nanog mailing list archives

Re: UDP/123 policers & status

From: Ragnar Sundblad <ragge () kth se>
Date: Mon, 30 Mar 2020 11:01:31 +0200

On 30 Mar 2020, at 08:18, Saku Ytti <saku () ytti fi> wrote:

On Mon, 30 Mar 2020 at 01:58, Ragnar Sundblad <ragge () kth se> wrote:

A protocol with varying packet size, as the NTS protected NTP is,
can easily have the bad property of having responses larger than the
requests if not taken care. Don’t you see that?


Why? Why not pad requests to guarantee attenuation vector until
authenticity of packets can be verified?


Right, and NTS does that.

Ragnar

Current thread:

Re: UDP/123 policers & status, (continued)
- - - Re: UDP/123 policers & status Harlan Stenn (Mar 28)
    - Re: UDP/123 policers & status Harlan Stenn (Mar 28)
    - Re: UDP/123 policers & status Ragnar Sundblad (Mar 29)
    - Re: UDP/123 policers & status Harlan Stenn (Mar 28)
    - Re: UDP/123 policers & status Ragnar Sundblad (Mar 29)
    - Re: UDP/123 policers & status Saku Ytti (Mar 29)
    - Re: UDP/123 policers & status Harlan Stenn (Mar 30)
    - Re: UDP/123 policers & status Saku Ytti (Mar 30)
    - Re: UDP/123 policers & status Harlan Stenn (Mar 30)
    - Re: UDP/123 policers & status Saku Ytti (Mar 30)
    - Re: UDP/123 policers & status Ragnar Sundblad (Mar 30)
    - Re: UDP/123 policers & status Harlan Stenn (Mar 30)
    - Re: UDP/123 policers & status Saku Ytti (Mar 30)
    - Re: UDP/123 policers & status Ragnar Sundblad (Mar 30)
    - Re: UDP/123 policers & status Ragnar Sundblad (Mar 29)