> Ajay Agrawal <ajay.agarwal@hiqnetworks.com> writes:
> > Hi!
> > How is the Fragmentation and Reassembly handled in NAT ( Network Address Translation) implementation for Linux?
>
> If you're talking about IP fragmentation and reassembly, it doesn't.
> Routers aren't allowed to fragment or reassemble, only the endpoint IP
> stacks may.
Actually, any router can fragment if the DF (Don't Fragment) bit is unset,
only the end point is supposed to reassemle. The kernel can be configured
to reassemble all packets, though, and this is advisable under the
circumstance that the router is acting as a firewall _and_ is the only
ingress point to the firewalled network. The thing that makes it possible
is the fact that all packets destined to the network go through that
router. IIRC, it is also required in order to masqerade (perform NAT).
-Nate
>
> --
> Mirian Crzig Lennox Systems Anarchist
> Invest in America -- buy a Congressman!
>
> -
> To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
> the body of a message to majordomo@vger.rutgers.edu
> Please read the FAQ at http://www.tux.org/lkml/
>
------------------------------------------------((\))<----------------------
Nate Riffe Duct tape by any other name is just as
inkblot@geocities.com sticky.
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GCS/IT/M/S/O d-@ s-:- a--->- C++ UL++++BS++>$ P+>+++ L+++>+++++$ W+ N !o
K- w(---)$>-- M-(--) V(--) PS+ PE Y+ PGP>++ t(+)@ 5 X@ R tv>! b+>+++ DI++
D e>++(+++) h r++ y?
------END GEEK CODE BLOCK------
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/