wed, 9 Jun 2021 23:49:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=edgeuno.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AbujbehrYIDH for <ipv6@ietfa.amsl.com>; Wed, 9 Jun 2021 23:49:24 -0700 (PDT)
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2117.outbound.protection.outlook.com [40.107.220.117]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7D07F3A372C for <ipv6@ietf.org>; Wed, 9 Jun 2021 23:49:24 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bZh4x5fGwrUCqTk9MXHS0F9A2Iehfee/YUMPyGYRJVt/UXYEdI3NHaKzuEJFCSUD2ANXSHWiK/yveV7p3wCXndd0WmMDDs8nNb2GJ7qFpHY/Hdyn8fsuKvP+r5e7qy/2MUKmfFF2mVpG3qXXzVrQxKA3TzMVW0bNmrqBqg9xUqQpJXLMyALsRH17/Am/hQ2C6OtTzguh1RBqT9rOqrMJB5KmwPtDVYj3g9uAmVj9BXKkh+rfsrZWxlL43j4x3fdna7WpkBlAAZsL5ma59/KRyt8RMOeOYekMwGre6Zv6fgo9g40xI/+0gAgTX9J18bD8hAUfHZv4qjW8ctf+FsXbNg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nlIFjvht8VC3wzpiyPOMkcu0/sBniN7X3DqHqTtUllk=; b=WlSJCf5lFnpif4R2+RwxuTOsTpsC7Q2i/wwnHRK8WqQY4Nc0WDoSJjK3Wock7+YRdqvQrUPMpOZmIt3t5uBk9tnjFGxfkIMLiWZy9rVRaYXrtc3USpfCAtPx+7TlTuMVmy9IJ63vPPJAjVl+49q+8GN2UsbtVxitDrII/5Udw4LBE0C7Owhtp1QdMD6MzfCbYiagAxnI6ULux6dkHp0NpScXSoQ/GohZlyzSiaQFQOO2Gk5gofrRdyK/MRi2qyxyhH0tp6nI1fpL1N1PqmOjrUmNDaP0vidBNk+eSY7dQUIaaVderPf/6LWx4N033JW+M54fGPlHeeGk6KK0VY6Y4g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=edgeuno.com; dmarc=pass action=none header.from=edgeuno.com; dkim=pass header.d=edgeuno.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=edgeuno.onmicrosoft.com; s=selector1-edgeuno-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nlIFjvht8VC3wzpiyPOMkcu0/sBniN7X3DqHqTtUllk=; b=NjfNySZ8J6TTyFsGdY0CeRxtETTYW/6MpnaNz11Ktz2y6CKK25oYkMhVmlSVzocOC3lbyI2PIGsrAf4Zhfb4qAN9KVoCePfNgDrLt3LS4gvMATuxrg1xbPIQCwz53Rld6gCc0cbLA+inL9tGd7ceaNOArAC02V2SCY8KglT9vKg=
Received: from SJ0PR05MB7514.namprd05.prod.outlook.com (2603:10b6:a03:2eb::6) by BYAPR05MB6038.namprd05.prod.outlook.com (2603:10b6:a03:ac::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4219.19; Thu, 10 Jun 2021 06:49:21 +0000
Received: from SJ0PR05MB7514.namprd05.prod.outlook.com ([fe80::59c9:fcf7:eeea:1148]) by SJ0PR05MB7514.namprd05.prod.outlook.com ([fe80::59c9:fcf7:eeea:1148%8]) with mapi id 15.20.4219.021; Thu, 10 Jun 2021 06:49:21 +0000
From: Fernando Gont <fernando.gont@edgeuno.com>
To: "bob.hinden@gmail.com" <bob.hinden@gmail.com>, "li_zhenqiang@hotmail.com" <li_zhenqiang@hotmail.com>, "ipv6@ietf.org" <ipv6@ietf.org>
Subject: Re: Re: HBH Option Header Configuration (draft-hinden-6man-hbh-processing)
Thread-Topic: Re: HBH Option Header Configuration (draft-hinden-6man-hbh-processing)
Thread-Index: AQHXXKHZshcTXWR0/0yFwI0mtOb9n6sL6/+AgADeOgKAAAX9AA==
Date: Thu, 10 Jun 2021 06:49:21 +0000
Message-ID: <7966398482664d9c8e21a2eba024c0272f8b135a.camel@edgeuno.com>
References: <90F1C7DD-A8FF-45C1-9B9F-6E57A04AB88B@gmail.com> , <7f64a647efa75ef19c60b86a036e367d9c140381.camel@edgeuno.com> <MEYP282MB294202D6AAEBCC6729A35E6AFC359@MEYP282MB2942.AUSP282.PROD.OUTLOOK.COM>
In-Reply-To: <MEYP282MB294202D6AAEBCC6729A35E6AFC359@MEYP282MB2942.AUSP282.PROD.OUTLOOK.COM>
Accept-Language: es-AR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Evolution 3.36.5-0ubuntu1
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=edgeuno.com;
x-originating-ip: [186.19.8.47]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2d767eb1-f622-48ba-2229-08d92bdbe0ce
x-ms-traffictypediagnostic: BYAPR05MB6038:
x-microsoft-antispam-prvs: <BYAPR05MB6038F5CA8E62716EF7FBAA32E5359@BYAPR05MB6038.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: FJF6qchdSsFX38I1Ll80rdqP+USI9Kzy3wYbgh1nJh0f0hXWxeMELytSHV2JyIAVVnjZ8uBSkh/qWnGoHaTMAe/kxK7sI90MnwP2eMJG2W9TxTf89EiJADN2EyNdweLsM09OdBmzCc55e/CSrK3hXYmvHOyEKgJqY3fDL+xw7yoDw1vDRU1TmUnba/X50/QodSMMLXxjpOm6ZDQZuF7by9jvHTaN/jmLMw1x24OaAROM7wKI9zyZ6J0j9AL2iIMvBgRiU911qVEKg61BZAkONBhXb2KtiKv3uF21DmAyoSGVkBXJUi0Zon62XVrSE8PF7FJsi0Tk90A4cWNzl/RyLdD0DZaRjUsOCOg2Zf1hufFHejG+aBA4KqpxSe4NPnyZI5B7nE4N3N/zPSPCP2brartHeIPZoVEtzttJ7QlSKXwovRYUIXF8RfS/Ew74qGkvrEx370tmuttyd0Om7zp+1dmuBL4YTsilWReu8T9WwqjgLQCMS4nKx2INnfnrZlS8ZdcBIJCbFVD3J2BjyNbRQbOiCnnpJMJXPczJ9fBAZ7IQrHD/miLGaeX7LipKsqTqYAiYx8wo1ntiYoQcrWYvViQ6nnOPz12Xu8bgr8hIM6M=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR05MB7514.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(136003)(396003)(366004)(376002)(39840400004)(346002)(6512007)(86362001)(38100700002)(44832011)(2616005)(2906002)(71200400001)(478600001)(66946007)(76116006)(66446008)(66476007)(64756008)(91956017)(66556008)(45080400002)(122000001)(8676002)(8936002)(5660300002)(316002)(186003)(26005)(6506007)(110136005)(36756003)(83380400001)(6486002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <5FAB8E510640DC48A0E7AB0935A8991C@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: edgeuno.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR05MB7514.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 2d767eb1-f622-48ba-2229-08d92bdbe0ce
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Jun 2021 06:49:21.7968 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 20879dba-fabf-45da-8300-60b8ce560217
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: REXH0FrasZ5KDkZps3PX1U+YfTZxMr2ddr7f2LNe/n67oD1nYUUJI81ETmitY8qg6C1djwCn3o3LZ089Va1jEYPECQSoBIaifYiFjpbxc6I=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB6038
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/SYsFRRJHxDd11oskz9KgRmh3Yas>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jun 2021 06:49:28 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On Thu, 2021-06-10 at 11:56 +0800, li_zhenqiang@hotmail.com wrote:
> Add one more co-existing policy:
> 1) rfc2460 implementations, which aim to process all HbH
> 2) Deployed reality which drops HbH
> 3) RFC8200 implementations -- which ignore HbH unless required
> 4) draft-hinden-6man-hbh-processing, which would only process part
> of it.
> 5) draft-ietf-opsec-ipv6-eh-filtering, in which the processing policy
> for the packets with HBH EH is DROP or IGNORE

