From owner-freebsd-net@FreeBSD.ORG  Tue Jun  1 17:07:37 2004
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E99D616A4CE
	for <freebsd-net@freebsd.org>; Tue,  1 Jun 2004 17:07:37 -0700 (PDT)
Received: from relay.pair.com (relay.pair.com [209.68.1.20])
	by mx1.FreeBSD.org (Postfix) with SMTP id 7D85F43D48
	for <freebsd-net@freebsd.org>; Tue,  1 Jun 2004 17:07:37 -0700 (PDT)
	(envelope-from silby@silby.com)
Received: (qmail 71999 invoked from network); 2 Jun 2004 00:07:36 -0000
Received: from niwun.pair.com (HELO localhost) (209.68.2.70)
  by relay.pair.com with SMTP; 2 Jun 2004 00:07:36 -0000
X-pair-Authenticated: 209.68.2.70
Date: Tue, 1 Jun 2004 19:07:35 -0500 (CDT)
From: Mike Silbersack <silby@silby.com>
To: Andre Oppermann <andre@freebsd.org>
In-Reply-To: <40BCEACA.8918878F@freebsd.org>
Message-ID: <20040601190334.P83544@odysseus.silby.com>
References: <20040601120238.B44353@atlantis.atlantis.dp.ua>
 <20040601120412.B63021@odysseus.silby.com> <40BCEACA.8918878F@freebsd.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua>
cc: freebsd-net@freebsd.org
Subject: Re: net.inet.ip.portrange.randomized=1 hurts
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Jun 2004 00:07:38 -0000


On Tue, 1 Jun 2004, Andre Oppermann wrote:

> A port should not be reused this fast.  Maybe the randomness isn't
> so random after all and choses the same port over again and again?

We use arc4random, so I don't think that's likely, but it is possible.

> > A simpler solution might be to use passive mode.  I think that you can set
> > that somewhere in the install options.
>
> Unless he does a full cycle of all available ports there shouldn't be
> a collision.
>
> --
> Andre

Since we're using random allocation, faster reuses are certainly possible.

Something fishy must be going on here, because sysinstall doesn't make too
many ftp connections, does it?  Port recycling issues should only be
showing up in applications which make thousands of connections per minute.

Mike "Silby" Silbersack