[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Evolution of the IP model - ICMP and MTUs

To: v6ops Operations <v6ops@ops.ietf.org>
Subject: Re: Evolution of the IP model - ICMP and MTUs
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Mon, 18 Aug 2008 14:37:03 +0200
In-reply-to: <48A944D9.3060302@free.fr>
References: <48A524DA.5090507@free.fr> <8EFB68EAE061884A8517F2A755E8B60A0F326F5982@NA-EXMSG-W601.wingroup.windeploy.ntdev.microsoft.com> <48A70747.5010200@free.fr> <000d01c8ffd1$a6d2f4f0$c2f0200a@cisco.com> <48A91A8A.8040706@free.fr> <7F2B06E8-3E24-4F39-87AF-A5C0DFCBA3F0@muada.com> <48A944D9.3060302@free.fr>

On 18 aug 2008, at 11:46, Rémi Després wrote:

However, we could come up with a new fragment header for both IPv6and IPv4 that DOES have all the information NATs and firewalls needin the fragment header, as well as a larger ID field.

Fixing the problem for IPv6 may be worth the pain, but fixing it forIPv4 (the only subject of my comment) would IMO be counterproductive.


Counterproductive?

Do you know applications other than NFS on UDP that, needing totransmit longer than than 1280 octet datagrams, impose fragmentationeven in IPv6?

Most applications have more than 1200 bytes of data to transmit, sopotentially this could be most UDP applications, as well as ALLtunneling mechanisms. Now of course applications try to avoid thisissue by sending smaller packets, but that's a terrible solution,because we'll never be able to use bigger packets when our linktechnologies improve.


On 18 aug 2008, at 14:21, Rémi Denis-Courmont wrote:

And would cause the packet to be rejected by existing middleboxes.

Yes, so deployment would be slow because we need to wait for these tobe updated or replaced, and the solution would incur some additionalcomplexity for deciding whether to use old style or new stylefragmentation.

Firewalls can simply let every non first fragments in. Deep packet
inspection needs to de-fragment anyway - adding the port number toevery
fragment does not help. Hence, this issue is really only about NATs.

Don't forget that this also buys us a larger ID space for IPv4, whichmakes some of the less visible issues with fragmentation go away.

And, if we can solve PMTUD for datagrams (i.e., UDP) life gets a loteasier for applications.

Follow-Ups:
- New fragment header, was: Re: Evolution of the IP model - ICMP and MTUs
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>

References:
- Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- RE: Evolution of the IP model - ICMP and MTUs
  - From: Christian Huitema <huitema@windows.microsoft.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- RE: Evolution of the IP model - ICMP and MTUs
  - From: "Dan Wing" <dwing@cisco.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Evolution of the IP model - ICMP and MTUs
  - From: Rémi Després <remi.despres@free.fr>

Prev by Date: Re: Evolution of the IP model - ICMP and MTUs
Next by Date: RE: Evolution of the IP model - ICMP and MTUs
Previous by thread: Re: Evolution of the IP model - ICMP and MTUs
Next by thread: Re: Evolution of the IP model - ICMP and MTUs
Index(es):
- Date
- Thread