On Sat, Apr 29, 2006 at 05:37:25AM +0000, Andrew Thompson wrote: > thompsa 2006-04-29 05:37:25 UTC > > FreeBSD src repository > > Modified files: > sys/net if_bridge.c > Log: > Add support for fragmenting ipv4 packets. > > The packet filter may reassemble the ip fragments and return a packet that > is > larger than the MTU of the sending interface. There is no check for DF or > icmp > replies as we can only get a large packet to fragment by reassembling a > previous fragment, and this only happens after a call to pfil(9).
I'm a long time in catching up with this change, but architecturally, this change is very very wrong. A bridge should have _no_ part in fragmenting up an IP packet regardless of what options are set (or not set) in an IP header. Darren _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "[EMAIL PROTECTED]"
