Re: ECN: Clearing the air (fwd)

Gregory Maxwell (greg@linuxpower.cx)
Sun, 28 Jan 2001 15:18:35 -0500


On Sun, Jan 28, 2001 at 01:08:40PM -0500, jamal wrote:
> On Sun, 28 Jan 2001, Rogier Wolff wrote:
>
> > A sufficiently paranoid firewall should block requests that he doesn't
> > fully understand. ECN was in this category, so old firewalls are
> > "right" to block these. (Sending an 'RST' is not elegant. So be it.)
> >
> > However, ECN is now "understood", and operators are now in a position
> > to configure their firewall to "do the right thing". This is
>
> This would have been easier. The firewall operators were not provided with
> this option. This is hard-coded. I agree with the rest of your message.

They chose their vendor.

In the case of Cisco, they aparently chose OK as cisco fixed their product
right away.

In the case of Raptor they made a bad decision as the vendor still has not
fixed the problem...

They could have chose Linux where if there had been an issue they could have
gotten it fixed without respect to the vendors idea of how important the
problem is...

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/