From owner-cvs-all@FreeBSD.ORG Thu Feb 7 10:11:09 2008 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2D22D16A418; Thu, 7 Feb 2008 10:11:09 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail13.syd.optusnet.com.au (mail13.syd.optusnet.com.au [211.29.132.194]) by mx1.freebsd.org (Postfix) with ESMTP id 9CD1D13C4E1; Thu, 7 Feb 2008 10:11:08 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from server.vk2pj.dyndns.org (c220-239-20-82.belrs4.nsw.optusnet.com.au [220.239.20.82]) by mail13.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id m17AB5im023861 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 7 Feb 2008 21:11:06 +1100 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.2/8.14.1) with ESMTP id m17AB5j4096319; Thu, 7 Feb 2008 21:11:05 +1100 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.2/8.14.2/Submit) id m17AB5cw096318; Thu, 7 Feb 2008 21:11:05 +1100 (EST) (envelope-from peter) Date: Thu, 7 Feb 2008 21:11:05 +1100 From: Peter Jeremy To: Robert Watson Message-ID: <20080207101105.GV4008@server.vk2pj.dyndns.org> References: <200802061540.m16FeXGD030782@repoman.freebsd.org> <47AA5925.3000008@FreeBSD.org> <20080207083930.Y74369@fledge.watson.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="ULyIDA2m8JTe+TiX" Content-Disposition: inline In-Reply-To: <20080207083930.Y74369@fledge.watson.org> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.17 (2007-11-01) Cc: cvs-src@freebsd.org, Mike Silbersack , "Bruce M. Simpson" , src-committers@freebsd.org, cvs-all@freebsd.org Subject: Re: cvs commit: src/sys/netinet ip_id.c X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Feb 2008 10:11:09 -0000 --ULyIDA2m8JTe+TiX Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Feb 07, 2008 at 08:41:31AM +0000, Robert Watson wrote: >We also have much more general problems with our ip_id code -- using a=20 >global IP ID counter or random generator breaks down as the packet rate=20 >goes up, causing problems for NFS over UDP and other UDP applications with= =20 >large packet sizes. Last year, I discovered the port randomisation code was incompatible with my IPfilter firewall: IPfilter remembers connections in CLOSE_WAIT for 4 minutes and FreeBSD was re-using ports more frequently than that, randomly blocking new connections. I just turned off port randomisation but it would be nicer if it worked. --=20 Peter Jeremy Please excuse any delays as the result of my ISP's inability to implement an MTA that is either RFC2821-compliant or matches their claimed behaviour. --ULyIDA2m8JTe+TiX Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHqtk5/opHv/APuIcRAukMAKCuXKyU1PMHE2j2QyagCA1NxH0ILwCffSDw MBTKNkyTV/y5i/7JsLDN/3Q= =pVQK -----END PGP SIGNATURE----- --ULyIDA2m8JTe+TiX--