Re: IP fragmentation problem in the 2.0 kernels ?

Teunis Peters (teunis@usa.net)
Wed, 10 Sep 1997 10:06:48 -0600 (MDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Pavel Machek: "rmdir . - bug or feature"
Previous message: Kevin Buhr: "Re: Bizarre difference in uptimes for same kernel"

On Wed, 10 Sep 1997, Keith Owens wrote:

> On Tue, 9 Sep 1997 17:24:17 -0600 (MDT),
> Teunis Peters <teunis@usa.net> wrote:
> >Ergo - all webservers behind firewalls (to make webservers more secure)
> >are a violation of RFC 1191 [snip]
>
> Only if they try to do path MTU discovery *and* block the ICMP packets.
> They either do not set the DF flag or they set it and handle the ICMP
> response. People who set up servers to do path MTU discovery but block
> ICMP only have themselves to blame.

Why didn't anyone say that? (DF flag??? - offtopic nevermind)

Okay - That's acceptable...

FWIW - Are there any other firewall issues that might affect yer typical
linux-kinda programmer/sysadmin?

G'day, eh? :)
- Teunis

Next message: Pavel Machek: "rmdir . - bug or feature"
Previous message: Kevin Buhr: "Re: Bizarre difference in uptimes for same kernel"