[ovs-dev] [PATCH net-next v2] net: openvswitch: Be liberal in tcp conntrack.
Jakub Kicinski
kuba at kernel.org
Fri Nov 20 17:55:46 UTC 2020
On Fri, 20 Nov 2020 07:32:11 +0100 Florian Westphal wrote:
> Jakub Kicinski <kuba at kernel.org> wrote:
> > On Mon, 16 Nov 2020 18:31:26 +0530 nusiddiq at redhat.com wrote:
> > > From: Numan Siddique <nusiddiq at redhat.com>
> > >
> > > There is no easy way to distinguish if a conntracked tcp packet is
> > > marked invalid because of tcp_in_window() check error or because
> > > it doesn't belong to an existing connection. With this patch,
> > > openvswitch sets liberal tcp flag for the established sessions so
> > > that out of window packets are not marked invalid.
> > >
> > > A helper function - nf_ct_set_tcp_be_liberal(nf_conn) is added which
> > > sets this flag for both the directions of the nf_conn.
> > >
> > > Suggested-by: Florian Westphal <fw at strlen.de>
> > > Signed-off-by: Numan Siddique <nusiddiq at redhat.com>
>
> Acked-by: Florian Westphal <fw at strlen.de>
Thanks! Applied.
More information about the dev
mailing list