Date: Fri, 14 Jun 2024 10:57:13 -0400 From: Ed Maste <emaste@freebsd.org> To: "Rodney W. Grimes" <freebsd-rwg@gndrsh.dnsmgr.net> Cc: Chris <bsd-lists@bsdforge.com>, freebsd-net@freebsd.org Subject: Re: Discarding inbound ICMP REDIRECT by default Message-ID: <CAPyFy2A%2BMCGzu60Tk0ZMPbwqXt9J3%2BBTEuA5Cwcd2racmTauxQ@mail.gmail.com> In-Reply-To: <202406141357.45EDv686049428@gndrsh.dnsmgr.net> References: <CAPyFy2DmbfYOYvWKm7%2Bfq5RMgM8que6OW7LKJHKoMH=L%2B9-wwg@mail.gmail.com> <202406141357.45EDv686049428@gndrsh.dnsmgr.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 14 Jun 2024 at 09:57, Rodney W. Grimes <freebsd-rwg@gndrsh.dnsmgr.net> wrote: > > I am not sure that it would "hang" the port, but by ignoring the > rediect your going to place additional burden on the router that > is trying to redirect you as all packets would have to be forwarded > by that router. I suppose it could hang you if infact the router > sent the redirect but did not forward the packet for you expecting > that a retransmission with your updated routing table due to the > redirect would get the flow going. The router is required to forward the packet (RFC1812); if an ICMP REDIRECT is necessary it is sent as the final step in unicast forwarding.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPyFy2A%2BMCGzu60Tk0ZMPbwqXt9J3%2BBTEuA5Cwcd2racmTauxQ>