IETF Logo Mail Archive

Re: [v6ops] Operational Implications of IPv6 Packets with Extension Headers - Load Balancer

Geoff Huston <gih@apnic.net> Tue, 28 July 2020 20:03 UTC

Return-Path: <gih@apnic.net>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E96A3A0C08; Tue, 28 Jul 2020 13:03:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=apnic.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zWlSTsGUzqME; Tue, 28 Jul 2020 13:03:32 -0700 (PDT)
Received: from APC01-PU1-obe.outbound.protection.outlook.com (mail-eopbgr1320084.outbound.protection.outlook.com [40.107.132.84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40A943A0BF8; Tue, 28 Jul 2020 13:03:32 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=HWtmVrwb91qMJBlU6cXDu8NjZiH3K2QJzhLwHKm4JlY9eBy7vy0u7gA9fp+dfD3YRK+bYVLRQIhjXG8SW4mlapk1iqk+YMThqx85g7pfBdhiixvZyn+i/rli6Y3eLPT+0ukdRtxlXoPqLtk/Lz4BRkQnI4DJRgLeYnF3Bhzqq3LkKNY5JI0uRYnNmPf/fEttNY1kd/OBAZ9pf5uu/n3/NCE+nT5s2CwA2lV+lDwUvh+hPZzo/nYDZrTySBjqwPLaqCgjCjy2AtmTAyxO7h4/mKmCvWE4glshKHdEKJEvwx7O6nptYH5FyiZFV91X0UlKdhSnE4bg9LEQ+DlJiKHQrQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tJAYiV6uZJ1T5ii0Bj6iQ2onZ9M4hd/clk93qrN8Xfk=; b=KZZCDfraATm+ffpL5YH8OemS0M+c5X8DZtgSl4gvs015R+B+c4sdShAs/8uebEraoVpYWt4b0zXQIKxtSXhlh1dZ31gzO9jJ5NQufMnQd2YAyDpFpu8+lk6AjxmFWXSMsbj90+q0/9A5Lxhlk3lkMHPoIkE2JCaOwnr6LhuRe56lFEurhmYQ6KHbaM7X9cY8tY7ZLoNp0uPj3Edzq4kHHLtLzYyvovB49oyh0eKJsz0bi4GZIkjAn2M9DtsgoRKZHX4Es8CNOHOuqzyC1EZRjFsGX5ZhJOuV3CbgNN6kbQD0QrplAQ9FNfYcSdw6j0ScQ4MCaERJt4tJolmF7dja3Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=apnic.net; dmarc=pass action=none header.from=apnic.net; dkim=pass header.d=apnic.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tJAYiV6uZJ1T5ii0Bj6iQ2onZ9M4hd/clk93qrN8Xfk=; b=Eztifay+uQv4Uwmlbqpc0TywIib0qcai9DVhFn1K2G8AjwCU8/O1FwYRjHkF11lamYdf2ppSUdDwGtJCWSWq6ULikZSlJpECbabgUtC4HtOQENmxJCpTH2FTJGdransAR5LciAORePnT758yrr1qPaEaJmABpyAb01JTa/Vxydo=
Authentication-Results: herbertland.com; dkim=none (message not signed) header.d=none;herbertland.com; dmarc=none action=none header.from=apnic.net;
Received: from TYAPR04MB2286.apcprd04.prod.outlook.com (2603:1096:404:24::20) by TY2PR04MB2624.apcprd04.prod.outlook.com (2603:1096:404:52::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3216.24; Tue, 28 Jul 2020 20:03:28 +0000
Received: from TYAPR04MB2286.apcprd04.prod.outlook.com ([fe80::69aa:ca1d:4b48:1b24]) by TYAPR04MB2286.apcprd04.prod.outlook.com ([fe80::69aa:ca1d:4b48:1b24%6]) with mapi id 15.20.3216.034; Tue, 28 Jul 2020 20:03:28 +0000
Content-Type: text/plain; charset="utf-8"
From: Geoff Huston <gih@apnic.net>
In-Reply-To: <CALx6S35FX-SNoNFhd2JXFio9B0vGVyXGkeob=7x+dn6u4qOaVw@mail.gmail.com>
Date: Wed, 29 Jul 2020 06:03:21 +1000
Cc: Vasilenko Eduard <vasilenko.eduard@huawei.com>, Fernando Gont <fgont@si6networks.com>, IPv6 Operations <v6ops@ietf.org>, "draft-gont-v6ops-ipv6-ehs-packet-drops@ietf.org" <draft-gont-v6ops-ipv6-ehs-packet-drops@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <42B3046E-6157-4460-A10B-F13E299340B6@apnic.net>
References: <b380408712364589a45ab9f39ab6f764@huawei.com> <CALx6S35rkA5nVPm6C6MToUdHKFmcAabGfMN9prTiUfWr+GKwCA@mail.gmail.com> <6439ceb9d73b435d950e73a7a2d68fc7@huawei.com> <CALx6S37ih8VabN2PHvQ3ELDvV2DoiUqnd28LRxr4ofj6zUq3Jw@mail.gmail.com> <947a50398cbb4bbcad85462a69d7dd45@huawei.com> <CALx6S35FX-SNoNFhd2JXFio9B0vGVyXGkeob=7x+dn6u4qOaVw@mail.gmail.com>
To: Tom Herbert <tom@herbertland.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
