From owner-cvs-all  Tue Dec 19 17:24:53 2000
From owner-cvs-all@FreeBSD.ORG  Tue Dec 19 17:24:51 2000
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from gatekeeper.tsc.tdk.com (gatekeeper.tsc.tdk.com [207.113.159.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id B26AE37B400; Tue, 19 Dec 2000 17:24:50 -0800 (PST)
Received: from imap.gv.tsc.tdk.com (imap.gv.tsc.tdk.com [192.168.241.198])
	by gatekeeper.tsc.tdk.com (8.8.8/8.8.8) with ESMTP id RAA19290;
	Tue, 19 Dec 2000 17:24:47 -0800 (PST)
	(envelope-from gdonl@tsc.tdk.com)
Received: from salsa.gv.tsc.tdk.com (salsa.gv.tsc.tdk.com [192.168.241.194])
	by imap.gv.tsc.tdk.com (8.9.3/8.9.3) with ESMTP id RAA93545;
	Tue, 19 Dec 2000 17:24:47 -0800 (PST)
	(envelope-from Don.Lewis@tsc.tdk.com)
Received: (from gdonl@localhost)
	by salsa.gv.tsc.tdk.com (8.8.5/8.8.5) id RAA17477;
	Tue, 19 Dec 2000 17:24:46 -0800 (PST)
From: Don Lewis <Don.Lewis@tsc.tdk.com>
Message-Id: <200012200124.RAA17477@salsa.gv.tsc.tdk.com>
Date: Tue, 19 Dec 2000 17:24:46 -0800
In-Reply-To: <20001219191929.D40568@skriver.dk>
References: <20001218182600.C1856@skriver.dk> <200012191425.GAA14731@salsa.gv.tsc.tdk.com> <20001219191929.D40568@skriver.dk>
X-Mailer: Mail User's Shell (7.2.6 beta(5) 10/07/98)
To: Jesper Skriver <jesper@skriver.dk>,
	Don Lewis <Don.Lewis@tsc.tdk.com>
Subject: Re: what to do now ?  Was: cvs commit: src/sys/netinet ip_icmp.c tcp_subr.c tcp_var.h
Cc: Kris Kennaway <kris@FreeBSD.ORG>,
	Poul-Henning Kamp <phk@critter.freebsd.dk>,
	security-officer@FreeBSD.ORG, cvs-all@FreeBSD.ORG,
	freebsd-net@FreeBSD.ORG
Sender: gdonl@tsc.tdk.com
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Dec 19,  7:19pm, Jesper Skriver wrote:
} Subject: Re: what to do now ?  Was: cvs commit: src/sys/netinet ip_icmp.c 
} 
} I'll submit a new later tonight, as I havn't heard anything, I'll make a
} sysctl control if it should have effect on all sessions, or only those
} in SYN-SENT state, defaulting to those in SYN-SENT state only.

Do all ICMP unreachables kill off sessions in in the SYN-SENT state or
only the administratively prohibited flavor?  If all of them do, then
only administratively prohibited ICMP unreachables should kill off
established connections so that established sessions aren't killed
off by routing flaps and other transient events.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message