Atomic fragments: converging on something?
Fernando Gont <fgont@si6networks.com> Wed, 04 January 2012 00:03 UTC
Return-Path: <fgont@si6networks.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1345F1F0C74 for <ipv6@ietfa.amsl.com>; Tue, 3 Jan 2012 16:03:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.93
X-Spam-Level:
X-Spam-Status: No, score=-0.93 tagged_above=-999 required=5 tests=[AWL=-0.426, BAYES_00=-2.599, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pwQc3Fxua-sV for <ipv6@ietfa.amsl.com>; Tue, 3 Jan 2012 16:03:53 -0800 (PST)
Received: from srv01.bbserve.nl (srv01.bbserve.nl [46.21.160.232]) by ietfa.amsl.com (Postfix) with ESMTP id 22C8D1F0C57 for <ipv6@ietf.org>; Tue, 3 Jan 2012 16:03:53 -0800 (PST)
Received: from [186.137.77.114] (helo=[192.168.1.106]) by srv01.bbserve.nl with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.77) (envelope-from <fgont@si6networks.com>) id 1RiE0H-0001Ug-JY; Wed, 04 Jan 2012 00:42:49 +0100
Message-ID: <4F038BD2.6080805@si6networks.com>
Date: Tue, 03 Jan 2012 20:14:26 -0300
From: Fernando Gont <fgont@si6networks.com>
Organization: SI6 Networks
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Thunderbird/3.1.16
MIME-Version: 1.0
To: "ipv6@ietf.org" <ipv6@ietf.org>
Subject: Atomic fragments: converging on something?
X-Enigmail-Version: 1.1.2
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jan 2012 00:03:54 -0000
Folks, The posting of draft-gont-6man-ipv6-atomic-fragments-00.txt triggered some (unintended) discussion about the usefulness/legitimacy of IPv6 "atomic fragments" (IPv6 packets that contain a Fragmentation Header, but that have the "More Fragments" bit set to zero). My understanding is that is quite clear that such packets have been found in the wild and that a number of things would break if they were blocked or banned. That said, I'd like some feedback on the actual proposal in draft-gont-6man-ipv6-atomic-fragments-00.txt: process the aforementioned "atomic fragments" as if they were non-fragmented packets. This would basically eliminate all the security issues and problems normally associated with framgentation, while still allowing their legitimate use. Thoughts? Thanks! Best regards, -- Fernando Gont SI6 Networks e-mail: fgont@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
- Atomic fragments: converging on something? Fernando Gont
- Re: Atomic fragments: converging on something? Mohacsi Janos
- Re: Atomic fragments: converging on something? Timothy Hartrick
- Re: Atomic fragments: converging on something? Fernando Gont
- Re: Atomic fragments: converging on something? Rémi Després
- Re: Atomic fragments: converging on something? Fernando Gont
- Re: Atomic fragments: converging on something? Rémi Després