nanog mailing list archives
Re: IP Fragmentation
From: Fernando Gont <fernando () gont com ar>
Date: Thu, 28 Aug 2008 20:46:56 -0300
At 08:44 p.m. 28/08/2008, Glen Kent wrote:
I understand that routers usually must send this error only when a fragmentation is required and they recieve a packet with DF bit set. However, in this case this router would drop the packet (for it doesnt support fragmentation) and sending an ICMP error back to the host, warning it that its packets will get dropped seems to be a better option. OTOH, what do most of the implementations do if they send a regular IP packet and receive an ICMP dest unreachable - Fragmentation reqd message back? Do they fragment this packet and then send it out, or this message is silently ignored?
You may want to have a look at this IETF I-D: http://www.gont.com.ar/drafts/icmp-attacks/draft-ietf-tcpm-icmp-attacks-03.txt. The PMTUD modification described in the draft ships (at least) in OpenBSD and NetBSD.
Thanks! Kind regards, -- Fernando Gont e-mail: fernando () gont com ar || fgont () acm org PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1
Current thread:
- IP Fragmentation Glen Kent (Aug 20)
- Re: IP Fragmentation Jim Logajan (Aug 20)
- Re: IP Fragmentation Glen Kent (Aug 28)
- Message not available
- Re: IP Fragmentation Fernando Gont (Aug 28)
- RE: IP Fragmentation Tony Li (Aug 28)
- Re: IP Fragmentation Glen Kent (Aug 28)
- Re: IP Fragmentation Iljitsch van Beijnum (Aug 29)
- Re: IP Fragmentation Valdis . Kletnieks (Aug 29)
- Re: IP Fragmentation Glen Kent (Aug 28)
- Re: IP Fragmentation Jim Logajan (Aug 20)
- Re: IP Fragmentation Jim Shankland (Aug 20)
- Re: IP Fragmentation Iljitsch van Beijnum (Aug 20)
- Re: IP Fragmentation Sam Stickland (Aug 20)
- Re: IP Fragmentation Fernando Gont (Aug 25)