On Wednesday 2008-05-28 09:20, Nicolas Bareil wrote: >>> - Random IP ID >>> - Zeroify ToS >> >> Zeroify? Clearing the TOS is probably not a good idea because >> it defeats packet scheduling (if it uses TOS). > >Correct me if I'm wrong, but on Internet (I mean, just after the first >ISP's router), the ToS is not used or even looked up. I was not even thinking about the ISP using TOS, or the remote side, to address Patrick's concern that some ISP possibly zero it. The TOS field may very well by an internal network (i.e. campus) and you could run into a situation where there is a Linux gateway with (xt_SCRUB) enabled, and another gateway after it (which _really_ connects to the ISP) that actually uses TOS for packet scheduling on the (perhaps slower) link towards the ISP. SSH does set IPTOS_LOWDELAY for interactive sessions and clears it for bulk transfers (e.g. rsync), so there is definitely value for it within your own realm. I was not e -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
