[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]

To: Iljitsch van Beijnum <iljitsch@muada.com>
Subject: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
From: Pekka Savola <pekkas@netcore.fi>
Date: Fri, 28 Oct 2005 14:58:53 +0300 (EEST)
Cc: shim6 <shim6@psg.com>
In-reply-to: <1976F495-AE26-4D7A-A858-B179B58E8EF8@muada.com>
References: <6.2.0.14.2.20051019141040.02a44d08@kahuna.telstra.net> <41F269FF-548A-482D-93A9-A958D337EEA9@muada.com> <Pine.LNX.4.64.0510281245280.21479@netcore.fi> <ba2c17041e110720a9b4bd52389c807e@it.uc3m.es> <Pine.LNX.4.64.0510281333530.22300@netcore.fi> <1976F495-AE26-4D7A-A858-B179B58E8EF8@muada.com>

On Fri, 28 Oct 2005, Iljitsch van Beijnum wrote:

- if it's done by adding an extension header to data packets, or
- if it would be done by sending separate "shim control packets" (e.g.,with TCP, UDP, or whatever, or even plain extension headers without anydata), then my concern still applies.

....

No, I think we pretty much agree that the shim signalling would have tohappen in separate packets. Unless I misremember we didn't even discuss thisissue in the interim meeting.

...

[...] Since the fact that theshim signalling worked indicates that the shim header isn't filtered thisshould work without trouble.

The last sentence does not follow. Firewalls may accept just finepackets with a shim6 extension header but no data, but could (and I'dexpect many WOULD) drop packets with shim6 ext header WITH data.


--
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

Follow-Ups:
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

References:
- Design decisions made at the interim SHIM6 WG meeting
  - From: Geoff Huston <gih@apnic.net>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

Prev by Date: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Next by Date: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Previous by thread: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Next by thread: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Index(es):
- Date
- Thread