[ovs-dev] [patch v2] conntrack: Add option to disable TCP sequence checking.
Ben Pfaff
blp at ovn.org
Mon Jun 10 16:51:25 UTC 2019
On Sun, Jun 09, 2019 at 07:35:09AM -0700, Darrell Ball wrote:
> This may be needed in some special cases, such as to support some
> hardware offload implementations.
>
> Reported-at: https://mail.openvswitch.org/pipermail/ovs-dev/2019-May/359188.html
> Signed-off-by: Darrell Ball <dlu998 at gmail.com>
> ---
>
> v2: Per particular requirement, support 'no-tcp-seq-chk' rather than
> 'liberal' mode.
>
> Add some debug counters.
I'm not sure whether an ovs-appctl command is the best way for users to
enable and disable this. It means that it is difficult for an OpenFlow
controller to do it, since those commands aren't exposed via OpenFlow or
OVSDB.
The documentation says that sequence checking should only be disabled if
absolutely necessary. If you have an example of such a case, it would
be helpful to add it to the documentation.
More information about the dev
mailing list