[65677] in North American Network Operators' Group
Re: MTU path discovery and IPSec
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Thu Dec 4 18:50:42 2003
To: Barney Wolff <barney@databus.com>
Cc: Joe Maimon <jmaimon@ttec.com>, nanog@merit.edu
In-Reply-To: Your message of "Thu, 04 Dec 2003 18:03:38 EST."
<20031204230338.GA41817@pit.databus.com>
From: Valdis.Kletnieks@vt.edu
Date: Thu, 04 Dec 2003 18:50:02 -0500
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_-1994371440P
Content-Type: text/plain; charset=us-ascii
On Thu, 04 Dec 2003 18:03:38 EST, Barney Wolff said:
> That's not how PMTUD works. If DF is set, you discard the packet and
> report back with ICMP. If DF is not set, you frag the packet - but
> that's not PMTUD, because no report ever goes back to the sender.
Oh, so we compute ONE number if DF is set, saying what number we think they
should use - but if DF *isn't* set, we use a different number. Sounds like more
complicated code that's just there so it can sink its teeth into the rump of the
first banana-eating NOC dweller that has to figure out what's wrong....
Unless of course there's a *reason* we want it different? Though it escapes me what
it might be....
--==_Exmh_-1994371440P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/z8gqcC3lWbTT17ARAuWwAKCdeMHGxU60vBo4Thn5HbbgRET2jwCdGGV4
eAJIeID48fEmbjQdbaF8qdo=
=kr5k
-----END PGP SIGNATURE-----
--==_Exmh_-1994371440P--
