From owner-freebsd-net@FreeBSD.ORG  Mon May 23 18:22:38 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E918916A41C
	for <freebsd-net@freebsd.org>; Mon, 23 May 2005 18:22:38 +0000 (GMT)
	(envelope-from tataz@tataz.chchile.org)
Received: from postfix4-1.free.fr (postfix4-1.free.fr [213.228.0.62])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9F7BE43D4C
	for <freebsd-net@freebsd.org>; Mon, 23 May 2005 18:22:38 +0000 (GMT)
	(envelope-from tataz@tataz.chchile.org)
Received: from tatooine.tataz.chchile.org
	(vol75-8-82-233-239-98.fbx.proxad.net [82.233.239.98])
	by postfix4-1.free.fr (Postfix) with ESMTP id E4EF2318104;
	Mon, 23 May 2005 20:22:33 +0200 (CEST)
Received: by tatooine.tataz.chchile.org (Postfix, from userid 1000)
	id 8E3DD407E; Mon, 23 May 2005 20:22:34 +0200 (CEST)
Date: Mon, 23 May 2005 20:22:34 +0200
From: Jeremie Le Hen <jeremie@le-hen.org>
To: dave baukus <dbaukus@chiaro.com>
Message-ID: <20050523182234.GB850@obiwan.tataz.chchile.org>
References: <20050522201748.GJ850@obiwan.tataz.chchile.org>
	<20050522232847.GL850@obiwan.tataz.chchile.org>
	<4291E3BB.8030207@chiaro.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4291E3BB.8030207@chiaro.com>
User-Agent: Mutt/1.5.9i
Cc: freebsd-net@freebsd.org, Jeremie Le Hen <jeremie@le-hen.org>
Subject: Re: ICMP need to frag
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 23 May 2005 18:22:39 -0000

Hi Dave,

> >    - Why does Path MTU Discovery doesn't work here ?  I'm pretty
> >      sure that the ICMP Need-To-Frag packets are not filtered since
> >      I am able to see them outgoing from the Ethernet network card
> >      on the RELENG_4 router.
> >
> 
> Does SSH use IPSEC AH ?
> Just guessing here, but maybe the problems is (from icmp_input()):
> 
>                 /*
>                  * XXX if the packet contains [IPv4 AH TCP], we can't make a
>                  * notification to TCP layer.
>                  */
>                 ctlfunc = inetsw[ip_protox[icp->icmp_ip.ip_p]].pr_ctlinput;
>                 if (ctlfunc)
>                         (*ctlfunc)(code, (struct sockaddr *)&icmpsrc,
>                                    (void *)&icp->icmp_ip);

What do you mean in "does SSH use IPSec AH ?" ?  I've never heard of
such a thing.  I think the code you pasted refers to IPSec transport
mode, but I'm afraid that it's not related to my problem of Path MTU
Discovery not working.

Regards,
-- 
Jeremie Le Hen
< jeremie at le-hen dot org >< ttz at chchile dot org >