[IPSEC] Set TTL from route

To:	"David S. Miller" <davem@xxxxxxxxxx>, netdev@xxxxxxxxxxx
Subject:	[IPSEC] Set TTL from route
From:	Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Date:	Tue, 24 Aug 2004 20:56:41 +1000
Sender:	netdev-bounce@xxxxxxxxxxx
User-agent:	Mutt/1.5.6+20040722i

Hi Dave:

Here is the promised patch that sets the TTL from the route parameter.
I decided against adding an option to inherit the TTL like IPIP/GRE
as I think that it doesn't really make sense with IPsec.  But it
can be easily added later if someone needs it.

This isn't completely right when nested tunnels are involved.  The
TTL for intervening tunnels should be set from the routes to the
intervening nodes.  But fixing that involves using information that
isn't currently in the bundle.  I'll revisit this once the MTU stuff
is fixed since that'll also involving adding the intervening routes
to the bundle.

Signed-off-by: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>

Cheers,
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

p
Description: Text document

<Prev in Thread]	Current Thread	[Next in Thread>
[IPSEC] Set TTL from route, Herbert Xu <= Re: [IPSEC] Set TTL from route, David S. Miller Re: [IPSEC] Set TTL from route, Herbert Xu

Previous by Date:	[PATCH] 2.6.9-rc1 compile fix: ip_conntrack_proto_udp.c / ip_conntrack_proto_icmp.c, Russell King
Next by Date:	RFC: pskb_expand_head instead of skb_copy in skb_checksum_help, Herbert Xu
Previous by Thread:	[PATCH] 2.6.9-rc1 compile fix: ip_conntrack_proto_udp.c / ip_conntrack_proto_icmp.c, Russell King
Next by Thread:	Re: [IPSEC] Set TTL from route, David S. Miller
Indexes:	[Date] [Thread] [Top] [All Lists]