Date: Thu, 7 Feb 2008 21:11:05 +1100 From: Peter Jeremy <peterjeremy@optushome.com.au> To: Robert Watson <rwatson@freebsd.org> Cc: cvs-src@freebsd.org, Mike Silbersack <silby@freebsd.org>, "Bruce M. Simpson" <bms@freebsd.org>, src-committers@freebsd.org, cvs-all@freebsd.org Subject: Re: cvs commit: src/sys/netinet ip_id.c Message-ID: <20080207101105.GV4008@server.vk2pj.dyndns.org> In-Reply-To: <20080207083930.Y74369@fledge.watson.org> References: <200802061540.m16FeXGD030782@repoman.freebsd.org> <47AA5925.3000008@FreeBSD.org> <20080207083930.Y74369@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--ULyIDA2m8JTe+TiX Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Feb 07, 2008 at 08:41:31AM +0000, Robert Watson wrote: >We also have much more general problems with our ip_id code -- using a=20 >global IP ID counter or random generator breaks down as the packet rate=20 >goes up, causing problems for NFS over UDP and other UDP applications with= =20 >large packet sizes. Last year, I discovered the port randomisation code was incompatible with my IPfilter firewall: IPfilter remembers connections in CLOSE_WAIT for 4 minutes and FreeBSD was re-using ports more frequently than that, randomly blocking new connections. I just turned off port randomisation but it would be nicer if it worked. --=20 Peter Jeremy Please excuse any delays as the result of my ISP's inability to implement an MTA that is either RFC2821-compliant or matches their claimed behaviour. --ULyIDA2m8JTe+TiX Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHqtk5/opHv/APuIcRAukMAKCuXKyU1PMHE2j2QyagCA1NxH0ILwCffSDw MBTKNkyTV/y5i/7JsLDN/3Q= =pVQK -----END PGP SIGNATURE----- --ULyIDA2m8JTe+TiX--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080207101105.GV4008>