IETF Logo Mail Archive

Re: [v6ops] WG Doc? draft-gont-v6ops-ipv6-ehs-packet-drops

Joe Touch <touch@isi.edu> Tue, 29 March 2016 15:44 UTC

Return-Path: <touch@isi.edu>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C958B12D923 for <v6ops@ietfa.amsl.com>; Tue, 29 Mar 2016 08:44:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.91
X-Spam-Level:
X-Spam-Status: No, score=-6.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4ErsIm3fv6py for <v6ops@ietfa.amsl.com>; Tue, 29 Mar 2016 08:44:52 -0700 (PDT)
Received: from vapor.isi.edu (vapor.isi.edu [128.9.64.64]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0650F12D72A for <v6ops@ietf.org>; Tue, 29 Mar 2016 08:44:45 -0700 (PDT)
Received: from [192.168.1.189] (cpe-172-250-251-17.socal.res.rr.com [172.250.251.17]) (authenticated bits=0) by vapor.isi.edu (8.13.8/8.13.8) with ESMTP id u2TFhibu016486 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Tue, 29 Mar 2016 08:43:55 -0700 (PDT)
To: Mark Smith <markzzzsmith@gmail.com>, Ole Troan <otroan@employees.org>
References: <CAHw9_iLbqEvsw0x4dDcA3Zy3SXKUROcQuy5nSynsL9Xi+xrZLg@mail.gmail.com> <566C93D0-62FF-4700-BC05-7F9AF12AF1BD@employees.org> <56E892B8.9030902@foobar.org> <394925FE-FAB1-4FFC-B1CF-4F64CC58F613@employees.org> <56E94275.20700@foobar.org> <3AE1DE20-D735-4262-A3FB-7C01F30BAFA2@employees.org> <56E96F74.7000206@foobar.org> <CALx6S37zP4UvCtBJsvnPN6OmDB0OQDMfRrJNy1XF0t4COStUjQ@mail.gmail.com> <56E98086.5040209@foobar.org> <EE17974D-EDA4-4732-B29E-B2B3BC36DB86@employees.org> <20160328183844.GR62900@Space.Net> <56F9A22B.2030301@isi.edu> <5E619124-0A60-45BB-86AA-7F7D5CC614AD@cisco.com> <56F9AE53.8060903@gmail.com> <56F9BEA3.9050409@isi.edu> <4542AA33-F4FA-4F52-B5FE-9ABF2627CD5E@cisco.com> <56F9C856.2030403@gmail.com> <56F9C915.9070408@isi.edu> <E2C0BF9F-806C-4ACC-86CE-1B678628E687@employees.org> <CAO42Z2z2R9N4b1Y=zQCuw2niwYzaRtten+8mDHpsjfYXSh8pJQ@mail.gmail.com>
From: Joe Touch <touch@isi.edu>
Message-ID: <56FAA2B0.3030608@isi.edu>
Date: Tue, 29 Mar 2016 08:43:44 -0700
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.7.1
MIME-Version: 1.0
In-Reply-To: <CAO42Z2z2R9N4b1Y=zQCuw2niwYzaRtten+8mDHpsjfYXSh8pJQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: <http://mailarchive.ietf.org/arch/msg/v6ops/5Db-lYTmHuG33tscFrc2TTiCJq8>
Cc: v6ops list <v6ops@ietf.org>
Subject: Re: [v6ops] WG Doc? draft-gont-v6ops-ipv6-ehs-packet-drops
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Mar 2016 15:44:54 -0000


On 3/29/2016 2:37 AM, Mark Smith wrote:
> 
> On 29 Mar 2016 7:31 PM, <otroan@employees.org
> <mailto:otroan@employees.org>> wrote:
>>
>> >> Yes. It's a bug in RFC2460 that this ambiguity arises.
>> >
>> > I took it as a feature. IMO, the idea of a chain enables this feature,
>> > and I don't think it should be so quickly dismissed as potentially
> useful.
>> >
>> > I appreciate that not everyone agrees, though.
>>
>> It does break PMTUD though.
>>
> 
> Which I think is because of an expectation that the device identified in
> the packet source address (the "sender") is responsible for creating the
> whole packet. It can't be a "unicast source address" field if there are
> multiple sources of the information in the packet.
>
> It also breaks troubleshooting methods and assumptions about the source
> address field that have been true for IPv6, IPv4 and many, if not all,
> past layer 3 protocols.

I presume then that you're then arguing that NATs shouldn't exist? (I'd
be glad if that were the case, but it's clear it's not).

> One perspective on tunneling is that when it modifies the packet, it
> adds another source address field to record that another device,  other
> than the original packet source device, has made additions to the packet.

Yes, but encapsulation performs a very similar function. That's why we
try very hard to avoid cross-layer dependencies (though the idea of a
pseudoheader in the checksum of transports breaks this) and why
intermediate devices shouldn't be peeking past layer 3.

So again, I'm interested to see this perspective on the "sanctity of the
header chain" when nearly every other presumably "immutable" field of
the header has been the subject of modification.

Joe

v2.23.0 | Report a Bug | By Email