cvs commit: src/sys/netinet ip_id.c

Peter Jeremy peterjeremy at
Thu Feb 7 02:11:09 PST 2008

On Thu, Feb 07, 2008 at 08:41:31AM +0000, Robert Watson wrote:
>We also have much more general problems with our ip_id code -- using a 
>global IP ID counter or random generator breaks down as the packet rate 
>goes up, causing problems for NFS over UDP and other UDP applications with 
>large packet sizes.

Last year, I discovered the port randomisation code was incompatible
with my IPfilter firewall:  IPfilter remembers connections in CLOSE_WAIT
for 4 minutes and FreeBSD was re-using ports more frequently than that,
randomly blocking new connections.  I just turned off port randomisation
but it would be nicer if it worked.

Peter Jeremy
Please excuse any delays as the result of my ISP's inability to implement
an MTA that is either RFC2821-compliant or matches their claimed behaviour.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url :

More information about the cvs-src mailing list