cvs commit: src/sys/netinet ip_id.c
Peter Jeremy
peterjeremy at optushome.com.au
Thu Feb 7 02:11:09 PST 2008
On Thu, Feb 07, 2008 at 08:41:31AM +0000, Robert Watson wrote:
>We also have much more general problems with our ip_id code -- using a
>global IP ID counter or random generator breaks down as the packet rate
>goes up, causing problems for NFS over UDP and other UDP applications with
>large packet sizes.
Last year, I discovered the port randomisation code was incompatible
with my IPfilter firewall: IPfilter remembers connections in CLOSE_WAIT
for 4 minutes and FreeBSD was re-using ports more frequently than that,
randomly blocking new connections. I just turned off port randomisation
but it would be nicer if it worked.
--
Peter Jeremy
Please excuse any delays as the result of my ISP's inability to implement
an MTA that is either RFC2821-compliant or matches their claimed behaviour.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20080207/a0d572c6/attachment.pgp
More information about the cvs-src
mailing list