Philip Homburg <philip.homb...@ripe.net> writes: > On 2021/09/15 21:59 , Bjørn Mork wrote: >> I believe it's better to ignore the formalities here and forward those >> packets. It's certainly harmless. At least as harmless as forwarding >> any other ICMP error messages. > > In my opinion this is the wrong approach. If there is a good reason to > violate the standard, then the thing to do is to bring up in the IETF.
You are of course correct. Let's hope someone else cares enough to do that :-) An additional argument for allowing the ICMP errors, and only those, is that you can't send back any dest unreachable with "Beyond scope of source address". Bjørn