The archive.org/Cogent stuff was an issue specific to archive.org's
connection to Cogent.
Jim Shankland
. As is, PMTUD is simply broken, due to widespread firewall
misconfiguration. As in so many other cases of Internet misbehavior,
you can avoid being part of the problem, but you can't be the solution.
Jim Shankland
Adrian Chadd wrote:
On Thu, Aug 02, 2007, Jim Shankland wrote:
Linux has a nifty iptables option (clamp-mss-to-pmtu) to rewrite the
MSS in TCP SYN packets when forwarding a packet onto a link with
a lower MTU than the MSS in the packet. Works like a charm. If every
packet forwarding device
[EMAIL PROTECTED] writes:
Let's not forget all the NAT boxes out there that are *perfectly*
willing to let a system make an *outbound* connection. So the user
makes a first outbound connection to visit a web page, gets exploited,
and the exploit then phones home to download more malware.
(jumbo packets), plus
careful TCP tuning to deal with the large bandwidth-delay product.
The IP layer sits between the second and third of those three items.
Is there something about IPv6 vs. IPv4 that specifically improves
perfomance on this kind of test? If so, what is it?
Jim Shankland
; maybe I didn't try hard enough. In
the event, I threw up my hands and installed a Linux proxy server
at the remote site, appropriately configured, and went home happy.
Jim Shankland
an Internet cafe in Lagos.
Jim Shankland
then, but that's no matter - tomorrow
we will run faster, stretch out our arms further
And one fine morning -
We'll see.
Jim Shankland
somebody's buggy
TCP stack misbehaving. That somebody is unlikely to be Windows, MacOS,
FreeBSD, or Linux. My money is on some flavor of $50 NAT/home router
box.
Jim Shankland
resources that should have been
freed.
Jim Shankland
be on the golf course by 3:00, what are we
in this business for, anyway -- right?
Jim Shankland
.
Jim Shankland
Andrew Fried writes:
Simply put, I would like to publicly express my appreciation to
Mr. Vixie for taking the time to add the root-delegation-only patch
for Bind.
You speak for many.
Andrew Fried, Senior Special Agent
United States Department of the Treasury
Treasury Inspector General
a steady stream of port 135
SYNs from my fellow Comcast customers (i.e., presumably on my side
of Comcast's filters), which may mean the horses have mostly already
left the barn.
Jim Shankland
these governments as
customers to implement a generically working IPv6 solution.
This is the same phenomenon that drove the explosive adoption rates
of the ISO OSI protocol stack and the Ada programming language.
Jim Shankland
Patrick Evans [EMAIL PROTECTED] writes:
My first project, if network availability were a key issue, within any
organisation would be to a) obtain [an AS number] and b) make use of
it.
Heh. How many bits in an AS number, again?
Jim Shankland
16 matches
Mail list logo