Re: draft-carpenter-ext-transmit
Brian E Carpenter <brian.e.carpenter@gmail.com> Mon, 05 November 2012 19:12 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44DD621F8683 for <ipv6@ietfa.amsl.com>; Mon, 5 Nov 2012 11:12:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.556
X-Spam-Level:
X-Spam-Status: No, score=-103.556 tagged_above=-999 required=5 tests=[AWL=0.043, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hz-pvNIQTn7V for <ipv6@ietfa.amsl.com>; Mon, 5 Nov 2012 11:12:40 -0800 (PST)
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) by ietfa.amsl.com (Postfix) with ESMTP id 8359821F8451 for <ipv6@ietf.org>; Mon, 5 Nov 2012 11:12:40 -0800 (PST)
Received: by mail-pb0-f44.google.com with SMTP id ro8so4129917pbb.31 for <ipv6@ietf.org>; Mon, 05 Nov 2012 11:12:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=j05A3aOfUPP8yD5G1xo/FDUuK9v4aHvbgeD8PwgxAtU=; b=wfIfg1k2xfZNPYcfzMwjIu4UzN8XbdKXvc3F0xtFnHbiFIKB202XP/J7IljLChWP0X sKLPpLBmoHRQ9e8VuDH4Aqm1UModFdwNQvDkNQi/YeZnPjgh6FLf7AWHv2Ks2qQz/kAy 6yajkK/GmjodrX7fm9lP+7EuJmQ7uuvDg8l1GMsGNNQA91Dpru0+EOvnZ9Bt/I7kkAxN 0wRUwuqppqBRrzix2xTI4EToquHd5HvuHyO4/G7O2nk//ibK6G6yKo70TzySSlkeKoxD AVijaUadKVzUvV+cDA9Vy2KiY+Mjyb4OlONL7CwULuIYAtb/QnBozZwcCnnk/sxeu9E4 CB2A==
Received: by 10.66.84.131 with SMTP id z3mr30991502pay.34.1352142755222; Mon, 05 Nov 2012 11:12:35 -0800 (PST)
Received: from [130.129.19.51] (dhcp-1333.meeting.ietf.org. [130.129.19.51]) by mx.google.com with ESMTPS id ph7sm9528561pbb.9.2012.11.05.11.12.33 (version=SSLv3 cipher=OTHER); Mon, 05 Nov 2012 11:12:34 -0800 (PST)
Message-ID: <50980FA3.7080507@gmail.com>
Date: Mon, 05 Nov 2012 19:12:35 +0000
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Michael Richardson <mcr@sandelman.ottawa.on.ca>
Subject: Re: draft-carpenter-ext-transmit
References: <23203.1352127410@sandelman.ca>
In-Reply-To: <23203.1352127410@sandelman.ca>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Cc: ipv6@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 19:12:41 -0000
On 05/11/2012 14:56, Michael Richardson wrote: > As I understand draft-carpenter-ext-transmit, the goal is to make sure > that at least firewalls support the list of extension headers we have > now. Not all of them were defined in 2460, and so they aren't all > supported. > > This document basically says we are done defining extension headers, we > have a definitive list. No, it carefully doesn't say that. The issue is this: suppose all the firewall maintainers in the world do the right thing (as defined by Brian Carpenter). At that moment we will be fine, because they will behave appropriately for all the currently defined extension headers. If somebody registers a new extension header after that, the IANA list will be updated, so all those firewall maintainers should obediently update again. That's the fantasy part - it would set the barrier for a new extension header extremely high > Bob Hinden said that he felt that the list would not grow very much. > I think he would have said the same thing about the v4 protocol field in > 1990, yet we defined lots of new things afterwards. The same thing *was* said in the early 1990's for IPv4 options - the network was already opaque to IPv4 options back then, and it still is. It is annoying that IPv6 is getting into the same situation. The protocol field as such is a different story with its own inertia. The problem here is chaining through the extension headers to *find* the protocol field in the first place. That's what draft-zhang-6man-offset-option was about, but nobody seemed to like it. > Brian says that "this is the best we can do", and I conclude he means > that we are not able demand that standard format extensions headers be > skipped. I mean that clarifying what firewalls SHOULD do is the best chance we have to improve transparency to extension headers. We cannot stop firewalls doing their job. > If Brian is saying that this the definitive list of Upper-Layer-Protocol > values, and that we may have new extensions, but not new ULPs, then > maybe this is okay. No, the two things are disjoint. I am only worrying about extension headers this time around. Regards Brian Carpenter Cell phone during IETF85: +1 847 219 0880
- draft-carpenter-ext-transmit Michael Richardson
- Re: draft-carpenter-ext-transmit Brian E Carpenter
- Re: draft-carpenter-ext-transmit Michael Richardson