[PATCH 02/10]: [NETFILTER]: Defer fragmentation in ip_output
when connection tracking is used
Harald Welte
laforge at netfilter.org
Tue Nov 22 08:59:04 CET 2005
On Thu, Nov 17, 2005 at 03:28:24AM +0100, Patrick McHardy wrote:
> - CLASSIFY fragments differently
> - MARK fragments differently
> - DSCP/ECN/TOS mark fragments differently
> - Change TTLs of fragments to differently values
[...]
> I've CCed Harald for his opinion in case I missed something.
I don't think you've missed something. I agree that the features you
pointed out seem to be useful and/or important.
--
- Harald Welte <laforge at netfilter.org> http://netfilter.org/
============================================================================
"Fragmentation is like classful addressing -- an interesting early
architectural error that shows how much experimentation was going
on while IP was being designed." -- Paul Vixie
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/netfilter-devel/attachments/20051122/3ebee818/attachment.pgp
More information about the netfilter-devel
mailing list