Re: tcp timestamp issues with google servers

From: Vijay Subramanian
Date: Tue May 22 2012 - 13:38:56 EST

Next message: Dave Jones: "Re: 3.4-rc7 numa_policy slab poison."
Previous message: Turquette, Mike: "Re: Clock register in early init"
In reply to: Eric Dumazet: "Re: tcp timestamp issues with google servers"
Next in thread: Eric Dumazet: "Re: tcp timestamp issues with google servers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>> Maybe tcptraceroute[1] can help you figure this out.
>>
>> [1] http://michael.toren.net/code/tcptraceroute/
>
>
> The transparent proxy can intercept TCP connections to port 80/443, and
> let ICMP being NATed by the box.

Just to be clear..tcptraceroute uses TCP SYN packets to trace the
route instead of using ICMP packets used by vanilla traceroute
precisely because
of the issue you raised.
The idea is that if the connection is getting terminated at a
middlebox, the trace will end there. Otherwise, the trace route will
end
at destination (google in this case). This avoids the problems of ICMP
and TCP flows being treated differently by the middlebox.
Is this approach workable?

Thanks,
Vijay
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dave Jones: "Re: 3.4-rc7 numa_policy slab poison."
Previous message: Turquette, Mike: "Re: Clock register in early init"
In reply to: Eric Dumazet: "Re: tcp timestamp issues with google servers"
Next in thread: Eric Dumazet: "Re: tcp timestamp issues with google servers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]