Date: Wed, 13 Nov 2002 00:03:06 +0300 (MSK) From: "."@babolo.ru To: Tony Finch <dot@dotat.at> Cc: silby@silby.com, freebsd-net@FreeBSD.ORG Subject: Re: forwarded message on Source Quench Packets. Message-ID: <200211122103.gACL36X3054512@aaz.links.ru> In-Reply-To: <E18BcxO-0000fM-00@chiark.greenend.org.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
> Mike Silbersack <silby@silby.com> wrote: > > > >I can see how these source quench messages would cause problems if a DoS > >is being routed through a FreeBSD router, and I think that your patch > >makes sense. Are there any objections to me committing this in a few > >days? > > Doesn't FreeBSD rate-limit ICMP as required by the RFC? If there is a > but it's that the rate-limiting isn't happening, not that source-quench > packets are being generated. If it's important that FreeBSD routers not > generate them then it should be a sysctl option. I am second for a sysctl option. One of requirements when licensing networks in Russia is source-quench support. > Tony. > -- -- @BABOLO http://links.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200211122103.gACL36X3054512>