[104697] in North American Network Operators' Group
Re: IPv4 Router Alert Option
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Fri May 23 15:31:51 2008
To: Ron Bonica <rbonica@juniper.net>
In-Reply-To: Your message of "Fri, 23 May 2008 15:00:02 EDT."
<48371432.3050609@juniper.net>
From: Valdis.Kletnieks@vt.edu
Date: Fri, 23 May 2008 15:30:11 -0400
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
--==_Exmh_1211571011_2938P
Content-Type: text/plain; charset=us-ascii
On Fri, 23 May 2008 15:00:02 EDT, Ron Bonica said:
> Folks,
>
> It is my belief that many ISPs, will not accept datagrams containing the
> Router Alert IP option from customers. Do I have that right?
>
> I am asking so that I might better evaluate Internet drafts that would
> require ISPs to accept such packets.
What you're likely to find in *reality* is that ISPs will be more than happy
to pass the packets along, but the corporate/consumer firewalls in place
at the ISP's *customers* will stomp on the options (see all the ways that
mismanaged firewalls fail to do ingress/egress filtering of rfc1918 packets,
or think "ICMP Frag Needed" means "This ICMP needs to be fragged", or...).
And it doesn't really matter if it's the ISP or the end site that screws it
up - if it gets thrown away, it gets thrown away.
Unless you had an ISP-specific use for Router Alert, where end-customer
behavior doesn't matter?
--==_Exmh_1211571011_2938P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFINxtDcC3lWbTT17ARAmZSAJ9/n0U0XHG9HWeEGPOiqRNsZEVVwQCeOCpL
obtC9HHy/JaOzPxZNC4eKnk=
=fB/+
-----END PGP SIGNATURE-----
--==_Exmh_1211571011_2938P--