IETF Logo Mail Archive

operational stoppers to > 1500 MTU deployment in real life (Re: Path MTU Hop-by-Hop Option)

Mikael Abrahamsson <swmike@swm.pp.se> Thu, 18 October 2018 12:36 UTC

Return-Path: <swmike@swm.pp.se>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8099F130DCB for <ipv6@ietfa.amsl.com>; Thu, 18 Oct 2018 05:36:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=swm.pp.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QK2QVTvuWVq1 for <ipv6@ietfa.amsl.com>; Thu, 18 Oct 2018 05:36:22 -0700 (PDT)
Received: from uplift.swm.pp.se (ipv6.swm.pp.se [IPv6:2a00:801::f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 617CF130EAB for <ipv6@ietf.org>; Thu, 18 Oct 2018 05:36:22 -0700 (PDT)
Received: by uplift.swm.pp.se (Postfix, from userid 501) id 49494B1; Thu, 18 Oct 2018 14:36:18 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=swm.pp.se; s=mail; t=1539866178; bh=fzTP3jCtIKIqNJVxI0CVP6UzwTOBGkWNZX2mNNMwWow=; h=Date:From:To:cc:Subject:In-Reply-To:References:From; b=TrFhu28MhhnE64QUTU+qXpJ1KnTmb4Gup98xROLhthe3WeMGsHSDMdeuHxXWEQiAj q7fYwOdujBbxXDdU8wHwS0c1UH9nO0+NcAj20BOYhPlWv0KBRoVNVYqJgj6QpfXi7Y 2ESuHzcqp2jYbakTcdHHmbeQrRVuLSnib3JI1hkM=
Received: from localhost (localhost [127.0.0.1]) by uplift.swm.pp.se (Postfix) with ESMTP id 46F92B0; Thu, 18 Oct 2018 14:36:18 +0200 (CEST)
Date: Thu, 18 Oct 2018 14:36:18 +0200
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: George Michaelson <ggm@algebras.org>
cc: ipv6@ietf.org
Subject: operational stoppers to > 1500 MTU deployment in real life (Re: Path MTU Hop-by-Hop Option)
In-Reply-To: <CAKr6gn2aMiYdKMr09GfN_Jt=1SKN50z_M7f_jmmTvke2Q9Czrg@mail.gmail.com>
Message-ID: <alpine.DEB.2.20.1810181428280.26856@uplift.swm.pp.se>
References: <153972960647.9465.12295361632444928551.idtracker@ietfa.amsl.com> <E97952C5-3E3C-4EC1-B414-BDA8717FD7DF@gmail.com> <CALx6S36jRregvTO45=-Y=Kk+fS8eK-CxZDLhGuqcCz9Fq285rA@mail.gmail.com> <48c45b83983340a6882547aebb02602e@usma1ex-dag1mb5.msg.corp.akamai.com> <29044.1539782917@localhost> <3C43A2B0-E3EC-4457-9B75-4493FD6BA493@isc.org> <alpine.DEB.2.20.1810171735500.17344@uplift.swm.pp.se> <CAKr6gn2aMiYdKMr09GfN_Jt=1SKN50z_M7f_jmmTvke2Q9Czrg@mail.gmail.com>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
Organization: People's Front Against WWW
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/iaaet9WE650EUy8hlTkhuhAUNFs>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Oct 2018 12:36:32 -0000

On Wed, 17 Oct 2018, George Michaelson wrote:

> dreaming of a larger packet future...

It's completely undeployable in real life without something like 
https://tools.ietf.org/html/draft-van-beijnum-multi-mtu-05

It's not realistic to expect a whole lan of managed and unmanaged devices 
to show up at a LAN and communicate with each other on a large MTU LAN.

Right now my only tools are to crank up the L2 switch to 9000 MTU and 
advertise MTU=9000 in RA. Ok, I show up with my device that only has 1500 
MTU/MRU, I see that RA and I'm like "well, I can't do higher than 1500 
anyway, so I'll continue doing that". I need to send a UDP packet to the 
other guy on the same LAN, that's fine, he has 9000 MRU/MTU. He then needs 
to send me 2000 bytes back, so he does that and because my MRU is only 
1500, my NIC now silently drops that packet. No PMTUD, just silent drop. 
*poof* gone.

There are LOTS of similar failure modes that can happen. We need 
per-destination PMTU both on/off-link. I need to be able to send RIO and 
say "ok, ::/0 has 1492 PMTU" while at the same time send PIO with 
"MTU 9000". Devices then need to understand if their neighbours actually 
can do 9000 or not.

I've even seen hardware/software that will have interface MTU of 1500, 
take the RA MTU=9000, set it's IPv6 interface MTU to 9000, set MSS to 
89xx, send a large packet (because it can), then it borks when a response 
comes back because it only has ~2000 in MRU.

Yes, real life is that broken.

-- 
Mikael Abrahamsson    email: swmike@swm.pp.se

v2.23.0 | Report a Bug | By Email