Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

IPv6 MSS and pflog interface

8 views
Skip to first unread message

Nick Reilly

unread,
Jul 4, 2011, 2:37:25 PM7/4/11
to
Hi,
I have run in to an issue with my IPv6 TCP MSS getting set too high
causing IPv6 to drop large frames. The root cause is that the MTU of the
pflog0 is being used for the IPv6 MSS. Searching around I found the same
issue reported back in 2007
http://osdir.com/ml/os.netbsd.ports.sparc64/2007-06/msg00029.html

The reason this affects v6 and not v4 is due to the difference in
in6_setmaxmtu() and in_setmaxmtu(), the v6 version only checks for
loopback whilst the v4 version checks for not loopback and also that the
interface is up. I think the v6 version should change to the same as the
v4.

At the same time, I wonder if the pflog interface type should have the
LOOPBACK flag set on it? There are currently no flags on it and given
that in6_setmaxmtu() / in_setmaxmtu() seem to base real vs virtual
network interface on the LOOPBACK flag and pflog seems to be a sort of
virtual interface type. If this interface were to be brought up then
IPv4 would similarly have an excessive MSS on it. Are there any
drawbacks to setting the LOOPBACK flag on an interface type that I might
be missing?

Of course the simple workaround of setting net.inet6.tcp6.mss_ifmtu=1
works around the issue, but I'm looking at the root cause.
Thanks,
Nick Reilly.

--
Posted automagically by a mail2news gateway at muc.de e.V.
Please direct questions, flames, donations, etc. to news-...@muc.de

Zoltan Arnold NAGY

unread,
Jul 5, 2011, 4:09:10 AM7/5/11
to
On Mon, Jul 4, 2011 at 8:37 PM, Nick Reilly <nre...@qnx.com> wrote:
> At the same time, I wonder if the pflog interface type should have the
> LOOPBACK flag set on it? There are currently no flags on it and given
> that in6_setmaxmtu() / in_setmaxmtu() seem to base real vs virtual
> network interface on the LOOPBACK flag and pflog seems to be a sort of
> virtual interface type. If this interface were to be brought up then
> IPv4 would similarly have an excessive MSS on it. Are there any
> drawbacks to setting the LOOPBACK flag on an interface type that I might
> be missing?
I second adding LOOPBACK to log interfaces.

Zoltan

Michael van Elst

unread,
Jul 5, 2011, 4:52:19 AM7/5/11
to
zoltan.ar...@gmail.com (Zoltan Arnold NAGY) writes:

>I second adding LOOPBACK to log interfaces.

IFF_LOOPBACK has specific meanings in multicast and routing and
is used for some shortcuts. I don't think that any of this
is true for the pflog interface.

--
--
Michael van Elst
Internet: mle...@serpens.de
"A potential Snark may lurk in every tree."

Nick Reilly

unread,
Jul 5, 2011, 8:34:50 AM7/5/11
to
On Tue, 2011-07-05 at 04:52 -0400, Michael van Elst wrote:
> zoltan.ar...@gmail.com (Zoltan Arnold NAGY) writes:
>
> >I second adding LOOPBACK to log interfaces.
>
> IFF_LOOPBACK has specific meanings in multicast and routing and
> is used for some shortcuts. I don't think that any of this
> is true for the pflog interface.

Thanks, that's the kind of thing I was worried about. Any thoughts on
how to mark the pflog interface as a virtual interface that shouldn't be
considered for max MTU calculations? Looks like the IFF_* flags field is
full currently although it is a short so could be expanded to a long and
add a new flag type, but that would be rather a large change to solve
this small issue.

Regards,
Nick.

0 new messages