From owner-freebsd-net  Wed Sep 11 13: 9:35 2002
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A0B8237B400
	for <freebsd-net@FreeBSD.org>; Wed, 11 Sep 2002 13:09:33 -0700 (PDT)
Received: from niwun.pair.com (niwun.pair.com [209.68.2.70])
	by mx1.FreeBSD.org (Postfix) with SMTP id 92F9443E42
	for <freebsd-net@FreeBSD.org>; Wed, 11 Sep 2002 13:09:32 -0700 (PDT)
	(envelope-from silby@silby.com)
Received: (qmail 43316 invoked by uid 3193); 11 Sep 2002 20:09:31 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 11 Sep 2002 20:09:31 -0000
Date: Wed, 11 Sep 2002 16:09:31 -0400 (EDT)
From: Mike Silbersack <silby@silby.com>
X-X-Sender: silby@niwun.pair.com
To: kfl <kfl@xiphos.ca>
Cc: freebsd - net <freebsd-net@FreeBSD.org>
Subject: Re: T/TCP and FreeBSD 4.5
In-Reply-To: <JCEDLMKGMLLELHAJNIHJCEBJDGAA.kfl@xiphos.ca>
Message-ID: <Pine.BSF.4.44.0209111604450.42163-100000@niwun.pair.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org


On Wed, 11 Sep 2002, kfl wrote:

> Hi,
>
> I'm having a problem using TCP for transaction in FreeBSd 4.5. Here's a
> trace from tcpdump and the code I'm using.
> Also, from the dump you can see that rfc1644 is on ;)
>
> Problem: (At 12:41:05.626586, the ack should also ack the data sent with the
> SYN.)
>
> Any hints on what could be wrong?
>
> Regards,
>
> Karim Fodil-Lemelin
> Xiphos Technologies Inc.
>
> uname -a:
> cartman.xiphos.ca 4.5-RELEASE FreeBSD 4.5-RELEASE #0: Mon Jan 28 14:31:56

I think it needs more cheesy poofs.

Ho ho, ok, now to the real answer.  In order to make the syn cache more
resistant to denial of service attacks, one of its features is that it
will not accept any data in the initial SYN packet.  In 99.9% of the
cases, this is fine, as TCP stacks don't tend to send data along with a
SYN.  I guess T/TCP differs, though...

It would certainly be possible to rewrite the syn cache to be more
friendly to T/TCP, but I don't think that anyone has plans to do so.  If
you have the time and need, you might wish to take a stab at it.  If not,
you'll have to run 4.4-release (or 4.4-stable before the syncache import)
in order to get the old behavior.

Mike "Silby" Silbersack



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message