[EMAIL PROTECTED] wrote:
On Mon, May 21, 2007 at 07:05:50PM +0800, Kacheong Poon wrote:
Darren J Moffat wrote:
# Set TCP_STRONG_ISS to be:
# 0 = Old-fashioned sequential initial sequence number generation.
# 1 = Improved sequential generation, with random variance in
increment.
# 2 = RFC 1948 sequence number generation, unique-per-connection-ID.
#
TCP_STRONG_ISS=1
Why shouldn't this be set to case 2 as the default ?
AFAIK, it is a performance consideration. I don't know
if the performance hit is still a concern given our
new hardware... BTW, there is an RFE 4625629 for this.
Why dont't you ask (similar to SBD - Solaris Secure by Default during Solaris
installation)
admins what they prefer ?
Because most won't know how to answer it, and there should be an answer
that's correct for the vast majority without asking; asking more
questions at installation is usually not the right answer. The SBD
question isn't asked in Nevada, only Solaris 10, and that's only because
it represents a level of change that would be surprising in an update
release otherwise.
Dave
_______________________________________________
networking-discuss mailing list
[email protected]
