[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: IPsec and TCP
On Tue, 24 Dec 1996, Phil Karn wrote:
> >My scheme has the bottleneck reverse link router spy on the TCP
> >packets as they go by. If a new packet arrives for a TCP connection
> >that already has a packet in the queue, and if the older packet
> >contains no flags or data, the older packet is replaced with the newer
> >packet.
>
> A minor modification is needed to drop TCP SYN packets piling up in a
> bottleneck router: if the older packet contains no flags or data, OR
> if the newer packet contains all data and flags of the older packet,
> then the older packet can be replaced with the newer one.
Or simply, if the newer packet contains all data and flags of the older packet, then the
older packet can be replaced with the newer one.
Norm
Norman Shulman Secure Computing Canada
Developer Tel 1 416 368 7157 ext 304
norm@border.com Fax 1 416 368 7178
References: