[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Evolution of the IP model - ICMP and MTUs

To: Iljitsch van Beijnum <iljitsch@muada.com>
Subject: Re: Evolution of the IP model - ICMP and MTUs
From: Rémi Després <remi.despres@free.fr>
Date: Mon, 18 Aug 2008 11:46:01 +0200
Cc: 'v6ops' <v6ops@ops.ietf.org>
In-reply-to: <7F2B06E8-3E24-4F39-87AF-A5C0DFCBA3F0@muada.com>
References: <48A524DA.5090507@free.fr> <8EFB68EAE061884A8517F2A755E8B60A0F326F5982@NA-EXMSG-W601.wingroup.windeploy.ntdev.microsoft.com> <48A70747.5010200@free.fr> <000d01c8ffd1$a6d2f4f0$c2f0200a@cisco.com> <48A91A8A.8040706@free.fr> <7F2B06E8-3E24-4F39-87AF-A5C0DFCBA3F0@muada.com>
User-agent: Thunderbird 2.0.0.16 (Macintosh/20080707)

Iljitsch van Beijnum  - Le 8/18/08 11:17 AM :

On 18 aug 2008, at 8:45, Rémi Després wrote:
IMU,
IMU?
since it shows that, at high data rates, IPv4 fragmentation can leadto undetected data corruption at the IP layer, it implies thatfragmentation SHOULD be discarded from an updated IPv4 service model(the DF bit MUST be set in all packets).
What about actually FIXING the problem.
I remember that when I first read about IPv6 (many a moon ago) I noticedthat IP packets had an unfragmentable and fragmentable parts. So Ithought "excellent, they got it right, the port numbers are now in allfragments!" Unfortunately, that wasn't the case.
However, we could come up with a new fragment header for both IPv6 andIPv4 that DOES have all the information NATs and firewalls need in thefragment header, as well as a larger ID field. This would of course takesignificant time to get deployed, but considering that we've beenlimping along with broken PTMUD for a decade and a half having a GOODsolution may be worth the wait.

Fixing the problem for IPv6 may be worth the pain, but fixing it forIPv4 (the only subject of my comment) would IMO be counterproductive.

Do you know applications other than NFS on UDP that, needing to transmitlonger than than 1280 octet datagrams, impose fragmentation even in IPv6?


If there is none, the "fixing" could be:
- Always use NFS on TCP.

- In IPv6, firewalls that cannot perform their function properly onfragmented datagrams impose a 1280 octet MTU (and return ICMP errormessages when discarding fragmented datagrams).

RD

Follow-Ups:
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

References:
- Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- RE: Evolution of the IP model - ICMP and MTUs
  - From: Christian Huitema <huitema@windows.microsoft.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- RE: Evolution of the IP model - ICMP and MTUs
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

Prev by Date: Re: Evolution of the IP model - ICMP and MTUs
Next by Date: Re: Evolution of the IP model - ICMP and MTUs
Previous by thread: Re: Evolution of the IP model - ICMP and MTUs
Next by thread: Re: Evolution of the IP model - ICMP and MTUs
Index(es):
- Date
- Thread