From owner-freebsd-net@FreeBSD.ORG Mon Jan 3 18:40:50 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6626016A4CE for ; Mon, 3 Jan 2005 18:40:50 +0000 (GMT) Received: from wyvern.icir.org (wyvern.icir.org [192.150.187.14]) by mx1.FreeBSD.org (Postfix) with ESMTP id 46A1E43D1F for ; Mon, 3 Jan 2005 18:40:50 +0000 (GMT) (envelope-from mallman@icir.org) Received: from guns.icir.org (adsl-68-76-113-50.dsl.bcvloh.ameritech.net [68.76.113.50]) by wyvern.icir.org (8.12.9p1/8.12.8) with ESMTP id j03IenBC002023; Mon, 3 Jan 2005 10:40:49 -0800 (PST) (envelope-from mallman@guns.icir.org) Received: from guns.icir.org (localhost [127.0.0.1]) by guns.icir.org (Postfix) with ESMTP id 471E477B0CC; Mon, 3 Jan 2005 13:40:48 -0500 (EST) To: Mike Silbersack From: Mark Allman In-Reply-To: <20050103012325.A62262@odysseus.silby.com> Organization: ICSI Center for Internet Research (ICIR) Song-of-the-Day: Just the Way You Are MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" Date: Mon, 03 Jan 2005 13:40:48 -0500 Sender: mallman@icir.org Message-Id: <20050103184048.471E477B0CC@guns.icir.org> cc: net@freebsd.org Subject: Re: Fixing "Slipping in the window" before 4.11-release X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: mallman@icir.org List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Jan 2005 18:40:50 -0000 --=-=-= Content-Type: text/plain > The SYN side of the equation, however, is a bit more tricky. The > proposed RFC recommends ACKing SYN packets in the window, just like > we do to SYN packets to the left of the window right now. > > For the life of me, I can't figure out why SYN packets (other than > delayed retransmissions of the original SYN) would ever show up once > a connection is in the ESTABLISHED state. So, I'm proposing the > attached patch, which simply ignores any packet with the SYN flag on > it while a connection is in the ESTABLISHED state. This means that > SYN packets left of the window will no longer receive an ACK, and > SYN packets in the window will no longer reset the connection. In > all states other than ESTABLISHED, SYN packets are handled as they > were before, in case there's some edge case where that could happen. This sounds OK to me. FWIW. allman -- Mark Allman -- ICIR -- http://www.icir.org/mallman/ --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQFB2ZGwWyrrWs4yIs4RAnE2AJ9kz9hIaqfpTQNzBGH4qwTWXBQXRQCghDNA gDnWFNkuM1aYvf64BSX/OOc= =vpD3 -----END PGP SIGNATURE----- --=-=-=--