<div dir="ltr">I've used 1200 as well at a previous job with no issue for years (and it was a big enough deployment if there were issues, they would have been noticed). I do not recommend sending fragmented IPv6 packets (as suggested elsewhere on this thread), as too many people block fragments on IPv6.<br><br>I'm not commenting on whether or not this should be a flag day, just that I have a lot of experience with 1200 at scale and it seems to work fine. My gut tells me 1220 would be fine too, I picked 1200 because I knew it was safe even if I counted slightly wrong. :)</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Sep 2, 2019 at 1:25 AM Florian Weimer <<a href="mailto:fweimer@redhat.com">fweimer@redhat.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">* Jerry Lundström:<br>
<br>
> Hi all,<br>
><br>
> I have opened an issue that will serve as a public, open to all,<br>
> discussion forum for what the recommended EDNS buffer size should be<br>
> for DNS Flag Day 2020.<br>
><br>
> <<a href="https://github.com/dns-violations/dnsflagday/issues/125" rel="noreferrer" target="_blank">https://github.com/dns-violations/dnsflagday/issues/125</a>><br>
><br>
>> Please note that the exact recommended EDNS buffer sizes have not been agreed upon, the current ballpark around 1200 (1220, 1232, …) is to limit the risk of fragmentation in IPv6.<br>
><br>
> Note that most of the text on <a href="http://dnsflagday.net" rel="noreferrer" target="_blank">dnsflagday.net</a> mentions 1220 bytes.<br>
<br>
I personally have used 1200 bytes, but I can switch to 1220 if that's<br>
the consensus. Previously, the consensus was that fragments were good<br>
for the network (which I found rather odd).<br>
<br>
> Please feel free to voice your opinion!<br>
<br>
What about generating atomic fragments by default, to support stateless<br>
IPv6 UDP service? Or not generating atomic fragments under any<br>
circumstances? Would that be a separate discussion?<br>
<br>
Thanks,<br>
Florian<br>
<br>
_______________________________________________<br>
dns-operations mailing list<br>
<a href="mailto:dns-operations@lists.dns-oarc.net" target="_blank">dns-operations@lists.dns-oarc.net</a><br>
<a href="https://lists.dns-oarc.net/mailman/listinfo/dns-operations" rel="noreferrer" target="_blank">https://lists.dns-oarc.net/mailman/listinfo/dns-operations</a><br>
</blockquote></div>