| To: | ja@xxxxxx (Julian Anastasov) |
|---|---|
| Subject: | Re: PMTU issues due to TOS field manipulation (for DSCP) |
| From: | kuznet@xxxxxxxxxxxxx |
| Date: | Fri, 5 Mar 2004 01:02:18 +0300 (MSK) |
| Cc: | davem@xxxxxxxxxx, niv@xxxxxxxxxx, ak@xxxxxxx, ruddk@xxxxxxxxxx, netdev@xxxxxxxxxxx, chester.f.johnson@xxxxxxxxx |
| In-reply-to: | <Pine.LNX.4.58.0403042229210.1130@xxxxxxxxxxxx> from "Julian Anastasov" at Мар 04, 2004 10:56:26 |
| Sender: | netdev-bounce@xxxxxxxxxxx |
Hello! > - do we need to walk all tos values for ip_rt_redirect in the same > way as for ip_rt_frag_needed, Well, it is just the same thing (except for one thing, that ignored redirects are harmless) > - from another thread: whether ICMP redirects modify only > routes via gateway when shared_media is ON: > > http://marc.theaimsgroup.com/?l=linux-netdev&m=107109827516060&w=2 "message but we are sure we hit the target IP directly" You cannot be sure, actually. This happens and resolves the situation when the things sort ip route add default dev eth0 are used i.e. host does not know real prefixes. If this is a security issue (I do not see actually, the things on link can be screwed via proxy arp et all in any case), make it a separate option or even better use IN_DEV_SEC_REDIRECTS(in_dev) like similar paranoid case for !shared_media case. Alexey |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: [PATCH] proportional share accept(), Ronghua Zhang |
|---|---|
| Next by Date: | [janitor] use netdev_priv() in NET/ROM and ROSE., Ralf Baechle |
| Previous by Thread: | Re: PMTU issues due to TOS field manipulation (for DSCP), Julian Anastasov |
| Next by Thread: | Re: PMTU issues due to TOS field manipulation (for DSCP), Julian Anastasov |
| Indexes: | [Date] [Thread] [Top] [All Lists] |