nanog mailing list archives

Re: Service provider story about tracking down TCP RSTs

From: Tarko Tikan <tarko () lanparty ee>
Date: Sun, 2 Sep 2018 17:43:21 +0300

hey,

But why did the TLS Hello has a TTL lower that the TCP Syn ?

Do you have any information on that ?

Consumer CPEs are typically some BCM reference design where initial TCPhandshake is handled by linux kernel and everything following (includingNAT) is handled in SOC.

I've seen those systems not decrement TTL at all, decrement TTL beforechecking if packet is destined to itself etc. This case is weird astypically the hardware part is faulty, not the kernel.


--
tarko

Current thread:

Re: Service provider story about tracking down TCP RSTs, (continued)
- - - Re: Service provider story about tracking down TCP RSTs Lee (Sep 01)
    - Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 01)
    - Re: Service provider story about tracking down TCP RSTs Lee (Sep 01)
    - Re: Service provider story about tracking down TCP RSTs Bjørn Mork (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs Bjørn Mork (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 02)
- Re: Service provider story about tracking down TCP RSTs Garrett Skjelstad (Sep 01)
  - Re: Service provider story about tracking down TCP RSTs James Bensley (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs nanog (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs Tarko Tikan (Sep 02)
    - Re: Service provider story about tracking down TCP RSTs Timothy Manito via NANOG (Sep 04)
- Re: Service provider story about tracking down TCP RSTs Ryan Landry (Sep 01)
- Re: Service provider story about tracking down TCP RSTs Tom Beecher (Sep 10)