[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]

To: Jari Arkko <jari.arkko@piuha.net>
Subject: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Fri, 28 Oct 2005 17:54:22 +0200
Cc: shim6 <shim6@psg.com>
In-reply-to: <43621798.5020707@piuha.net>
References: <6.2.0.14.2.20051019141040.02a44d08@kahuna.telstra.net> <41F269FF-548A-482D-93A9-A958D337EEA9@muada.com> <Pine.LNX.4.64.0510281245280.21479@netcore.fi> <ba2c17041e110720a9b4bd52389c807e@it.uc3m.es> <Pine.LNX.4.64.0510281333530.22300@netcore.fi> <1976F495-AE26-4D7A-A858-B179B58E8EF8@muada.com> <Pine.LNX.4.64.0510281457080.24084@netcore.fi> <591261D4-8BDF-4DC4-9119-AE5E3048EB8B@muada.com> <43621798.5020707@piuha.net>

On 28-okt-2005, at 14:20, Jari Arkko wrote:

The last sentence does not follow. Firewalls may accept justfine packets with a shim6 extension header but no data, butcould (and I'd expect many WOULD) drop packets with shim6 extheader WITH data.

Why??

The same said firewalls could be dropping packets that are part
of a TCP stream that was not initiated through this firewall...

Yes, but this is a known complication when setting up firewalls nextto egress points as with BGP multihoming it's exceedingly common forpackets to go out on one external link and the return packets to comein through another.


This is unrelated to the presence or absence of headers.

References:
- Design decisions made at the interim SHIM6 WG meeting
  - From: Geoff Huston <gih@apnic.net>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: Design decisions made at the interim SHIM6 WG meeting
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Pekka Savola <pekkas@netcore.fi>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Iljitsch van Beijnum <iljitsch@muada.com>
- Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
  - From: Jari Arkko <jari.arkko@piuha.net>

Prev by Date: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Next by Date: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Previous by thread: Re: Shim-header in every re-located packet [Re: Design decisions made at the interim SHIM6 WG meeting]
Next by thread: Mention TE in draft-ietf-shim6-proto-01.txt?
Index(es):
- Date
- Thread