Éric Vyncke via Datatracker <nore...@ietf.org> writes:
---------------------------------------------------------------------- DISCUSS: ----------------------------------------------------------------------## DISCUSS ### Section 2.2.6 Please also mention hop-limit and RFC 8200. ### Absence of ICMP considerations Should there be an equivalent of section 6 of RFC 4301 about ICMP ? As several unprotected packets can be bundled together, some guidance to the implementers will be welcome.
The section has been modified to address these concerns: *** IPv4 Time-To-Live (TTL), IPv6 Hop Limit, and Tunnel errors [[RFC4301]] specifies how to modify the inner packet IPv4 TTL [[RFC0791]] or IPv6 Hop Limit [[RFC8200]]. Any errors (e.g., ICMP errors) are handled the same as with non-AGGFRAG IPsec tunnels. This applies to both the outer traffic as well as the inner traffic prior to it entering the tunnel, see [[RFC4301]]. I believe this should cover the rest of the items left in this DISCUSS ballot. Thanks, Chris.
signature.asc
Description: PGP signature
_______________________________________________ IPsec mailing list IPsec@ietf.org https://www.ietf.org/mailman/listinfo/ipsec