> -----Original Message----- > From: Fernando Gont [mailto:[email protected]] > Sent: Wednesday, January 04, 2012 2:22 PM > To: Templin, Fred L > Cc: Brian E Carpenter; [email protected] > Subject: Re: Fragmentation-related security issues > > On 01/04/2012 07:06 PM, Templin, Fred L wrote: > >> I see no reason to expect that PMTUD will be more reliable for > >> IPv6 than for IPv4. > > > > I think a lot is now hinging on the assumption that > > PMTUD for IPv6 works. Unlike the situation for IPv4, > > I see no reason to expect that PMTUD for IPv6 will > > be unreliable. > > It has been found to break, already -- as a result of firewalls > filtering ICMPv6 messages, are some intermediate systems with > inappropriate rate limiting for all ICMPv6 traffic.
If IPv6 PMTUD breaks, it is due to violations of the specs. If IPv6 PMTUD breaks, then we are lost - time to give up and design a different protocol? Fred > Thanks, > -- > Fernando Gont > SI6 Networks > e-mail: [email protected] > PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492 > > > > -------------------------------------------------------------------- IETF IPv6 working group mailing list [email protected] Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