X-ClientProxiedBy: SYBPR01CA0193.ausprd01.prod.outlook.com (2603:10c6:10:16::13) To TYAPR04MB2286.apcprd04.prod.outlook.com (2603:1096:404:24::20)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from [IPv6:2001:44b8:110b:5100:25d3:b479:68c3:74b5] (2001:44b8:110b:5100:25d3:b479:68c3:74b5) by SYBPR01CA0193.ausprd01.prod.outlook.com (2603:10c6:10:16::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.16 via Frontend Transport; Tue, 28 Jul 2020 20:03:26 +0000
X-Mailer: Apple Mail (2.3608.120.23.2.1)
X-Originating-IP: [2001:44b8:110b:5100:25d3:b479:68c3:74b5]
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 43dfd326-8549-48d7-9d00-08d833314aee
X-MS-TrafficTypeDiagnostic: TY2PR04MB2624:
X-Microsoft-Antispam-PRVS: <TY2PR04MB262425B4DB5EAB5D3102E056B8730@TY2PR04MB2624.apcprd04.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:7219;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: EaCLrN1Fjt9jtxb7U8GMY86BfXwwftEaRHP9Xfj6PlwWxAGTsaMd84CN3EJAZeDYKgssf/0BNFYiz/JVKYn9c9za+k5ZGjCOMsedYBZUg0CqthYdoT7COeazOGG9+nejFBj328l7Mt8HL2IAPvsBdUCKNAGKt1GNgSrVCxP8CYmzmUSNY7zJ8w7dqPvjcNPdZFGqOXXWsrHGeEn8V/q32DWxuynMb3ZkeH7lStHcKG8l1BbqP++vpjc3t65qFnDmkDHYQbs9DYWcuYMPt/XQ+6AuUB+m7M+rFeVmvzZpFlAgRhuVS1qe6wqzTrSzWgpnpImSuOpkelMeQ5iBsR23uA==
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:TYAPR04MB2286.apcprd04.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(366004)(136003)(346002)(376002)(39850400004)(396003)(86362001)(36756003)(66476007)(66556008)(6916009)(52116002)(66574015)(508600001)(316002)(53546011)(6666004)(6486002)(186003)(5660300002)(8676002)(16526019)(2616005)(4326008)(8936002)(2906002)(66946007)(54906003)(33656002)(4744005); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData: 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
X-OriginatorOrg: apnic.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 43dfd326-8549-48d7-9d00-08d833314aee
X-MS-Exchange-CrossTenant-AuthSource: TYAPR04MB2286.apcprd04.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 28 Jul 2020 20:03:27.8409 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 127d8d0d-7ccf-473d-ab09-6e44ad752ded
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: yS1FGDpbzQDFqO+XNrrga8XpfetszdG8lkOX50tyyLITag/aPYvjBdOAdqfTKZKG
X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY2PR04MB2624
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/SV986Pz0mUr7yutjUhjxoozGjBw>
Subject: Re: [v6ops] Operational Implications of IPv6 Packets with Extension Headers - Load Balancer
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2020 20:03:35 -0000

> On 29 Jul 2020, at 5:18 am, Tom Herbert <tom@herbertland.com> wrote:
> 
> 
> 
>> They have disputable conclusion: "Avoid using the flow label as a hash component".
> 
> This guidance could just as easily be "Avoid fragmentation", "Avoid
> using any protocols other than UDP or TCP", "Avoid using extension
> headers", "Avoid ICMP", "Avoid using encapsulation", "Avoid using
> encryptions" as any of these can break some meddling device somewhere
> such that packet delivery becomes unreliable on the Internet. More
> generally, the guidance could simply be "Avoid doing anything that
> disrupts the status quo”!


It all depends on the motivation Tom. If the motivation is “maximise the
likelihood of successful packet delivery on transit paths across the public 
Internet", then yes, all these are relevant considerations. And your point
is?

Geoff

v2.23.0 | Report a Bug | By Email