From owner-freebsd-hackers Wed Jan 24 14:45:49 2001 Delivered-To: freebsd-hackers@freebsd.org Received: from iguana.aciri.org (iguana.aciri.org [192.150.187.36]) by hub.freebsd.org (Postfix) with ESMTP id 6E5F237B400 for ; Wed, 24 Jan 2001 14:45:32 -0800 (PST) Received: (from rizzo@localhost) by iguana.aciri.org (8.11.1/8.11.1) id f0OMjUX20166; Wed, 24 Jan 2001 14:45:30 -0800 (PST) (envelope-from rizzo) From: Luigi Rizzo Message-Id: <200101242245.f0OMjUX20166@iguana.aciri.org> Subject: Re: Divert Sockets & Fragmentation In-Reply-To: from Alwyn Goodloe at "Jan 24, 2001 5:41:46 pm" To: agoodloe@gradient.cis.upenn.edu (Alwyn Goodloe) Date: Wed, 24 Jan 2001 14:45:30 -0800 (PST) Cc: hackers@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL43 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG it depends on what template do you use for matching. the firewall acts before reassembly, so for the fragments you will not be able to see the port numbers. cheers luigi > I have been using divert sockets for a while sending small (< MTU) UDP > packets and everything worked fine. Now that the UDP packets are larger > (>MTU = 1500) and hence fragmentation is taking place there seems to be a > problem. tcpdump tells me that the fragmented packets arrive but it seems > that they are never diverted. I say this because after they are received > recvfrom () never gets the packet. I've done things like play with the > nbytes field of the recvfrom() fn. without any success. Any > suggestions, I'm sure its something stupid. > > > Alwyn > agoodloe@gradient.cis.upenn.edu > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message