Re: [v6ops] IPv6 Extension Headers in the Real World
Warren Kumari <warren@kumari.net> Wed, 01 October 2014 20:33 UTC
Return-Path: <warren@kumari.net>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E0CB1A8788 for <v6ops@ietfa.amsl.com>; Wed, 1 Oct 2014 13:33:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V8oBUNkJ0Qat for <v6ops@ietfa.amsl.com>; Wed, 1 Oct 2014 13:33:32 -0700 (PDT)
Received: from mail-wg0-f50.google.com (mail-wg0-f50.google.com [74.125.82.50]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 710E41A8785 for <v6ops@ietf.org>; Wed, 1 Oct 2014 13:33:32 -0700 (PDT)
Received: by mail-wg0-f50.google.com with SMTP id a1so1558874wgh.9 for <v6ops@ietf.org>; Wed, 01 Oct 2014 13:33:31 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=8xHKoqA1qAdPoTAU8h9m7KAtHtBinrV196H935aQGMo=; b=TCru6UTzDhDkU9ZBYI9NtNVK7HsdIbj5Ulu/53zs5fdLOn4bjYYrCThZWF9Iz/0TTb o53EUNrR748GB0fPoSlUx6TsQXiHTcipUrMD6W0OTujyebEYB5bJEXw7zshwq+7sPkEF ansupAf3GMLDlwkeLJQ+DBMj6mPp2IUandB7nEUlSkfaVAIcQbrCdSvJWcGmT9JNwFVu PKlb7mCwpuYUAju+w8MfgiQ/5J4TNKxTZ510+7M9HN4cUICb0gr+M3vf3ynqAWyyLOwZ iZZlspwg9uzb52EN2XcLjjGKG1hVzmLpVGknCjj+gtxVtnRMJYmLsEv+YT9CCMragumE JoBA==
X-Gm-Message-State: ALoCoQmWRn2+snkrGYJCQdTwiBWLu4+UPJFsAX3aA4uHM2lWOtkENc6tauyhFAZlHhUR0d+ocTdM
MIME-Version: 1.0
X-Received: by 10.194.237.164 with SMTP id vd4mr64452070wjc.46.1412195610985; Wed, 01 Oct 2014 13:33:30 -0700 (PDT)
Received: by 10.194.119.233 with HTTP; Wed, 1 Oct 2014 13:33:30 -0700 (PDT)
In-Reply-To: <542A36AC.9030203@gont.com.ar>
References: <542A36AC.9030203@gont.com.ar>
Date: Wed, 01 Oct 2014 16:33:30 -0400
Message-ID: <CAHw9_i+qoT14TKsTAZSD5HweWgM_c9HqPBfSeNUa8rPq-PRtNg@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Fernando Gont <fernando@gont.com.ar>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/v6ops/ZIeOdsYmFsbX3k2M6a6sBHhxTgE
Cc: "draft-gont-v6ops-ipv6-ehs-in-real-world@tools.ietf.org" <draft-gont-v6ops-ipv6-ehs-in-real-world@tools.ietf.org>, IPv6 Operations <v6ops@ietf.org>, V6ops Chairs <v6ops-chairs@tools.ietf.org>
Subject: Re: [v6ops] IPv6 Extension Headers in the Real World
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Oct 2014 20:33:39 -0000
On Tue, Sep 30, 2014 at 12:50 AM, Fernando Gont <fernando@gont.com.ar> wrote: > Folks, > > Earlier in September we published a revision of our I-D "IPv6 Extension > Headers in the Real World" > (<https://tools.ietf.org/html/draft-gont-v6ops-ipv6-ehs-in-real-world>). > > At this point in time, we're interested in knowing whether our I-D is of > value for the IPv6 ops community, such that we can decide whether to > continue working/improving it. Yes please! Burying our heads in the sand and pretending that they all work fine in no way helps with V6 deployment. Having users and operators get burnt because they didn't know about issues with EH simply leads to people turning off v6 - once bitten, twice shy... W > Additionally, if there's anything you > think we've missed in the document, we'd like to hear from you. > > Overall, our I-D is meant to provide a reality-check with respect to the > issues surrounding IPv6 Extension Headers and their use on the public > Internet. More specifically, its goals are: > > 1) Provide data regarding support of IPv6 EHs in the real world. > > This is interesting data to refer people to (e.g., folks > developing protocols) regarding the extent to which IPv6 EHs > are usable on the public Internet (at least with web, mail, and > name servers). > > > 2) Summarize the issues associated with IPv6 EHs (performance, security, > etc.) > > This is of use for folks concerned with the issues surrounding > IPv6 EHs, and covers practical issues. > > > 3) Summarizes the implications of the aforementioned filtering. > > For example, if you're designing a protocol that is meant to > work on the public Internet, you may want to provide some fall-back > mechanism that does not employ IPv6 EHs. > > Yet another of the implications is the security issue that has > been discussed on-list: if e.g. IPv6 fragments are dropped and you > can be tricked into generating them, you may be subject to a DoS > attack. > > > 4) Flag possible further work > > Here we try to flag areas where the further work may be needed, > such as adding fall-back mechanisms to some existing protocols, > or avoiding the use of IPv6 EHs where possible. > > > Thanks! > > Best regards, > -- > Fernando Gont > e-mail: fernando@gont.com.ar || fgont@si6networks.com > PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1 > > > > _______________________________________________ > v6ops mailing list > v6ops@ietf.org > https://www.ietf.org/mailman/listinfo/v6ops -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [v6ops] IPv6 Extension Headers in the Real World Fernando Gont
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Brian E Carpenter
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Warren Kumari
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Merike Kaeo
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Tim Chown
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Doug Barton
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Lorenzo Colitti
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Metzler, Dan J
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Tim Chown
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Fred Baker (fred)
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Metzler, Dan J
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Fernando Gont
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Fernando Gont
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Tim Chown
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Jen Linkova
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Joe Touch
- Re: [v6ops] IPv6 Extension Headers in the Real Wo… Fernando Gont