IETF Logo Mail Archive

RE: Non-Last Small IPv6 Fragments

"Manfredi (US), Albert E" <albert.e.manfredi@boeing.com> Sun, 13 January 2019 22:24 UTC

Return-Path: <albert.e.manfredi@boeing.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC47812E043 for <ipv6@ietfa.amsl.com>; Sun, 13 Jan 2019 14:24:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RYFuHM-PZ8Ql for <ipv6@ietfa.amsl.com>; Sun, 13 Jan 2019 14:24:01 -0800 (PST)
Received: from clt-mbsout-02.mbs.boeing.net (clt-mbsout-02.mbs.boeing.net [130.76.144.163]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1D51112D7EA for <ipv6@ietf.org>; Sun, 13 Jan 2019 14:24:00 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by clt-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with SMTP id x0DMNwsb002180; Sun, 13 Jan 2019 17:23:58 -0500
Received: from XCH16-01-07.nos.boeing.com (xch16-01-07.nos.boeing.com [144.115.65.217]) by clt-mbsout-02.mbs.boeing.net (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id x0DMNntb001073 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=FAIL); Sun, 13 Jan 2019 17:23:49 -0500
Received: from XCH16-01-11.nos.boeing.com (144.115.66.39) by XCH16-01-07.nos.boeing.com (144.115.65.217) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.1.1591.10; Sun, 13 Jan 2019 14:23:48 -0800
Received: from XCH16-01-11.nos.boeing.com ([fe80::c57c:39bc:4c0a:384b]) by XCH16-01-11.nos.boeing.com ([fe80::c57c:39bc:4c0a:384b%4]) with mapi id 15.01.1591.012; Sun, 13 Jan 2019 14:23:48 -0800
From: "Manfredi (US), Albert E" <albert.e.manfredi@boeing.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: IPv6 List <ipv6@ietf.org>
Subject: RE: Non-Last Small IPv6 Fragments
Thread-Topic: Non-Last Small IPv6 Fragments
Thread-Index: AQHUqPnoYwhFthcR2k+KMHDf6wcw46WpTU6AgAAdVICAAAKugIAAAucAgAACcQCAAAjLgIAASb0AgAAjPACAAK+7AIAAA6OAgAALsQCAAEZLgIAAE/IAgAAXVACAAAPVgIAAEn4AgAAEHgCAAE3OgIAABeQAgAAOCICAAFcEgIAAfXEAgAAZ3oCAAApHAIAABP2AgAGEMoCAAAiDgIAABpWAgAAfUoD//4OvMA==
Date: Sun, 13 Jan 2019 22:23:48 +0000
Message-ID: <4e85dfb794ec4f12b4a42686961ed174@boeing.com>
References: <CAOSSMjV0Vazum5OKztWhAhJrjLjXc5w5YGxdzHgbzi7YVSk7rg@mail.gmail.com> <8b43af81-1c49-5cea-6472-97703674e661@si6networks.com> <CAN-Dau1HwG5RndacpSA+si+zKuTdpSvA=QA1A11A==rMNe=4+w@mail.gmail.com> <CALx6S35KNhV2gFp9OdU+M1zy5WUuEAEvXkDXNDWWxi7uQ4e_cw@mail.gmail.com> <CAN-Dau0rTdiiF2SjByxcMG6nhPCEjUH2pYBCOeK_FSGJ_ucDQw@mail.gmail.com> <CALx6S34AyV9OpvnjQhQc56n5vfeVgU5Zd3kheP0g+XvsMbBV9g@mail.gmail.com> <1b2e318e-1a9f-bb5d-75a5-04444c42ef20@si6networks.com> <CALx6S37TJr++fC=pVoeS=mrO1fHc4gL_Wtu-XkVTswzs2XxXCA@mail.gmail.com> <CALx6S36V7vrVyoTP0G6+S5XeFNB3KWS5UaNnVi20xogRERdCfg@mail.gmail.com> <973A1649-55F6-4D97-A97F-CEF555A4D397@employees.org> <CALx6S34YbBe8xBod3VsWVO33TpZcdxh2uV1vaO8Z_NKnVXp66g@mail.gmail.com> <A3C3F9C0-0A07-41AF-9671-B9E486CB8246@employees.org> <AEA47E27-C0CB-4ABE-8ADE-51E9D599EF8F@gmail.com> <6aae7888-46a4-342d-1d76-10f8b50cebc4@gmail.com> <CALx6S35QKOqn_Ywh9yzm1JDA8Xnp7fLPPmXUvomvz_xOZP8bfg@mail.gmail.com> <146dbb4f-bebb-cce4-f0f8-f965a951dc47@gmail.com>
In-Reply-To: <146dbb4f-bebb-cce4-f0f8-f965a951dc47@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [137.136.248.6]
x-tm-snts-smtp: 8959A693F68E668DD516BD355D340AEA31642312B9D6BC520791D477F56D399D2000:8
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-TM-AS-GCONF: 00
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/dWMp_PiIFkEtvjEzvxvqCeDS_Qg>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 13 Jan 2019 22:24:03 -0000

-----Original Message-----
From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Brian E Carpenter

> Well, I'm an advocate of one step at a time.

Me too, although I also think that when there's no compelling reason, best to leave things alone.

> Step 1: As an addendum to RFC8200, state that there is no rule that non-last fragments must be at least 1280.

Yes, but if nothing is said, that is understood. It seems difficult to expect that every non-rule should be explicitly stated as not being a rule.

> Step 2: Discuss whether there *should* be any rules about non-last fragment size, given that there are legitimate cases where they will be less than 1280.

The rationale for any such minimum intermediate fragment size rule has been DOS attacks. But quite frankly, it's easy enough to conduct a DOS attack via fragmentation, no matter what minimum fragment size is stipulated. Even if one has to open more than one socket to do so.

I'm thinking, no reason to do anything, at least not with RFC 8200.

Bert

v2.23.0 | Report a Bug | By Email