[radext] #182 (radius-fragmentation): transport review questions
"radext issue tracker" <trac+radext@trac.tools.ietf.org> Tue, 24 June 2014 07:38 UTC
Return-Path: <trac+radext@trac.tools.ietf.org>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9FC1D1B287C for <radext@ietfa.amsl.com>; Tue, 24 Jun 2014 00:38:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.151
X-Spam-Level:
X-Spam-Status: No, score=-1.151 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4XnUVaOT9MQM for <radext@ietfa.amsl.com>; Tue, 24 Jun 2014 00:38:11 -0700 (PDT)
Received: from zinfandel.tools.ietf.org (zinfandel.tools.ietf.org [IPv6:2001:1890:123a::1:2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B48601B287B for <radext@ietf.org>; Tue, 24 Jun 2014 00:38:11 -0700 (PDT)
Received: from localhost ([::1]:53402 helo=zinfandel.tools.ietf.org) by zinfandel.tools.ietf.org with esmtp (Exim 4.82_1-5b7a7c0-XX) (envelope-from <trac+radext@trac.tools.ietf.org>) id 1WzLIa-0001yV-2y; Tue, 24 Jun 2014 00:37:53 -0700
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: radext issue tracker <trac+radext@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: draft-ietf-radext-radius-fragmentation@tools.ietf.org, stefan.winter@restena.lu
X-Trac-Project: radext
Date: Tue, 24 Jun 2014 07:37:38 -0000
X-URL: http://tools.ietf.org/radext/
X-Trac-Ticket-URL: http://tools.ietf.org/wg/radext/trac/ticket/182
Message-ID: <065.43aead270fea325624ba7c979c6728de@trac.tools.ietf.org>
X-Trac-Ticket-ID: 182
X-SA-Exim-Connect-IP: ::1
X-SA-Exim-Rcpt-To: draft-ietf-radext-radius-fragmentation@tools.ietf.org, stefan.winter@restena.lu, radext@ietf.org
X-SA-Exim-Mail-From: trac+radext@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on zinfandel.tools.ietf.org); SAEximRunCond expanded to false
Resent-To: aland@networkradius.com, alex@um.es, diego@tid.es, gabilm@um.es, pereniguez@um.es
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/9hrsZq-hBoP9TguNn6-SzYJn-ek
Cc: radext@ietf.org
Subject: [radext] #182 (radius-fragmentation): transport review questions
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Reply-To: radext@ietf.org
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jun 2014 07:38:13 -0000
#182: transport review questions - the document should more clearly distinguish between the limiting sizes of messages at different layers in the stack Although RADIUS uses the term "packet" even for RADIUS-level data (RFC 2965), I'll use the following terms: message - a RADIUS unit of data packet - a UDP unit datagram - an IP unit i.e., a single RADIUS message (up to 4096 bytes) is always sent in a single UDP packet, which may be sent over one or more IP datagrams. Thus RADIUS already relies (heavily, IMO) on IP-level fragmentation and reassembly. E.g., RADIUS specifies a max length of 4096 octets; the field supports the same length as a max IP datagram (65535). The largest IPv4 datagram that is guaranteed to be reassembled is 576 bytes. So RADIUS is already potentially sending UDP packets that can't be reassembled by IPv4. There's nothing I see in RADIUS that reacts to path MTU or even interface MTU. - the need to send "large amounts" of data should be better discussed Even the 100K data limit can generate an excessive burst if the network is congested. See RFC 5405. However, given the stop-and-go (windowsize =1) protocol of exchanging fragments one at a time, this probably isn't an issue - but it should be explained as such. - PMTUD is a red-herring unless RADIUS sets the DF bit That would be a bad idea, IMO, because RADIUS already allows message sizes in excess of the largest safely assumed MTU. There's no good reason to set DF=1 for RADIUS packets - they're not sent at a high enough data rate to have problems with IPv4 ID uniqueness (see RFC 6864). However, RADIUS doesn't appear to set the DF bit, nor is that discussed in this doc, so this is a red herring. - nothing in RADIUS appears to avoid IP fragmentation per se So I don't see why that's being added here. -- -------------------------------------+------------------------------------- Reporter: | Owner: draft-ietf-radext- stefan.winter@restena.lu | radius-fragmentation@tools.ietf.org Type: defect | Status: new Priority: major | Milestone: Component: radius-fragmentation | Version: Severity: Waiting for Shepherd | Keywords: Writeup | -------------------------------------+------------------------------------- Ticket URL: <http://tools.ietf.org/wg/radext/trac/ticket/182> radext <http://tools.ietf.org/radext/>
- [radext] #182 (radius-fragmentation): transport r… radext issue tracker
- Re: [radext] #182 (radius-fragmentation): transpo… radext issue tracker
- Re: [radext] #182 (radius-fragmentation): transpo… radext issue tracker