--- Comment #91 from Richard Russo <> ---
For us, this may have limited effect, because our icmplim is much higher than
the default (16k), because we do want to send closed port RSTs in high
volumewhen our service ports are closed. This patch should keep our system
available, but we'd still be sending out a rather large number of acks on these
broken connections. Given that r317208 means we only see this condition when
the syncache overflows, this may be a reasonable trade off.

I have been thinking that it might be useful if these acks (or other unexpected
packets) would actually push the connection into one of the existing state
recovery behaviors, such as immediately triggering a keepalive sequence if one
wasn't already ongoing. That's certainly a larger change though.

I'll get this patch up somewhere and let you know how it goes.

You are receiving this mail because:
You are on the CC list for the bug.
_______________________________________________ mailing list
To unsubscribe, send any mail to ""

Reply via email to