[Yeti DNS Discuss] Dealing with IPv6 Fragmentation in the DNS
P Vix
paul at redbarn.org
Wed Aug 23 14:05:06 UTC 2017
Fragmentation in v6 was meant to be an improvement on v4, by making it end to end only ... Routers don't fragment. Turns out icmp6 is a huge security hole and is most often blocked.
I had thought that DNS servers were now using mtu 1280 to work around it.
Vixie
On August 23, 2017 4:54:28 AM MDT, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
>Relevant for Yeti, I think.
>
>https://labs.ripe.net/Members/gih/dealing-with-ipv6-fragmentation-in-the-dns
>
>Executive summary: the author think that IPv6 fragmentation is
>doomed.
>_______________________________________________
>discuss mailing list
>discuss at lists.yeti-dns.org
>http://lists.yeti-dns.org/mailman/listinfo/discuss
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.yeti-dns.org/pipermail/discuss/attachments/20170823/5a50aa5d/attachment.html>
More information about the discuss
mailing list