Service provider story about tracking down TCP RSTs

Bjørn Mork bjorn at mork.no
Sun Sep 2 10:49:39 UTC 2018


William Herrin <bill at herrin.us> writes:

> On Sun, Sep 2, 2018 at 6:06 AM, Bjørn Mork <bjorn at mork.no> wrote:
>> William Herrin <bill at herrin.us> writes:
>>>  https://bill.herrin.us/network/anycasttcp.html
>>
>> I didn't see a security section in your document.  Did you consider the
>> side effects of this sequence number abuse?
>
> Hi Bjørn,
>
> In the "issues and criticisms" section.

I can see the effect on syn cookies being disussed there, but I don't
think that covers all concerns wrt more predicatable sequence numbers.

See RFC6528, including its references.


Bjørn



More information about the NANOG mailing list