[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IPsec and TCP



On Tue, 24 Dec 1996, Phil Karn wrote:

> >My scheme has the bottleneck reverse link router spy on the TCP
> >packets as they go by. If a new packet arrives for a TCP connection
> >that already has a packet in the queue, and if the older packet
> >contains no flags or data, the older packet is replaced with the newer
> >packet.
> 
> A minor modification is needed to drop TCP SYN packets piling up in a
> bottleneck router: if the older packet contains no flags or data, OR
> if the newer packet contains all data and flags of the older packet,
> then the older packet can be replaced with the newer one.

Or simply, if the newer packet contains all data and flags of the older packet, then the
older packet can be replaced with the newer one.

Norm


                   Norman Shulman      Secure Computing Canada
     	                Developer      Tel 1 416 368 7157 ext 304
                  norm@border.com      Fax 1 416 368 7178



References: