From owner-freebsd-current@FreeBSD.ORG Thu Nov 9 17:43:13 2006 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D4E216A416 for ; Thu, 9 Nov 2006 17:43:13 +0000 (UTC) (envelope-from rrs@cisco.com) Received: from sj-iport-5.cisco.com (sj-iport-5.cisco.com [171.68.10.87]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9114B43D46 for ; Thu, 9 Nov 2006 17:43:11 +0000 (GMT) (envelope-from rrs@cisco.com) Received: from sj-dkim-1.cisco.com ([171.71.179.21]) by sj-iport-5.cisco.com with ESMTP; 09 Nov 2006 09:43:11 -0800 Received: from sj-core-2.cisco.com (sj-core-2.cisco.com [171.71.177.254]) by sj-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id kA9HhBdl031836; Thu, 9 Nov 2006 09:43:11 -0800 Received: from xbh-sjc-221.amer.cisco.com (xbh-sjc-221.cisco.com [128.107.191.63]) by sj-core-2.cisco.com (8.12.10/8.12.6) with ESMTP id kA9HhAin015836; Thu, 9 Nov 2006 09:43:10 -0800 (PST) Received: from xfe-sjc-211.amer.cisco.com ([171.70.151.174]) by xbh-sjc-221.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Thu, 9 Nov 2006 09:43:10 -0800 Received: from [127.0.0.1] ([171.68.225.134]) by xfe-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Thu, 9 Nov 2006 09:43:10 -0800 Message-ID: <45536886.4090905@cisco.com> Date: Thu, 09 Nov 2006 12:42:30 -0500 From: Randall Stewart User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.12) Gecko/20050920 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Bjoern A. Zeeb" References: <45524517.1060501@cisco.com> <45525E52.6090608@cisco.com> <20061109173256.G54329@maildrop.int.zabbadoz.net> In-Reply-To: <20061109173256.G54329@maildrop.int.zabbadoz.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 09 Nov 2006 17:43:10.0432 (UTC) FILETIME=[85DAB600:01C70426] DKIM-Signature: a=rsa-sha1; q=dns; l=3026; t=1163094191; x=1163958191; c=relaxed/simple; s=sjdkim1002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=rrs@cisco.com; z=From:Randall=20Stewart=20 |Subject:Re=3A=20SCTP=20is=20in=20the=20Tree=20=3A-) |Sender:; X=v=3Dcisco.com=3B=20h=3D6jxa4U8CaQPnr0mZJjF5W5jvfn0=3D; b=TFRZeuNW4bMu6ss9iBQNkV6/yLq4ypnTlYCawvhnHSRtThbs6qMy5JxZG2wnQkYJksxCYYyZ cszqESdk4L98mdq1vL2h00gJ3bQqb9EW+H1M0tyGnxx8oZsOT2f9jHwu; Authentication-Results: sj-dkim-1; header.From=rrs@cisco.com; dkim=pass (sig from cisco.com/sjdkim1002 verified; ); Cc: Peter Lei , freebsd-current@freebsd.org Subject: Re: SCTP is in the Tree :-) X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Nov 2006 17:43:13 -0000 Bjoern: I will send this to Peter and let him test it.. Peter: let me know if this fixes at least some of it to go though. Bjoern: if you want we may want to get together sometime and discuss getting the f/w and maybe nat to support SCTP.. I assume you are the owner?? R Bjoern A. Zeeb wrote: > On Wed, 8 Nov 2006, Randall Stewart wrote: > >> Ivan Voras wrote: >> >>> Randall Stewart wrote: >>> >>> >>>> Stream Control Transmission Protocol (SCTP) - is a reliable message >>>> oriented transport protocol which provides network fault tolerance >>>> It supports multiple streams and multihoming. A very good overview >>>> of the protocol is given in RFC 3268. >>> >>> >>> >>> Looks cool :) >>> >>> It's under IP so it's routable, but I imagine it probably needs routers >>> along the way to know about it in order to use the more advanced >>> features? >> >> >> Nope.. not at all.. >> >> The only issue is when you cross a firewall or NAT :-( >> >> Note that I have heard that the latest FreeBSD IPv6 FW for >> some reason drops SCTP packets even if you have typed in >> allow ip from any to any... >> >> Something about not liking protocol 132 in the extension >> headers :( > > > would that patch help you (I'd have to investigate in detail but like > some of us I am currently in Milan and I still don't know the details > of SCTP [as in I haven't read the RFC yet]): > > Index: ip_fw2.c > =================================================================== > RCS file: /local/mirror/FreeBSD/r/ncvs/src/sys/netinet/ip_fw2.c,v > retrieving revision 1.153 > diff -u -p -r1.153 ip_fw2.c > --- ip_fw2.c 6 Nov 2006 13:42:04 -0000 1.153 > +++ ip_fw2.c 9 Nov 2006 17:32:22 -0000 > @@ -311,6 +311,7 @@ static int fw_deny_unknown_exthdrs = 1; > */ > #define L3HDR(T, ip) ((T *)((u_int32_t *)(ip) + (ip)->ip_hl)) > #define TCP(p) ((struct tcphdr *)(p)) > +#define SCTP(p) ((struct sctphdr *)(p)) > #define UDP(p) ((struct udphdr *)(p)) > #define ICMP(p) ((struct icmphdr *)(p)) > #define ICMP6(p) ((struct icmp6_hdr *)(p)) > @@ -2222,6 +2223,12 @@ do > { \ > args->f_id.flags = TCP(ulp)->th_flags; > break; > > + case IPPROTO_SCTP: > + PULLUP_TO(hlen, ulp, struct sctphdr); > + src_port = SCTP(ulp)->src_port; > + dst_port = SCTP(ulp)->dest_port; > + break; > + > case IPPROTO_UDP: > PULLUP_TO(hlen, ulp, struct udphdr); > dst_port = UDP(ulp)->uh_dport; > > -- Randall Stewart NSSTG - Cisco Systems Inc. 803-345-0369 803-317-4952 (cell)