Hi
and thanks a lot. I think this piece of information is valuable. /Ingemar From: Koning, Paul <[email protected]> Sent: Tuesday, 24 March 2026 17:53 To: Ingemar Johansson S <[email protected]>; [email protected] Cc: Greg White <[email protected]>; Chris Box <[email protected]>; [email protected]; [email protected]; [email protected]; Ingemar Johansson S <[email protected]> Subject: RE: [IPsec] Re: IPSEC and packet reordering Du får inte ofta e-post från [email protected] <mailto:[email protected]> . Läs om varför det här är viktigt <https://aka.ms/LearnAboutSenderIdentification> RFC 2406 (IPSec ESP) specifies out of order handling. It describes the use of a sliding window scheme, with a minimum size of 32 and a recommended default size of 64. So clearly any conforming implementation will handle a fair amount of reordering; how much more than the minimum would be up to implementation choice, or perhaps set by an adjustable parameter. For this reason I would not describe IPSec as “sensitive to reordering. paul Internal Use - Confidential From: Ingemar Johansson S <[email protected] <mailto:[email protected]> > Sent: Tuesday, March 24, 2026 5:15 AM To: [email protected] <mailto:[email protected]> Cc: Greg White <[email protected] <mailto:[email protected]> >; Chris Box <[email protected] <mailto:[email protected]> >; [email protected] <mailto:[email protected]> ; [email protected] <mailto:[email protected]> ; [email protected] <mailto:[email protected]> ; Ingemar Johansson S <[email protected] <mailto:[email protected]> > Subject: [IPsec] Re: IPSEC and packet reordering Hi I try and post this again. I think that we have a fairly good understanding about the implications of out of sequence delivery on the transport protocol level. What is lacking is an understanding on how IP Sec can handle out of sequence delivery and what the pain limits are. So any kind of input that helps us advance the https://datatracker.ietf.org/doc/draft-white-intarea-reordering/ <https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-white-intarea-reordering%2F&data=05%7C02%7Cingemar.s.johansson%40ericsson.com%7C76b9d67afbf746ed429008de89c5c8cb%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C639099679868325249%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=2EcEOX8MdXwTE%2BY%2BRuHwWWZY43tAa%2FKy695RVTYAKBA%3D&reserved=0> draft is welcome. Regards Ingemar From: Ingemar Johansson S <[email protected] <mailto:[email protected]> > Sent: Thursday, 5 March 2026 10:40 To: [email protected] <mailto:[email protected]> Cc: Greg White <[email protected]>; Chris Box <[email protected] <mailto:[email protected]> >; [email protected] <mailto:[email protected]> ; [email protected] <mailto:[email protected]> ; [email protected] <mailto:[email protected]> ; Ingemar Johansson S <[email protected] <mailto:[email protected]> > Subject: Re : IPSEC and packet reordering Hi I re-listened in on the presentation by Chris Box at the IPSECME session at IETF-124 https://www.youtube.com/watch?v=ZwfypFEEcYY <https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DZwfypFEEcYY%26t%3D6866s&data=05%7C02%7Cingemar.s.johansson%40ericsson.com%7C76b9d67afbf746ed429008de89c5c8cb%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C639099679868360455%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=ziNehzo4e2fT%2BtdxjhPv4QnLuLsThL2IqLfeVKXQGW0%3D&reserved=0> &t=6866s The title was “Proposal for updates to Guidance on Packet Reordering”, with the accompanying IETF draft https://datatracker.ietf.org/doc/draft-white-intarea-reordering/ <https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-white-intarea-reordering%2F&data=05%7C02%7Cingemar.s.johansson%40ericsson.com%7C76b9d67afbf746ed429008de89c5c8cb%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C639099679868386680%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=m2quORaNsDP6FaDfEMUWfG0PPLrcOAivsamaqoiY0ug%3D&reserved=0> The topic of packet reordering has recently been brought up in the 3GPP RAN2 working group where HoL blocking due to link layer retransmission and and resequencing in 3GPP is seen as an issue. https://www.3gpp.org/ftp/tsg_ran/WG2_RL2/TSGR2_133/Docs/R2-2600101.zip <https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.3gpp.org%2Fftp%2Ftsg_ran%2FWG2_RL2%2FTSGR2_133%2FDocs%2FR2-2600101.zip&data=05%7C02%7Cingemar.s.johansson%40ericsson.com%7C76b9d67afbf746ed429008de89c5c8cb%7C92e84cebfbfd47abbe52080c6b87953f%7C0%7C0%7C639099679868412523%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=aun%2FP4WmWiTTAOPf1lpE7HRFmI4NKZxPmq5Agt%2F%2BvNM%3D&reserved=0> Removing or modifying the resequencing in cellular networks would remedy the issue presented in the document. The question is how IPSEC in particular would manage this ?. The discussion at the end of the IPSECME session gave some insight but I am not sure that it gave any conclusive message. So please comment on what can be recommended/tolelated in terms of packet reordering from an IP SEC perspective. Regards Ingemar + other authors of draft-white-intarea-reordering ================================= Ingemar Johansson M.Sc. Master Researcher Ericsson Research GFTL ER NAP NCM Netw Proto & E2E Perf Laboratoriegränd 11 977 53, Luleå, Sweden +46-73 078 3289 <mailto:[email protected]> [email protected] www.ericsson.com <http://www.ericsson.com/> Experience is merely the name men gave to their mistakes. Oscar Wilde =================================
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ IPsec mailing list -- [email protected] To unsubscribe send an email to [email protected]
