[PATCH] netfilter cosmetic cleanup
Harald Welte
laforge@gnumonks.org
Sun, 10 Mar 2002 08:23:29 +0100
On Sat, Mar 09, 2002 at 08:21:16PM -0800, David Miller wrote:
>
> Harald, I have just made the following fix to my tree.
> Please add it to yours.
Thanks.
> One should never set IP_DF for ICMP packets.
Well, I haven't heard of any rule (especially not in an RFC) about this -
but I assume it's because somebody would then send an ICMP frag_needed in
response to our ICMP error message - and we wouldn't know about which
of our error message the frag_needed was about?
--
Live long and prosper
- Harald Welte / laforge@gnumonks.org http://www.gnumonks.org/
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)