[dns-operations] Strange problem with fragmented DNS responses from b.iana-servers.net
Florian Weimer
fweimer at bfk.de
Wed Dec 10 14:25:21 UTC 2008
> I receive (fragmented) replies both from B and C. Very occasionally
> the reply from B is reordered on the way, i.e. I receive the second
> fragment (which doesn't contain port numbers) first. Such a reordering
> could presumably cause problems for stateful firewalls...
Not likely. There are some stacks which consistently send the
fragment at the highest offset first.
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the dns-operations
mailing list