Re: UDP zero checksums and v4 to v6 translators

To: Francis Dupont <Francis.Dupont at fdupont.fr>
Subject: Re: UDP zero checksums and v4 to v6 translators
From: Christopher Morrow <christopher.morrow at gmail.com>
Date: Tue, 28 Jul 2009 04:14:44 -0400
Cc: 6man 6man <ipv6 at ietf.org>, Behave WG <behave at ietf.org>
Delivered-to: ipv6 at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=Cxgw7Px+evhSydtHCUgV186r7k21VsUbxflAyq4L+Rc=; b=tIwEKAs04A1xX77T9WEK6JYdTdJR4vN1cYuKeXOhY9rtAFhKG8zzZITR1DR9iw65fR APhdB+2hWT/0tqbuh7WT4UTdLf95c/B6A+BCi78B3RocOvYGroVqbXh2e0nyoy3TiHuS 7DMO48N4Zj6CFQfFgoDJiEfpW/n02IduPMU+c=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=gp1mrdQphPCjvHOTje8FrDiDMdhwmrymh2yqzYeNqKNKzI1JcDWZDPOWdxPGv64aSr DnmtPY/dpefqdeQWr0hf6hougkajeJZpAlPHQOUh02dnKMhscM+T5kwFEV6ELQWgX3xG /bQhGGV6KzOr87xmsA+43Mmvl3Tm/c6hiY3Bc=
In-reply-to: <200907280729.n6S7TvZB048419 at givry.fdupont.fr>
List-archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-help: <mailto:ipv6-request@ietf.org?subject=help>
List-id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-post: <mailto:ipv6@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
References: <90186AC2-6C6A-45FC-9FE0-9DBF8726E688 at free.fr> <200907280729.n6S7TvZB048419 at givry.fdupont.fr>

On Tue, Jul 28, 2009 at 3:29 AM, Francis
Dupont<Francis.Dupont at fdupont.fr> wrote:
>  In your previous mail you wrote:
>
>   Thoughts?
>
> => I am strongly against changing all IPv6 implementations.
> IMHO the simplest solution is to drop UDP packets with zero checksums
> (as far as I know all IPv4 implementations use non-zero checksums
> per default and some UDP applications, for instance DNS, work far
> better with non-zero checksums. BTW it is an easy condition to check
> in firewalls).

Out of curiosity, what's the signal back to the sender that his/her
packet was dropped?? NFS (in some implementations) doesn't checksum
UDP packets, DNS doesn't, there are quite a few things that don't
checksum UDP packets.

Simply dropping packets on the floor isn't polite. Dropping them and
notifying (icmp <somethingbadhappenedhere>) is also hard to deal with
since users can't force udp checksums to happen (per
application/stack) and there's not a clear (aside from application
failure) idea to the user that something isn't working.

If you choose to drop the packet tell the sender that it happened
(port-unreachable or something along those lines, still the wrong
semantics though), I believe you should accept and correct the
checksum issue though in the end, it's the only proper path.

-Chris

Follow-Ups:
- Re: UDP zero checksums and v4 to v6 translators
  - From: Francis Dupont
- Re: UDP zero checksums and v4 to v6 translators
  - From: sthaug
- Re: UDP zero checksums and v4 to v6 translators
  - From: Hesham Soliman

References:
- UDP zero checksums and v4 to v6 translators
  - From: Rémi Després
- Re: UDP zero checksums and v4 to v6 translators
  - From: Francis Dupont

Prev by Date: Re: UDP zero checksums and v4 to v6 translators
Next by Date: Re: UDP zero checksums and v4 to v6 translators
Previous by thread: Re: UDP zero checksums and v4 to v6 translators
Next by thread: Re: UDP zero checksums and v4 to v6 translators
Index(es):
- Date
- Thread

Re: UDP zero checksums and v4 to v6 translators

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.