Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 3 Feb 2018 19:17:47 +0530
From:      Brahmanand Reddy <brahma.gdb@gmail.com>
To:        FreeBSD-security@freebsd.org, freebsd-security-owner@freebsd.org
Subject:   'Syncookies' feature effects to generate new ISN/random with RST happens 15 seconds delay.
Message-ID:  <CAKsRH7kZ8eQKLDv9_YO31LfitpZV12fiJruvt=EyXXk_7fvgdQ@mail.gmail.com>

next in thread | raw e-mail | index | archive | help
Dear Experts,

  Recently i observed in 11.0 FreeBsd Kernel. new ISN random generating
every 15 seconds. RST not happens quickly.

  if disable net.inet.tcp.syncookies=0  on syscntrl.conf .. RST happens
quickly and generate new ISN numnber for next SYN requests.

https://github.com/freebsd/freebsd/blob/master/sys/netinet/tcp_syncache.c#L1882

Could you please confirm its expected behavior about delay.  have notified
this issue, we have any patch please share.

Thanks in Advance,
Brahma



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAKsRH7kZ8eQKLDv9_YO31LfitpZV12fiJruvt=EyXXk_7fvgdQ>