PF slowing down file copies
RW
fbsd06 at mlists.homeunix.com
Thu Feb 22 14:30:36 UTC 2007
On Wed, 21 Feb 2007 19:38:39 +0100
J65nko <j65nko at gmail.com> wrote:
> For keeping state on TCP connections you should only create state on
> the first packet of the 3 way TCP handshake. Using "flags S/SA" will
> ensure this. This will prevent problems with TCP windows scaling..
Why? Creating a state entry causes subsequent packets, in the same tcp
connection, to bypass the rules altogether.
More information about the freebsd-questions
mailing list