Re: ICMP and unknown extension headers?

Erik Nordmark Thu, 15 Jun 2000 22:34:46 -0700


> At the point in time at which one looks at a Next Header field and
> determines that its value is unknown, that field is at some known offset
> from the packet start (known to the node doing the inspection, that is).
> The packet (or as much of it as will fit) will be sent back to the source
> in the ICMP error message, and the offset will point to the troublesome
> Next Header field in that returned packet.

Sorry for my confusion.

I don't know what the security crowd thinks about decrypting a packet
and then including at least part of that packet in an ICMP error
that might be sent in the clear. But that is a different issue.

   Erik


--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page:                      http://playground.sun.com/ipng
FTP archive:                      ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------

Re: ICMP and unknown extension headers?

Reply via email to