On Wed, Jun 21, 2017 at 12:28:52AM +0200, Florian Westphal wrote: > diff --git a/src/libnetfilter_queue.c b/src/libnetfilter_queue.c > index 211a8ba75d79..69db0e02fc5b 100644 > --- a/src/libnetfilter_queue.c > +++ b/src/libnetfilter_queue.c > @@ -658,6 +658,7 @@ EXPORT_SYMBOL(nfq_set_mode); > * - NFQA_CFG_F_GSO (requires Linux kernel >= 3.10): the kernel will > * not normalize offload packets, i.e. your application will need to > * be able to handle packets larger than the mtu (up to 64k). > + * Normalization is expensive, so this flag should always be set. With this on, I see more chances to hit the netlink attribute limitation, so packets on the 64k will be truncated? Probably good to document this too. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
