[Yeti DNS Discuss] Dealing with IPv6 Fragmentation in the DNS

P Vix paul at redbarn.org
Wed Aug 23 14:05:06 UTC 2017

Fragmentation in v6 was meant to be an improvement on v4, by making it end to end only ... Routers don't fragment. Turns out icmp6 is a huge security hole and is most often blocked.

I had thought that DNS servers were now using mtu 1280 to work around it.


On August 23, 2017 4:54:28 AM MDT, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
>Relevant for Yeti, I think.
>Executive summary: the author think that IPv6 fragmentation is
>discuss mailing list
>discuss at lists.yeti-dns.org

Sent from my Android device with K-9 Mail. Please excuse my brevity.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.yeti-dns.org/pipermail/discuss/attachments/20170823/5a50aa5d/attachment.html>

More information about the discuss mailing list