|
|
|
@ -419,7 +419,9 @@ Frag position is set independently for tcp and udp. By default 24 and 8, must be |
|
|
|
Offset starts from the transport header. |
|
|
|
|
|
|
|
There are important nuances when working with fragments in Linux. |
|
|
|
|
|
|
|
ipv4 : Linux allows to send ipv4 fragments but standard firewall rules in OUTPUT chain can cause raw send to fail. |
|
|
|
|
|
|
|
ipv6 : There's no way for an application to reliably send fragments without defragmentation by conntrack. |
|
|
|
Sometimes it works, sometimes system defragments packets. |
|
|
|
Looks like kernels <4.16 have no simple way to solve this problem. Unloading of nf_conntrack module |
|
|
|
|
bol-van
3 years ago