Re: [v6ops] I-D Action: draft-ietf-v6ops-ipv6-ehs-packet-drops-00 - Fragmentation

Fernando Gont <fgont@si6networks.com> Mon, 03 August 2020 13:44 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7BDBB3A0AF9 for <v6ops@ietfa.amsl.com>; Mon, 3 Aug 2020 06:44:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.946
X-Spam-Level:
X-Spam-Status: No, score=-0.946 tagged_above=-999 required=5 tests=[NICE_REPLY_A=-0.949, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YhWc1Fczhiq2 for <v6ops@ietfa.amsl.com>; Mon, 3 Aug 2020 06:44:28 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [91.239.96.14]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 757AA3A0AAC for <v6ops@ietf.org>; Mon, 3 Aug 2020 06:44:26 -0700 (PDT)
Received: from [IPv6:2800:810:464:1f7:50ff:5211:f841:308c] (unknown [IPv6:2800:810:464:1f7:50ff:5211:f841:308c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id ECB94280478; Mon, 3 Aug 2020 13:44:22 +0000 (UTC)
To: Vasilenko Eduard <vasilenko.eduard@huawei.com>, "v6ops@ietf.org" <v6ops@ietf.org>
References: <509253a95839479fbe9741be753ce8d5@huawei.com> <f81abb25-75b7-528c-05e1-26f73e4c22ae@si6networks.com> <05cb4504285e407fbaacee5d3c067406@huawei.com>
From: Fernando Gont <fgont@si6networks.com>
Message-ID: <2f8d8a95-395f-7811-98d1-28cce7c6ca17@si6networks.com>
Date: Mon, 3 Aug 2020 10:38:02 -0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.9.1
MIME-Version: 1.0
In-Reply-To: <05cb4504285e407fbaacee5d3c067406@huawei.com>
Content-Type: text/plain; charset=koi8-r; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/rAuVd5LmKdPtJGwpatkvMVbqtSA>
Subject: Re: [v6ops] I-D Action: draft-ietf-v6ops-ipv6-ehs-packet-drops-00 - Fragmentation
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Aug 2020 13:44:35 -0000

On 3/8/20 10:12, Vasilenko Eduard wrote:
> Hi Fernando,
> I do not believe that the most basic EH (fragmentation) is dropper because "6.1. Inability to Find Layer-4 Information".
> I suspect that it is because universal policy to drop all EHs, i.e. Political reason.

As you'll see in e.g. RFC7872, not all EHs have the same drop rate.  -- 
for instance, for each EH type, the drop rate is proportional to the EH 
length/size.


> Many people (who have not seen you previous reports) do not expect that this basic thing does not work in the Internet.

The same can be said about IPsec and others...


-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492