nanog mailing list archives
Re: Service provider story about tracking down TCP RSTs
From: Tarko Tikan <tarko () lanparty ee>
Date: Sun, 2 Sep 2018 17:43:21 +0300
hey,
But why did the TLS Hello has a TTL lower that the TCP Syn ? Do you have any information on that ?
Consumer CPEs are typically some BCM reference design where initial TCP handshake is handled by linux kernel and everything following (including NAT) is handled in SOC.
I've seen those systems not decrement TTL at all, decrement TTL before checking if packet is destined to itself etc. This case is weird as typically the hardware part is faulty, not the kernel.
-- tarko
Current thread:
- Re: Service provider story about tracking down TCP RSTs, (continued)
- Re: Service provider story about tracking down TCP RSTs Lee (Sep 01)
- Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 01)
- Re: Service provider story about tracking down TCP RSTs Lee (Sep 01)
- Re: Service provider story about tracking down TCP RSTs Bjørn Mork (Sep 02)
- Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 02)
- Re: Service provider story about tracking down TCP RSTs Bjørn Mork (Sep 02)
- Re: Service provider story about tracking down TCP RSTs William Herrin (Sep 02)
- Re: Service provider story about tracking down TCP RSTs James Bensley (Sep 02)
- Re: Service provider story about tracking down TCP RSTs nanog (Sep 02)
- Re: Service provider story about tracking down TCP RSTs Tarko Tikan (Sep 02)
- Re: Service provider story about tracking down TCP RSTs Timothy Manito via NANOG (Sep 04)