Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 16 Mar 2008 14:03:48 -0400
From:      "d.s. al coda" <coda.trigger@gmail.com>
To:        "Andre Oppermann" <andre@freebsd.org>
Cc:        freebsd-net@freebsd.org
Subject:   Re: TCP options order changed in FreeBSD 7, incompatible with some routers
Message-ID:  <f90b44e40803161103s28fac6ebrcbe31ea710e6a94c@mail.gmail.com>
In-Reply-To: <47D860AC.6030707@freebsd.org>
References:  <f90b44e40803111756h517b373ala8afdff9395b7fac@mail.gmail.com> <47D860AC.6030707@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On 3/12/08, Andre Oppermann <andre@freebsd.org> wrote:

>
> We've already fixed two issues.  The first changes the order of the TCP
> options
> and is in this change:
>
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/tcp_var.h.diff?r1=1.160;r2=1.161
>
> It is to solve a problem observed by ISC that sounds very much like what
> you
> describe.  This fixed the issue in this case.


Since this patch just has the effect of moving sackOK after the timestamps,
it won't fix the problem that we were seeing, because it was occurring only
in the absence of timestamps.



> The second changes the alignment padding from NOP to 0x00.  Whether this
> was
> a contributing factor to the reported problem is not clear.  There hasn't
> (yet)
> been any specific test case for it.  It was fixed because the RFC
> specifies 0x00
> to be used for padding and nothing else.
>
>
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/tcp_output.c.diff?r1=1.145;r2=1.146


This looks promising. I didn't realize that the 0x01 padding was wrong since
I didn't read the spec :)



> It would be very helpful if you could apply these two patches after each
> other
> to your 7.0 test server and find out together with the affected user(s)
> which
> of these fixes the issue.  If you can please try to test each one with and
> w/o
> the routers firewall enabled.  It is interesting to know whether the NAT
> or
> firewalling part of the router chokes on it.


I've applied the two patches and reversed mine (side note -- sadly, this is
a production server, not a test server) .
I'll let you know shortly whether we're still having problems, and I'll also
try get the router info for you.

-coda

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?f90b44e40803161103s28fac6ebrcbe31ea710e6a94c>