nanog mailing list archives

Re: Who does source address validation? (was Re: what's that smell?)

From: Valdis.Kletnieks () vt edu
Date: Thu, 10 Oct 2002 01:06:15 -0400

On Wed, 09 Oct 2002 23:05:59 BST, "Stephen J. Wilcox" said:

On a related issue (pMTU) I recently discovered that using a link with MTU <
1500 breaks a massive chunk of the net - specifically mail and webservers who
block all inbound icmp.. the servers assume 1500, send out the packets with DF


My personal pet peeve is the opposite - we'll try to use pMTU, some provider
along the way sees fit to run it through a tunnel, so the MTU there is 1460
instead of 1500 - and the chuckleheads number the tunnel endpoints out of
1918 space - so the 'ICMP Frag Needed' gets tossed at our border routers,
because we do both ingress and egress filtering.  It's bad enough when all
the interfaces on the offending unit are 1918-space, but it's really annoying
when the critter has perfectly good non-1918 addresses it could use as
the source... Argh...
-- 
                                Valdis Kletnieks
                                Computer Systems Senior Engineer
                                Virginia Tech

Attachment: _bin
Description:

Current thread:

Re: Who does source address validation? (was Re: what's that smell?), (continued)
- - - Re: Who does source address validation? (was Re: what's that smell?) Stephen Stuart (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smell?) alex (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smell?) David Schwartz (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smell?) alex (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smell?) Sean Donelan (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smell?) Stephen J. Wilcox (Oct 09)
    - Re: Broken PMTU (was: Who does source address validation? (was Re:what's that smell?)) Iljitsch van Beijnum (Oct 09)
    - Re: Broken PMTU (was: Who does source address validation? (was Re:what's that smell?)) Valdis . Kletnieks (Oct 09)
    - Re: Broken PMTU (was: Who does source address validation? (was Re:what's that smell?)) Stephen J. Wilcox (Oct 10)
    - Re: Broken PMTU (was: Who does source address validation? (was Re:what's that smell?)) Tony Rall (Oct 10)
    - Re: Who does source address validation? (was Re: what's that smell?) Valdis . Kletnieks (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smel l?) Steve Francis (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smel l?) Valdis . Kletnieks (Oct 09)
    - Re: Who does source address validation? (was Re: what's that smel l?) Hank Nussbacher (Oct 10)
    - Re: Who does source address validation? (was Re: what's that smell?) Richard A Steenbergen (Oct 10)
    - Re: Who does source address validation? (was Re: what's that smell?) Iljitsch van Beijnum (Oct 10)
    - Re: Who does source address validation? (was Re: what's that smell?) Jared Mauch (Oct 10)
    - Re: Who does source address validation? (was Re: what's that smell?) Iljitsch van Beijnum (Oct 12)
- Re: Who does source address validation? (was Re: what's that smell?) Paul Vixie (Oct 09)
- Re: Who does source address validation? (was Re: what's that smell?) Stephen Gill (Oct 09)
- Re: Who does source address validation? (was Re: what's that smell?) Stephen J. Wilcox (Oct 11)