Re: New ICMP limits
From: Andre Oppermann (andre_at_freebsd.org)
Date: 12/08/04
- Previous message: Michal Mertl: "New ICMP limits"
- In reply to: Michal Mertl: "New ICMP limits"
- Next in thread: Bruce M Simpson: "Re: New ICMP limits"
- Reply: Bruce M Simpson: "Re: New ICMP limits"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Wed, 08 Dec 2004 15:53:07 +0100 To: Michal Mertl <mime@traveller.cz>
Michal Mertl wrote:
>
> Hello,
>
> I think some network administrators may want to set different maximum rate
> for different types of ICMP replies. Currently the limit
> net.inet.icmp.icmplim is enforced independently for the following cases -
> ICMP echo-reply, ICMP timestamp reply, ICMP port unreachable (generated as a
> response to a packet received on a UDP port with no listening application).
> It's in addition a bit misused (or at least misnamed) for limiting sending
> of TCP reset packets on closed and open ports.
>
> Andre Oppermann wrote a patch which adds support for limiting the sending of
> ICMP host unreachable messages. These are generated by a router when it
> can't send the packet to the destination, such as when it's about to send to
> an unused IP address on a directly connected network.
Michael,
I'll take care of this but I'm busy right now. Look into it later this week.
-- Andre _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Michal Mertl: "New ICMP limits"
- In reply to: Michal Mertl: "New ICMP limits"
- Next in thread: Bruce M Simpson: "Re: New ICMP limits"
- Reply: Bruce M Simpson: "Re: New ICMP limits"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
