[179733] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: IP DSCP across the Internet

daemon@ATHENA.MIT.EDU (Randy Bush)
Wed May 6 01:48:45 2015

X-Original-To: nanog@nanog.org
Date: Wed, 06 May 2015 14:48:40 +0900
From: Randy Bush <randy@psg.com>
To: Mark Tinka <mark.tinka@seacom.mu>
In-Reply-To: <5549A9EE.8040805@seacom.mu>
Cc: North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

> We don't honor DSCP values that comes in via best-effort circuits
> (i.e., the Internet). Although not a very strong reason, this
> particular experience is one reason why.

trusting markings of any sort which you do not need is an increase in
attack, game playing, and/or bug surface.  the only thing i would pass
is ecn.

randy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[179733] in North American Network Operators' Group

Re: IP DSCP across the Internet

daemon@ATHENA.MIT.EDU (Randy Bush)Wed May 6 01:48:45 2015

daemon@ATHENA.MIT.EDU (Randy Bush)
Wed May 6 01:48:45 2015