Date: Tue, 6 Feb 2018 10:53:03 +0530 From: Brahmanand Reddy <brahma.gdb@gmail.com> To: FreeBSD-security@freebsd.org, freebsd-security-owner@freebsd.org Subject: Re: 'Syncookies' feature effects to generate new ISN/random with RST happens 15 seconds delay. Message-ID: <CAKsRH7kc0tTYQSkGx5n92-kgzh8SvLDXBCT7R9616GsUDaycUQ@mail.gmail.com> In-Reply-To: <CAKsRH7kZ8eQKLDv9_YO31LfitpZV12fiJruvt=EyXXk_7fvgdQ@mail.gmail.com> References: <CAKsRH7kZ8eQKLDv9_YO31LfitpZV12fiJruvt=EyXXk_7fvgdQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Dear Experts, Kindly respond about below query and let me know any info required. Thanks and regards, Brahma On Sat, Feb 3, 2018 at 7:17 PM, Brahmanand Reddy <brahma.gdb@gmail.com> wrote: > Dear Experts, > > Recently i observed in 11.0 FreeBsd Kernel. new ISN random generating > every 15 seconds. RST not happens quickly. > > if disable net.inet.tcp.syncookies=0 on syscntrl.conf .. RST happens > quickly and generate new ISN numnber for next SYN requests. > > https://github.com/freebsd/freebsd/blob/master/sys/ > netinet/tcp_syncache.c#L1882 > > Could you please confirm its expected behavior about delay. have notified > this issue, we have any patch please share. > > Thanks in Advance, > Brahma >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAKsRH7kc0tTYQSkGx5n92-kgzh8SvLDXBCT7R9616GsUDaycUQ>