Andrea Rossato wrote:
Being able to discriminate between good and bad guys it is possible
through a filtering rule,
iptables -A POSTROUTING -t mangle -p tcp -d bad.guy.com -j ECN
--ecn-tcp-remove.
Now, the problem is the rule seems not to be working and I cannot
connect to those hosts unless
Hi there!
I recently discovered that the linux kernel support Explicit Congestion
Notification and that a fully ecn enabled network would have virtually
no dropped packets.
Enabling that feature is a way to respect the infrastructure we use, and
servers, routers or firewalls not complying with