No need to add anything extra: -- that's part of the deployed reality.

Thanks,
- -- 
Fernando Gont
Director of Information Security
EdgeUno, Inc.
PGP Fingerprint: DFBD 63E3 B248 AE79 C598 AF23 EBAE DA03 0644 1531




-----BEGIN PGP SIGNATURE-----

iQFOBAEBCgA4FiEE371j47JIrnnFmK8j667aAwZEFTEFAmDBtfAaHGZlcm5hbmRv
LmdvbnRAZWRnZXVuby5jb20ACgkQ667aAwZEFTEZ7wgAjBB+omdZR9YpLKuw29D8
17DxGxbPJS5ED9FYU5oZEeZYImFXMBOqajVArjejYjlbAdmStHUqJ++l+fRXRiwJ
K9iLL5dqyBVKB+h3cq9MyRK9d4y3W0sKT7g5zfoHJ5NALXWhrlJ/NJOJZEUajCJH
RC0pmas4paOLmr2h68YlcSi/nNr+4Jt2c1wpNppNdS4INWdsTs+TkUfmrn8lG063
FJcGboMkxbGikDN76caEVmw+I5doj7QGKs8b7Sji++N6tHDg0S1+RnG2bdpTREZI
QYk+pA7uKqEet2l1pxkLd1GH0F0ZBUp6IRZjUgh30qwiAZYJnXbSTdWUlN9kXWej
gw==
=X4Qg
-----END PGP SIGNATURE-----

v2.23.0 | Report a Bug | By Email