Hi!
I have just committed the (new) finished ECN target to CVS, it's in
patch-o-matic/base/ECN.patch
The ECN target supports the following operations:
-p tcp -j ECN --ecn-tcp-remove
Remove all ECN bits from the TCP header and thus suppress the advertisement
of ECN-capability of the sender. This is what you want to use to work around
ECN blackholes.
In addition, there are a couple of experimental options, which are potentially
_VERY DANGEROUS_, and I'm not sure if I should really keep them at the time the
ECN target is submitted to the mainstream kernel. If you have any good
arguments why they should (not?) be preserved, please go ahead and tell me :)
-p tcp -j ECN --ecn-tcp-cwr 0|1
Set the TCP ECN CWR bit to 0 or 1
-p tcp -j ECN --ecn-tcp-ece 0|1
Set the TCP ECN ECE bit to 0 or 1
-j ECN --ecn-ip-ect 0..3
Set the IPv4 ECN codepoint to any value between 0 and 3
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
