[LUGA] Mit freundlicher Unterstützung von:
init.at

Mail Thread Index


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Linux path MTU discovery und Firewalls (aus roxen@roxen.com)



[ Vorgeschichte: Einige Tage lang konnten Linux 2.0.x-Rechner
  www.roxen.com nicht erreichen. Auf das erste Datenpaket des
  Linux-Rechners antwortete der Server mit einem RST-Paket]

Dan Hollis wrote:

>They were filtering all packets with the DF (don't frag) bit set,
>apparently to attempt to catch fragged packets.
>
>Linux 2.0.x sets the DF bit on all packets as part of its path MTU
>algorithm. 1.2.13 didn't have this facility.
>
>It is unclear whether this is a bug in infovav's firewall or a bug in
>Linux. Someone will have to dig into the RFC on fragment handling to see
>whether its legal to send the first packet with DF flag set.
>

	hp

--
   _  | Peter J. Holzer             | If I were God, or better yet
|_|_) | Sysadmin WSR                | Linus, I would ...
| |   | hjp@wsr.ac.at               |     -- Bill Davidsen
__/   | http://wsrx.wsr.ac.at/~hjp/ |        (davidsen@tmr.com)




powered by LINUX the choice of a gnu generation
linux user group austria;
Suche
Suche
Letzte Änderung:
webmaster@luga.at
September 2010