Re: [tcpm] WGLC for MSS document
Danny McPherson <danny@tcb.net> Thu, 03 September 2009 14:39 UTC
Return-Path: <danny@tcb.net>
X-Original-To: tcpm@core3.amsl.com
Delivered-To: tcpm@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C85413A6985 for <tcpm@core3.amsl.com>; Thu, 3 Sep 2009 07:39:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.117
X-Spam-Level:
X-Spam-Status: No, score=-1.117 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, DNS_FROM_RFC_BOGUSMX=1.482]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CMldABi7z3GN for <tcpm@core3.amsl.com>; Thu, 3 Sep 2009 07:39:11 -0700 (PDT)
Received: from dog.tcb.net (dog.tcb.net [64.78.150.133]) by core3.amsl.com (Postfix) with ESMTP id 035573A68A8 for <tcpm@ietf.org>; Thu, 3 Sep 2009 07:39:11 -0700 (PDT)
Received: by dog.tcb.net (Postfix, from userid 0) id 3FC3B368046; Thu, 3 Sep 2009 08:37:35 -0600 (MDT)
Received: from jchouinard-sim-318.eng.ellacoya.com (97-118-218-88.hlrn.qwest.net [97.118.218.88]) (authenticated-user danny) (TLSv1/SSLv3 AES128-SHA 128/128) by dog.tcb.net with SMTP; Thu, 03 Sep 2009 08:37:35 -0600 (MDT) (envelope-from danny@tcb.net)
X-Avenger: version=0.7.8; receiver=dog.tcb.net; client-ip=97.118.218.88; client-port=58983; syn-fingerprint=65535:56:1:64:M1408,N,W1,N,N,T,S; data-bytes=0
Message-Id: <275B75BC-634B-45A7-8F65-63870813A809@tcb.net>
From: Danny McPherson <danny@tcb.net>
To: "Eddy, Wesley M. (GRC-MS00)[Verizon]" <wesley.m.eddy@nasa.gov>, tcpm@ietf.org
In-Reply-To: <20090826135651.00EF23F8684@lawyers.icir.org>
Content-Type: text/plain; charset="US-ASCII"; format="flowed"; delsp="yes"
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v936)
Date: Thu, 03 Sep 2009 08:37:33 -0600
References: <20090826135651.00EF23F8684@lawyers.icir.org>
X-Mailer: Apple Mail (2.936)
Subject: Re: [tcpm] WGLC for MSS document
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Sep 2009 14:39:11 -0000
I agree with Marks's comments - in general I like the document (my colleague Aaron Campbell and I asked for and offered to write) something similar quite a while back). It is worth noting that the confusion isn't universal, at least, the Linux, NetBSD, and OpenBSD people got it right (options are not subtracted from the advertised MSS on these systems from our past research). RFC2385 is wrong, though: ---------- 4.3 TCP Header Size As with other options that are added to every segment, the size of the MD5 option must be factored into the MSS offered to the other side during connection negotiation. Specifically, the size of the header to subtract from the MTU (whether it is the MTU of the outgoing interface or IP's minimal MTU of 576 bytes) is now at least 18 bytes larger. ---------- Perhaps the draft could cite RFC2385 as a bad example and point out the error? We saw this cause fragmentation with a Cisco GSR talking to a BSD box. The GSR was subtracting the size of the TCP MD5 option from the advertised MSS and assuming that the BSD box was doing the same. Since the management interface on the GSR was POS, it ended up sending an MSS of 4386, while the BSD box sent 1460 (Ethernet). The lower of the two values gets used, so the GSR assumed it could send 1460 bytes payload on top of the fixed IP + fixed TCP + TCP MD5 option, so it was overrunning the 1500 byte MTU by 18 bytes. Note, this isn't a problem for Ethernet-to-Ethernet, because the GSR would choose an MSS of 1442 (although Jumbo frames may be an issue at some point), and being lower than 1460, would be the negotiated maximum for both sides of the connection. -danny
- [tcpm] WGLC for MSS document Eddy, Wesley M. (GRC-MS00)[Verizon]
- Re: [tcpm] WGLC for MSS document Alexander Zimmermann
- Re: [tcpm] WGLC for MSS document Joe Touch
- Re: [tcpm] WGLC for MSS document L.Wood
- Re: [tcpm] WGLC for MSS document Joe Touch
- Re: [tcpm] WGLC for MSS document Mark Allman
- Re: [tcpm] WGLC for MSS document Danny McPherson
- Re: [tcpm] WGLC for MSS document David Borman
- Re: [tcpm] WGLC for MSS document David Borman
- Re: [tcpm] WGLC for MSS document Alexander Zimmermann
- [tcpm] Fwd: WGLC for MSS document David Borman
- Re: [tcpm] WGLC for MSS document David Borman
- Re: [tcpm] WGLC for MSS document Xiangsong Cui
- Re: [tcpm] Fwd: WGLC for MSS document Danny McPherson
- Re: [tcpm] Fwd: WGLC for MSS document Joe Touch
- Re: [tcpm] WGLC for MSS document Mark Allman
- Re: [tcpm] WGLC for MSS document Alexander Zimmermann